$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/B3D4AEB8BFC011E8A7F4204CC4F9AE02.roa File: B3D4AEB8BFC011E8A7F4204CC4F9AE02.roa (raw, json) Hash identifier: V1JHnBIqzScxwp1tnZgX7GADfljsyNB+ujclII0TCvk= Subject key identifier: 14:41:1B:2E:AC:F0:38:A7:63:54:B9:1E:B6:E2:DA:56:9B:CC:FD:11 Certificate issuer: /CN=A91B6CE4/serialNumber=2529C803CB38E751E3696AB7962D823145FCD659 Certificate serial: 116E Authority key identifier: 25:29:C8:03:CB:38:E7:51:E3:69:6A:B7:96:2D:82:31:45:FC:D6:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/B3D4AEB8BFC011E8A7F4204CC4F9AE02.roa Signing time: Mon 31 Jul 2023 13:00:46 +0000 ROA not before: Mon 31 Jul 2023 13:00:46 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 131247 IP address blocks: 103.68.116.0/22 maxlen: 22 103.68.116.0/23 maxlen: 23 103.68.116.0/24 maxlen: 24 103.68.117.0/24 maxlen: 24 103.68.118.0/23 maxlen: 23 103.68.118.0/24 maxlen: 24 103.68.119.0/24 maxlen: 24 103.230.208.0/22 maxlen: 22 103.230.208.0/23 maxlen: 23 103.230.208.0/24 maxlen: 24 103.230.209.0/24 maxlen: 24 103.230.210.0/23 maxlen: 23 103.230.210.0/24 maxlen: 24 103.230.211.0/24 maxlen: 24 2403:6ec0::/32 maxlen: 32 2403:6ec0:8000::/43 maxlen: 43 2403:6ec0:8020::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.crl rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 17:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4462 (0x116e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6CE4/serialNumber=2529C803CB38E751E3696AB7962D823145FCD659 Validity Not Before: Jul 31 13:00:46 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c7b07e-b1d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7c:b5:98:86:10:c9:18:77:a0:31:00:a9:9d: 4b:80:d8:60:a8:f4:e3:fa:9c:56:4d:f8:01:47:b8: 9e:7f:0e:f2:3b:19:c1:27:04:53:a1:10:d6:8a:52: 69:68:79:98:e8:ec:4c:8d:70:ed:31:ce:a0:a9:4d: 2e:8e:df:05:a3:1c:ae:6f:cf:d2:e3:16:1c:6d:af: 6c:5d:bd:6c:fc:5b:1f:ac:09:10:9b:fc:41:ce:bb: 3e:df:1b:c2:fe:81:c3:a0:42:59:35:22:d9:05:3f: 5d:e6:22:24:e7:53:7d:c4:30:96:e7:9f:ed:df:6a: 17:3c:df:d0:cb:b7:7c:0d:91:82:47:ab:2e:1c:53: 01:d6:18:d0:fc:46:64:b5:e2:63:b0:a5:f7:3a:59: 1c:7c:04:7f:08:25:be:88:eb:74:4f:1d:69:2e:21: 28:e1:ef:bf:c9:ba:e8:05:66:f5:54:db:be:1d:4d: da:10:8b:87:5b:c7:ef:52:9b:9d:f7:14:7c:4a:8c: c7:87:4f:a1:51:87:a2:eb:75:40:c8:9e:6b:78:f9: 35:0c:ae:6c:93:b5:f6:b3:4b:9c:4f:45:c0:1a:0a: d7:9b:05:3c:c7:06:9e:ac:6d:ea:9f:65:89:92:61: 68:1e:e7:4b:e2:d7:6f:e2:68:1e:ba:58:20:9b:6e: 8a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:41:1B:2E:AC:F0:38:A7:63:54:B9:1E:B6:E2:DA:56:9B:CC:FD:11 X509v3 Authority Key Identifier: