$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/10967BAC26CF11EE8D69411CC4F9AE02.roa File: 10967BAC26CF11EE8D69411CC4F9AE02.roa (raw, json) Hash identifier: 5fXe3+xtzK57aAlfxHGCRzdCv1DLMeOaPqswweKkerU= Subject key identifier: 24:45:1E:0A:A0:B9:0A:02:83:9C:C8:CC:AD:55:42:46:1D:B6:70:04 Certificate issuer: /CN=A91C0C73/serialNumber=E39369BA9DD8809987B236B477AD78E15C75AB1C Certificate serial: C1 Authority key identifier: E3:93:69:BA:9D:D8:80:99:87:B2:36:B4:77:AD:78:E1:5C:75:AB:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/10967BAC26CF11EE8D69411CC4F9AE02.roa Signing time: Fri 21 Jul 2023 15:58:01 +0000 ROA not before: Fri 21 Jul 2023 15:58:01 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139041 IP address blocks: 103.138.226.0/24 maxlen: 24 103.138.227.0/24 maxlen: 24 2401:1c20::/33 maxlen: 33 2401:1c20:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.crl rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C73/serialNumber=E39369BA9DD8809987B236B477AD78E15C75AB1C Validity Not Before: Jul 21 15:58:01 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64baab09-d711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:72:aa:4c:e1:a0:84:60:04:a0:ca:52:fb:3d: 80:b6:49:7f:83:77:90:3d:7d:57:60:f1:1d:0f:ff: db:8a:11:06:c8:1c:1d:82:b7:34:6f:c4:79:7c:e5: 28:b5:64:4e:8b:18:bb:38:ac:2e:94:68:5e:ed:2d: 97:ca:bf:c0:6f:b1:29:99:86:d9:5b:eb:1a:c8:e1: 4c:da:18:a5:11:0f:ba:ec:2a:73:77:a6:00:b9:13: 42:c7:8b:e9:da:d5:c2:4c:6e:2d:ad:9d:cd:7c:2a: df:36:19:0c:7d:94:2a:fd:d7:12:d5:f5:c1:dc:d5: 20:97:10:3c:58:58:94:44:fd:77:34:73:d1:ee:81: 5f:1f:20:1c:be:fc:5c:ea:ad:e0:ad:cd:45:cf:01: 75:11:34:25:4a:f1:bd:f9:05:ce:ee:ae:1f:5b:fc: 0e:df:4d:75:00:db:a0:12:0e:e4:c9:2d:7d:51:f9: ab:46:83:fb:d3:22:aa:da:17:d6:ae:82:6c:f5:7e: 80:dc:29:88:aa:c6:e0:49:26:22:75:46:80:4e:02: 7d:8f:74:7f:0d:b8:ba:0e:9f:f1:9c:1d:10:58:3f: b9:d9:47:a7:05:d0:f2:d7:de:90:7f:18:7d:05:b4: 39:e5:5c:d5:2e:22:ac:54:ff:ed:61:3f:91:53:a5: 11:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:45:1E:0A:A0:B9:0A:02:83:9C:C8:CC:AD:55:42:46:1D:B6:70:04 X509v3 Authority Key Identifier: keyid:E3:93:69:BA:9D:D8:80:99:87:B2:36:B4:77:AD:78:E1:5C:75:AB:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/10967BAC26CF11EE8D69411CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.226.0/23 IPv6: 2401:1c20::/32 Signature Algorithm: sha256WithRSAEncryption 0d:e2:9a:50:27:7f:53:bb:6d:fc:26:0d:6f:25:35:46:47:19: