$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/9DF5B38CE0D011ECAF88A30DC4F9AE02.roa File: 9DF5B38CE0D011ECAF88A30DC4F9AE02.roa (raw, json) Hash identifier: Z8d3uGgH8Y5XfcbK0eEMjbX0aQkbdH1yv87/NbDvqa4= Subject key identifier: 67:8D:6A:5F:9A:38:F0:E1:9A:CE:A6:0E:A2:C2:2D:12:A3:E1:82:77 Certificate issuer: /CN=A91C53EC/serialNumber=FADC9764B209F81CF82933226A0669A32A4EDD72 Certificate serial: 0521 Authority key identifier: FA:DC:97:64:B2:09:F8:1C:F8:29:33:22:6A:06:69:A3:2A:4E:DD:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tyXZLIJ-Bz4KTMiagZpoypO3XI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/9DF5B38CE0D011ECAF88A30DC4F9AE02.roa Signing time: Thu 23 Nov 2023 00:32:01 +0000 ROA not before: Thu 23 Nov 2023 00:32:01 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 136778 IP address blocks: 103.144.218.0/23 maxlen: 23 103.144.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/-tyXZLIJ-Bz4KTMiagZpoypO3XI.crl rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/-tyXZLIJ-Bz4KTMiagZpoypO3XI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tyXZLIJ-Bz4KTMiagZpoypO3XI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1313 (0x521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53EC/serialNumber=FADC9764B209F81CF82933226A0669A32A4EDD72 Validity Not Before: Nov 23 00:32:01 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655e9d80-d9c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b0:8d:2e:8f:03:19:8f:cd:7d:dc:61:38:52: 12:7c:13:dd:29:bc:bb:9d:d7:6b:54:a3:13:8d:7e: 6d:a9:b3:4e:d8:eb:ab:15:90:7a:8f:3e:d6:4c:17: 40:15:fd:a6:3e:7a:4b:e3:33:4d:06:21:45:a7:1f: eb:fa:d3:13:1b:f0:46:36:15:ec:f4:20:cf:29:96: 34:dc:10:2c:d7:fb:86:13:f9:3e:78:ea:68:86:3c: 9c:73:8e:8e:ec:bf:cc:c4:71:7d:e6:f7:aa:80:cc: 0c:e5:80:27:34:96:3f:59:df:3e:ed:f2:f6:38:7b: 15:e5:22:81:73:df:6d:b5:d0:ba:66:f9:7f:27:c6: 96:c1:84:a1:86:63:3b:1e:1f:28:f7:3b:61:c7:ca: 3b:71:20:f5:d9:26:33:fd:3d:b1:4f:31:68:6f:b1: d1:96:1f:3f:cc:42:49:98:73:6b:5b:47:45:f9:31: e9:68:37:50:65:78:53:14:64:c2:c1:7b:21:ff:2a: ce:85:2f:e5:e8:26:42:7c:79:04:27:37:30:89:08: fa:4f:a8:cc:ee:b1:85:29:be:42:c2:d3:cf:c5:9e: ee:18:f0:01:35:20:e3:e1:d5:28:3b:50:7d:67:1a: 00:2b:33:89:66:9f:69:a3:1f:05:c9:8d:17:85:9c: 0a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8D:6A:5F:9A:38:F0:E1:9A:CE:A6:0E:A2:C2:2D:12:A3:E1:82:77 X509v3 Authority Key Identifier: keyid:FA:DC:97:64:B2:09:F8:1C:F8:29:33:22:6A:06:69:A3:2A:4E:DD:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/-tyXZLIJ-Bz4KTMiagZpoypO3XI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tyXZLIJ-Bz4KTMiagZpoypO3XI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/9DF5B38CE0D011ECAF88A30DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.218.0/23 