$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/763C6FD691EE11EE88E19D67C4F9AE02.roa File: 763C6FD691EE11EE88E19D67C4F9AE02.roa (raw, json) Hash identifier: 9LVRB5RMPe+vCgNIqxUMj9EnEIWmX49NNG/2uR+dq+A= Subject key identifier: 58:28:EF:10:83:C8:7A:77:C4:73:0D:74:03:17:44:70:1F:1A:7F:99 Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 0294 Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/763C6FD691EE11EE88E19D67C4F9AE02.roa Signing time: Sun 03 Dec 2023 15:13:07 +0000 ROA not before: Sun 03 Dec 2023 15:13:07 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 149058 IP address blocks: 103.138.146.0/23 maxlen: 23 103.138.146.0/24 maxlen: 24 103.138.147.0/24 maxlen: 24 2407:3b40::/32 maxlen: 32 2407:3b40::/36 maxlen: 36 2407:3b40:1000::/36 maxlen: 36 2407:3b40:2000::/36 maxlen: 36 2407:3b40:3000::/36 maxlen: 36 2407:3b40:4000::/36 maxlen: 36 2407:3b40:5000::/36 maxlen: 36 2407:3b40:6000::/36 maxlen: 36 2407:3b40:7000::/36 maxlen: 36 2407:3b40:9000::/36 maxlen: 36 2407:3b40:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: Dec 3 15:13:07 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=656c9b02-69c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:43:e7:e7:a5:68:1d:6d:1e:44:a2:20:eb:f8: 85:96:0c:c4:32:cf:69:28:61:1f:ac:3a:ec:3a:e0: ab:30:db:75:c7:ba:8a:5f:56:35:84:86:c8:76:df: 6d:31:b1:0a:af:c0:9d:0a:df:b2:f1:fb:9e:29:b9: 90:9a:78:1b:96:28:33:37:ab:b2:dc:dd:36:9c:39: 85:3a:ee:eb:1c:e4:d5:32:cf:63:2a:33:16:4a:8f: 6e:64:28:a6:ed:a0:6a:55:61:0e:69:34:6e:1c:92: 89:e2:48:20:ff:37:47:4a:98:d3:06:5e:93:26:6a: a4:97:3b:78:42:6e:52:41:9b:32:2e:63:20:da:74: db:01:75:75:4c:8d:1f:8c:94:54:05:b4:0c:9f:f9: 49:87:34:85:22:51:e9:f7:04:5c:f4:54:12:94:07: ec:42:92:ee:3d:d3:0b:ea:12:6c:eb:d9:2a:25:f7: 84:cf:35:12:e1:09:e6:db:be:35:1f:35:ff:0c:12: 9c:ef:e5:5a:51:73:79:af:42:5d:17:ea:2e:da:c1: 32:9c:05:a0:b7:1a:1a:dd:58:d5:c1:71:f4:f5:dd: b5:fc:4c:7c:fe:3f:9c:4b:4a:8d:43:89:00:45:44: ac:5a:bd:db:08:e1:39:28:ce:50:20:58:d1:c0:a2: 6d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:28:EF:10:83:C8:7A:77:C4:73:0D:74:03:17:44:70:1F:1A:7F:99 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/763C6FD691EE11EE88E19D67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.146.0/23 IPv6: 2407:3b40::/32 Signature Algorithm: sha256WithRSAEncryption 16:e8:c1:23:fc:4e:89:62:d3:1d:41:af:f4:36:bf:54:ce:2c: 3b:27:3f:0b:81:6d:04:f2:2a:e4:a0:11:0b:cf:08:e1:af:44: 8a:a3:26:04:65:cf:b2:7c:06:8d:27:38:54:4c:08:40:03:db: dc:ed:ae:c6:6e:b1:89:2d:39:83:a6:37:30:f7:32:70:54:4f: 89:66:bc:a6:10:81:92:c8:ee:69:0f:a0:1b:2f:4f:b6:2c:b9: e6:50:04:d1:df:0f:b2:ac:a0:f5:4d:c3:09:cf:c4:ad:8c:ea: ed:7d:59:b2:fc:67:60:e8:e8:78:fa:ae:f3:96:4a:d2:c6:7a: e4:34:d4:d3:57:06:74:bf:05:ab:49:29:bc:df:8b:ab:ca:cb: 47:2f:85:8c:5a:8a:8d:bf:8a:c8:dc:a6:70:d5:25:02:22:27: 48:35:7a:92:6f:b8:6a:2a:9d:64:35:03:5a:37:d0:9a:1d:9a: 5a:9d:fa:55:b6:aa:07:4a:89:52:e5:79:1b:e0:46:f4:e1:9f: 53:31:e2:43:af:00:62:0b:ae:47:83:f9:fc:47:85:d8:65:92: 27:4d:d4:8a:59:d5:be:a9:8a:93:59:c1:08:2b:6e:f7:ce:2c: 80:ed:ee:83:44:1f:39:e6:b7:b4:5d:bc:24:f8:4e:be:97:5d: 94:19:48:35 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjMxMjAzMTUxMzA3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZjOWIwMi02OWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkPn56VoHW0eRKIg6/iFlgzEMs9pKGEfrDrsOuCrMNt1x7qKX1Y1hIbIdt9t MbEKr8CdCt+y8fueKbmQmngbligzN6uy3N02nDmFOu7rHOTVMs9jKjMWSo9uZCim 7aBqVWEOaTRuHJKJ4kgg/zdHSpjTBl6TJmqklzt4Qm5SQZsyLmMg2nTbAXV1TI0f jJRUBbQMn/lJhzSFIlHp9wRc9FQSlAfsQpLuPdML6hJs69kqJfeEzzUS4Qnm2741 HzX/DBKc7+VaUXN5r0JdF+ou2sEynAWgtxoa3VjVwXH09d21/Ex8/j+cS0qNQ4kA RUSsWr3bCOE5KM5QIFjRwKJtyQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFgo7xCD yHp3xHMNdAMXRHAfGn+ZMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvNzYzQzZGRDY5 MUVFMTFFRTg4RTE5RDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnipIwDQQCAAIwBwMFACQHO0AwDQYJKoZIhvcNAQELBQAD ggEBABbowSP8Toli0x1Br/Q2v1TOLDsnPwuBbQTyKuSgEQvPCOGvRIqjJgRlz7J8 Bo0nOFRMCEAD29ztrsZusYktOYOmNzD3MnBUT4lmvKYQgZLI7mkPoBsvT7YsueZQ BNHfD7KsoPVNwwnPxK2M6u19WbL8Z2Do6Hj6rvOWStLGeuQ01NNXBnS/BatJKbzf i6vKy0cvhYxaio2/isjcpnDVJQIiJ0g1epJvuGoqnWQ1A1o30Jodmlqd+lW2qgdK iVLleRvgRvThn1Mx4kOvAGILrkeD+fxHhdhlkidN1IpZ1b6pipNZwQgrbvfOLIDt 7oNEHznmt7RdvCT4Tr6XXZQZSDU= -----END CERTIFICATE-----Generated at Fri May 17 04:26:40 2024 by rpki-client on console-fra.rpki-client.org