$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/38D281C4EE3B11EC8EE6DA63C4F9AE02.roa File: 38D281C4EE3B11EC8EE6DA63C4F9AE02.roa (raw, json) Hash identifier: /u0Kxf9z2tsor7smJOehenO1ry6Xed7uZ3J+GBC/RjI= Subject key identifier: 42:FE:A3:0B:5B:92:F0:FA:94:53:56:1B:25:12:C1:26:64:84:6C:9D Certificate issuer: /CN=A91C4D7C/serialNumber=CA960B652B78670AFA3E0927C2849989F9F954CE Certificate serial: 01B4 Authority key identifier: CA:96:0B:65:2B:78:67:0A:FA:3E:09:27:C2:84:99:89:F9:F9:54:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypYLZSt4Zwr6PgknwoSZifn5VM4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/38D281C4EE3B11EC8EE6DA63C4F9AE02.roa Signing time: Thu 31 Aug 2023 03:13:34 +0000 ROA not before: Thu 31 Aug 2023 03:13:34 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 399686 IP address blocks: 103.171.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/ypYLZSt4Zwr6PgknwoSZifn5VM4.crl rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/ypYLZSt4Zwr6PgknwoSZifn5VM4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypYLZSt4Zwr6PgknwoSZifn5VM4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 04:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4D7C/serialNumber=CA960B652B78670AFA3E0927C2849989F9F954CE Validity Not Before: Aug 31 03:13:34 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0055e-d932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:85:4a:2d:31:ec:e8:0b:b6:1b:6a:21:29: 07:99:fd:43:92:9f:0f:ee:fb:b7:58:f2:69:72:db: 2b:ba:b9:26:e7:04:85:a3:0c:d3:1f:0a:9a:06:76: 5d:da:d7:3d:fb:52:0a:aa:77:3e:f8:35:84:86:c5: 19:e3:ac:d3:35:75:e4:af:3e:0d:90:4c:96:d2:1c: 7b:77:3e:8b:83:4f:f1:8e:84:e6:f5:89:8d:13:d8: df:10:84:a5:da:cd:00:3b:cd:4b:37:9f:2f:3a:20: ad:a9:8a:18:0c:b3:83:dc:9c:ba:fc:ba:c5:c0:0c: f0:12:a1:02:a4:30:f4:35:06:38:d4:20:0b:93:11: 85:16:9c:49:dc:04:1d:09:ac:b5:af:1a:1f:9f:68: 55:bb:2a:dc:14:0d:0d:41:af:be:6a:b1:c3:0d:04: 34:b9:b9:b4:87:e6:b3:e2:34:03:81:15:7b:79:d9: 96:5c:6e:4d:14:29:31:f1:bb:65:46:aa:54:5a:4b: ab:a8:28:85:49:ed:f1:67:ef:99:e2:cf:c2:36:f5: 46:ba:21:a2:f6:47:8c:a1:bc:58:b9:2d:33:23:f0: 86:d6:d6:8c:54:54:f0:7d:c3:db:ed:2a:44:be:4c: 2e:45:bc:d5:c9:33:d2:18:7e:34:35:c4:f3:22:c3: ab:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FE:A3:0B:5B:92:F0:FA:94:53:56:1B:25:12:C1:26:64:84:6C:9D X509v3 Authority Key Identifier: keyid:CA:96:0B:65:2B:78:67:0A:FA:3E:09:27:C2:84:99:89:F9:F9:54:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/ypYLZSt4Zwr6PgknwoSZifn5VM4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypYLZSt4Zwr6PgknwoSZifn5VM4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4D7C/4CF65A86DE3C11EC954ECA59C4F9AE02/38D281C4EE3B11EC8EE6DA63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.26.0/23 