Signature Algorithm: sha256WithRSAEncryption 22:73:94:3c:3d:9c:55:26:ac:0c:2a:1a:fa:c4:a9:87:04:16: a3:55:75:1a:b5:c0:b1:05:ce:ac:c8:e1:2b:72:3c:6c:a9:d0: b0:c5:49:a0:75:b3:7d:ab:52:47:fb:41:bf:a0:8e:a4:65:00: 85:36:2d:c5:1b:4f:10:00:9f:35:90:e1:40:bd:f5:6c:6b:13: a0:9a:79:b9:ab:48:bc:0b:f3:f1:47:fb:58:83:bf:92:df:d4: c2:22:d4:a4:39:9e:37:4d:66:34:ca:38:c7:0f:b5:7f:06:db: e0:98:ad:6f:39:69:11:b8:94:db:59:ac:80:d3:1c:52:42:c0: e3:29:bb:9e:5f:11:f7:a7:09:b1:01:79:76:0b:41:b3:73:65: 58:2e:db:6f:83:34:43:49:95:39:2f:74:db:5d:83:5a:de:86: 3d:40:b0:5e:85:66:5f:f7:b3:ef:97:ef:72:a6:49:f6:7f:5e: 69:1b:46:8e:b3:8e:4a:d7:4e:c8:05:2c:b8:57:09:e0:2b:de: b4:54:ea:27:e5:16:4c:73:53:42:ae:c3:21:6e:c2:15:28:83: 8d:d0:e4:b6:17:2a:19:b1:6d:dc:3c:45:fd:a8:20:e6:31:80: 1e:10:1e:fd:c8:92:d6:c2:cd:ba:03:9a:9d:a6:5f:79:95:d4: 23:ab:5d:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzRUMxMTAvBgNVBAUTKEZBREM5NzY0QjIwOUY4MUNGODI5MzMyMjZBMDY2OUEz MkE0RURENzIwHhcNMjMxMTIzMDAzMjAxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVlOWQ4MC1kOWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorCNLo8DGY/NfdxhOFISfBPdKby7nddrVKMTjX5tqbNO2OurFZB6jz7WTBdA Ff2mPnpL4zNNBiFFpx/r+tMTG/BGNhXs9CDPKZY03BAs1/uGE/k+eOpohjycc46O 7L/MxHF95veqgMwM5YAnNJY/Wd8+7fL2OHsV5SKBc99ttdC6Zvl/J8aWwYShhmM7 Hh8o9zthx8o7cSD12SYz/T2xTzFob7HRlh8/zEJJmHNrW0dF+THpaDdQZXhTFGTC wXsh/yrOhS/l6CZCfHkEJzcwiQj6T6jM7rGFKb5CwtPPxZ7uGPABNSDj4dUoO1B9 ZxoAKzOJZp9pox8FyY0XhZwKFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGeNal+a OPDhms6mDqLCLRKj4YJ3MB8GA1UdIwQYMBaAFPrcl2SyCfgc+CkzImoGaaMqTt1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTNFQy8yMDNDQkI2NDk2 ODcxMUVCOEFFODEzMkZDNEY5QUUwMi8tdHlYWkxJSi1CejRLVE1pYWdacG95cE8z WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10eVhaTElKLUJ6NEtUTWlhZ1pwb3lwTzNYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzUzRUMvMjAzQ0JCNjQ5Njg3MTFFQjhBRTgxMzJGQzRGOUFFMDIvOURGNUIzOENF MEQwMTFFQ0FGODhBMzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkNowDQYJKoZIhvcNAQELBQADggEBACJzlDw9nFUmrAwq GvrEqYcEFqNVdRq1wLEFzqzI4StyPGyp0LDFSaB1s32rUkf7Qb+gjqRlAIU2LcUb TxAAnzWQ4UC99WxrE6CaebmrSLwL8/FH+1iDv5Lf1MIi1KQ5njdNZjTKOMcPtX8G 2+CYrW85aRG4lNtZrIDTHFJCwOMpu55fEfenCbEBeXYLQbNzZVgu22+DNENJlTkv dNtdg1rehj1AsF6FZl/3s++X73KmSfZ/XmkbRo6zjkrXTsgFLLhXCeAr3rRU6ifl FkxzU0KuwyFuwhUog43Q5LYXKhmxbdw8Rf2oIOYxgB4QHv3IktbCzboDmp2mX3mV 1COrXR8= -----END CERTIFICATE-----Generated at Tue May 21 01:47:04 2024 by rpki-client on console-fra.rpki-client.org