$ rpki-client -vvf rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/17C68D301C0311EE9B0F2938C4F9AE02.roa File: 17C68D301C0311EE9B0F2938C4F9AE02.roa (raw, json) Hash identifier: fPM8alKORYOjjQhG6pmvkAq1pvJRWpLBYLgvtxvlZeM= Subject key identifier: 7D:C2:80:26:B6:7C:2D:4B:4A:6D:CE:20:EF:39:43:9B:BE:43:6F:BF Certificate issuer: /CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Certificate serial: 0C Authority key identifier: DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/17C68D301C0311EE9B0F2938C4F9AE02.roa Signing time: Thu 06 Jul 2023 13:43:31 +0000 ROA not before: Thu 06 Jul 2023 13:43:31 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139780 IP address blocks: 103.225.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 06:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Validity Not Before: Jul 6 13:43:31 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a6c502-81c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5a:88:ce:eb:7a:09:01:fe:60:14:30:f0:7d: 5f:e9:e1:cc:b3:6c:33:ab:68:cf:47:f5:e3:db:9b: 1f:1d:5a:94:16:67:4d:d7:cd:a6:63:b6:22:f1:71: cb:36:c7:ab:d3:b0:ff:93:bc:80:cb:75:4b:b1:36: 8b:10:b5:7b:c6:95:51:bf:7b:6b:cd:be:94:4e:83: 3f:d3:65:94:d5:bf:91:a1:cb:ea:6e:39:ee:0f:ed: c9:7c:a2:f7:44:9b:12:50:5a:74:85:2a:7c:f6:b6: 02:22:28:79:9e:68:f2:ac:69:18:e1:c1:3c:c6:fe: 25:59:7f:2c:fd:20:f2:15:52:dc:60:74:50:d3:08: 77:bb:49:da:9f:a2:cb:b7:5e:2c:56:98:a3:e5:cb: da:e0:ff:28:16:8d:ed:3b:50:93:7d:2b:20:8d:f2: cc:3f:68:49:7e:72:de:20:27:3c:24:a9:37:05:eb: 26:f6:c5:c0:9d:a2:d5:70:d3:99:27:a8:3c:0c:1a: 8d:7e:0a:7b:b2:e5:75:4e:f2:56:91:8e:dc:0a:50: 0b:62:4a:6e:5a:4a:bc:75:48:55:bb:00:16:28:81: 5d:70:95:1c:82:3c:55:93:68:87:99:6e:d4:89:e0: 56:29:74:db:92:dd:ca:e6:52:2c:e8:32:7b:1d:ed: e0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C2:80:26:B6:7C:2D:4B:4A:6D:CE:20:EF:39:43:9B:BE:43:6F:BF X509v3 Authority Key Identifier: keyid:DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/17C68D301C0311EE9B0F2938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.219.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:85:0d:1c:9d:2e:c1:74:0a:a2:70:ca:75:72:a5:c0:ff:f9: b4:01:5f:f3:81:37:e1:fe:25:1c:28:5e:5d:59:51:2c:8d:20: ae:dc:6a:fc:56:32:39:1f:26:55:d8:18:25:47:f7:03:21:47: 97:42:be:a1:8f:29:a0:ff:29:98:c2:df:53:a8:12:b6:c9:0d: 6b:0f:7e:d0:69:c7:46:bb:e0:08:9a:e6:8e:6d:5c:eb:3c:22: b8:37:86:e5:63:9f:10:57:aa:27:9e:04:e3:f1:36:a9:19:67: 5c:ba:b9:0c:52:23:33:ef:68:91:1a:3e:1c:10:ca:00:b1:2f: 8b:d6:72:c5:49:74:78:37:be:03:b5:83:23:18:04:44:73:d3: 34:fa:b2:e6:35:2e:1d:df:87:68:fc:2d:47:27:c5:91:96:6d: d7:b3:27:9b:fd:31:6a:4a:82:f5:53:57:b4:59:b1:53:5f:2c: b6:32:d5:c9:9a:51:63:9c:e9:e9:c2:af:b1:e9:2c:ab:fc:20: f5:0c:00:7b:13:91:e5:62:34:a9:d9:f3:87:d1:36:c7:9e:2c: e1:39:02:aa:77:7f:db:59:a5:23:7d:60:c6:06:cb:12:b4:cb: 24:a1:33:a0:66:9b:cc:f4:44:b4:15:ad:0a:96:e6:48:ec:8a: 3d:39:3f:cd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTcyQjExMC8GA1UEBRMoREY3OUMzQkEwMTUyNjFFM0FDODQzMjM5Q0U0NzAzNTkw MUQ2NkE5NDAeFw0yMzA3MDYxMzQzMzFaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YTZjNTAyLTgxYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcWojO63oJAf5gFDDwfV/p4cyzbDOraM9H9ePbmx8dWpQWZ03XzaZjtiLxccs2 x6vTsP+TvIDLdUuxNosQtXvGlVG/e2vNvpROgz/TZZTVv5Ghy+puOe4P7cl8ovdE mxJQWnSFKnz2tgIiKHmeaPKsaRjhwTzG/iVZfyz9IPIVUtxgdFDTCHe7Sdqfosu3 XixWmKPly9rg/ygWje07UJN9KyCN8sw/aEl+ct4gJzwkqTcF6yb2xcCdotVw05kn qDwMGo1+Cnuy5XVO8laRjtwKUAtiSm5aSrx1SFW7ABYogV1wlRyCPFWTaIeZbtSJ 4FYpdNuS3crmUizoMnsd7eC5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUfcKAJrZ8 LUtKbc4g7zlDm75Db78wHwYDVR0jBBgwFoAU33nDugFSYeOshDI5zkcDWQHWapQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1NzJCL0Y3RTVDMTY4MEU5 QTExRUVBNjQ0OUU3MUM0RjlBRTAyLzMzbkR1Z0ZTWWVPc2hESTV6a2NEV1FIV2Fw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzNuRHVnRlNZZU9zaERJNXprY0RXUUhXYXBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTcyQi9GN0U1QzE2ODBFOUExMUVFQTY0NDlFNzFDNEY5QUUwMi8xN0M2OEQzMDFD MDMxMUVFOUIwRjI5MzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfh2zANBgkqhkiG9w0BAQsFAAOCAQEAH4UNHJ0uwXQKonDK dXKlwP/5tAFf84E34f4lHCheXVlRLI0grtxq/FYyOR8mVdgYJUf3AyFHl0K+oY8p oP8pmMLfU6gStskNaw9+0GnHRrvgCJrmjm1c6zwiuDeG5WOfEFeqJ54E4/E2qRln XLq5DFIjM+9okRo+HBDKALEvi9ZyxUl0eDe+A7WDIxgERHPTNPqy5jUuHd+HaPwt RyfFkZZt17Mnm/0xakqC9VNXtFmxU18stjLVyZpRY5zp6cKvseksq/wg9QwAexOR 5WI0qdnzh9E2x54s4TkCqnd/21mlI31gxgbLErTLJKEzoGabzPREtBWtCpbmSOyK PTk/zQ== -----END CERTIFICATE-----Generated at Wed May 29 09:16:49 2024 by rpki-client on console-fra.rpki-client.org