$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/FAA525207A4411EB804B7430C4F9AE02.roa File: FAA525207A4411EB804B7430C4F9AE02.roa (raw, json) Hash identifier: 0lE8Ow3LFnTXkIztshTNWS33aCOmk4VgzoWs3uDur+E= Subject key identifier: 0F:D9:3A:65:F4:3B:C3:3C:E9:9D:DC:96:BC:A0:99:67:D7:B9:2A:FC Certificate issuer: /CN=A91BB94D/serialNumber=747C86C3CC14A77973805315408CDCA10A2147B2 Certificate serial: 062B Authority key identifier: 74:7C:86:C3:CC:14:A7:79:73:80:53:15:40:8C:DC:A1:0A:21:47:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHyGw8wUp3lzgFMVQIzcoQohR7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/FAA525207A4411EB804B7430C4F9AE02.roa Signing time: Wed 20 Sep 2023 22:40:42 +0000 ROA not before: Wed 20 Sep 2023 22:40:42 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132825 IP address blocks: 103.153.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/dHyGw8wUp3lzgFMVQIzcoQohR7I.crl rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/dHyGw8wUp3lzgFMVQIzcoQohR7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHyGw8wUp3lzgFMVQIzcoQohR7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1579 (0x62b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB94D/serialNumber=747C86C3CC14A77973805315408CDCA10A2147B2 Validity Not Before: Sep 20 22:40:42 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=650b74ea-f315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e8:af:6d:0d:3f:10:f8:73:90:58:db:3a:27: b0:51:22:33:ce:90:69:87:5e:37:5c:3d:03:e4:21: 98:65:da:ef:9b:69:e4:f9:6c:cc:af:16:7c:fe:85: 15:72:c4:c2:5f:6f:f5:94:ce:f8:94:c2:49:9d:db: cc:6f:bd:d2:28:50:da:5b:cd:13:5d:1f:53:53:59: a5:61:78:65:1b:e2:56:2a:aa:8c:81:92:9c:ec:7e: b3:c2:e5:8b:e7:ec:bf:41:cb:86:a3:99:1f:19:d7: 9f:6b:f8:cc:81:25:ec:bf:81:79:e8:3e:c5:15:c7: ee:25:9c:00:23:ad:db:93:ff:e8:2d:3c:cf:78:ed: 3b:6b:14:94:d5:d2:29:f8:1e:34:ef:61:6f:b4:fe: a8:c5:67:55:e1:69:58:86:5c:e2:66:45:d3:ce:9d: 4b:20:d2:af:d7:e7:6f:b0:4d:75:e0:cd:7d:e7:ab: 42:0a:92:c3:9e:4f:e7:8e:31:8b:c1:43:0d:cb:da: a5:f3:3c:be:de:95:8f:1f:4c:58:05:55:7d:a7:ba: ea:87:b9:45:25:fe:87:58:6b:72:ed:84:22:4b:62: 5b:09:4e:f1:a4:68:3d:16:ce:c2:de:6a:3b:42:a2: fc:5a:f9:24:73:4f:68:d9:0d:72:87:7e:ea:aa:72: bd:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D9:3A:65:F4:3B:C3:3C:E9:9D:DC:96:BC:A0:99:67:D7:B9:2A:FC X509v3 Authority Key Identifier: keyid:74:7C:86:C3:CC:14:A7:79:73:80:53:15:40:8C:DC:A1:0A:21:47:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/dHyGw8wUp3lzgFMVQIzcoQohR7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHyGw8wUp3lzgFMVQIzcoQohR7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/FAA525207A4411EB804B7430C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.100.0/23 