keyid:25:29:C8:03:CB:38:E7:51:E3:69:6A:B7:96:2D:82:31:45:FC:D6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/B3D4AEB8BFC011E8A7F4204CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.116.0/22 103.230.208.0/22 IPv6: 2403:6ec0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:0f:53:bc:1d:59:1d:c9:f4:17:e8:77:ae:59:49:7d:11:62: e0:fd:9b:58:5e:04:3e:1e:e9:6c:cd:5a:f3:f7:b1:26:ca:f1: d7:89:da:c7:fb:16:98:da:f0:7c:d9:ac:74:f5:4b:13:f2:69: 06:8a:29:3f:26:dc:fb:c1:b5:ba:3f:74:cc:2e:72:95:31:70: c8:ff:54:bc:47:f9:e2:9c:56:e0:f8:71:11:de:52:d2:fb:01: 65:eb:8f:2b:79:21:47:aa:30:d9:f9:ce:49:7b:98:6c:73:69: 19:ab:4f:d5:42:d2:75:f1:dc:0c:d3:0e:b8:13:b4:e3:4b:77: ee:17:6f:9e:12:75:53:bb:9f:67:3d:e5:96:6b:0d:db:da:38: 65:55:24:05:cd:38:3d:fd:b1:67:24:08:ba:bc:26:38:33:6f: 05:34:27:c7:1c:ba:26:31:ea:cf:24:77:64:e0:c2:0a:d2:12: d5:cf:a8:d1:a6:46:f4:27:ad:1a:20:bc:e6:f7:11:43:ed:d5: 6f:05:66:74:ce:74:30:39:d3:d9:0d:39:dd:a9:2e:45:bf:2d: c3:df:3f:79:de:3d:de:39:da:6e:8e:78:97:24:1c:66:a1:37: 6d:74:97:76:63:c5:dd:bb:de:f1:cc:50:6d:3e:44:15:b0:33: 20:43:f6:68 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDRTQxMTAvBgNVBAUTKDI1MjlDODAzQ0IzOEU3NTFFMzY5NkFCNzk2MkQ4MjMx NDVGQ0Q2NTkwHhcNMjMwNzMxMTMwMDQ2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM3YjA3ZS1iMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Xy1mIYQyRh3oDEAqZ1LgNhgqPTj+pxWTfgBR7iefw7yOxnBJwRToRDWilJp aHmY6OxMjXDtMc6gqU0ujt8Foxyub8/S4xYcba9sXb1s/FsfrAkQm/xBzrs+3xvC /oHDoEJZNSLZBT9d5iIk51N9xDCW55/t32oXPN/Qy7d8DZGCR6suHFMB1hjQ/EZk teJjsKX3OlkcfAR/CCW+iOt0Tx1pLiEo4e+/ybroBWb1VNu+HU3aEIuHW8fvUpud 9xR8SozHh0+hUYei63VAyJ5rePk1DK5sk7X2s0ucT0XAGgrXmwU8xwaerG3qn2WJ kmFoHudL4tdv4mgeulggm26KgwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBRBGy6s 8DinY1S5Hrbi2labzP0RMB8GA1UdIwQYMBaAFCUpyAPLOOdR42lqt5YtgjFF/NZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkNFNC8wOEVEMTc4OEJG QzAxMUU4QTZBODU1NEJDNEY5QUUwMi9KU25JQThzNDUxSGphV3EzbGkyQ01VWDgx bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTbklBOHM0NTFIamFXcTNsaTJDTVVYODFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZDRTQvMDhFRDE3ODhCRkMwMTFFOEE2QTg1NTRCQzRGOUFFMDIvQjNENEFFQjhC RkMwMTFFOEE3RjQyMDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnRHQDBAJn5tAwDQQCAAIwBwMFACQDbsAwDQYJKoZIhvcN AQELBQADggEBABsPU7wdWR3J9Bfod65ZSX0RYuD9m1heBD4e6WzNWvP3sSbK8deJ 2sf7Fpja8HzZrHT1SxPyaQaKKT8m3PvBtbo/dMwucpUxcMj/VLxH+eKcVuD4cRHe UtL7AWXrjyt5IUeqMNn5zkl7mGxzaRmrT9VC0nXx3AzTDrgTtONLd+4Xb54SdVO7 n2c95ZZrDdvaOGVVJAXNOD39sWckCLq8JjgzbwU0J8ccuiYx6s8kd2TgwgrSEtXP qNGmRvQnrRogvOb3EUPt1W8FZnTOdDA509kNOd2pLkW/LcPfP3nePd452m6OeJck HGahN210l3Zjxd273vHMUG0+RBWwMyBD9mg= -----END CERTIFICATE-----Generated at Mon May 20 19:20:11 2024 by rpki-client on console-fra.rpki-client.org