$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF119/94A29734092211EEB977066CC4F9AE02/F08468EC092811EEA1BB7E73C4F9AE02.roa File: F08468EC092811EEA1BB7E73C4F9AE02.roa (raw, json) Hash identifier: wNO0ge4HBlh7JSeaygTK0PtuHEUACzwWqcCrlvNgUy0= Subject key identifier: A7:A2:32:51:4F:84:93:C2:5D:3C:44:B8:89:30:99:A9:B4:0B:06:5E Certificate issuer: /CN=A91BF119/serialNumber=EB0AF47312DF14BF913ACCDDDF0CDC3D3C15EA60 Certificate serial: 02 Authority key identifier: EB:0A:F4:73:12:DF:14:BF:91:3A:CC:DD:DF:0C:DC:3D:3C:15:EA:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6wr0cxLfFL-ROszd3wzcPTwV6mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF119/94A29734092211EEB977066CC4F9AE02/F08468EC092811EEA1BB7E73C4F9AE02.roa Signing time: Mon 12 Jun 2023 13:56:33 +0000 ROA not before: Mon 12 Jun 2023 13:56:33 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 141681 IP address blocks: 103.212.162.0/24 maxlen: 24 103.212.163.0/24 maxlen: 24 2001:df2:87c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF119/94A29734092211EEB977066CC4F9AE02/6wr0cxLfFL-ROszd3wzcPTwV6mA.crl rsync://rpki.apnic.net/member_repository/A91BF119/94A29734092211EEB977066CC4F9AE02/6wr0cxLfFL-ROszd3wzcPTwV6mA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6wr0cxLfFL-ROszd3wzcPTwV6mA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF119/serialNumber=EB0AF47312DF14BF913ACCDDDF0CDC3D3C15EA60 Validity Not Before: Jun 12 13:56:33 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64872411-5624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b3:c5:22:a5:a8:34:bc:e6:2d:99:7b:1f:e1: 02:86:1b:01:dd:ca:35:d7:3a:6c:ba:a5:fd:de:b7: 63:e4:e0:c9:06:84:1d:f8:29:c3:64:7c:1e:a8:8a: 84:bf:50:8c:5a:8a:c4:ca:ed:60:fe:78:7a:b5:9f: 9f:2d:61:49:74:83:11:b0:8b:bf:a9:00:ac:b9:59: ec:0f:03:2b:9f:38:88:4d:25:b5:98:d7:f1:ea:33: 39:20:82:76:19:4c:75:4b:db:20:3c:93:b6:83:ab: 2d:32:41:dd:e6:2f:60:5d:8e:a2:00:d4:4b:b1:7c: e5:45:81:29:3d:13:e9:67:53:b7:93:cc:26:e5:a6: 85:4e:5b:99:19:7c:79:37:95:21:46:46:80:c0:30: 61:84:c7:4a:87:98:80:e0:89:0f:a1:b0:e8:1a:cc: 76:b3:9e:05:7b:4c:8e:b3:fe:b4:79:5d:91:92:70: 9b:20:fd:f6:a9:b0:42:43:51:f0:dc:be:8e:0a:f2: 23:79:9d:fc:29:2a:80:4c:e2:4a:9f:6d:bc:78:4a: 57:aa:5d:00:3e:fd:7f:a0:6c:8a:93:9a:04:aa:8b: d5:4a:88:68:77:0f:47:24:8b:ae:3b:eb:4f:fd:b6: 73:f1:af:44:0e:74:4b:6a:14:3b:3f:b1:58:aa:1f: 53:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A2:32:51:4F:84:93:C2:5D:3C:44:B8:89:30:99:A9:B4:0B:06:5E X509v3 Authority Key Identifier: keyid:EB:0A:F4:73:12:DF:14:BF:91:3A:CC:DD:DF:0C:DC:3D:3C:15:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF119/94A29734092211EEB977066CC4F9AE02/6wr0cxLfFL-ROszd3wzcPTwV6mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6wr0cxLfFL-ROszd3wzcPTwV6mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF119/94A29734092211EEB977066CC4F9AE02/F08468EC092811EEA1BB7E73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.162.0/23 