$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/60E695B6C52A11EE80D54071C4F9AE02.roa File: 60E695B6C52A11EE80D54071C4F9AE02.roa (raw, json) Hash identifier: xMhBBK2HlSTh8kZjh6hONzCuzrzym+9yLs2qqxEXI4U= Subject key identifier: 70:C5:1D:FC:3F:F8:14:32:F8:E8:2B:40:C0:99:CC:C9:80:3E:5F:0C Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 0FAB Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/60E695B6C52A11EE80D54071C4F9AE02.roa Signing time: Thu 29 Feb 2024 13:33:26 +0000 ROA not before: Thu 29 Feb 2024 13:33:26 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132429 IP address blocks: 103.20.232.0/23 maxlen: 23 103.75.20.0/24 maxlen: 24 103.75.21.0/24 maxlen: 24 202.61.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4011 (0xfab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Feb 29 13:33:26 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65e087a5-504f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ad:59:29:6f:f2:36:fd:99:d8:42:2e:c4:64: 3e:22:1b:3f:7f:c8:79:ac:d5:98:8e:6c:de:d1:11: d8:48:3c:f6:0f:93:02:67:b7:d0:d9:29:d1:61:cc: 5c:12:d4:0a:f2:96:56:c0:d3:ee:8a:e7:a8:c6:2f: d7:df:6e:e7:97:37:6b:bc:fd:de:b8:4e:c8:6b:15: c2:bc:b1:36:72:84:b4:d9:56:d7:35:00:ba:bb:d0: 95:4c:cd:dc:7e:d7:3f:60:51:74:80:94:3a:05:5b: 25:82:10:26:dd:20:64:94:58:e0:e6:a7:ac:8a:b8: 86:49:c9:a6:1e:13:93:ec:54:61:c7:a5:d5:e5:3b: 24:b9:7a:41:35:7a:dd:90:97:ee:3f:15:69:7c:cf: 7c:2e:7a:2a:92:51:d8:d5:64:f9:a3:d6:97:23:91: 6a:71:3e:54:b3:15:49:42:1c:d4:5e:af:36:c5:ff: 71:06:53:bc:8e:e5:38:dc:fc:6f:59:ad:8e:58:2b: 05:37:49:e4:13:9f:7d:3c:2c:71:97:89:01:6b:6d: a6:61:d9:00:70:d3:ae:4b:7d:8c:11:4f:be:8f:a2: 4f:0f:fd:34:ea:fb:15:76:dc:8a:d4:63:d3:e8:3c: 51:bc:a2:88:53:5a:05:45:eb:e5:07:c2:27:c9:ba: 41:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C5:1D:FC:3F:F8:14:32:F8:E8:2B:40:C0:99:CC:C9:80:3E:5F:0C X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/60E695B6C52A11EE80D54071C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.232.0/23 103.75.20.0/23 202.61.106.0/23 Signature Algorithm: sha256WithRSAEncryption a3:9f:f9:4b:2b:d5:bf:98:18:b3:69:01:7f:c6:8c:63:89:db: 85:02:87:75:3a:33:b0:d4:8f:eb:3d:67:29:a2:ad:21:53:26: 7b:d4:7e:6b:70:63:02:2f:36:40:41:73:0b:d4:3f:56:1a:85: 1f:65:23:13:f7:30:3d:a3:78:ea:08:e2:94:3c:f7:19:18:1d: 3f:5a:a0:6f:8d:63:93:0b:95:65:c0:f1:08:8a:50:b3:77:76: 68:71:6b:7b:c0:59:94:66:90:6d:eb:ce:b4:f1:58:fb:29:44: 1b:6b:1f:85:a8:82:33:a6:77:2b:49:6a:1f:58:02:14:5e:1b: 7c:26:9d:a9:f0:58:ea:02:9b:1b:0e:b2:7a:3e:37:d4:a9:0b: 92:cb:49:af:a8:13:a0:00:56:01:98:4f:06:dc:9c:d7:22:36: 5c:44:29:f1:49:c8:8c:db:89:84:4b:bd:51:8e:c7:99:c1:e5: 67:a6:69:a5:c5:17:27:72:e0:a6:08:76:48:3e:d0:75:05:f6: 73:af:b0:84:99:89:90:3a:5a:98:48:01:c4:1c:b5:84:cb:76: 6b:7f:51:ed:5e:e1:7d:29:b4:6b:6a:d9:a7:4a:33:6a:18:cb: 13:f1:36:2f:de:5b:dd:9c:c9:12:48:1b:59:04:01:fe:ee:36: 6b:4b:c3:48 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICD6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjQwMjI5MTMzMzI2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwODdhNS01MDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq61ZKW/yNv2Z2EIuxGQ+Ihs/f8h5rNWYjmze0RHYSDz2D5MCZ7fQ2SnRYcxc EtQK8pZWwNPuiueoxi/X327nlzdrvP3euE7IaxXCvLE2coS02VbXNQC6u9CVTM3c ftc/YFF0gJQ6BVslghAm3SBklFjg5qesiriGScmmHhOT7FRhx6XV5TskuXpBNXrd kJfuPxVpfM98LnoqklHY1WT5o9aXI5FqcT5UsxVJQhzUXq82xf9xBlO8juU43Pxv Wa2OWCsFN0nkE599PCxxl4kBa22mYdkAcNOuS32MEU++j6JPD/006vsVdtyK1GPT 6DxRvKKIU1oFRevlB8InybpBRQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHDFHfw/ +BQy+OgrQMCZzMmAPl8MMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUwOTYvMkZCQjQ0MEUzMzQ1MTFFOTk4QzU2NzNCQzRGOUFFMDIvNjBFNjk1QjZD NTJBMTFFRTgwRDU0MDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnFOgDBAFnSxQDBAHKPWowDQYJKoZIhvcNAQELBQADggEB AKOf+Usr1b+YGLNpAX/GjGOJ24UCh3U6M7DUj+s9ZymirSFTJnvUfmtwYwIvNkBB cwvUP1YahR9lIxP3MD2jeOoI4pQ89xkYHT9aoG+NY5MLlWXA8QiKULN3dmhxa3vA WZRmkG3rzrTxWPspRBtrH4WogjOmdytJah9YAhReG3wmnanwWOoCmxsOsno+N9Sp C5LLSa+oE6AAVgGYTwbcnNciNlxEKfFJyIzbiYRLvVGOx5nB5WemaaXFFydy4KYI dkg+0HUF9nOvsISZiZA6WphIAcQctYTLdmt/Ue1e4X0ptGtq2adKM2oYyxPxNi/e W92cyRJIG1kEAf7uNmtLw0g= -----END CERTIFICATE-----Generated at Tue May 28 19:51:24 2024 by rpki-client on console-fra.rpki-client.org