$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa File: 720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa (raw, json) Hash identifier: 2lZgSJf5MYUgZTLkxHvCm5+lrVlmIHxkmDmgsm9hjQQ= Subject key identifier: 5F:C0:7E:D2:05:AD:86:73:F2:60:0C:14:40:56:1E:A2:DB:8E:56:27 Certificate issuer: /CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Certificate serial: 03AA Authority key identifier: 93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa Signing time: Sat 15 Jul 2023 00:41:22 +0000 ROA not before: Sat 15 Jul 2023 00:41:22 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.138.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 01:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 938 (0x3aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Validity Not Before: Jul 15 00:41:22 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b1eb31-df14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a3:21:28:ac:74:c2:1b:76:11:0d:ff:e7:8c: 6b:0a:6d:e6:8f:85:b3:1a:81:4a:1b:32:58:26:b4: 46:89:a4:c0:43:07:c9:53:00:29:4b:27:83:a7:aa: 02:34:9d:71:fb:ad:32:73:8f:5d:cc:5b:22:71:96: 08:44:84:84:ef:18:6e:51:81:9a:49:a9:8f:01:0d: ea:6a:c2:2e:d5:3d:dd:d9:be:19:60:e8:96:a4:c9: b0:f7:bb:91:80:11:7d:37:8c:38:ee:f3:b6:41:3f: 95:5d:d4:27:73:e8:0d:bf:a6:84:b1:a1:ea:9a:b1: a8:11:be:32:02:ef:21:b4:a5:d1:8a:00:54:1c:33: ab:dd:18:98:24:f9:bc:28:f6:64:ba:5f:c3:10:d3: 75:7c:a5:44:f1:d5:9e:d3:c0:5a:6c:af:1d:72:11: 42:8d:82:b7:b9:95:6f:4a:f9:54:96:c1:fd:13:cc: dc:6d:82:01:e9:35:dd:e5:68:6b:fa:48:50:ed:3d: 12:74:6c:3f:46:db:3c:b0:ff:5b:62:fd:70:7f:ba: b0:62:7f:f7:18:0c:c1:2b:fb:49:79:a6:ef:49:0d: d9:1b:93:95:d7:ff:df:9b:45:67:6a:0d:82:ce:fe: a0:d0:61:ed:87:ae:de:51:8e:42:2b:37:ac:cd:81: 84:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C0:7E:D2:05:AD:86:73:F2:60:0C:14:40:56:1E:A2:DB:8E:56:27 X509v3 Authority Key Identifier: keyid:93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.231.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:4b:6c:1c:61:14:29:0b:49:94:70:bb:ca:eb:70:08:ff:9b: 36:55:35:89:98:77:a1:4d:de:10:a4:cb:2a:ca:76:1c:33:64: ff:5f:62:f3:cb:ec:06:e0:28:b1:cf:78:f8:f5:23:e0:e9:1f: b5:8d:c5:e3:a6:2a:01:6c:97:4a:57:18:35:25:d4:18:96:5d: 75:99:1f:fe:76:a3:a9:a3:fd:bc:45:3b:8d:05:04:2c:c3:f6: 00:d8:12:ab:35:eb:f5:60:28:30:69:c9:e8:12:15:6b:c6:10: 01:a8:29:4b:86:29:74:5d:88:25:d5:6c:82:db:eb:e1:a0:bb: ea:51:05:c1:67:5c:9a:09:a6:5f:51:ca:80:11:6e:c2:c8:87: 0a:bb:f5:3a:55:8b:17:33:91:5c:1d:08:0f:3e:4a:8f:cd:b3: 5f:bd:c4:f2:67:c3:a3:cb:c9:08:d0:57:28:ff:30:58:2b:4f: dc:93:86:71:67:50:ea:0c:92:72:5a:a2:84:20:59:4f:be:a9: 90:28:14:30:a3:92:db:d3:3d:28:e3:ef:75:98:b1:90:61:6c: 73:c5:99:77:b7:ec:c0:9c:36:8c:bf:8b:da:29:9b:7d:44:aa: 69:ca:c0:c1:71:99:7d:76:4c:66:a1:d1:d7:c8:a4:01:01:8f: 07:c0:6b:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVGMzMxMTAvBgNVBAUTKDkzMTdCQjE5RkY5MDdGNDcxODExRUI1NjEwMEFBMEJD OTJDRjE0OTcwHhcNMjMwNzE1MDA0MTIyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxZWIzMS1kZjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6MhKKx0wht2EQ3/54xrCm3mj4WzGoFKGzJYJrRGiaTAQwfJUwApSyeDp6oC NJ1x+60yc49dzFsicZYIRISE7xhuUYGaSamPAQ3qasIu1T3d2b4ZYOiWpMmw97uR gBF9N4w47vO2QT+VXdQnc+gNv6aEsaHqmrGoEb4yAu8htKXRigBUHDOr3RiYJPm8 KPZkul/DENN1fKVE8dWe08BabK8dchFCjYK3uZVvSvlUlsH9E8zcbYIB6TXd5Whr +khQ7T0SdGw/Rts8sP9bYv1wf7qwYn/3GAzBK/tJeabvSQ3ZG5OV1//fm0Vnag2C zv6g0GHth67eUY5CKzeszYGEewIDAQABo4IClTCCApEwHQYDVR0OBBYEFF/AftIF rYZz8mAMFEBWHqLbjlYnMB8GA1UdIwQYMBaAFJMXuxn/kH9HGBHrVhAKoLySzxSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUYzMy8yRjZBQzEzQzBC RUMxMUVDOTIxMzBENUFDNEY5QUUwMi9reGU3R2YtUWYwY1lFZXRXRUFxZ3ZKTFBG SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4ZTdHZi1RZjBjWUVldFdFQXFndkpMUEZKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVGMzMvMkY2QUMxM0MwQkVDMTFFQzkyMTMwRDVBQzRGOUFFMDIvNzIwRkFGOUEw QkVGMTFFQ0FFRjNFQTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniucwDQYJKoZIhvcNAQELBQADggEBABpLbBxhFCkLSZRw u8rrcAj/mzZVNYmYd6FN3hCkyyrKdhwzZP9fYvPL7AbgKLHPePj1I+DpH7WNxeOm KgFsl0pXGDUl1BiWXXWZH/52o6mj/bxFO40FBCzD9gDYEqs16/VgKDBpyegSFWvG EAGoKUuGKXRdiCXVbILb6+Ggu+pRBcFnXJoJpl9RyoARbsLIhwq79TpVixczkVwd CA8+So/Ns1+9xPJnw6PLyQjQVyj/MFgrT9yThnFnUOoMknJaooQgWU++qZAoFDCj ktvTPSjj73WYsZBhbHPFmXe37MCcNoy/i9opm31EqmnKwMFxmX12TGah0dfIpAEB jwfAa1s= -----END CERTIFICATE-----Generated at Thu Apr 25 02:45:48 2024 by rpki-client on console-fra.rpki-client.org