$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/A1D678CACD1D11EEBBCDB72BC4F9AE02.roa File: A1D678CACD1D11EEBBCDB72BC4F9AE02.roa (raw, json) Hash identifier: 39qKEUd5XyJgwoZvUvVXQeX/PwJYIzocpUTv1QA//h8= Subject key identifier: 72:7E:65:89:E5:16:0B:35:02:86:3C:49:14:C3:46:F1:0F:F4:B0:EF Certificate issuer: /CN=A91BF8C3/serialNumber=6A4DBBA36D4C767D5BD72B6EE970A8000FC5495E Certificate serial: 06DD Authority key identifier: 6A:4D:BB:A3:6D:4C:76:7D:5B:D7:2B:6E:E9:70:A8:00:0F:C5:49:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak27o21Mdn1b1ytu6XCoAA_FSV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/A1D678CACD1D11EEBBCDB72BC4F9AE02.roa Signing time: Fri 16 Feb 2024 22:49:25 +0000 ROA not before: Fri 16 Feb 2024 22:49:25 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141226 IP address blocks: 103.5.108.0/22 maxlen: 24 103.156.192.0/23 maxlen: 24 163.47.188.0/22 maxlen: 24 202.36.209.0/24 maxlen: 24 2407:c9c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/ak27o21Mdn1b1ytu6XCoAA_FSV4.crl rsync://rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/ak27o21Mdn1b1ytu6XCoAA_FSV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak27o21Mdn1b1ytu6XCoAA_FSV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1757 (0x6dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8C3/serialNumber=6A4DBBA36D4C767D5BD72B6EE970A8000FC5495E Validity Not Before: Feb 16 22:49:25 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65cfe675-a96f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:44:d9:6b:c1:ce:02:fb:f2:21:f6:2a:b3:60: 78:c9:cd:9e:f5:13:0f:27:3a:6b:6e:e3:73:fc:42: c8:a2:44:0b:10:36:e7:75:f7:ed:ec:72:2b:6d:7d: 98:9e:df:48:fe:a3:51:3e:c1:44:b6:4e:2c:8f:2b: 4f:41:d5:0f:a1:1a:b5:da:21:f3:2f:f2:79:c7:09: 37:d5:3a:d3:93:07:42:36:5b:fc:b7:08:a7:f7:80: 4e:25:ff:81:d3:88:50:e3:7a:d0:48:e6:4a:64:9a: a5:a8:1c:ed:1a:54:fc:5d:fa:d4:ac:e3:69:78:b8: 94:52:6f:79:07:62:e2:26:72:60:b0:6b:a0:ba:3e: f8:19:5b:0b:45:9d:3d:c2:bc:84:ba:1e:4f:42:a3: e2:3f:96:5f:f8:1d:2c:81:8b:1b:c1:3f:8c:46:ac: 04:a7:14:56:15:cf:44:50:94:5a:6b:a4:82:3d:4b: 7a:a3:12:21:3a:ba:94:3a:8b:04:14:d0:4d:63:f9: 40:0d:fd:45:49:7a:6b:61:48:7a:fb:b7:c7:7f:d6: f3:20:fc:ac:57:f6:5b:ee:10:3c:12:f2:5c:13:0a: 94:9a:02:51:d6:00:15:8f:ae:4f:37:90:d1:26:02: 3c:c1:f4:4e:31:7a:fe:d3:c7:7f:fb:f0:2c:92:67: b9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:7E:65:89:E5:16:0B:35:02:86:3C:49:14:C3:46:F1:0F:F4:B0:EF X509v3 Authority Key Identifier: keyid:6A:4D:BB:A3:6D:4C:76:7D:5B:D7:2B:6E:E9:70:A8:00:0F:C5:49:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/ak27o21Mdn1b1ytu6XCoAA_FSV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak27o21Mdn1b1ytu6XCoAA_FSV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/A1D678CACD1D11EEBBCDB72BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.108.0/22 