$ rpki-client -vvf rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/B7F93F86E33F11EB9832A354C4F9AE02.roa File: B7F93F86E33F11EB9832A354C4F9AE02.roa (raw, json) Hash identifier: O6YfSXkP15RMCoE0Zrm02IyWYVTgsh5afV0S0cHHE3o= Subject key identifier: 87:B1:96:22:E5:8D:8C:A6:1E:73:4B:94:E0:1D:E0:8E:F6:CC:F8:06 Certificate issuer: /CN=A91C56FB/serialNumber=93C058A0DF1773012459164B5A80D85372C7E292 Certificate serial: 12E7 Authority key identifier: 93:C0:58:A0:DF:17:73:01:24:59:16:4B:5A:80:D8:53:72:C7:E2:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/B7F93F86E33F11EB9832A354C4F9AE02.roa Signing time: Fri 30 Jun 2023 17:36:06 +0000 ROA not before: Fri 30 Jun 2023 17:36:06 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 54574 IP address blocks: 103.117.100.0/22 maxlen: 22 103.117.100.0/22 maxlen: 24 103.117.100.0/24 maxlen: 24 103.117.101.0/24 maxlen: 24 103.117.102.0/24 maxlen: 24 103.117.103.0/24 maxlen: 24 2403:18c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.crl rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4839 (0x12e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C56FB/serialNumber=93C058A0DF1773012459164B5A80D85372C7E292 Validity Not Before: Jun 30 17:36:06 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649f1286-b299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ea:c3:53:bd:e1:26:70:ca:57:62:f7:fb:fe: d9:c3:92:a5:a8:39:64:e2:78:7c:d2:43:47:89:c3: 3f:17:d0:5b:d8:22:2f:a8:23:8b:ce:1c:27:e8:24: b7:2c:ef:0d:56:42:c7:d8:35:12:dd:be:72:7e:ef: b7:cd:85:4b:ba:4a:5b:a7:a9:8d:e1:99:00:1d:76: fa:74:6a:f5:85:4c:3d:4b:c0:f8:6e:e6:5e:16:5a: 7f:cb:73:75:38:17:b8:c7:4e:a3:37:ce:f5:0e:d0: 0b:a7:e9:ec:40:2b:99:36:be:c1:24:b4:9a:b7:c7: 47:af:8d:2e:a5:85:5c:06:d2:f8:10:ed:6c:bb:19: 65:c8:62:4f:74:2a:99:1e:80:19:23:eb:1e:a0:40: 0c:1f:c0:24:92:79:25:d6:51:6e:c8:6e:f9:3e:ef: 66:a1:53:6f:49:79:89:42:cc:47:44:e3:02:f5:29: 77:24:e4:a6:f2:83:5b:57:54:6c:8e:3f:01:6a:f9: ac:be:78:e2:28:32:48:6f:5a:09:3b:ee:aa:80:65: 30:1f:3e:4b:2a:69:64:80:1a:cd:99:9d:15:a0:b9: 9b:32:46:f6:e5:15:33:2a:30:ce:6c:cb:43:e4:2b: 97:17:1d:45:b5:cf:b5:9c:d7:be:72:7b:2d:07:a8: fa:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B1:96:22:E5:8D:8C:A6:1E:73:4B:94:E0:1D:E0:8E:F6:CC:F8:06 X509v3 Authority Key Identifier: keyid:93:C0:58:A0:DF:17:73:01:24:59:16:4B:5A:80:D8:53:72:C7:E2:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/B7F93F86E33F11EB9832A354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.100.0/22 IPv6: 2403:18c0::/32 