$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/C33EB0EC7C4211EB933D233EC4F9AE02.roa File: C33EB0EC7C4211EB933D233EC4F9AE02.roa (raw, json) Hash identifier: 4mlUCm6z+VqaDXjwEylUNK9n6L+H5lJRhli74lt4jxg= Subject key identifier: 7F:FB:D9:06:36:A7:E1:1C:FA:22:B1:8F:45:DF:74:21:DD:D0:EE:55 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 06CC Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/C33EB0EC7C4211EB933D233EC4F9AE02.roa Signing time: Mon 22 May 2023 23:45:50 +0000 ROA not before: Mon 22 May 2023 23:45:50 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139039 IP address blocks: 103.138.212.0/23 maxlen: 23 103.138.212.0/24 maxlen: 24 103.138.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 22 23:45:50 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646bfead-5f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:70:24:c7:4d:cd:b8:c3:30:9a:16:88:9c:9a: 37:11:ba:4c:cd:bb:87:02:5a:eb:db:42:2b:f4:83: e7:37:93:a1:c5:1d:d6:b5:2a:54:e3:da:4d:0e:a9: 08:5b:55:ec:45:e5:df:a6:77:64:f4:96:a9:97:07: 6a:0f:73:4d:9d:b9:6c:05:32:30:a1:2b:00:56:b7: a9:7b:40:38:cf:ee:d2:ce:7e:53:e5:10:46:d1:b5: 2a:47:77:d1:70:bc:ef:36:b9:2f:09:a6:76:85:a1: 18:65:b7:2f:58:79:cd:85:63:3f:15:57:e8:55:cc: c3:95:7a:b0:d6:71:df:3f:f2:d4:6f:26:08:4d:bf: b0:c8:0d:0b:7c:8d:0f:22:ee:58:55:2f:b1:f4:62: 54:d5:9f:28:f6:37:93:ce:74:b5:58:97:ae:aa:fc: 36:f5:db:25:e4:2d:7c:14:5e:fe:e3:1a:e5:4f:e5: 1c:7e:36:d1:ff:76:2e:6f:45:f1:33:63:10:4c:36: c2:e1:c4:e6:39:b7:73:33:75:60:88:76:95:d1:cb: 8b:c1:ca:8b:19:7a:fe:23:51:3a:38:ad:ce:3e:ae: 3b:82:27:9b:3b:eb:15:ec:4f:3a:03:91:62:c4:18: ab:f2:22:d9:fc:73:f5:4a:88:f7:24:e3:95:d0:40: 25:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FB:D9:06:36:A7:E1:1C:FA:22:B1:8F:45:DF:74:21:DD:D0:EE:55 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/C33EB0EC7C4211EB933D233EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.212.0/23 Signature Algorithm: sha256WithRSAEncryption 91:39:08:36:54:8f:02:c7:28:b7:e1:65:04:d4:01:e1:5a:92: d1:b8:34:9c:85:25:01:86:d3:8b:b9:a6:eb:00:85:0b:b8:0f: a5:65:11:0e:f2:fe:39:9b:58:94:3d:67:52:80:57:7b:17:c1: 6e:e7:b8:df:ee:4a:13:61:98:4b:b8:9d:71:cb:20:5a:7a:54: bb:77:69:12:ac:fa:bf:5f:60:bc:c2:f6:ba:5b:c7:c9:16:25: 81:de:ad:54:3d:dc:27:43:9f:89:35:4b:c4:a5:4f:a1:ae:8f: 59:51:97:fc:c7:5b:f8:cc:33:69:4b:1a:e4:ff:93:ef:50:ef: 9e:3b:9a:01:02:eb:d7:a3:eb:f2:08:10:4d:85:50:b3:94:7c: 76:08:31:05:85:2c:ec:ad:6b:f0:47:b7:16:ce:5b:43:7f:78: 54:43:6d:bc:e3:5a:13:96:2d:21:60:89:17:0e:46:75:96:90: be:03:8d:96:2f:34:2d:3e:ad:08:4b:a0:03:01:09:c8:45:e2: 02:26:dc:ab:19:58:a6:fd:a2:79:48:f5:c4:a4:48:ff:22:cd: 56:c7:12:5a:fa:71:98:66:a0:d3:9c:68:63:05:9d:3f:a8:59: 6e:2f:05:19:7f:d3:93:a9:a9:58:63:38:38:85:6d:89:93:0b: 1b:c6:98:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjMwNTIyMjM0NTUwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZiZmVhZC01ZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHAkx03NuMMwmhaInJo3EbpMzbuHAlrr20Ir9IPnN5OhxR3WtSpU49pNDqkI W1XsReXfpndk9JaplwdqD3NNnblsBTIwoSsAVrepe0A4z+7Szn5T5RBG0bUqR3fR cLzvNrkvCaZ2haEYZbcvWHnNhWM/FVfoVczDlXqw1nHfP/LUbyYITb+wyA0LfI0P Iu5YVS+x9GJU1Z8o9jeTznS1WJeuqvw29dsl5C18FF7+4xrlT+UcfjbR/3Yub0Xx M2MQTDbC4cTmObdzM3VgiHaV0cuLwcqLGXr+I1E6OK3OPq47giebO+sV7E86A5Fi xBir8iLZ/HP1Soj3JOOV0EAlawIDAQABo4IClTCCApEwHQYDVR0OBBYEFH/72QY2 p+Ec+iKxj0XfdCHd0O5VMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQTQvMTVGNjhCNUNDRjE5MTFFQUFFRjYwQjFFQzRGOUFFMDIvQzMzRUIwRUM3 QzQyMTFFQjkzM0QyMzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnitQwDQYJKoZIhvcNAQELBQADggEBAJE5CDZUjwLHKLfh ZQTUAeFaktG4NJyFJQGG04u5pusAhQu4D6VlEQ7y/jmbWJQ9Z1KAV3sXwW7nuN/u ShNhmEu4nXHLIFp6VLt3aRKs+r9fYLzC9rpbx8kWJYHerVQ93CdDn4k1S8SlT6Gu j1lRl/zHW/jMM2lLGuT/k+9Q7547mgEC69ej6/IIEE2FULOUfHYIMQWFLOyta/BH txbOW0N/eFRDbbzjWhOWLSFgiRcORnWWkL4DjZYvNC0+rQhLoAMBCchF4gIm3KsZ WKb9onlI9cSkSP8izVbHElr6cZhmoNOcaGMFnT+oWW4vBRl/05OpqVhjODiFbYmT CxvGmPU= -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org