IPv6: 2001:df2:87c0::/48 Signature Algorithm: sha256WithRSAEncryption d6:09:ed:a7:16:fb:e6:19:6b:7f:66:46:d2:f5:c6:88:08:50: c0:bd:77:3e:c2:45:dc:f0:8d:3f:0d:fe:c0:da:47:29:4c:c3: 69:81:24:46:53:fc:6c:98:3d:93:1a:d8:29:24:e6:98:c6:52: 43:13:fc:17:49:34:c2:d2:ea:39:50:8c:48:cc:c7:d3:8f:8f: 3e:ee:63:f3:f5:62:7e:72:27:7d:eb:ec:31:6d:fc:65:4d:74: a9:c0:86:ee:8b:b4:d7:2e:da:67:f2:74:29:24:a1:90:b2:d9: 4d:19:80:26:63:a1:ef:01:9e:91:47:b7:ff:cd:99:22:31:a9: 5b:23:92:79:86:56:7c:12:3e:4c:be:ae:5a:77:b8:53:2f:b7: f5:de:bf:5c:be:03:67:b4:b8:92:f6:c0:b8:95:14:45:21:bc: 09:33:61:91:c2:ab:8d:94:6f:e6:ad:6c:a7:0e:50:9b:2a:c9: 67:cc:7e:e3:ae:d8:0b:4f:38:e3:c7:5e:10:db:77:7e:a1:49: 53:44:a1:69:65:c2:db:e7:88:21:af:89:e7:81:e1:7b:55:0d: 43:16:e5:c1:48:5c:1c:ac:fc:3c:cc:8c:96:bd:b3:e1:87:b6: 17:10:84:9e:cc:9c:a1:66:0f:cd:39:78:6c:b6:78:b6:c9:39: 24:b8:de:e3 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjExOTExMC8GA1UEBRMoRUIwQUY0NzMxMkRGMTRCRjkxM0FDQ0REREYwQ0RDM0Qz QzE1RUE2MDAeFw0yMzA2MTIxMzU2MzNaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ODcyNDExLTU2MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCls8Uipag0vOYtmXsf4QKGGwHdyjXXOmy6pf3et2Pk4MkGhB34KcNkfB6oioS/ UIxaisTK7WD+eHq1n58tYUl0gxGwi7+pAKy5WewPAyufOIhNJbWY1/HqMzkggnYZ THVL2yA8k7aDqy0yQd3mL2BdjqIA1EuxfOVFgSk9E+lnU7eTzCblpoVOW5kZfHk3 lSFGRoDAMGGEx0qHmIDgiQ+hsOgazHazngV7TI6z/rR5XZGScJsg/fapsEJDUfDc vo4K8iN5nfwpKoBM4kqfbbx4SleqXQA+/X+gbIqTmgSqi9VKiGh3D0cki64760/9 tnPxr0QOdEtqFDs/sViqH1MHAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUp6IyUU+E k8JdPES4iTCZqbQLBl4wHwYDVR0jBBgwFoAU6wr0cxLfFL+ROszd3wzcPTwV6mAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGMTE5Lzk0QTI5NzM0MDky MjExRUVCOTc3MDY2Q0M0RjlBRTAyLzZ3cjBjeExmRkwtUk9zemQzd3pjUFR3VjZt QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNndyMGN4TGZGTC1ST3N6ZDN3emNQVHdWNm1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjExOS85NEEyOTczNDA5MjIxMUVFQjk3NzA2NkNDNEY5QUUwMi9GMDg0NjhFQzA5 MjgxMUVFQTFCQjdFNzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfUojAPBAIAAjAJAwcAIAEN8ofAMA0GCSqGSIb3DQEBCwUA A4IBAQDWCe2nFvvmGWt/ZkbS9caICFDAvXc+wkXc8I0/Df7A2kcpTMNpgSRGU/xs mD2TGtgpJOaYxlJDE/wXSTTC0uo5UIxIzMfTj48+7mPz9WJ+cid96+wxbfxlTXSp wIbui7TXLtpn8nQpJKGQstlNGYAmY6HvAZ6RR7f/zZkiMalbI5J5hlZ8Ej5Mvq5a d7hTL7f13r9cvgNntLiS9sC4lRRFIbwJM2GRwquNlG/mrWynDlCbKslnzH7jrtgL Tzjjx14Q23d+oUlTRKFpZcLb54ghr4nngeF7VQ1DFuXBSFwcrPw8zIyWvbPhh7YX EISezJyhZg/NOXhstni2yTkkuN7j -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:37 2024 by rpki-client on console-fra.rpki-client.org