Signature Algorithm: sha256WithRSAEncryption 09:65:10:bf:44:4d:e1:af:8b:32:c6:7d:d9:85:35:61:91:3e: e7:1b:67:d1:5c:b1:47:57:95:5a:55:78:a0:d0:9c:47:a7:0f: 1a:ef:ab:e3:8b:27:c3:77:34:6a:4c:b3:cf:e9:1c:a8:b3:43: 88:f3:8a:35:b0:81:eb:ae:b9:a4:ba:c5:6c:46:18:dd:05:27: d4:13:cb:96:c7:19:3d:e7:19:8b:de:a7:a0:b7:89:a6:e5:c6: 8d:e1:df:fa:16:dc:d7:64:e8:6a:ac:a9:3a:07:14:cc:9c:a3: 6d:02:2c:64:4c:55:5c:a6:85:81:0a:5c:ed:d4:f0:16:ec:4e: 52:be:9b:c5:29:b2:9f:50:bd:c8:e9:9b:25:48:10:24:5e:55: 69:d1:47:b5:7d:2e:2e:2c:41:76:15:34:38:7f:31:d5:c2:0c: be:47:7c:58:e2:0b:2f:79:bf:18:68:90:a9:00:56:bb:cb:50: b7:c4:03:c1:9e:14:d5:af:f6:af:47:75:c5:8e:a8:08:bb:e4: 38:d2:cc:3f:fc:4a:ba:c3:3d:0f:bd:4b:ce:ac:4a:b1:85:50: 9a:16:d7:44:b7:ce:87:4f:da:3d:57:f4:0e:07:f1:99:8e:2b: b7:70:4e:dc:3d:fe:d8:f5:2c:1e:5f:48:21:fc:85:f4:ac:ba: 3b:ad:01:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5NEQxMTAvBgNVBAUTKDc0N0M4NkMzQ0MxNEE3Nzk3MzgwNTMxNTQwOENEQ0Ex MEEyMTQ3QjIwHhcNMjMwOTIwMjI0MDQyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBiNzRlYS1mMzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOivbQ0/EPhzkFjbOiewUSIzzpBph143XD0D5CGYZdrvm2nk+WzMrxZ8/oUV csTCX2/1lM74lMJJndvMb73SKFDaW80TXR9TU1mlYXhlG+JWKqqMgZKc7H6zwuWL 5+y/QcuGo5kfGdefa/jMgSXsv4F56D7FFcfuJZwAI63bk//oLTzPeO07axSU1dIp +B4072FvtP6oxWdV4WlYhlziZkXTzp1LINKv1+dvsE114M1956tCCpLDnk/njjGL wUMNy9ql8zy+3pWPH0xYBVV9p7rqh7lFJf6HWGty7YQiS2JbCU7xpGg9Fs7C3mo7 QqL8Wvkkc09o2Q1yh37qqnK90wIDAQABo4IClTCCApEwHQYDVR0OBBYEFA/ZOmX0 O8M86Z3clrygmWfXuSr8MB8GA1UdIwQYMBaAFHR8hsPMFKd5c4BTFUCM3KEKIUey MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjk0RC8yQzcxNjJDQzIz MjgxMUVCOUZGNkU5MUFDNEY5QUUwMi9kSHlHdzh3VXAzbHpnRk1WUUl6Y29Rb2hS N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RIeUd3OHdVcDNsemdGTVZRSXpjb1FvaFI3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI5NEQvMkM3MTYyQ0MyMzI4MTFFQjlGRjZFOTFBQzRGOUFFMDIvRkFBNTI1MjA3 QTQ0MTFFQjgwNEI3NDMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmWQwDQYJKoZIhvcNAQELBQADggEBAAllEL9ETeGvizLG fdmFNWGRPucbZ9FcsUdXlVpVeKDQnEenDxrvq+OLJ8N3NGpMs8/pHKizQ4jzijWw geuuuaS6xWxGGN0FJ9QTy5bHGT3nGYvep6C3iablxo3h3/oW3Ndk6GqsqToHFMyc o20CLGRMVVymhYEKXO3U8BbsTlK+m8Upsp9QvcjpmyVIECReVWnRR7V9Li4sQXYV NDh/MdXCDL5HfFjiCy95vxhokKkAVrvLULfEA8GeFNWv9q9HdcWOqAi75DjSzD/8 SrrDPQ+9S86sSrGFUJoW10S3zodP2j1X9A4H8ZmOK7dwTtw9/tj1LB5fSCH8hfSs ujutARY= -----END CERTIFICATE-----Generated at Fri May 3 00:28:40 2024 by rpki-client on console-fra.rpki-client.org