$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/0E9CF77EBA6811EC8058A213C4F9AE02.roa File: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (raw, json) Hash identifier: 5JX/NsZ2a+UHFDz6JI63xOnKLqLK3hbrFa/fbOl21LA= Subject key identifier: F4:B6:9E:3B:9C:44:77:AE:24:78:0D:D8:03:F4:58:3A:0C:29:1F:F5 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 01E8 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/0E9CF77EBA6811EC8058A213C4F9AE02.roa Signing time: Sat 27 May 2023 05:13:37 +0000 ROA not before: Sat 27 May 2023 05:13:37 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 198949 IP address blocks: 103.35.217.0/24 maxlen: 24 103.232.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 03:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: May 27 05:13:37 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64719181-c966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e7:94:ab:28:aa:81:16:65:19:3d:75:18:fd: d2:ca:51:30:7f:40:f7:e3:f8:54:6e:98:af:26:00: 07:f6:5e:11:74:1b:21:4e:d4:f6:3a:f0:17:d3:ca: a1:01:d9:51:b8:f2:ed:73:33:3e:78:fd:f6:ce:4f: c3:f6:19:45:d7:84:37:21:16:85:87:23:36:2f:bd: 80:a6:68:d3:cc:41:e4:c6:1d:d8:d0:62:01:ea:0a: 9a:17:ff:09:fd:37:9c:dd:21:84:b9:96:64:e4:86: 06:c7:90:85:7a:c7:2e:d8:ae:54:d4:be:f7:d5:8f: cf:ac:bf:00:fc:bf:39:30:c6:08:08:0a:a9:1a:74: 25:cc:0b:97:11:54:be:2d:72:06:08:bc:c5:8b:24: 28:2c:e0:83:36:e9:55:8a:61:d0:47:ed:f3:85:41: e3:69:7d:f7:3a:17:64:e2:35:62:33:b2:d1:ad:0d: de:2e:cf:e9:64:bd:8a:92:77:ae:18:71:87:11:0e: c9:0a:e6:b3:21:50:5f:82:f1:3d:71:0f:0b:80:54: a7:78:fa:25:57:da:ce:50:1e:ba:97:e1:1c:04:58: 71:f4:d4:22:4d:06:06:1d:0f:ed:c5:e6:74:0e:21: 01:38:2c:6e:50:a3:71:09:3d:3f:1a:d6:9a:ac:8f: 00:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B6:9E:3B:9C:44:77:AE:24:78:0D:D8:03:F4:58:3A:0C:29:1F:F5 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/0E9CF77EBA6811EC8058A213C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.217.0/24 103.232.224.0/24 Signature Algorithm: sha256WithRSAEncryption 89:b1:24:6c:e8:08:b7:15:4e:95:6d:00:d5:d1:97:c4:38:77: 34:d1:18:89:6a:e8:11:8d:25:ee:31:3b:93:75:60:3f:a7:99: 53:2e:8d:2c:49:e6:09:20:48:d8:d4:aa:9d:81:e5:52:52:29: 71:34:cb:dd:28:f8:6d:ac:dd:73:23:37:42:e9:e9:b3:7f:20: 17:80:f0:b2:05:e0:d8:c9:f9:f8:19:13:37:09:10:62:0d:e7: ae:be:5d:9e:8a:28:29:59:f4:bd:9c:3f:21:de:95:21:8c:51: 38:a5:d5:1d:10:d9:6f:c3:b0:a1:ff:42:06:01:8c:8f:52:f7: 3c:66:19:9c:5c:e3:73:ce:8a:90:3e:1e:11:35:5b:7f:73:a0: 52:60:fa:8f:d9:3b:07:8d:f2:52:24:29:d0:71:30:5d:15:b1: 6d:2a:f1:bd:1d:35:f5:3f:fc:8e:d1:79:cc:64:78:49:ab:2c: c4:10:ee:c2:a2:3f:d0:8c:8d:03:72:3c:e1:e0:08:ff:1f:fd: 5c:80:1a:ac:0e:f8:33:4f:68:ae:92:c9:1a:8f:06:50:0e:3b: e8:d9:21:3f:20:65:66:cb:60:04:a1:fd:cc:32:21:1b:7f:b2: 81:bf:8c:f5:59:b5:ea:60:cf:03:6a:d1:1c:47:e7:f9:09:37: dd:f6:59:33 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjMwNTI3MDUxMzM3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxOTE4MS1jOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteeUqyiqgRZlGT11GP3SylEwf0D34/hUbpivJgAH9l4RdBshTtT2OvAX08qh AdlRuPLtczM+eP32zk/D9hlF14Q3IRaFhyM2L72ApmjTzEHkxh3Y0GIB6gqaF/8J /Tec3SGEuZZk5IYGx5CFescu2K5U1L731Y/PrL8A/L85MMYICAqpGnQlzAuXEVS+ LXIGCLzFiyQoLOCDNulVimHQR+3zhUHjaX33Ohdk4jViM7LRrQ3eLs/pZL2Kkneu GHGHEQ7JCuazIVBfgvE9cQ8LgFSnePolV9rOUB66l+EcBFhx9NQiTQYGHQ/txeZ0 DiEBOCxuUKNxCT0/GtaarI8ArwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPS2njuc RHeuJHgN2AP0WDoMKR/1MB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI4NzUvQzI1REUwRTZCNEU4MTFFQzk4MEM0NDcxQzRGOUFFMDIvMEU5Q0Y3N0VC QTY4MTFFQzgwNThBMjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnI9kDBABn6OAwDQYJKoZIhvcNAQELBQADggEBAImxJGzo CLcVTpVtANXRl8Q4dzTRGIlq6BGNJe4xO5N1YD+nmVMujSxJ5gkgSNjUqp2B5VJS KXE0y90o+G2s3XMjN0Lp6bN/IBeA8LIF4NjJ+fgZEzcJEGIN566+XZ6KKClZ9L2c PyHelSGMUTil1R0Q2W/DsKH/QgYBjI9S9zxmGZxc43POipA+HhE1W39zoFJg+o/Z OweN8lIkKdBxMF0VsW0q8b0dNfU//I7RecxkeEmrLMQQ7sKiP9CMjQNyPOHgCP8f /VyAGqwO+DNPaK6SyRqPBlAOO+jZIT8gZWbLYASh/cwyIRt/soG/jPVZtepgzwNq 0RxH5/kJN932WTM= -----END CERTIFICATE-----Generated at Thu Apr 25 05:44:52 2024 by rpki-client on console-fra.rpki-client.org