$ rpki-client -vvf rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/9D752204479111ECA77ED34DC4F9AE02.roa File: 9D752204479111ECA77ED34DC4F9AE02.roa (raw, json) Hash identifier: AabFPDz6+I9hZYUDoeYaVFIetX3SgG8wOkktjNXXD00= Subject key identifier: 69:73:B3:C7:D4:40:61:5A:20:8E:F8:C8:B8:F6:89:66:BE:23:22:FB Certificate issuer: /CN=A91C278B/serialNumber=3C433B64E64C46DFD58E63C115284485815231FF Certificate serial: 03DA Authority key identifier: 3C:43:3B:64:E6:4C:46:DF:D5:8E:63:C1:15:28:44:85:81:52:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PEM7ZOZMRt_VjmPBFShEhYFSMf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/9D752204479111ECA77ED34DC4F9AE02.roa Signing time: Sun 03 Sep 2023 00:51:53 +0000 ROA not before: Sun 03 Sep 2023 00:51:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.196.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/PEM7ZOZMRt_VjmPBFShEhYFSMf8.crl rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/PEM7ZOZMRt_VjmPBFShEhYFSMf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PEM7ZOZMRt_VjmPBFShEhYFSMf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Apr 2024 01:41:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C278B/serialNumber=3C433B64E64C46DFD58E63C115284485815231FF Validity Not Before: Sep 3 00:51:53 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f3d8a8-d59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:64:9e:e6:7b:6b:ad:e7:7b:50:a3:98:8f:fe: 77:40:fa:13:55:95:1f:9e:9f:26:c5:ea:cf:4e:dc: 7c:41:66:75:ef:6b:70:c7:f6:e3:9c:bf:7e:62:4e: b9:4e:40:f4:79:ef:af:24:70:1c:36:32:6d:e0:3f: 2f:61:84:da:a0:16:65:31:22:21:41:50:71:c8:b0: dc:64:23:cf:03:28:0f:d5:dd:b3:bc:15:a9:e3:8e: 44:60:7c:2a:3c:92:0f:79:83:e8:47:6e:c9:65:c1: 06:f4:53:b4:27:2f:5d:0c:3e:3f:cf:8c:c3:44:d6: 8e:7a:ae:91:b7:f7:a8:a4:0d:ca:d5:ab:9a:65:b7: cc:e7:10:1e:cf:13:3f:01:6c:64:4e:be:c3:e7:47: fd:ce:75:24:70:08:74:62:45:12:57:d2:fe:96:fc: d3:88:dd:df:89:9c:de:2f:82:31:74:7a:98:1b:20: b5:c3:15:d3:84:4c:7e:ce:4e:12:e9:8a:30:ab:1b: 99:08:f1:a4:ed:42:2b:b4:5a:44:4e:e9:32:7c:45: 21:c4:ff:18:e3:db:bd:45:f5:04:25:03:b3:c2:04: b8:f2:f3:e8:ef:26:14:01:00:91:02:2a:ca:f4:80: ec:a9:8d:f9:19:9c:fd:c1:6e:b8:2d:8f:53:05:eb: 62:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:73:B3:C7:D4:40:61:5A:20:8E:F8:C8:B8:F6:89:66:BE:23:22:FB X509v3 Authority Key Identifier: keyid:3C:43:3B:64:E6:4C:46:DF:D5:8E:63:C1:15:28:44:85:81:52:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/PEM7ZOZMRt_VjmPBFShEhYFSMf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PEM7ZOZMRt_VjmPBFShEhYFSMf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/9D752204479111ECA77ED34DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.32.0/24 