Signature Algorithm: sha256WithRSAEncryption 99:76:c3:61:4a:74:bf:98:62:aa:56:de:96:23:80:1e:72:b6: 76:b5:50:8f:30:6b:08:40:ab:e4:dd:39:36:a6:92:50:8f:6c: 5a:7c:1c:42:de:d1:46:77:c7:55:86:84:0d:39:cb:7c:d6:0e: 06:65:2d:82:c6:24:35:b5:9a:98:6a:05:d2:41:a0:cf:13:07: 07:5b:47:31:99:2a:4d:4b:74:85:05:3b:45:de:17:0e:79:76: 5f:45:47:a6:4b:b3:e9:cf:a6:bb:c8:fa:5c:aa:49:cc:0d:89: d1:c7:f0:dc:ab:c0:35:f2:65:ce:f1:46:ae:66:41:18:c7:88: 43:2c:7d:cf:be:6b:38:9b:8d:cc:94:b6:18:29:fd:25:09:02: 6b:d3:79:d6:6d:9b:50:6d:2c:60:89:8d:95:e6:22:4a:be:ed: b2:f5:4d:97:fd:4f:c3:f6:71:4f:37:d6:89:c0:e8:6f:ca:88: 4f:d6:a3:43:ec:6d:71:52:7a:bf:78:43:1c:73:56:c4:49:87: 9e:10:6d:06:7e:fe:16:db:fb:e5:6e:6b:7a:0e:db:62:d5:fb: c7:e1:d0:b6:94:0e:33:83:9d:41:98:9a:09:9a:5b:c6:ba:32: 97:54:b2:52:d2:ac:a2:3c:a4:98:4e:65:56:ba:74:75:f0:76: 79:cf:6c:39 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU2RkIxMTAvBgNVBAUTKDkzQzA1OEEwREYxNzczMDEyNDU5MTY0QjVBODBEODUz NzJDN0UyOTIwHhcNMjMwNjMwMTczNjA2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDlmMTI4Ni1iMjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4erDU73hJnDKV2L3+/7Zw5KlqDlk4nh80kNHicM/F9Bb2CIvqCOLzhwn6CS3 LO8NVkLH2DUS3b5yfu+3zYVLukpbp6mN4ZkAHXb6dGr1hUw9S8D4buZeFlp/y3N1 OBe4x06jN871DtALp+nsQCuZNr7BJLSat8dHr40upYVcBtL4EO1suxllyGJPdCqZ HoAZI+seoEAMH8Akknkl1lFuyG75Pu9moVNvSXmJQsxHROMC9Sl3JOSm8oNbV1Rs jj8BavmsvnjiKDJIb1oJO+6qgGUwHz5LKmlkgBrNmZ0VoLmbMkb25RUzKjDObMtD 5CuXFx1Ftc+1nNe+cnstB6j6swIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIexliLl jYymHnNLlOAd4I72zPgGMB8GA1UdIwQYMBaAFJPAWKDfF3MBJFkWS1qA2FNyx+KS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTZGQi9FOUY1MTA0Njc4 M0ExMUU4OTA3RDUyMUFDNEY5QUUwMi9rOEJZb044WGN3RWtXUlpMV29EWVUzTEg0 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4QllvTjhYY3dFa1dSWkxXb0RZVTNMSDRwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzU2RkIvRTlGNTEwNDY3ODNBMTFFODkwN0Q1MjFBQzRGOUFFMDIvQjdGOTNGODZF MzNGMTFFQjk4MzJBMzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndWQwDQQCAAIwBwMFACQDGMAwDQYJKoZIhvcNAQELBQAD ggEBAJl2w2FKdL+YYqpW3pYjgB5ytna1UI8wawhAq+TdOTamklCPbFp8HELe0UZ3 x1WGhA05y3zWDgZlLYLGJDW1mphqBdJBoM8TBwdbRzGZKk1LdIUFO0XeFw55dl9F R6ZLs+nPprvI+lyqScwNidHH8NyrwDXyZc7xRq5mQRjHiEMsfc++azibjcyUthgp /SUJAmvTedZtm1BtLGCJjZXmIkq+7bL1TZf9T8P2cU831onA6G/KiE/Wo0PsbXFS er94QxxzVsRJh54QbQZ+/hbb++Vua3oO22LV+8fh0LaUDjODnUGYmgmaW8a6MpdU slLSrKI8pJhOZVa6dHXwdnnPbDk= -----END CERTIFICATE-----Generated at Sat May 18 18:12:33 2024 by rpki-client on console-fra.rpki-client.org