$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/98FD8A0E538411ED8D781C7CC4F9AE02.roa File: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (raw, json) Hash identifier: Lztt6/ReAThPmIVkFkfcmUr03ADDOwVW/Xo8xPY51D0= Subject key identifier: 77:7C:99:81:1B:0F:C8:66:39:D3:AD:13:B8:18:6F:DC:73:16:93:FF Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: BE Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/98FD8A0E538411ED8D781C7CC4F9AE02.roa Signing time: Thu 19 Oct 2023 03:55:21 +0000 ROA not before: Thu 19 Oct 2023 03:55:21 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136957 IP address blocks: 103.100.46.0/23 maxlen: 23 103.100.46.0/24 maxlen: 24 103.100.47.0/24 maxlen: 24 2001:df3:2b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 05:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Oct 19 03:55:21 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6530a8a9-5cdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7d:1e:d4:0f:20:66:21:09:85:27:3e:a7:79: d5:1a:ba:7b:b4:2e:9a:a7:40:04:b3:cc:50:61:15: 98:1f:15:91:b8:8a:5f:b1:c5:59:21:f0:af:df:11: 35:47:37:03:21:04:31:1c:f1:4f:78:0b:0a:4e:be: c9:dd:c3:78:e9:60:a3:48:d7:59:5f:80:3b:46:5e: 8c:2b:4c:9e:5c:7d:9f:ba:ed:04:af:40:d7:ef:72: be:62:8f:79:52:bb:3e:49:2a:fa:60:45:45:71:18: ba:b4:8a:26:1b:44:4d:0b:8a:db:bd:0f:c3:b3:e7: c6:02:e8:83:ff:0c:08:80:32:a6:f4:9c:9e:63:c7: 4b:80:d5:a0:5f:30:7b:a4:2c:58:2a:8a:94:cf:0f: 86:a9:d0:b7:b7:76:99:fc:a5:e3:d6:c4:52:fb:20: 98:30:68:95:fc:ad:24:fa:78:be:35:88:02:cb:0d: 45:94:f7:02:66:34:ca:7d:9b:c2:8b:77:b3:38:1d: 76:de:85:11:b6:b4:fe:7b:41:87:49:c3:3c:cb:99: 19:de:f8:80:2a:39:92:09:8d:4c:5a:d0:a9:f7:5c: 3b:ae:79:4e:b7:97:51:9c:32:6f:d0:b9:06:f6:9b: 86:a9:6a:cc:2c:69:ba:bb:4a:17:6d:a2:ed:a8:39: 11:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:7C:99:81:1B:0F:C8:66:39:D3:AD:13:B8:18:6F:DC:73:16:93:FF X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/98FD8A0E538411ED8D781C7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.46.0/23 IPv6: 2001:df3:2b00::/48 Signature Algorithm: sha256WithRSAEncryption 82:c1:f0:f7:78:d3:6d:7f:78:e3:17:47:f2:a4:d2:b3:7d:7d: b3:ac:f7:2f:98:08:9a:a5:0f:95:6e:78:1d:c3:c4:90:00:4c: 9f:16:91:41:b6:1f:b8:29:b5:bc:71:56:69:4c:f8:6e:85:f9: 74:db:46:b7:57:71:46:df:d0:e2:9e:f6:b8:46:4b:bb:f7:33: 61:a7:85:40:a0:3e:6a:de:fc:72:88:c9:cb:57:d1:a6:3f:bd: a0:96:bb:f6:35:0a:a3:aa:3d:3d:d8:02:de:15:35:15:24:8b: a3:fa:55:1f:db:e6:a6:4b:6c:7b:47:e9:ec:79:d6:2a:9a:d1: 5e:89:c2:7a:1a:46:20:e5:b1:53:63:0d:0f:db:e1:5d:03:ca: 17:dd:67:8b:5d:4a:dd:64:99:d3:b9:64:6d:0b:f3:bc:eb:39: 9f:88:4c:c8:12:df:3f:45:17:4b:29:63:b8:81:d3:e3:06:d0: 2c:c2:21:d2:6a:74:d1:4e:a5:a3:cb:dd:9a:1e:71:15:8c:34: e9:c8:e5:6d:6c:50:30:c4:86:11:c8:b5:73:76:c6:bb:7c:03: 11:7b:ee:00:94:4e:11:a3:f0:3c:dd:26:9d:6a:6a:fa:13:00: bf:04:03:c9:2d:27:35:c0:1e:f0:28:28:88:95:da:49:0b:30: 8a:38:9e:b7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjMxMDE5MDM1NTIxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMwYThhOS01Y2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxX0e1A8gZiEJhSc+p3nVGrp7tC6ap0AEs8xQYRWYHxWRuIpfscVZIfCv3xE1 RzcDIQQxHPFPeAsKTr7J3cN46WCjSNdZX4A7Rl6MK0yeXH2fuu0Er0DX73K+Yo95 Urs+SSr6YEVFcRi6tIomG0RNC4rbvQ/Ds+fGAuiD/wwIgDKm9JyeY8dLgNWgXzB7 pCxYKoqUzw+GqdC3t3aZ/KXj1sRS+yCYMGiV/K0k+ni+NYgCyw1FlPcCZjTKfZvC i3ezOB123oURtrT+e0GHScM8y5kZ3viAKjmSCY1MWtCp91w7rnlOt5dRnDJv0LkG 9puGqWrMLGm6u0oXbaLtqDkROwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHd8mYEb D8hmOdOtE7gYb9xzFpP/MB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZFNDkvQjMzQUE3QTY1MzgxMTFFRDhBQTk4Rjc3QzRGOUFFMDIvOThGRDhBMEU1 Mzg0MTFFRDhENzgxQzdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnZC4wDwQCAAIwCQMHACABDfMrADANBgkqhkiG9w0BAQsF AAOCAQEAgsHw93jTbX944xdH8qTSs319s6z3L5gImqUPlW54HcPEkABMnxaRQbYf uCm1vHFWaUz4boX5dNtGt1dxRt/Q4p72uEZLu/czYaeFQKA+at78cojJy1fRpj+9 oJa79jUKo6o9PdgC3hU1FSSLo/pVH9vmpktse0fp7HnWKprRXonCehpGIOWxU2MN D9vhXQPKF91ni11K3WSZ07lkbQvzvOs5n4hMyBLfP0UXSyljuIHT4wbQLMIh0mp0 0U6lo8vdmh5xFYw06cjlbWxQMMSGEci1c3bGu3wDEXvuAJROEaPwPN0mnWpq+hMA vwQDyS0nNcAe8CgoiJXaSQswijietw== -----END CERTIFICATE-----Generated at Wed May 29 06:01:36 2024 by rpki-client on console-fra.rpki-client.org