$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/FD22BBAE231F11EB99F53580C4F9AE02.roa File: FD22BBAE231F11EB99F53580C4F9AE02.roa (raw, json) Hash identifier: NtGKzgpKwKx/ngQO/wWSxSabwozU3yEw7+Ao7QOnulA= Subject key identifier: FF:9E:78:C1:0B:B9:A9:25:92:D5:6E:C8:12:85:C3:69:BE:6C:27:67 Certificate issuer: /CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Certificate serial: 0E6C Authority key identifier: 6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/FD22BBAE231F11EB99F53580C4F9AE02.roa Signing time: Fri 20 Oct 2023 18:06:24 +0000 ROA not before: Fri 20 Oct 2023 18:06:24 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 137969 IP address blocks: 103.99.40.0/23 maxlen: 24 103.132.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 18:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3692 (0xe6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Validity Not Before: Oct 20 18:06:24 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6532c19f-937a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:46:b5:79:46:5b:73:11:15:03:c3:f3:f0:68: 28:dd:ac:d1:4e:c7:c3:57:f6:2c:98:c6:83:84:6a: 8a:a6:f6:7b:e4:a7:0e:5b:0d:4e:24:c0:9c:08:6d: 0a:ba:d0:ab:54:a5:f8:55:cd:05:38:f7:ec:99:6e: 83:15:36:7c:0c:f7:0b:7c:41:f2:e3:04:11:2d:2a: 80:3e:1b:53:0c:50:0d:0d:15:78:42:c6:53:f4:0a: d0:04:ce:1c:88:58:2a:88:3c:7a:0f:aa:6a:23:4e: ee:5b:8e:1b:d0:60:f0:81:4c:ad:4e:18:5c:c8:fa: 49:75:8d:a6:ec:fc:4a:c7:a4:b8:9c:49:5f:44:21: 0f:1f:d4:a0:b8:b0:ff:e3:3f:99:60:25:d3:55:58: e9:26:6f:fb:31:fb:2f:7b:41:d5:66:44:5c:e8:c9: 0d:10:22:44:39:2d:fc:86:33:57:b2:31:8f:31:ce: 08:f7:3c:e7:e7:68:d2:eb:5b:7a:4b:f6:a5:a8:ff: 73:4e:1d:da:09:d5:ae:1b:a4:d5:9c:10:ac:a2:d4: 9a:3b:a8:fd:cd:cb:da:99:bf:dd:12:10:b6:09:7f: c3:8f:56:cd:ba:05:ea:f2:b1:b8:c2:a2:36:5e:9f: 38:b1:a9:84:d6:71:0a:c2:5a:0f:c6:dd:55:96:08: a4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:9E:78:C1:0B:B9:A9:25:92:D5:6E:C8:12:85:C3:69:BE:6C:27:67 X509v3 Authority Key Identifier: keyid:6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/FD22BBAE231F11EB99F53580C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.40.0/23 103.132.234.0/23 Signature Algorithm: sha256WithRSAEncryption 97:bf:28:12:e5:38:9b:18:0b:cd:38:39:ad:53:2c:e9:d3:ad: 4a:90:c8:c5:cd:83:36:31:e0:6e:24:13:84:84:6c:4d:9f:8d: 3c:20:ef:f2:07:1d:ee:04:43:29:f6:bd:c6:c1:78:33:e0:69: 7b:a7:64:8a:83:0b:63:b2:e3:94:5f:0b:42:72:34:ac:f0:4f: 75:4d:9c:d6:dc:af:5b:97:9a:a9:96:b9:f6:56:1d:0b:c7:b6: 6b:70:3d:ca:20:a3:b3:e3:e6:68:86:cb:99:65:71:22:ee:79: 15:92:8f:a1:2c:3f:09:3f:6a:36:89:35:fa:25:75:70:21:54: 74:48:29:30:44:15:d6:28:be:11:79:c5:70:18:c5:5a:18:bd: d7:5e:89:84:6f:f4:20:c5:de:95:8b:72:3a:ec:6a:2c:08:a1: 66:45:6d:90:c3:0a:be:70:64:52:e2:30:bb:81:13:98:9c:fc: 07:b8:34:60:3a:1c:6f:89:ee:6c:88:6c:f3:c7:94:49:8a:71: ab:e6:51:16:ff:f5:1a:44:67:53:b0:e9:86:9a:9e:f2:0c:72: 06:94:45:07:14:e9:17:5e:f7:53:e4:32:06:83:7d:d7:39:7e: e8:07:90:41:69:90:2c:19:d3:c8:1e:57:95:e2:12:a4:cc:13: e2:9a:56:14 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2QjQxMTAvBgNVBAUTKDZDQTZCMkFDMUREMTdCMDE0REI2Qzc2NzI3OUQwOEM2 NkU0RUZDMDUwHhcNMjMxMDIwMTgwNjI0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyYzE5Zi05MzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0a1eUZbcxEVA8Pz8Ggo3azRTsfDV/YsmMaDhGqKpvZ75KcOWw1OJMCcCG0K utCrVKX4Vc0FOPfsmW6DFTZ8DPcLfEHy4wQRLSqAPhtTDFANDRV4QsZT9ArQBM4c iFgqiDx6D6pqI07uW44b0GDwgUytThhcyPpJdY2m7PxKx6S4nElfRCEPH9SguLD/ 4z+ZYCXTVVjpJm/7Mfsve0HVZkRc6MkNECJEOS38hjNXsjGPMc4I9zzn52jS61t6 S/alqP9zTh3aCdWuG6TVnBCsotSaO6j9zcvamb/dEhC2CX/Dj1bNugXq8rG4wqI2 Xp84samE1nEKwloPxt1Vlgik1wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFP+eeMEL uaklktVuyBKFw2m+bCdnMB8GA1UdIwQYMBaAFGymsqwd0XsBTbbHZyedCMZuTvwF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZCNC83MjZGNTFDMjYz RjIxMUU5QkIyMERENDVDNEY5QUUwMi9iS2F5ckIzUmV3Rk50c2RuSjUwSXhtNU9f QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLYXlyQjNSZXdGTnRzZG5KNTBJeG01T19BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2QjQvNzI2RjUxQzI2M0YyMTFFOUJCMjBERDQ1QzRGOUFFMDIvRkQyMkJCQUUy MzFGMTFFQjk5RjUzNTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYygDBAFnhOowDQYJKoZIhvcNAQELBQADggEBAJe/KBLl OJsYC804Oa1TLOnTrUqQyMXNgzYx4G4kE4SEbE2fjTwg7/IHHe4EQyn2vcbBeDPg aXunZIqDC2Oy45RfC0JyNKzwT3VNnNbcr1uXmqmWufZWHQvHtmtwPcogo7Pj5miG y5llcSLueRWSj6EsPwk/ajaJNfoldXAhVHRIKTBEFdYovhF5xXAYxVoYvddeiYRv 9CDF3pWLcjrsaiwIoWZFbZDDCr5wZFLiMLuBE5ic/Ae4NGA6HG+J7myIbPPHlEmK cavmURb/9RpEZ1Ow6YaanvIMcgaURQcU6Rde91PkMgaDfdc5fugHkEFpkCwZ08ge V5XiEqTME+KaVhQ= -----END CERTIFICATE-----Generated at Thu Apr 18 20:10:45 2024 by rpki-client on console-fra.rpki-client.org