$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/32B24F6425FD11EDA4097785C4F9AE02.roa File: 32B24F6425FD11EDA4097785C4F9AE02.roa (raw, json) Hash identifier: oCfdzQyYRsIRC12KmJ3LXf4aAzIohlkO5epU8CiYIrw= Subject key identifier: 7D:54:21:5D:88:96:14:CD:C3:CF:2E:57:9B:A4:56:B7:4B:C7:99:1B Certificate issuer: /CN=A91B0D39/serialNumber=97388EFC45D496EEEEAE94847DA60ACCE5D117F9 Certificate serial: 0485 Authority key identifier: 97:38:8E:FC:45:D4:96:EE:EE:AE:94:84:7D:A6:0A:CC:E5:D1:17:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lziO_EXUlu7urpSEfaYKzOXRF_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/32B24F6425FD11EDA4097785C4F9AE02.roa Signing time: Wed 19 Jul 2023 00:21:10 +0000 ROA not before: Wed 19 Jul 2023 00:21:10 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 9267 IP address blocks: 103.167.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/lziO_EXUlu7urpSEfaYKzOXRF_k.crl rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/lziO_EXUlu7urpSEfaYKzOXRF_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lziO_EXUlu7urpSEfaYKzOXRF_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1157 (0x485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0D39/serialNumber=97388EFC45D496EEEEAE94847DA60ACCE5D117F9 Validity Not Before: Jul 19 00:21:10 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b72c76-6013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:67:cc:86:1c:28:d9:1b:c5:ef:f5:37:f4:85: 01:c2:ac:6f:af:fa:83:46:44:08:66:dc:98:1b:b0: 4b:03:b0:2a:d2:c8:48:f9:fd:47:3d:83:e0:7d:69: 50:c2:69:34:b9:26:58:9e:af:20:f8:38:3d:c8:a3: 6e:4f:a6:27:be:1e:23:bd:d7:b6:a5:78:eb:e7:0f: d7:fd:9c:79:7f:ab:14:a9:c9:a6:e6:09:d4:3d:ee: b5:da:2d:35:c1:e9:1a:2c:e9:e6:a1:23:c8:82:8a: 87:cd:82:d6:88:bd:08:83:16:de:de:71:1b:45:20: 5a:7f:58:42:0d:f2:df:1a:a2:05:89:e9:57:10:8b: c9:f6:51:ab:a3:ab:83:e5:d2:b8:ef:91:cb:7d:01: ec:67:d8:0a:7a:a5:13:56:aa:a7:0a:3b:0e:20:75: 14:2e:de:0c:c4:50:8b:f2:29:a0:8b:e1:22:3a:59: 66:6b:24:22:f0:2b:5e:de:de:23:dd:73:17:a6:b0: 8e:bc:9d:79:1f:5c:c9:ea:4f:05:2b:79:a6:c4:a0: 42:ec:2a:0b:d8:96:4d:a9:a6:70:fd:ee:20:41:6b: 94:71:9b:83:b9:bf:16:e7:a0:53:a7:6b:d1:3b:07: ac:31:f7:10:1d:cf:f0:21:0d:5d:90:3b:ab:a3:59: ae:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:54:21:5D:88:96:14:CD:C3:CF:2E:57:9B:A4:56:B7:4B:C7:99:1B X509v3 Authority Key Identifier: keyid:97:38:8E:FC:45:D4:96:EE:EE:AE:94:84:7D:A6:0A:CC:E5:D1:17:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/lziO_EXUlu7urpSEfaYKzOXRF_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lziO_EXUlu7urpSEfaYKzOXRF_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/32B24F6425FD11EDA4097785C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.251.