$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C25659465C9D11EC99F7D10BC4F9AE02.roa File: C25659465C9D11EC99F7D10BC4F9AE02.roa (raw, json) Hash identifier: FWtbir5dWtmh58OaBJl6qlND27r3ZorFzNNzcDwvLxw= Subject key identifier: 58:23:BC:E0:96:2E:48:38:2D:A0:0F:14:53:F0:5F:65:8A:C8:C6:48 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0406 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C25659465C9D11EC99F7D10BC4F9AE02.roa Signing time: Wed 20 Sep 2023 05:35:53 +0000 ROA not before: Wed 20 Sep 2023 05:35:53 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 136969 IP address blocks: 103.167.162.0/24 maxlen: 24 103.167.163.0/24 maxlen: 24 2001:df6:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 01:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1030 (0x406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Sep 20 05:35:53 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=650a84b9-f5da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ec:77:50:f9:a0:b3:eb:e9:41:48:b5:12:8c: d1:75:53:a3:7f:61:0a:4d:e1:da:dc:32:65:46:c2: 04:68:0f:a0:39:1d:75:70:86:60:23:20:8d:db:c3: 1c:07:af:49:8b:ad:a8:3e:6a:2c:97:70:37:c0:da: cf:ea:cc:94:15:91:fc:e7:0e:01:40:8e:68:c4:84: 3c:23:f0:3f:b3:75:8d:46:ee:70:76:f9:9a:9d:6b: ef:5b:9a:b7:ad:2b:4e:30:d0:15:bb:ba:7d:f4:54: 9d:6d:1c:fa:56:39:6f:f7:08:89:22:a0:72:ca:69: bc:74:f5:a5:c9:45:37:ae:df:07:b4:b1:fd:63:8d: 6c:64:95:8f:dc:d0:dd:24:e6:8c:5c:f3:0e:49:e1: 04:52:f7:b3:f1:94:61:83:6a:53:b5:99:38:fb:22: 11:44:15:2b:5f:3e:d1:ee:cd:d9:3c:3b:00:97:d4: fb:6c:f2:20:03:0b:cb:4d:b5:7f:41:a3:fa:49:87: 96:51:3c:1c:81:aa:65:aa:98:0c:e2:b2:f9:c0:d7: a3:4f:b8:92:64:e0:2c:f0:d3:a5:30:b4:62:61:36: 0c:6e:7d:4c:86:5d:4b:4f:eb:54:31:36:51:04:06: 97:43:e9:c1:d5:5e:33:68:83:dc:2e:04:ea:3b:69: 74:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:23:BC:E0:96:2E:48:38:2D:A0:0F:14:53:F0:5F:65:8A:C8:C6:48 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C25659465C9D11EC99F7D10BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.162.0/23 IPv6: 2001:df6:b980::/48 Signature Algorithm: sha256WithRSAEncryption 8f:1f:80:a0:c7:dd:fe:87:2b:3c:55:4a:b5:50:2a:24:6b:3e: c0:60:30:f6:c6:96:f1:db:3b:6c:1b:19:04:ea:9a:81:61:89: df:59:68:e2:34:0e:0c:a6:5f:82:4b:04:87:65:11:01:3c:e6: f1:6e:83:03:53:19:3c:49:0c:30:ce:53:4f:e3:9a:37:b5:6b: 1c:1d:2a:27:2c:37:d8:95:9f:62:cf:df:f0:fb:b4:4f:fb:c3: 00:d0:1d:9b:17:96:9e:ef:9b:53:69:df:33:a0:4c:45:01:68: 40:e7:9f:28:a9:b6:ed:e3:2b:1a:7a:8f:26:dd:1b:d9:d0:f1: 50:8e:1d:c5:bc:15:1e:03:1c:41:c5:a8:a4:79:dd:c9:2e:7c: cf:44:84:6e:cb:21:8b:52:84:36:f4:44:6f:c3:13:b1:59:39: 32:c9:3a:1a:66:c8:0d:d3:8d:71:80:f7:9c:65:1a:6b:9f:bd: 7c:ef:2e:cd:74:77:2e:6e:bb:56:e3:fe:08:90:5c:6c:e5:11: d4:a9:9b:8a:55:a7:a2:5a:4e:5b:85:17:53:d2:2d:2a:42:5c: c0:6c:a5:4c:8c:c0:21:a1:02:1f:90:93:02:80:9b:e7:a4:53: 3c:4a:25:1e:f8:f5:c7:0a:84:76:33:ce:36:73:eb:8f:68:38: 75:93:e5:5e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjMwOTIwMDUzNTUzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBhODRiOS1mNWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ox3UPmgs+vpQUi1EozRdVOjf2EKTeHa3DJlRsIEaA+gOR11cIZgIyCN28Mc B69Ji62oPmosl3A3wNrP6syUFZH85w4BQI5oxIQ8I/A/s3WNRu5wdvmanWvvW5q3 rStOMNAVu7p99FSdbRz6Vjlv9wiJIqByymm8dPWlyUU3rt8HtLH9Y41sZJWP3NDd JOaMXPMOSeEEUvez8ZRhg2pTtZk4+yIRRBUrXz7R7s3ZPDsAl9T7bPIgAwvLTbV/ QaP6SYeWUTwcgaplqpgM4rL5wNejT7iSZOAs8NOlMLRiYTYMbn1Mhl1LT+tUMTZR BAaXQ+nB1V4zaIPcLgTqO2l0BQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFgjvOCW Lkg4LaAPFFPwX2WKyMZIMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE3QTkvNUY4OUY2RUNGQjMxMTFFQjhGQkZBNTU5QzRGOUFFMDIvQzI1NjU5NDY1 QzlEMTFFQzk5RjdEMTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnp6IwDwQCAAIwCQMHACABDfa5gDANBgkqhkiG9w0BAQsF AAOCAQEAjx+AoMfd/ocrPFVKtVAqJGs+wGAw9saW8ds7bBsZBOqagWGJ31lo4jQO DKZfgksEh2URATzm8W6DA1MZPEkMMM5TT+OaN7VrHB0qJyw32JWfYs/f8Pu0T/vD ANAdmxeWnu+bU2nfM6BMRQFoQOefKKm27eMrGnqPJt0b2dDxUI4dxbwVHgMcQcWo pHndyS58z0SEbsshi1KENvREb8MTsVk5Msk6GmbIDdONcYD3nGUaa5+9fO8uzXR3 Lm67VuP+CJBcbOUR1KmbilWnolpOW4UXU9ItKkJcwGylTIzAIaECH5CTAoCb56RT PEolHvj1xwqEdjPONnPrj2g4dZPlXg== -----END CERTIFICATE-----Generated at Tue May 21 02:53:27 2024 by rpki-client on console-fra.rpki-client.org