$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/871196D48AC111EA81A2626EC4F9AE02.roa File: 871196D48AC111EA81A2626EC4F9AE02.roa (raw, json) Hash identifier: qxTqHeKAigzEg40e8b/6yKKn/eA3fqP0HeZHL2YE6JM= Subject key identifier: A9:22:C7:38:E2:2F:8A:AD:4E:20:32:B0:06:DD:CD:C7:86:D9:1A:64 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0A0F Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/871196D48AC111EA81A2626EC4F9AE02.roa Signing time: Sat 02 Dec 2023 20:28:12 +0000 ROA not before: Sat 02 Dec 2023 20:28:12 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 15412 IP address blocks: 103.249.185.0/24 maxlen: 24 103.249.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2575 (0xa0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Dec 2 20:28:12 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656b935c-24d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a5:c5:6a:e3:5e:f4:d9:dd:d1:00:aa:85:61: bf:ce:9a:d2:2f:6a:59:69:de:50:55:21:33:ab:54: 04:07:b4:2f:ad:43:6e:3e:95:8d:9e:a6:83:f0:50: 79:3b:e4:ab:dd:06:cd:54:d2:63:4d:f0:3e:01:dc: bd:44:bc:ea:a9:da:ee:27:8b:25:72:0c:d0:6a:71: a1:18:07:ed:a5:13:da:f6:ea:38:d3:54:6a:23:e1: 51:b7:e8:9b:fb:64:8e:94:06:e0:26:9b:de:0d:1a: bf:f4:1b:a9:50:09:71:78:d2:3f:22:6f:8f:0a:36: bb:0d:95:5f:48:df:0c:70:ba:fb:e4:57:31:e0:7d: c8:c7:b2:d2:87:b8:68:7f:f5:1e:d9:79:e6:70:02: 64:9b:95:dc:25:2d:25:5a:9d:c7:2c:bf:0d:53:36: 7c:47:08:e4:21:38:99:44:51:58:93:b9:ab:f6:87: a8:26:6e:dd:09:9b:37:0a:93:4c:f9:66:c6:a9:82: fe:b8:96:7b:3c:2f:77:c0:10:c6:58:dc:d4:d0:ab: f8:35:b1:12:4f:c4:52:e9:d1:fb:3c:50:94:9f:7b: 30:c9:ec:72:ae:d2:89:e1:20:83:9a:e3:ba:ce:ac: 65:e7:fa:92:7d:e6:0f:3b:52:b2:8e:05:f4:d2:7a: 65:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:22:C7:38:E2:2F:8A:AD:4E:20:32:B0:06:DD:CD:C7:86:D9:1A:64 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/871196D48AC111EA81A2626EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.185.0/24 103.249.187.0/24 Signature Algorithm: sha256WithRSAEncryption a2:ae:e8:ed:76:8c:84:3b:40:4e:b9:7c:fe:a0:0c:93:27:ae: 88:da:d5:bd:7a:fe:67:be:0c:b1:30:60:eb:58:5e:28:9e:8b: 44:60:9a:c3:57:13:37:b8:87:c4:96:a8:dd:04:5e:ef:bb:11: 13:d3:f0:d3:b5:2f:44:d5:4a:5d:e8:eb:33:81:aa:6e:08:4b: 6c:2d:1b:80:ef:4c:e6:dc:aa:d5:6d:0c:88:22:84:79:40:db: 4b:01:b1:d5:9d:ab:45:9d:96:ec:31:dc:f7:0b:7f:14:01:1b: 32:40:80:fa:e5:31:4f:05:b6:3c:74:8f:ea:1f:2b:43:59:5a: 8e:d7:55:ec:48:5a:b8:08:d5:ae:bc:65:99:48:88:91:aa:26: ef:b3:e7:08:d8:df:6b:cb:53:96:09:8d:ea:87:1b:69:20:01: e9:28:0d:47:47:fc:e6:d6:89:20:d4:88:47:5a:6f:62:b7:36: 41:ae:ac:25:4a:7a:cd:70:11:03:dd:45:e6:10:e5:5f:1f:1e: b6:5e:ef:e9:3f:2b:46:26:d1:b0:cb:d3:64:63:bb:5e:9e:14: ad:db:42:52:24:6f:2f:28:bc:2b:51:c6:39:1e:5b:48:7d:07: b6:bd:09:9b:0e:81:fa:6e:31:14:61:bd:f8:53:86:fa:da:f1: 61:e7:cc:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjMxMjAyMjAyODEyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiOTM1Yy0yNGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqXFauNe9Nnd0QCqhWG/zprSL2pZad5QVSEzq1QEB7QvrUNuPpWNnqaD8FB5 O+Sr3QbNVNJjTfA+Ady9RLzqqdruJ4slcgzQanGhGAftpRPa9uo401RqI+FRt+ib +2SOlAbgJpveDRq/9BupUAlxeNI/Im+PCja7DZVfSN8McLr75Fcx4H3Ix7LSh7ho f/Ue2XnmcAJkm5XcJS0lWp3HLL8NUzZ8RwjkITiZRFFYk7mr9oeoJm7dCZs3CpNM +WbGqYL+uJZ7PC93wBDGWNzU0Kv4NbEST8RS6dH7PFCUn3swyexyrtKJ4SCDmuO6 zqxl5/qSfeYPO1KyjgX00nplgQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKkixzji L4qtTiAysAbdzceG2RpkMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvODcxMTk2RDQ4 QUMxMTFFQTgxQTI2MjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn+bkDBABn+bswDQYJKoZIhvcNAQELBQADggEBAKKu6O12 jIQ7QE65fP6gDJMnroja1b16/me+DLEwYOtYXiiei0RgmsNXEze4h8SWqN0EXu+7 ERPT8NO1L0TVSl3o6zOBqm4IS2wtG4DvTObcqtVtDIgihHlA20sBsdWdq0Wdluwx 3PcLfxQBGzJAgPrlMU8Ftjx0j+ofK0NZWo7XVexIWrgI1a68ZZlIiJGqJu+z5wjY 32vLU5YJjeqHG2kgAekoDUdH/ObWiSDUiEdab2K3NkGurCVKes1wEQPdReYQ5V8f HrZe7+k/K0Ym0bDL02Rju16eFK3bQlIkby8ovCtRxjkeW0h9B7a9CZsOgfpuMRRh vfhThvra8WHnzBg= -----END CERTIFICATE-----Generated at Fri May 10 21:16:13 2024 by rpki-client on console-fra.rpki-client.org