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:06:7c:51:1c:31:10:0b:2a:7f:d9:27:95:e1:83:e1:53:c3: bb:1a:39:f7:53:3c:43:d9:a5:0c:89:5e:89:c1:14:0c:5a:65: 53:29:a3:71:dc:d7:53:18:5c:72:ea:b4:34:81:1b:b7:19:eb: 97:fd:3f:d1:5e:fb:e6:c0:81:9f:16:66:91:44:01:cd:42:00: 88:0b:97:37:ff:e4:d0:3e:e4:13:5f:7e:dc:86:52:a1:0a:e7: 74:46:a7:76:c5:c9:0a:b4:91:97:e1:14:ac:8b:2b:eb:d9:33: 16:45:b4:45:17:1e:89:c2:bd:66:db:06:7c:9c:87:00:8f:ad: 03:e8:b5:ac:25:6b:d3:cb:88:27:4d:b9:ea:55:c5:f1:87:5f: dd:0c:0f:db:5c:bb:73:26:a2:73:aa:1b:ba:e9:bb:40:16:b5: f5:31:e4:6a:6f:11:64:08:53:09:25:66:ab:0e:5d:3f:2d:d1: 7a:c8:09:a2:71:c7:40:90:5e:fa:e8:ef:d7:c8:dc:c4:22:f1: 3b:31:ce:96:ef:0a:86:58:9a:97:cd:d8:e2:d1:b5:af:d1:b3: ae:f6:b6:ec:8b:f5:b1:0e:b2:d7:c7:ee:4c:f0:c2:65:11:c0: d3:56:bb:09:44:6f:95:97:e9:ea:51:79:77:8c:23:08:6c:c6: 06:7a:e4:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBEMzkxMTAvBgNVBAUTKDk3Mzg4RUZDNDVENDk2RUVFRUFFOTQ4NDdEQTYwQUND RTVEMTE3RjkwHhcNMjMwNzE5MDAyMTEwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI3MmM3Ni02MDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2fMhhwo2RvF7/U39IUBwqxvr/qDRkQIZtyYG7BLA7Aq0shI+f1HPYPgfWlQ wmk0uSZYnq8g+Dg9yKNuT6Ynvh4jvde2pXjr5w/X/Zx5f6sUqcmm5gnUPe612i01 wekaLOnmoSPIgoqHzYLWiL0Igxbe3nEbRSBaf1hCDfLfGqIFielXEIvJ9lGro6uD 5dK475HLfQHsZ9gKeqUTVqqnCjsOIHUULt4MxFCL8imgi+EiOllmayQi8Cte3t4j 3XMXprCOvJ15H1zJ6k8FK3mmxKBC7CoL2JZNqaZw/e4gQWuUcZuDub8W56BTp2vR OwesMfcQHc/wIQ1dkDuro1muAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH1UIV2I lhTNw88uV5ukVrdLx5kbMB8GA1UdIwQYMBaAFJc4jvxF1Jbu7q6UhH2mCszl0Rf5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEQzOS83RjI0RkZEMEM4 NTgxMUVCQkUwRUY4MzRDNEY5QUUwMi9semlPX0VYVWx1N3VycFNFZmFZS3pPWFJG X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6aU9fRVhVbHU3dXJwU0VmYVlLek9YUkZfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBEMzkvN0YyNEZGRDBDODU4MTFFQkJFMEVGODM0QzRGOUFFMDIvMzJCMjRGNjQy NUZEMTFFREE0MDk3Nzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnp/swDQYJKoZIhvcNAQELBQADggEBAEoGfFEcMRALKn/Z J5Xhg+FTw7saOfdTPEPZpQyJXonBFAxaZVMpo3Hc11MYXHLqtDSBG7cZ65f9P9Fe ++bAgZ8WZpFEAc1CAIgLlzf/5NA+5BNfftyGUqEK53RGp3bFyQq0kZfhFKyLK+vZ MxZFtEUXHonCvWbbBnychwCPrQPotawla9PLiCdNuepVxfGHX90MD9tcu3MmonOq G7rpu0AWtfUx5GpvEWQIUwklZqsOXT8t0XrICaJxx0CQXvro79fI3MQi8Tsxzpbv CoZYmpfN2OLRta/Rs672tuyL9bEOstfH7kzwwmURwNNWuwlEb5WX6epReXeMIwhs xgZ65P4= -----END CERTIFICATE-----Generated at Fri May 17 02:38:40 2024 by rpki-client on console-fra.rpki-client.org