Signature Algorithm: sha256WithRSAEncryption a1:45:e0:60:03:04:6d:47:25:91:a2:4a:8b:cf:68:55:d6:67: 7e:78:64:89:a9:0a:c7:df:43:b8:08:77:ce:fe:eb:13:f6:78: af:0d:a3:32:ff:ab:73:2b:7f:d6:66:eb:cb:8b:68:94:0b:e3: 08:8f:48:9c:d5:65:90:13:8a:f5:85:93:fc:c8:2d:4b:05:8d: 6a:24:27:cd:8c:2a:75:bc:74:05:01:68:74:79:1e:38:25:de: ea:45:ef:52:6c:78:b8:9c:89:26:75:7e:30:0e:d4:ff:f1:5b: 96:77:6a:19:4c:05:2e:dd:66:02:53:26:d3:00:84:68:12:80: 23:fd:91:e2:0c:a6:dc:61:12:e4:42:b5:ec:2c:b9:46:69:c5: a4:93:d3:38:b3:8b:45:4e:f1:fa:b5:26:03:fb:65:13:4b:f9: 22:dd:0c:79:e8:92:6b:13:8f:b9:49:3f:97:3d:b8:5b:75:b1: 80:0c:28:84:2f:0f:8f:11:de:33:01:f9:23:46:33:0f:d0:19: 25:a3:4e:0a:88:f0:a1:05:5d:40:d9:e0:27:01:bf:f6:81:ad: c1:e1:72:c7:a0:51:e1:88:dd:d0:c5:82:22:a8:f9:13:1f:ed: 34:eb:fc:32:94:03:a5:d1:0c:fd:94:8a:d6:21:74:25:1b:57: 61:fa:24:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzREN0MxMTAvBgNVBAUTKENBOTYwQjY1MkI3ODY3MEFGQTNFMDkyN0MyODQ5OTg5 RjlGOTU0Q0UwHhcNMjMwODMxMDMxMzM0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwMDU1ZS1kOTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswOFSi0x7OgLthtqISkHmf1Dkp8P7vu3WPJpctsrurkm5wSFowzTHwqaBnZd 2tc9+1IKqnc++DWEhsUZ46zTNXXkrz4NkEyW0hx7dz6Lg0/xjoTm9YmNE9jfEISl 2s0AO81LN58vOiCtqYoYDLOD3Jy6/LrFwAzwEqECpDD0NQY41CALkxGFFpxJ3AQd Cay1rxofn2hVuyrcFA0NQa++arHDDQQ0ubm0h+az4jQDgRV7edmWXG5NFCkx8btl RqpUWkurqCiFSe3xZ++Z4s/CNvVGuiGi9keMobxYuS0zI/CG1taMVFTwfcPb7SpE vkwuRbzVyTPSGH40NcTzIsOr+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEL+owtb kvD6lFNWGyUSwSZkhGydMB8GA1UdIwQYMBaAFMqWC2UreGcK+j4JJ8KEmYn5+VTO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEQ3Qy80Q0Y2NUE4NkRF M0MxMUVDOTU0RUNBNTlDNEY5QUUwMi95cFlMWlN0NFp3cjZQZ2tud29TWmlmbjVW TTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwWUxaU3Q0WndyNlBna253b1NaaWZuNVZNNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzREN0MvNENGNjVBODZERTNDMTFFQzk1NEVDQTU5QzRGOUFFMDIvMzhEMjgxQzRF RTNCMTFFQzhFRTZEQTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqxowDQYJKoZIhvcNAQELBQADggEBAKFF4GADBG1HJZGi SovPaFXWZ354ZImpCsffQ7gId87+6xP2eK8NozL/q3Mrf9Zm68uLaJQL4wiPSJzV ZZATivWFk/zILUsFjWokJ82MKnW8dAUBaHR5Hjgl3upF71JseLiciSZ1fjAO1P/x W5Z3ahlMBS7dZgJTJtMAhGgSgCP9keIMptxhEuRCtewsuUZpxaST0zizi0VO8fq1 JgP7ZRNL+SLdDHnokmsTj7lJP5c9uFt1sYAMKIQvD48R3jMB+SNGMw/QGSWjTgqI 8KEFXUDZ4CcBv/aBrcHhcsegUeGI3dDFgiKo+RMf7TTr/DKUA6XRDP2UitYhdCUb V2H6JPg= -----END CERTIFICATE-----Generated at Thu Apr 25 05:44:52 2024 by rpki-client on console-fra.rpki-client.org