$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/FD987A54CC8511EC8D238672C4F9AE02.roa File: FD987A54CC8511EC8D238672C4F9AE02.roa (raw, json) Hash identifier: AEpVxnY0R43f2daSwocrVvAC1ESwULSrijAgzj4RpB8= Subject key identifier: 78:64:C5:37:67:C5:77:87:88:6F:07:D2:28:85:FC:FF:01:B6:79:A1 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 0520 Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/FD987A54CC8511EC8D238672C4F9AE02.roa Signing time: Thu 23 Nov 2023 00:31:48 +0000 ROA not before: Thu 23 Nov 2023 00:31:48 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 136933 IP address blocks: 103.144.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 00:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: Nov 23 00:31:48 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655e9d74-dd5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:af:da:a3:13:0c:d5:40:2c:0f:0a:f6:75:7a: 1d:aa:49:f5:99:a7:9a:0d:8e:3b:be:cd:bf:c9:6f: e0:7f:1a:74:18:f1:83:40:e0:d2:15:ea:c5:9e:3c: f1:e2:ed:6f:7c:19:4c:f6:d7:26:d5:b0:c0:d3:31: f6:08:fd:db:63:95:ca:68:1f:ad:66:e0:44:ce:8e: 0e:c4:52:17:2c:8a:42:a6:c3:ff:75:ee:f4:0e:4e: cb:49:6e:99:ea:0a:fa:51:2f:ed:a5:5b:f2:5b:0f: 03:d3:2a:81:ab:48:42:0a:ec:4b:50:fd:12:ec:4d: 2f:a1:76:a5:2e:2e:11:89:fd:65:62:7a:f6:87:d5: de:d4:1f:9e:fb:a0:9a:f2:10:4d:06:63:52:b3:bd: 1f:4f:5c:0c:af:56:58:09:6b:50:e4:a5:83:d0:8c: 65:07:e3:6e:74:d4:00:b6:02:82:ce:68:fe:65:bf: a7:8c:05:0b:f7:f2:b7:c9:06:5d:54:64:12:38:f9: a7:5d:ed:00:b6:25:fe:dd:da:46:12:4a:ac:0a:10: ea:f3:d3:25:f4:9d:4a:9e:29:f1:87:70:30:5d:c9: e7:0f:34:0f:b1:84:77:7d:b3:f1:1b:e6:01:c0:7d: 42:d6:ca:e0:b9:91:52:26:1b:8b:39:54:b7:ef:b2: 2c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:64:C5:37:67:C5:77:87:88:6F:07:D2:28:85:FC:FF:01:B6:79:A1 X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/FD987A54CC8511EC8D238672C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.197.0/24 Signature Algorithm: sha256WithRSAEncryption 77:41:0a:f8:a9:ea:a8:3c:95:56:cd:fa:23:cd:e0:bd:40:4b: 32:54:e2:ea:3c:41:a5:af:aa:c1:60:fd:8a:6d:e2:7c:62:f3: 24:04:f4:00:0e:2f:e1:3a:0d:04:55:97:95:a2:c9:08:7e:99: ff:da:e0:19:dd:81:ce:ae:96:e8:63:51:b1:ff:82:b8:90:f6: 18:4e:65:b9:bf:95:7d:46:1d:ad:50:25:7e:40:e8:d8:0b:0e: 23:2c:ed:ac:2f:c2:c5:f8:a9:c7:61:79:c2:a8:af:ce:b9:56: 6b:1c:64:84:00:eb:15:55:e5:5c:8d:3d:60:2a:57:6a:fa:af: 6f:c3:17:b2:d4:f0:61:65:da:98:02:90:27:fd:8a:49:c9:54: 17:61:f0:35:04:57:14:55:c2:70:e7:9e:87:bf:5d:e4:05:00: 78:e9:f0:5c:7d:ce:fb:51:44:7b:eb:82:b8:d7:cd:d1:50:8d: 8a:c2:d7:f4:18:10:7f:c0:4b:b6:38:c3:4d:33:9d:27:67:5e: 4b:02:bf:bb:c6:fc:b4:56:4c:27:32:d1:fd:d1:c8:47:14:ac: 4b:3f:d7:5d:59:c9:38:f9:54:b5:58:a5:e3:7d:10:32:c4:20: 07:01:12:b2:98:78:5a:43:fd:87:dd:88:0b:e1:23:3d:06:47: fe:5a:f6:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjMxMTIzMDAzMTQ4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVlOWQ3NC1kZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq/aoxMM1UAsDwr2dXodqkn1maeaDY47vs2/yW/gfxp0GPGDQODSFerFnjzx 4u1vfBlM9tcm1bDA0zH2CP3bY5XKaB+tZuBEzo4OxFIXLIpCpsP/de70Dk7LSW6Z 6gr6US/tpVvyWw8D0yqBq0hCCuxLUP0S7E0voXalLi4Rif1lYnr2h9Xe1B+e+6Ca 8hBNBmNSs70fT1wMr1ZYCWtQ5KWD0IxlB+NudNQAtgKCzmj+Zb+njAUL9/K3yQZd VGQSOPmnXe0AtiX+3dpGEkqsChDq89Ml9J1Kninxh3AwXcnnDzQPsYR3fbPxG+YB wH1C1srguZFSJhuLOVS377Is+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHhkxTdn xXeHiG8H0iiF/P8BtnmhMB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2NEQvQjJFRjNFMzQ5NUQ2MTFFQjk4MjE1QzE4QzRGOUFFMDIvRkQ5ODdBNTRD Qzg1MTFFQzhEMjM4NjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkMUwDQYJKoZIhvcNAQELBQADggEBAHdBCvip6qg8lVbN +iPN4L1ASzJU4uo8QaWvqsFg/Ypt4nxi8yQE9AAOL+E6DQRVl5WiyQh+mf/a4Bnd gc6uluhjUbH/griQ9hhOZbm/lX1GHa1QJX5A6NgLDiMs7awvwsX4qcdhecKor865 VmscZIQA6xVV5VyNPWAqV2r6r2/DF7LU8GFl2pgCkCf9iknJVBdh8DUEVxRVwnDn noe/XeQFAHjp8Fx9zvtRRHvrgrjXzdFQjYrC1/QYEH/AS7Y4w00znSdnXksCv7vG /LRWTCcy0f3RyEcUrEs/111ZyTj5VLVYpeN9EDLEIAcBErKYeFpD/YfdiAvhIz0G R/5a9us= -----END CERTIFICATE-----Generated at Fri Apr 19 01:16:43 2024 by rpki-client on console-fra.rpki-client.org