$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/C6591C620DFD11EBAD63A21CC4F9AE02.roa File: C6591C620DFD11EBAD63A21CC4F9AE02.roa (raw, json) Hash identifier: RHlwfDUxOMQtT5bp81t+fsaYo8+wSgQW+csj9NkKOFA= Subject key identifier: FE:26:40:12:CA:04:58:C5:E8:7E:F3:04:CD:19:65:07:7F:4A:F2:42 Certificate issuer: /CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Certificate serial: 0619 Authority key identifier: 17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/C6591C620DFD11EBAD63A21CC4F9AE02.roa Signing time: Sat 03 Jun 2023 00:36:33 +0000 ROA not before: Sat 03 Jun 2023 00:36:33 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 140695 IP address blocks: 103.151.231.0/24 maxlen: 24 2001:df3:e180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1561 (0x619) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Validity Not Before: Jun 3 00:36:33 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a8b10-3032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:88:b0:59:30:bf:43:6b:e0:f1:c9:7f:b5:62: 6d:f4:21:a7:08:4a:3b:cb:d8:7a:35:9c:6c:c5:59: eb:e0:aa:4c:59:26:78:b4:5c:b3:77:e8:ac:2d:89: 1d:93:04:50:25:ac:37:c9:45:1c:08:7f:d9:70:65: d0:42:b6:c2:ef:45:42:e5:a9:c3:71:5d:87:a2:78: aa:aa:ed:1a:fc:4e:37:67:15:3d:77:4b:f3:55:f2: 03:21:27:e3:1d:08:86:7c:22:45:a0:38:32:fa:b9: 30:7e:76:7c:7d:c9:fc:57:0c:8d:c0:dc:ce:0d:2e: 41:3a:18:74:a0:2a:59:0c:ab:6d:0e:9e:54:48:a7: 31:18:d1:fa:cd:60:ab:11:02:6b:ac:ff:36:09:54: 6b:20:bc:85:a4:46:1b:c7:bd:b0:e8:f3:60:15:15: 8d:5e:fc:e8:c2:a4:70:bb:8b:ce:41:d5:d8:3a:bc: 5e:68:0e:3a:f5:51:b1:f8:94:f6:e4:28:f3:c5:c2: c0:f2:88:b6:42:e0:16:5a:19:6a:fb:41:63:fd:95: c1:a8:f8:65:cd:9e:ba:08:24:9c:2c:00:8b:4d:95: 5c:32:ca:08:1e:e0:b0:8a:ad:5f:6a:3a:c8:c5:94: ba:72:11:54:08:de:7e:8d:1f:98:ce:0e:84:61:cc: 9b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:26:40:12:CA:04:58:C5:E8:7E:F3:04:CD:19:65:07:7F:4A:F2:42 X509v3 Authority Key Identifier: keyid:17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/C6591C620DFD11EBAD63A21CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.231.0/24 IPv6: 2001:df3:e180::/48 Signature Algorithm: sha256WithRSAEncryption 01:ea:25:02:b5:31:45:9a:d2:fd:a5:80:97:fe:52:1c:84:c6: 93:90:5b:a1:2b:5d:af:7a:4c:7e:15:3e:1f:f5:55:8f:78:c2: c4:b4:43:53:99:d8:f0:57:09:b5:c3:5f:fb:4a:21:6b:56:43: 0e:1d:3d:e0:dd:07:f9:5e:8c:06:f7:1f:f8:87:c7:da:4a:7f: 87:c1:15:1b:33:ff:85:9c:ef:4c:95:9b:4a:67:dd:d2:ee:2b: 0d:ee:5c:f3:ef:be:8c:23:29:9a:18:8a:c8:c2:08:b5:09:24: 2a:a8:f2:57:7e:f6:42:9c:3b:e4:1f:f9:e1:c3:03:fc:6b:73: 90:46:7f:e3:1d:cc:19:9c:f9:6b:46:de:af:e3:06:2b:10:1d: d0:b7:08:ac:ad:44:fd:fe:8f:00:d1:05:cf:56:fb:35:50:dc: 60:95:9a:a2:93:05:0f:3b:37:a3:cf:7a:80:af:59:9f:ef:54: 63:c8:22:b5:e2:ff:a6:0c:c4:38:90:4d:50:53:9a:ed:4e:03: 58:9e:87:3e:58:da:b6:b6:dc:bb:72:ae:24:4a:03:bb:ef:d7: 8e:0e:a8:09:28:5b:ca:1b:b5:ff:55:be:26:d9:01:77:1f:9c: 68:2f:2b:0d:84:44:15:3f:44:7d:fe:56:94:c1:19:39:62:54: d2:d3:3c:bb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwNDkxMTAvBgNVBAUTKDE3NzI1RkFERUI0NEEzRkE4QjMxRkZGMEE2M0NCQzUx NTVBOTA3RDgwHhcNMjMwNjAzMDAzNjMzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhOGIxMC0zMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4iwWTC/Q2vg8cl/tWJt9CGnCEo7y9h6NZxsxVnr4KpMWSZ4tFyzd+isLYkd kwRQJaw3yUUcCH/ZcGXQQrbC70VC5anDcV2Honiqqu0a/E43ZxU9d0vzVfIDISfj HQiGfCJFoDgy+rkwfnZ8fcn8VwyNwNzODS5BOhh0oCpZDKttDp5USKcxGNH6zWCr EQJrrP82CVRrILyFpEYbx72w6PNgFRWNXvzowqRwu4vOQdXYOrxeaA469VGx+JT2 5CjzxcLA8oi2QuAWWhlq+0Fj/ZXBqPhlzZ66CCScLACLTZVcMsoIHuCwiq1fajrI xZS6chFUCN5+jR+Yzg6EYcybeQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP4mQBLK BFjF6H7zBM0ZZQd/SvJCMB8GA1UdIwQYMBaAFBdyX63rRKP6izH/8KY8vFFVqQfY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDA0OS83RUM5MDk3NjBE RkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9fcUxNZl93cGp5OFVWV3BC OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YzSmZyZXRFb19xTE1mX3dwank4VVZXcEI5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAwNDkvN0VDOTA5NzYwREZDMTFFQkIyRjEzODFCQzRGOUFFMDIvQzY1OTFDNjIw REZEMTFFQkFENjNBMjFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnl+cwDwQCAAIwCQMHACABDfPhgDANBgkqhkiG9w0BAQsF AAOCAQEAAeolArUxRZrS/aWAl/5SHITGk5BboStdr3pMfhU+H/VVj3jCxLRDU5nY 8FcJtcNf+0oha1ZDDh094N0H+V6MBvcf+IfH2kp/h8EVGzP/hZzvTJWbSmfd0u4r De5c8+++jCMpmhiKyMIItQkkKqjyV372Qpw75B/54cMD/GtzkEZ/4x3MGZz5a0be r+MGKxAd0LcIrK1E/f6PANEFz1b7NVDcYJWaopMFDzs3o896gK9Zn+9UY8giteL/ pgzEOJBNUFOa7U4DWJ6HPljatrbcu3KuJEoDu+/Xjg6oCShbyhu1/1W+JtkBdx+c aC8rDYREFT9Eff5WlMEZOWJU0tM8uw== -----END CERTIFICATE-----Generated at Thu May 16 23:48:42 2024 by rpki-client on console-fra.rpki-client.org