$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/FA13BAAC504611ED9AE40711C4F9AE02.roa File: FA13BAAC504611ED9AE40711C4F9AE02.roa (raw, json) Hash identifier: YhSlc/HjraVc9wYkhpQiowNiPND19VQCxvWQLZNe5s0= Subject key identifier: DE:CB:F3:B1:D2:18:62:D3:65:C9:7B:05:30:4B:58:4C:9C:7C:0F:C0 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 9B Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/FA13BAAC504611ED9AE40711C4F9AE02.roa Signing time: Sun 13 Aug 2023 04:04:18 +0000 ROA not before: Sun 13 Aug 2023 04:04:18 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 150118 IP address blocks: 103.191.19.0/24 maxlen: 26 2001:df0:f4c0::/48 maxlen: 48 2001:df0:f4c0::/49 maxlen: 49 2001:df0:f4c0::/50 maxlen: 50 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Aug 13 04:04:18 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d85642-df46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:46:30:a2:d3:27:fb:3c:ad:f0:1f:3e:06:3e: bb:22:5e:c4:46:c1:22:88:ea:14:c2:7e:51:70:d3: 8e:d4:00:ba:c1:9b:26:2c:f6:b2:31:63:84:18:ea: 5b:c7:24:55:68:57:d7:b8:d1:c2:7b:6d:30:bb:95: 62:70:9d:02:c8:4d:7f:bc:0b:c1:eb:c9:96:97:d2: 43:c5:43:dc:e1:1e:ef:6b:c8:cc:47:fa:cf:f3:bb: 8d:26:44:a8:c8:e2:53:74:63:fe:25:42:46:3f:73: ca:4d:8f:dd:f2:d2:ef:23:9a:a5:91:65:44:65:7f: 76:f5:a6:35:76:3a:f1:3d:bb:f1:09:39:d1:e2:80: 2e:a5:74:63:27:65:58:5d:f8:c7:3f:2f:30:66:7a: f7:c0:5f:ba:28:5b:a6:fe:ca:8c:ec:44:a4:62:04: 67:4d:ae:17:34:41:31:f8:62:b3:e0:f1:1a:a9:78: f8:78:21:1f:c0:ab:a4:59:e1:61:4c:69:67:52:37: a7:b0:d7:76:06:89:51:31:42:f0:16:b5:23:20:08: 92:f5:0f:25:30:8b:8e:98:3e:07:1e:94:d6:5f:9f: 12:71:f2:b2:69:bc:e2:39:af:04:6c:86:0b:66:da: b6:b2:09:2e:22:68:96:e7:62:6f:df:2d:d5:9e:fd: e3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CB:F3:B1:D2:18:62:D3:65:C9:7B:05:30:4B:58:4C:9C:7C:0F:C0 X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/FA13BAAC504611ED9AE40711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.19.0/24 IPv6: 2001:df0:f4c0::/48 Signature Algorithm: sha256WithRSAEncryption 21:a0:36:5d:21:44:15:42:92:79:fc:36:40:20:01:0d:de:d5: f1:61:a6:f7:2d:4c:8d:80:e1:ed:f8:1e:14:b0:9d:a2:a5:7e: e2:b0:65:3c:d6:fb:34:a2:91:9e:27:12:13:2c:dc:91:81:7b: 0e:a5:20:4f:ba:e9:d4:61:33:f1:d1:9e:18:83:9c:4e:f7:23: b7:52:7f:07:62:ce:d1:d5:65:0b:11:a4:7a:75:95:a4:41:e7: 0d:cf:d7:af:5c:9c:d8:c5:87:64:dd:58:f5:15:a8:63:29:2d: c5:f6:85:b9:ed:a7:41:0e:47:32:df:67:3e:1f:8c:dc:3a:f9: ff:dc:31:07:e5:e2:25:dd:98:60:e3:d7:22:b2:bd:a5:f7:87: 3b:0a:0e:e3:7a:c7:5f:72:23:4d:4a:0f:e9:db:1d:e7:fd:f6: 3e:76:29:85:7a:89:9c:69:0b:1c:45:2d:75:6d:1a:cd:65:37: 0e:48:dc:97:dc:42:ad:35:44:6b:d5:c7:fc:3f:98:8c:5e:d9: 8a:37:72:ee:bc:82:58:c9:c7:71:18:18:7d:0c:e6:f6:5d:0f: d5:4a:e2:de:9f:dc:0a:e3:ce:94:9a:29:ca:17:13:13:36:6a: 95:21:eb:dc:0b:bb:a0:6e:3d:73:78:b5:7d:8c:b2:19:e3:04: 05:23:5f:b8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjMwODEzMDQwNDE4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ4NTY0Mi1kZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0YwotMn+zyt8B8+Bj67Il7ERsEiiOoUwn5RcNOO1AC6wZsmLPayMWOEGOpb xyRVaFfXuNHCe20wu5VicJ0CyE1/vAvB68mWl9JDxUPc4R7va8jMR/rP87uNJkSo yOJTdGP+JUJGP3PKTY/d8tLvI5qlkWVEZX929aY1djrxPbvxCTnR4oAupXRjJ2VY XfjHPy8wZnr3wF+6KFum/sqM7ESkYgRnTa4XNEEx+GKz4PEaqXj4eCEfwKukWeFh TGlnUjensNd2BolRMULwFrUjIAiS9Q8lMIuOmD4HHpTWX58ScfKyabziOa8EbIYL Ztq2sgkuImiW52Jv3y3Vnv3jFQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN7L87HS GGLTZcl7BTBLWEycfA/AMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVDQzAvQ0ZBNzlGMUE1MDNGMTFFRDgxRDA3NTZCQzRGOUFFMDIvRkExM0JBQUM1 MDQ2MTFFRDlBRTQwNzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnvxMwDwQCAAIwCQMHACABDfD0wDANBgkqhkiG9w0BAQsF AAOCAQEAIaA2XSFEFUKSefw2QCABDd7V8WGm9y1MjYDh7fgeFLCdoqV+4rBlPNb7 NKKRnicSEyzckYF7DqUgT7rp1GEz8dGeGIOcTvcjt1J/B2LO0dVlCxGkenWVpEHn Dc/Xr1yc2MWHZN1Y9RWoYyktxfaFue2nQQ5HMt9nPh+M3Dr5/9wxB+XiJd2YYOPX IrK9pfeHOwoO43rHX3IjTUoP6dsd5/32PnYphXqJnGkLHEUtdW0azWU3Dkjcl9xC rTVEa9XH/D+YjF7Zijdy7ryCWMnHcRgYfQzm9l0P1Uri3p/cCuPOlJopyhcTEzZq lSHr3Au7oG49c3i1fYyyGeMEBSNfuA== -----END CERTIFICATE-----Generated at Tue May 21 06:21:00 2024 by rpki-client on console-ams.rpki-client.org