$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa File: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (raw, json) Hash identifier: pLGwpLrCF+V9AoOv8xuzFZ0zimW0/KF9iP/Nw6KgGv8= Subject key identifier: C5:A8:A7:E1:F0:C8:00:AA:6D:5F:13:76:7B:94:2A:93:EC:E5:32:14 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0881 Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa Signing time: Tue 31 Oct 2023 21:48:37 +0000 ROA not before: Tue 31 Oct 2023 21:48:37 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 131340 IP address blocks: 103.74.228.0/24 maxlen: 24 103.74.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2177 (0x881) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Oct 31 21:48:37 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65417635-96d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d8:72:ca:62:e1:ee:84:09:06:2b:ab:a9:41: 99:9a:06:93:ae:4a:2e:eb:5c:c2:07:22:94:38:35: b5:27:61:22:71:64:c9:df:00:96:22:dd:89:80:28: db:a7:fb:57:43:ce:72:ea:41:8e:7e:df:9c:73:87: be:2c:c6:a7:21:05:3d:8f:16:7f:9b:b5:ed:8e:07: 71:9f:b5:97:51:dd:2b:b0:7a:c2:ea:25:7e:e6:69: 97:d0:26:c9:6e:08:68:e4:56:10:ff:ed:a9:54:06: 3e:88:02:01:96:ea:e2:d7:c5:96:69:30:e1:bb:6f: 28:ae:03:e7:21:d6:b9:41:59:78:55:fd:16:25:51: 23:97:ae:75:f2:8c:3e:43:cd:fe:2b:ec:f4:e6:66: 51:b7:63:f4:92:fd:b2:b0:b1:99:e3:14:55:c5:d6: 7d:60:e2:4b:51:dc:5c:83:88:2f:08:62:57:32:b8: f1:70:6b:c5:06:4c:81:a1:d4:be:31:87:8c:9f:84: 8d:e0:5a:23:a4:e9:55:11:ea:de:ed:cd:36:b3:8a: 44:9a:6c:2b:49:a9:1f:52:83:ed:a9:6d:59:00:0e: cb:c5:1d:86:d1:79:42:c2:c7:4a:0a:37:20:80:84: b3:4a:40:fa:65:0d:a6:7b:19:0a:67:8d:9c:8b:80: c7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A8:A7:E1:F0:C8:00:AA:6D:5F:13:76:7B:94:2A:93:EC:E5:32:14 X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.74.228.0/24 103.74.231.0/24 Signature Algorithm: sha256WithRSAEncryption a3:62:75:fa:27:3b:60:5d:08:8a:62:81:35:cf:4a:76:3b:1e: b1:bb:05:57:fd:86:6b:0e:ea:e8:04:7f:86:29:83:61:bc:a9: 09:1b:26:1a:42:7d:06:3c:ee:37:d1:f5:c0:b3:ea:15:69:74: 92:c5:23:56:d3:cd:8c:0c:1d:fc:c1:63:06:03:8e:95:4e:29: 87:b0:d0:6b:36:05:01:e2:79:4b:81:23:52:38:22:9b:d1:f6: 6e:66:4a:41:7c:78:a2:c7:d6:9f:72:71:87:ca:01:4b:57:25: a8:a4:35:4d:23:15:65:75:75:f7:8d:f0:b1:d8:c6:59:f9:22: 6e:ce:23:f7:98:19:2e:a1:1c:3e:eb:a3:db:81:60:e9:67:07: 23:e7:9f:7e:ed:6b:bf:2b:84:d3:81:c7:ef:d3:66:7f:ff:c4: 41:91:0b:61:d7:f3:f5:6c:ff:1d:6e:64:1e:a8:2b:fb:f7:46: 2b:67:ae:5c:1c:71:17:88:75:13:76:32:af:22:37:56:60:a2: d1:bd:64:18:c7:69:64:1c:ad:cb:3b:30:7c:ec:db:8c:38:0d: 05:a1:de:86:09:9d:a9:ee:1e:cf:b6:7f:1e:01:2c:98:b4:70: 7f:e2:09:01:3a:03:91:0f:0f:e5:95:fe:7f:7a:6f:a7:08:e3: 84:61:f2:fd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjMxMDMxMjE0ODM3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxNzYzNS05NmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtthyymLh7oQJBiurqUGZmgaTrkou61zCByKUODW1J2EicWTJ3wCWIt2JgCjb p/tXQ85y6kGOft+cc4e+LManIQU9jxZ/m7Xtjgdxn7WXUd0rsHrC6iV+5mmX0CbJ bgho5FYQ/+2pVAY+iAIBluri18WWaTDhu28orgPnIda5QVl4Vf0WJVEjl6518ow+ Q83+K+z05mZRt2P0kv2ysLGZ4xRVxdZ9YOJLUdxcg4gvCGJXMrjxcGvFBkyBodS+ MYeMn4SN4FojpOlVEere7c02s4pEmmwrSakfUoPtqW1ZAA7LxR2G0XlCwsdKCjcg gISzSkD6ZQ2mexkKZ42ci4DHawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMWop+Hw yACqbV8TdnuUKpPs5TIUMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjIzQjMvRTY0NjVBMTA4RTk4MTFFQUFCNThCRDNBQzRGOUFFMDIvMjEwOURGRjJF RkJCMTFFQzk1QTFGRDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnSuQDBABnSucwDQYJKoZIhvcNAQELBQADggEBAKNidfon O2BdCIpigTXPSnY7HrG7BVf9hmsO6ugEf4Ypg2G8qQkbJhpCfQY87jfR9cCz6hVp dJLFI1bTzYwMHfzBYwYDjpVOKYew0Gs2BQHieUuBI1I4IpvR9m5mSkF8eKLH1p9y cYfKAUtXJaikNU0jFWV1dfeN8LHYxln5Im7OI/eYGS6hHD7ro9uBYOlnByPnn37t a78rhNOBx+/TZn//xEGRC2HX8/Vs/x1uZB6oK/v3RitnrlwccReIdRN2Mq8iN1Zg otG9ZBjHaWQcrcs7MHzs24w4DQWh3oYJnanuHs+2fx4BLJi0cH/iCQE6A5EPD+WV /n96b6cI44Rh8v0= -----END CERTIFICATE-----Generated at Thu May 16 22:23:38 2024 by rpki-client on console-fra.rpki-client.org