a3:3a:17:54:e1:94:dd:94:f4:68:21:d7:ca:b1:6c:fc:7b:ea: c5:36:75:d5:59:0c:78:f8:c3:58:b2:c2:db:13:35:70:7f:ce: e4:66:49:1b:8c:5c:77:bc:1a:fb:f5:6a:6a:46:ef:9f:b5:64: f3:fe:ae:02:3c:10:a3:77:b6:77:77:43:8b:b9:b7:25:c0:c7: 33:2c:43:d6:08:86:1e:91:06:b3:57:78:0e:91:72:e9:03:50: da:53:11:21:42:08:50:f2:94:58:dc:19:c6:a6:63:d7:c8:89: 3f:4c:2f:4d:81:9d:df:4e:9d:18:a0:88:29:a3:d2:76:32:fc: 5e:3d:20:de:b6:e2:a9:d1:9b:9f:b0:c0:3a:10:83:6d:c4:67: 90:b6:62:33:7e:48:3c:07:37:56:70:fd:ef:7d:d5:e8:65:6d: 19:da:b4:2a:e0:12:ef:8c:88:ca:1d:84:20:f3:c8:3d:84:1b: b2:cf:ca:53:7a:bd:b0:c8:59:d0:db:56:5c:b2:08:86:0e:5f: 18:2b:08:4a:cc:20:4e:5b:14:b7:db:17:ac:7d:fa:65:8c:67: 9c:e6:ca:b1:55:26:7b:41:e1:57:6d:00:8f:75:a9:8b:64:14: 59:1c:b5:cc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDNzMxMTAvBgNVBAUTKEUzOTM2OUJBOUREODgwOTk4N0IyMzZCNDc3QUQ3OEUx NUM3NUFCMUMwHhcNMjMwNzIxMTU1ODAxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGJhYWIwOS1kNzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXKqTOGghGAEoMpS+z2Atkl/g3eQPX1XYPEdD//bihEGyBwdgrc0b8R5fOUo tWROixi7OKwulGhe7S2Xyr/Ab7EpmYbZW+sayOFM2hilEQ+67Cpzd6YAuRNCx4vp 2tXCTG4trZ3NfCrfNhkMfZQq/dcS1fXB3NUglxA8WFiURP13NHPR7oFfHyAcvvxc 6q3grc1FzwF1ETQlSvG9+QXO7q4fW/wO3011ANugEg7kyS19UfmrRoP70yKq2hfW roJs9X6A3CmIqsbgSSYidUaATgJ9j3R/Dbi6Dp/xnB0QWD+52UenBdDy196Qfxh9 BbQ55VzVLiKsVP/tYT+RU6URlwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCRFHgqg uQoCg5zIzK1VQkYdtnAEMB8GA1UdIwQYMBaAFOOTabqd2ICZh7I2tHeteOFcdasc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM3My8yMTVFNUQzQTM2 NUExMUVEQUQxMEJBN0FDNEY5QUUwMi80NU5wdXAzWWdKbUhzamEwZDYxNDRWeDFx eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1TnB1cDNZZ0ptSHNqYTBkNjE0NFZ4MXF4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDNzMvMjE1RTVEM0EzNjVBMTFFREFEMTBCQTdBQzRGOUFFMDIvMTA5NjdCQUMy NkNGMTFFRThENjk0MTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFniuIwDQQCAAIwBwMFACQBHCAwDQYJKoZIhvcNAQELBQAD ggEBAA3imlAnf1O7bfwmDW8lNUZHGaM6F1ThlN2U9Ggh18qxbPx76sU2ddVZDHj4 w1iywtsTNXB/zuRmSRuMXHe8Gvv1ampG75+1ZPP+rgI8EKN3tnd3Q4u5tyXAxzMs Q9YIhh6RBrNXeA6RcukDUNpTESFCCFDylFjcGcamY9fIiT9ML02Bnd9OnRigiCmj 0nYy/F49IN624qnRm5+wwDoQg23EZ5C2YjN+SDwHN1Zw/e991ehlbRnatCrgEu+M iModhCDzyD2EG7LPylN6vbDIWdDbVlyyCIYOXxgrCErMIE5bFLfbF6x9+mWMZ5zm yrFVJntB4VdtAI91qYtkFFkctcw= -----END CERTIFICATE-----Generated at Sat May 11 07:51:05 2024 by rpki-client on console-ams.rpki-client.org