$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/02F1850E45A611EA81CD145AC4F9AE02.roa File: 02F1850E45A611EA81CD145AC4F9AE02.roa (raw, json) Hash identifier: HEc94XWDCUE8Dd4fhqUhOT9/bxga1Jbgeml+ll/dsec= Subject key identifier: F7:1C:0B:E0:2D:27:90:D6:F8:D0:28:25:99:66:0A:A8:70:10:10:8F Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 09AD Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/02F1850E45A611EA81CD145AC4F9AE02.roa Signing time: Tue 08 Aug 2023 20:17:33 +0000 ROA not before: Tue 08 Aug 2023 20:17:32 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 134601 IP address blocks: 103.120.220.0/22 maxlen: 22 103.120.220.0/24 maxlen: 24 103.120.221.0/24 maxlen: 24 103.120.222.0/24 maxlen: 24 103.120.223.0/24 maxlen: 24 2404:ef40::/32 maxlen: 32 2404:ef40:220::/48 maxlen: 48 2404:ef40:221::/48 maxlen: 48 2404:ef40:222::/48 maxlen: 48 2404:ef40:223::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2477 (0x9ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: Aug 8 20:17:32 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d2a2dc-80ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ec:2a:48:9c:f9:c0:df:3f:00:9c:ba:73:1b: 4c:63:87:74:a9:7e:dd:f6:12:d0:ca:71:13:eb:8c: 8e:d5:b1:c0:44:13:b0:86:3b:5c:60:07:0d:3b:06: 9f:3f:9c:36:fb:82:e2:9e:2d:d0:f8:b8:5d:a1:05: 79:c4:19:ab:d5:bd:45:c4:40:97:1e:5d:90:0b:ed: 29:12:85:44:45:af:2b:49:c2:4f:d0:29:b8:1f:82: d2:00:1a:72:6c:5d:fa:84:63:1a:5f:bc:0d:60:59: 69:46:37:9a:23:89:13:a5:15:1c:77:95:f9:4f:84: 61:0f:55:7c:ef:66:e9:77:a7:9f:1c:1a:b5:d0:f4: cb:1a:a6:ed:c6:93:9d:c3:6c:33:98:cd:cc:c1:69: 1d:42:59:fd:47:83:3f:7e:61:c0:96:1b:43:af:01: 81:0c:92:09:de:25:ca:82:9e:7e:ef:0d:7d:92:1a: 8b:4a:ff:f0:78:f0:78:ea:82:67:f2:5a:ff:e7:32: 65:29:01:76:db:f3:44:93:72:00:71:f5:f0:4b:77: de:83:67:69:0b:97:d3:4b:08:24:08:95:99:a0:96: 4e:44:2a:d3:a9:76:45:09:2c:a6:87:65:70:82:85: 5c:76:7e:03:01:66:48:a9:d9:3c:f0:a8:62:c3:db: 86:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:1C:0B:E0:2D:27:90:D6:F8:D0:28:25:99:66:0A:A8:70:10:10:8F X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/02F1850E45A611EA81CD145AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.220.0/22 IPv6: 2404:ef40::/32 Signature Algorithm: sha256WithRSAEncryption 47:b4:8a:22:c3:3e:6b:3a:dd:93:e5:56:96:ae:f4:3b:82:3c: 5d:c5:da:c3:3e:06:0f:51:04:ef:84:e6:04:7c:c0:c3:51:8e: 55:2e:a1:93:31:45:67:5d:ce:35:66:57:e8:cf:9d:95:36:c7: 97:3b:af:b3:9e:63:cd:c3:86:f5:71:53:4f:92:f8:2a:da:ff: 2a:97:d7:ac:00:fc:88:e2:ee:d0:6d:75:9e:66:c0:4e:40:c4: 0c:44:76:dc:f7:77:c9:67:26:95:87:6b:f3:94:ab:dd:1d:a8: f6:55:6b:36:7f:68:a7:92:5a:d3:3f:08:c8:6c:a0:e2:68:2e: 50:fb:4c:8e:69:48:d6:2d:ad:34:45:fc:08:5f:bd:53:e2:45: de:7a:5a:fd:b3:57:69:73:ee:d8:ac:86:da:88:a5:a8:a7:e2: a8:de:94:1d:58:27:57:68:ad:09:fe:72:34:d5:be:b3:23:6a: 3c:fd:36:67:ea:5a:79:45:8f:5f:cd:26:4c:cd:cc:df:4f:54: ec:c5:9e:ca:3d:ea:3c:0e:16:ce:af:d6:93:44:a3:4d:d4:eb: 18:41:91:91:a2:f6:af:be:8a:6a:4d:4b:d7:ec:08:0b:39:0c: 3a:68:4c:83:93:9f:00:41:a1:39:8f:b9:f9:e7:01:c3:c3:2e: f7:b9:92:a8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjMwODA4MjAxNzMyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQyYTJkYy04MGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OwqSJz5wN8/AJy6cxtMY4d0qX7d9hLQynET64yO1bHARBOwhjtcYAcNOwaf P5w2+4Lini3Q+LhdoQV5xBmr1b1FxECXHl2QC+0pEoVERa8rScJP0Cm4H4LSABpy bF36hGMaX7wNYFlpRjeaI4kTpRUcd5X5T4RhD1V872bpd6efHBq10PTLGqbtxpOd w2wzmM3MwWkdQln9R4M/fmHAlhtDrwGBDJIJ3iXKgp5+7w19khqLSv/wePB46oJn 8lr/5zJlKQF22/NEk3IAcfXwS3feg2dpC5fTSwgkCJWZoJZORCrTqXZFCSymh2Vw goVcdn4DAWZIqdk88Khiw9uGzwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPccC+At J5DW+NAoJZlmCqhwEBCPMB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVFNEIvNjNERkY4MDI0NUE0MTFFQTk0MkUwOTU3QzRGOUFFMDIvMDJGMTg1MEU0 NUE2MTFFQTgxQ0QxNDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJneNwwDQQCAAIwBwMFACQE70AwDQYJKoZIhvcNAQELBQAD ggEBAEe0iiLDPms63ZPlVpau9DuCPF3F2sM+Bg9RBO+E5gR8wMNRjlUuoZMxRWdd zjVmV+jPnZU2x5c7r7OeY83DhvVxU0+S+Cra/yqX16wA/Iji7tBtdZ5mwE5AxAxE dtz3d8lnJpWHa/OUq90dqPZVazZ/aKeSWtM/CMhsoOJoLlD7TI5pSNYtrTRF/Ahf vVPiRd56Wv2zV2lz7tishtqIpain4qjelB1YJ1dorQn+cjTVvrMjajz9NmfqWnlF j1/NJkzNzN9PVOzFnso96jwOFs6v1pNEo03U6xhBkZGi9q++impNS9fsCAs5DDpo TIOTnwBBoTmPufnnAcPDLve5kqg= -----END CERTIFICATE-----Generated at Thu May 16 21:45:30 2024 by rpki-client on console-fra.rpki-client.org