$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8C2FEEE0708811ED95A9DC75C4F9AE02.roa File: 8C2FEEE0708811ED95A9DC75C4F9AE02.roa (raw, json) Hash identifier: WszsRhmHN8MvwoWSP1GLjLxlHlQgLVNtDapzW8cpCCk= Subject key identifier: B5:36:F3:D6:53:55:54:69:4F:FB:32:8A:A7:A7:05:F0:10:88:E4:2D Certificate issuer: /CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Certificate serial: 0F25 Authority key identifier: 42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8C2FEEE0708811ED95A9DC75C4F9AE02.roa Signing time: Fri 26 Jan 2024 18:06:15 +0000 ROA not before: Fri 26 Jan 2024 18:06:15 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 24378 IP address blocks: 103.26.20.0/24 maxlen: 24 103.26.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 18:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3877 (0xf25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Validity Not Before: Jan 26 18:06:15 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b3f496-164c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:80:f8:4e:5e:7e:fc:16:fb:ad:d4:4f:d7:ed: b1:d3:c3:44:4b:6d:dd:c1:1c:aa:c0:45:d5:51:d5: 64:6f:ee:ee:3d:16:1e:f5:51:fc:46:93:c1:39:c1: b8:1f:01:5b:95:9d:4b:b3:20:72:5b:75:55:3b:56: 9f:5e:3f:88:96:30:9d:11:17:b6:2f:b4:8d:89:4a: 62:1c:e7:4f:03:41:1b:ac:82:d1:ba:15:9a:98:38: 86:33:0e:bd:df:12:fb:d8:fd:48:45:62:7b:4d:29: cd:05:68:75:26:f8:61:af:68:91:58:df:b5:f6:c2: 85:a1:9a:90:87:c5:11:8c:fc:80:53:7d:19:b5:e6: 05:9a:a2:ea:7b:af:85:7e:8b:62:b4:b7:fb:46:08: a3:04:0b:b5:2c:2b:a9:71:c1:3d:b2:b3:c0:be:97: f3:ea:c2:db:a2:8c:73:34:f8:b9:16:76:f3:f9:23: aa:8f:31:10:76:32:3c:e8:6e:07:7f:1a:cb:59:e0: 37:04:14:eb:2e:db:83:41:4f:1e:f4:fe:86:37:90: 30:2e:be:d7:01:e9:76:41:94:08:c0:38:7d:d0:a1: 4f:24:ad:7f:d6:f1:00:4e:79:aa:ff:cd:1a:01:b2: b1:5b:3c:5a:cb:e1:be:3f:1a:9a:fd:12:ba:bb:c0: 20:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:36:F3:D6:53:55:54:69:4F:FB:32:8A:A7:A7:05:F0:10:88:E4:2D X509v3 Authority Key Identifier: keyid:42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8C2FEEE0708811ED95A9DC75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.20.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:7d:49:1d:87:57:37:52:6e:16:77:c1:9f:84:72:8e:de:39: 3f:c3:af:93:24:27:d2:52:f2:95:d2:f3:ce:75:77:47:1c:88: 35:62:c1:13:91:99:28:d4:0a:9b:12:47:5f:71:88:42:9e:00: 00:2c:b6:b3:20:19:bd:88:38:f1:43:4e:7b:4c:de:37:c5:5e: 47:57:8b:0a:ad:9d:8c:ea:59:f5:d0:d2:32:40:a4:04:73:f4: 91:d8:bc:36:99:58:2e:15:42:6a:63:33:27:b2:63:ec:5e:b8: 6e:47:4f:a3:70:00:6d:cf:bb:f2:a9:8c:a5:61:01:4f:a4:43: 57:13:fc:fd:40:6e:86:05:ae:b9:ee:49:35:13:e0:da:b9:fd: 56:8e:fc:20:90:47:a2:17:d7:84:44:9f:41:9d:1a:c2:5d:b6: 9e:8e:df:94:37:52:53:d6:ce:ae:77:c0:9d:7c:cd:6a:71:e8: b8:4a:8c:45:81:48:a8:a4:ef:72:e5:ab:69:f9:09:18:f2:27: cb:0e:a7:58:8f:b6:fc:0d:ae:bd:7a:c8:b3:3c:8b:e6:77:5d: 1c:c0:9a:22:16:fc:64:45:5c:b9:4e:05:cc:6e:9d:d9:fb:15: a9:6b:c5:ce:c1:24:92:ac:5f:1b:ec:73:95:2b:22:12:77:78: d2:c0:c6:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxQkMxMTAvBgNVBAUTKDQyOUU5QkREQTI5NjYyMDAwM0NFQzVFRkFCQjgyM0Qz MDNGRTRGNzEwHhcNMjQwMTI2MTgwNjE1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIzZjQ5Ni0xNjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4D4Tl5+/Bb7rdRP1+2x08NES23dwRyqwEXVUdVkb+7uPRYe9VH8RpPBOcG4 HwFblZ1LsyByW3VVO1afXj+IljCdERe2L7SNiUpiHOdPA0EbrILRuhWamDiGMw69 3xL72P1IRWJ7TSnNBWh1Jvhhr2iRWN+19sKFoZqQh8URjPyAU30ZteYFmqLqe6+F fotitLf7RgijBAu1LCupccE9srPAvpfz6sLbooxzNPi5Fnbz+SOqjzEQdjI86G4H fxrLWeA3BBTrLtuDQU8e9P6GN5AwLr7XAel2QZQIwDh90KFPJK1/1vEATnmq/80a AbKxWzxay+G+Pxqa/RK6u8Ag/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLU289ZT VVRpT/syiqenBfAQiOQtMB8GA1UdIwQYMBaAFEKem92ilmIAA87F76u4I9MD/k9x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTFCQy84OTZDNkM0ODQ2 Q0UxMUU5OTI4NTBBM0NDNEY5QUUwMi9RcDZiM2FLV1lnQUR6c1h2cTdnajB3UC1U M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwNmIzYUtXWWdBRHpzWHZxN2dqMHdQLVQzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxQkMvODk2QzZDNDg0NkNFMTFFOTkyODUwQTNDQzRGOUFFMDIvOEMyRkVFRTA3 MDg4MTFFRDk1QTlEQzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnGhQwDQYJKoZIhvcNAQELBQADggEBACt9SR2HVzdSbhZ3 wZ+Eco7eOT/Dr5MkJ9JS8pXS8851d0cciDViwRORmSjUCpsSR19xiEKeAAAstrMg Gb2IOPFDTntM3jfFXkdXiwqtnYzqWfXQ0jJApARz9JHYvDaZWC4VQmpjMyeyY+xe uG5HT6NwAG3Pu/KpjKVhAU+kQ1cT/P1AboYFrrnuSTUT4Nq5/VaO/CCQR6IX14RE n0GdGsJdtp6O35Q3UlPWzq53wJ18zWpx6LhKjEWBSKik73Llq2n5CRjyJ8sOp1iP tvwNrr16yLM8i+Z3XRzAmiIW/GRFXLlOBcxundn7Falrxc7BJJKsXxvsc5UrIhJ3 eNLAxjI= -----END CERTIFICATE-----Generated at Mon May 20 19:20:11 2024 by rpki-client on console-fra.rpki-client.org