Signature Algorithm: sha256WithRSAEncryption 82:18:b4:0b:2f:31:bb:2c:b1:03:a0:a9:6d:e3:df:55:f7:09: c5:0b:80:71:2b:2a:30:0e:58:3d:09:07:d1:26:97:25:6e:e4: 07:95:bb:6a:7c:6d:d5:db:9b:90:b4:3f:53:56:f4:a8:92:e1: fb:1a:9f:e9:f9:fb:50:2c:e0:41:1a:2e:74:91:4f:a3:88:b8: dd:7a:86:f3:c7:30:1a:55:33:65:55:73:77:1d:84:72:aa:f0: 02:7c:1d:b8:fc:e1:f0:61:3d:0e:cf:58:18:51:3c:5f:58:ea: 89:be:a6:fb:57:96:1e:8e:dd:79:9a:1d:ec:f7:7d:7c:42:7a: 7b:7d:c2:ed:d0:08:9d:1a:4a:79:e6:81:f5:5b:18:5b:7f:f2: ea:5a:ee:85:31:c2:c3:f1:28:5a:8a:93:d5:d2:3e:ec:a9:c0: e7:71:68:9c:3c:a6:68:ba:53:8c:34:ed:4c:f1:84:23:ef:63: bc:fa:04:6c:e4:79:2e:9f:52:5f:c7:15:7c:05:e1:46:f1:45: 58:d6:05:e3:d9:ff:80:4d:83:1e:be:19:07:a8:e3:69:6a:80: 9f:a9:8d:c2:58:4e:ea:42:e8:c9:58:f7:ec:ae:e9:7f:00:4a: 52:5e:b9:d8:be:59:74:0e:ba:0a:14:bd:13:f4:ac:18:9f:7b: 65:47:9f:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI3OEIxMTAvBgNVBAUTKDNDNDMzQjY0RTY0QzQ2REZENThFNjNDMTE1Mjg0NDg1 ODE1MjMxRkYwHhcNMjMwOTAzMDA1MTUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzZDhhOC1kNTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9mSe5ntrred7UKOYj/53QPoTVZUfnp8mxerPTtx8QWZ172twx/bjnL9+Yk65 TkD0ee+vJHAcNjJt4D8vYYTaoBZlMSIhQVBxyLDcZCPPAygP1d2zvBWp445EYHwq PJIPeYPoR27JZcEG9FO0Jy9dDD4/z4zDRNaOeq6Rt/eopA3K1auaZbfM5xAezxM/ AWxkTr7D50f9znUkcAh0YkUSV9L+lvzTiN3fiZzeL4IxdHqYGyC1wxXThEx+zk4S 6YowqxuZCPGk7UIrtFpETukyfEUhxP8Y49u9RfUEJQOzwgS48vPo7yYUAQCRAirK 9IDsqY35GZz9wW64LY9TBetizQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGlzs8fU QGFaII74yLj2iWa+IyL7MB8GA1UdIwQYMBaAFDxDO2TmTEbf1Y5jwRUoRIWBUjH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjc4Qi8wNkIwQjYyQTBB NDgxMUVDQkM1NzNENUZDNEY5QUUwMi9QRU03Wk9aTVJ0X1ZqbVBCRlNoRWhZRlNN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BFTTdaT1pNUnRfVmptUEJGU2hFaFlGU01mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI3OEIvMDZCMEI2MkEwQTQ4MTFFQ0JDNTczRDVGQzRGOUFFMDIvOUQ3NTIyMDQ0 NzkxMTFFQ0E3N0VEMzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxCAwDQYJKoZIhvcNAQELBQADggEBAIIYtAsvMbsssQOg qW3j31X3CcULgHErKjAOWD0JB9EmlyVu5AeVu2p8bdXbm5C0P1NW9KiS4fsan+n5 +1As4EEaLnSRT6OIuN16hvPHMBpVM2VVc3cdhHKq8AJ8Hbj84fBhPQ7PWBhRPF9Y 6om+pvtXlh6O3XmaHez3fXxCent9wu3QCJ0aSnnmgfVbGFt/8upa7oUxwsPxKFqK k9XSPuypwOdxaJw8pmi6U4w07UzxhCPvY7z6BGzkeS6fUl/HFXwF4UbxRVjWBePZ /4BNgx6+GQeo42lqgJ+pjcJYTupC6MlY9+yu6X8ASlJeudi+WXQOugoUvRP0rBif e2VHn2U= -----END CERTIFICATE-----Generated at Wed Apr 17 02:34:47 2024 by rpki-client on console-fra.rpki-client.org