$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa File: FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa (raw, json) Hash identifier: LSjm586k7DBDC1R8uP5i0GQXXdKbe3FMrdZT7psWwH4= Subject key identifier: 22:E0:DD:C9:7A:11:57:C7:52:EB:0B:AD:D5:3C:80:10:54:4E:0D:FE Certificate issuer: /CN=A91BEBB1/serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Certificate serial: 0110 Authority key identifier: EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa Signing time: Thu 28 Mar 2024 18:00:01 +0000 ROA not before: Thu 28 Mar 2024 18:00:01 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135019 IP address blocks: 103.23.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEBB1/serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Validity Not Before: Mar 28 18:00:01 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6605b020-4834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:66:c9:9e:71:73:da:2a:90:0c:b0:5f:fc:f0: df:55:32:dc:e0:65:39:21:c9:a9:77:df:1c:44:7a: 1b:99:e6:bd:65:1c:64:8e:c8:fe:30:12:a1:ea:b7: 59:b8:09:f9:f0:2a:57:c6:60:2a:e0:36:55:d4:7b: dc:74:45:ae:0b:7f:df:12:56:83:24:b3:4e:f2:f1: 46:f3:77:f1:69:d3:6e:84:12:4d:07:f2:b4:66:44: 31:94:02:9e:6d:27:4d:50:6f:99:f4:ac:c7:09:59: 28:01:d4:7c:6c:87:26:95:75:d5:12:99:59:d9:14: c6:21:21:dc:48:8d:ef:09:c8:95:9d:1f:aa:de:c3: 97:c1:4f:b4:a4:e5:51:c4:48:e5:c9:41:eb:64:a8: 7c:bf:0e:db:c8:78:38:a8:13:64:39:24:24:1e:a1: e4:7e:a2:78:f9:77:3d:f0:59:fa:72:d9:4e:e0:9a: 7a:c2:e5:5e:9e:fa:e9:a4:54:ab:78:65:f1:a4:1b: 9b:bf:28:e1:76:73:56:eb:f6:d7:ce:34:4f:e6:07: 42:76:c0:8f:f9:00:b6:b7:67:a5:16:91:4a:31:f5: e5:96:ce:06:46:f6:84:28:e5:87:3c:8b:00:16:cd: ef:9c:b1:6b:5e:11:47:fc:e6:ec:90:ae:af:a7:4c: 38:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E0:DD:C9:7A:11:57:C7:52:EB:0B:AD:D5:3C:80:10:54:4E:0D:FE X509v3 Authority Key Identifier: keyid:EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.255.0/24 Signature Algorithm: sha256WithRSAEncryption 10:6d:b6:23:15:8c:b9:3d:c7:4e:dc:ec:fb:a0:17:ca:5a:df: f1:8b:9c:76:c0:d2:a8:69:85:f1:fd:f5:30:c4:59:e4:83:14: 48:08:2d:da:4a:ab:3d:c0:50:70:d8:10:e3:51:9f:5d:ce:cd: da:89:9d:37:04:9c:49:d7:2a:65:a0:cf:0b:7e:c9:9b:d4:6c: 63:03:6c:57:d1:ef:d3:ff:29:87:f8:25:47:15:f2:e8:c2:68: bf:31:f9:dc:ce:74:78:97:ef:73:c7:d0:97:94:ea:54:a6:bd: c7:c2:e4:21:39:0b:de:59:7a:03:cb:af:f9:bb:82:37:f2:51: 8c:17:bf:1f:c7:e7:31:bb:45:b6:44:33:27:30:7b:02:83:25: 55:79:4f:15:82:78:71:33:ad:a0:94:52:30:ba:d6:49:a3:59: 38:58:16:05:13:bd:2d:73:35:da:e9:94:af:a9:19:a0:09:52: 2d:63:cb:f4:98:46:ec:93:fa:a5:e3:07:95:35:60:0f:9c:c5: 35:7f:cd:ca:74:17:fe:a7:fd:29:db:70:e4:aa:8a:f0:f2:af: ea:e1:9e:7e:cd:93:b6:eb:01:b5:de:24:ae:c4:ff:2f:af:6c: 4e:4c:2b:ed:84:79:88:97:19:55:9d:28:58:69:de:61:2f:d7: 99:c3:33:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCQjExMTAvBgNVBAUTKEVBNDE5QTc5NjI5OTYyNUEwNzRBNjVCN0NBQ0VGRjE4 QjgwNjZDOEIwHhcNMjQwMzI4MTgwMDAxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1YjAyMC00ODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWbJnnFz2iqQDLBf/PDfVTLc4GU5Icmpd98cRHobmea9ZRxkjsj+MBKh6rdZ uAn58CpXxmAq4DZV1HvcdEWuC3/fElaDJLNO8vFG83fxadNuhBJNB/K0ZkQxlAKe bSdNUG+Z9KzHCVkoAdR8bIcmlXXVEplZ2RTGISHcSI3vCciVnR+q3sOXwU+0pOVR xEjlyUHrZKh8vw7byHg4qBNkOSQkHqHkfqJ4+Xc98Fn6ctlO4Jp6wuVenvrppFSr eGXxpBubvyjhdnNW6/bXzjRP5gdCdsCP+QC2t2elFpFKMfXlls4GRvaEKOWHPIsA Fs3vnLFrXhFH/ObskK6vp0w4aQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCLg3cl6 EVfHUusLrdU8gBBUTg3+MB8GA1UdIwQYMBaAFOpBmnlimWJaB0plt8rO/xi4BmyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUJCMS82N0JFQTQwNjUz OUMxMUVEQUUwMDRFMTdDNEY5QUUwMi82a0dhZVdLWllsb0hTbVczeXM3X0dMZ0di SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZrR2FlV0taWWxvSFNtVzN5czdfR0xnR2JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVCQjEvNjdCRUE0MDY1MzlDMTFFREFFMDA0RTE3QzRGOUFFMDIvRkVERTYxQjZF RDJDMTFFRUJGOEYzRTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnF/8wDQYJKoZIhvcNAQELBQADggEBABBttiMVjLk9x07c 7PugF8pa3/GLnHbA0qhphfH99TDEWeSDFEgILdpKqz3AUHDYEONRn13OzdqJnTcE nEnXKmWgzwt+yZvUbGMDbFfR79P/KYf4JUcV8ujCaL8x+dzOdHiX73PH0JeU6lSm vcfC5CE5C95ZegPLr/m7gjfyUYwXvx/H5zG7RbZEMycwewKDJVV5TxWCeHEzraCU UjC61kmjWThYFgUTvS1zNdrplK+pGaAJUi1jy/SYRuyT+qXjB5U1YA+cxTV/zcp0 F/6n/SnbcOSqivDyr+rhnn7Nk7brAbXeJK7E/y+vbE5MK+2EeYiXGVWdKFhp3mEv 15nDM8c= -----END CERTIFICATE-----Generated at Fri May 17 06:18:10 2024 by rpki-client on console-fra.rpki-client.org