103.156.192.0/23 163.47.188.0/22 202.36.209.0/24 IPv6: 2407:c9c0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:e1:0e:ee:91:90:29:da:cd:0c:d8:11:d6:6d:3e:3c:61:79: ee:bf:29:f5:0c:22:57:c7:de:95:e3:36:69:78:ac:02:09:38: 44:f0:81:a3:67:65:e2:a3:ac:c6:97:08:99:a6:86:a5:aa:fe: 7e:4c:3c:e8:86:7a:97:2e:24:a9:38:47:24:b7:3a:41:7e:10: 04:2e:05:a8:43:8a:18:2b:f8:ac:d1:6b:8d:bb:14:6e:29:0b: 69:f7:c1:8a:86:5e:ef:63:cc:c0:8d:ec:28:73:a5:17:00:ed: f6:d6:d8:12:6e:ca:bd:ea:12:4a:0e:da:89:02:3b:85:7e:07: b6:38:93:54:f0:52:dd:09:51:61:88:5d:2e:2d:ae:dd:4c:e7: 40:1d:42:6e:7b:b0:5c:65:b2:85:7a:24:d7:58:b4:64:14:20: 92:52:47:ff:7e:d0:8e:e0:9f:90:77:7b:bf:83:0d:f5:e0:30: 48:16:c2:35:6d:35:7d:38:ea:06:18:82:b8:db:e9:c8:90:43: f4:62:e0:85:e7:b2:11:be:2a:5c:88:98:1f:61:ba:4d:ec:f4: b0:2a:19:c1:93:65:c9:c4:20:61:2f:d2:36:6e:47:cb:17:2c: 21:f6:27:2d:23:de:29:32:51:7e:3b:d3:cd:71:3d:b6:63:11: 37:50:d1:73 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICBt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4QzMxMTAvBgNVBAUTKDZBNERCQkEzNkQ0Qzc2N0Q1QkQ3MkI2RUU5NzBBODAw MEZDNTQ5NUUwHhcNMjQwMjE2MjI0OTI1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmZTY3NS1hOTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkTZa8HOAvvyIfYqs2B4yc2e9RMPJzprbuNz/ELIokQLEDbndfft7HIrbX2Y nt9I/qNRPsFEtk4sjytPQdUPoRq12iHzL/J5xwk31TrTkwdCNlv8twin94BOJf+B 04hQ43rQSOZKZJqlqBztGlT8XfrUrONpeLiUUm95B2LiJnJgsGuguj74GVsLRZ09 wryEuh5PQqPiP5Zf+B0sgYsbwT+MRqwEpxRWFc9EUJRaa6SCPUt6oxIhOrqUOosE FNBNY/lADf1FSXprYUh6+7fHf9bzIPysV/Zb7hA8EvJcEwqUmgJR1gAVj65PN5DR JgI8wfROMXr+08d/+/Askme5HwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHJ+ZYnl Fgs1AoY8SRTDRvEP9LDvMB8GA1UdIwQYMBaAFGpNu6NtTHZ9W9crbulwqAAPxUle MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhDMy9EMEUzM0ZBNDAy QzMxMUVCOEFEQzMyMzhDNEY5QUUwMi9hazI3bzIxTWRuMWIxeXR1NlhDb0FBX0ZT VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrMjdvMjFNZG4xYjF5dHU2WENvQUFfRlNWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY4QzMvRDBFMzNGQTQwMkMzMTFFQjhBREMzMjM4QzRGOUFFMDIvQTFENjc4Q0FD RDFEMTFFRUJCQ0RCNzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnBWwDBAFnnMADBAKjL7wDBADKJNEwDQQCAAIwBwMFACQH ycAwDQYJKoZIhvcNAQELBQADggEBAG3hDu6RkCnazQzYEdZtPjxhee6/KfUMIlfH 3pXjNml4rAIJOETwgaNnZeKjrMaXCJmmhqWq/n5MPOiGepcuJKk4RyS3OkF+EAQu BahDihgr+KzRa427FG4pC2n3wYqGXu9jzMCN7ChzpRcA7fbW2BJuyr3qEkoO2okC O4V+B7Y4k1TwUt0JUWGIXS4trt1M50AdQm57sFxlsoV6JNdYtGQUIJJSR/9+0I7g n5B3e7+DDfXgMEgWwjVtNX046gYYgrjb6ciQQ/Ri4IXnshG+KlyImB9huk3s9LAq GcGTZcnEIGEv0jZuR8sXLCH2Jy0j3ikyUX47081xPbZjETdQ0XM= -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org