$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/F26A5FF6F91711EEB4D4960FC4F9AE02.roa File: F26A5FF6F91711EEB4D4960FC4F9AE02.roa (raw, json) Hash identifier: pU4cvobZ6X7SMk0eEveQhlMAQ3C4FyV+Np+ZSXKaJWQ= Subject key identifier: F9:78:27:6F:55:DD:4F:3E:8D:79:F9:20:77:5B:5D:14:54:22:B5:25 Certificate issuer: /CN=A91C7B68/serialNumber=9ACB806663FB0FCF6EBC43C010B935E05214FC9F Certificate serial: 03 Authority key identifier: 9A:CB:80:66:63:FB:0F:CF:6E:BC:43:C0:10:B9:35:E0:52:14:FC:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/msuAZmP7D89uvEPAELk14FIU_J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/F26A5FF6F91711EEB4D4960FC4F9AE02.roa Signing time: Fri 12 Apr 2024 21:59:34 +0000 ROA not before: Fri 12 Apr 2024 21:59:34 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139901 IP address blocks: 103.214.159.0/24 maxlen: 24 144.48.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/msuAZmP7D89uvEPAELk14FIU_J8.crl rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/msuAZmP7D89uvEPAELk14FIU_J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/msuAZmP7D89uvEPAELk14FIU_J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B68/serialNumber=9ACB806663FB0FCF6EBC43C010B935E05214FC9F Validity Not Before: Apr 12 21:59:34 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6619aec6-ed99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:79:c6:00:20:0a:ec:7e:dc:e6:97:a3:d1:de: 16:c0:42:66:29:68:76:10:33:90:e2:d7:c9:c2:76: 45:1a:2e:66:cd:cc:fa:e8:5b:c9:eb:a0:8a:1f:b1: 77:05:5a:40:12:27:3e:03:bf:a6:91:db:26:22:ef: ec:b3:19:1d:96:29:b1:5a:56:95:31:1b:7d:d3:8d: ae:bc:b6:42:01:ad:b5:2f:16:77:5f:ad:6b:50:a0: 94:91:79:c9:93:d3:70:a2:12:79:c9:bd:6e:e5:96: a7:7c:8d:a8:04:d2:7c:30:11:60:cd:07:36:7a:60: 0e:8b:f2:67:5c:a1:99:aa:8d:59:ff:59:2b:75:b2: e1:c2:60:71:88:79:48:29:ed:53:60:eb:19:31:3f: b5:85:1e:a7:aa:0b:ba:e4:50:d1:96:34:3c:8a:cd: e3:4b:d5:66:67:71:26:34:c0:4a:f4:85:6a:18:5b: 30:7f:8d:81:1f:b2:e8:ac:78:e5:66:9b:72:75:03: fb:e0:27:b1:c8:c7:a5:76:d7:c4:5d:bc:70:51:9e: 3e:5a:d2:89:04:54:da:6c:7e:0c:81:de:ef:89:ae: 5a:e4:97:ac:a2:e9:86:db:78:6c:ba:d9:e5:1f:7b: 54:24:fd:a0:71:b4:21:ec:5e:86:cf:f1:c8:d5:03: 7a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:78:27:6F:55:DD:4F:3E:8D:79:F9:20:77:5B:5D:14:54:22:B5:25 X509v3 Authority Key Identifier: keyid:9A:CB:80:66:63:FB:0F:CF:6E:BC:43:C0:10:B9:35:E0:52:14:FC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/msuAZmP7D89uvEPAELk14FIU_J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/msuAZmP7D89uvEPAELk14FIU_J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/F26A5FF6F91711EEB4D4960FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.159.0/24 144.48.115.0/24 Signature Algorithm: sha256WithRSAEncryption 29:2d:a0:a5:75:88:85:78:1a:e8:a6:bc:37:42:70:23:c8:29: a8:1c:e5:2d:a1:76:f7:51:32:cf:11:cb:6c:ef:99:19:85:95: 7b:6f:ed:f2:5a:b8:66:8c:17:46:c1:74:52:3a:e8:e4:1e:26: 5e:11:fa:0d:82:fd:c9:33:2b:c5:7b:c8:9c:15:a2:66:25:c3: be:8a:4d:a4:11:ae:09:b8:67:c4:95:a9:7a:e3:68:2e:04:de: e2:54:fe:15:34:94:be:4b:cd:42:ac:8e:b4:0b:73:f7:5e:98: 82:9b:c3:56:ef:10:81:1d:c8:0f:44:4b:e9:2e:29:48:19:f7: e1:7b:c4:8c:0f:09:56:1f:49:90:37:54:26:f3:75:37:29:38: 64:48:e0:98:e8:ff:88:f9:52:fc:1f:36:1b:79:90:1f:8a:52: 26:27:78:7c:1a:13:24:f2:de:8c:2b:04:e6:af:e5:07:fd:28: 65:5f:39:7d:a1:5a:db:26:0e:5d:7a:cf:42:8c:fc:cf:d0:f4: 18:67:36:53:7e:7e:96:47:aa:8f:7b:4e:a6:08:a8:85:45:52: 0f:db:1d:9a:7c:50:42:11:af:fa:23:7d:26:aa:84:19:66:a4: 86:b8:45:e7:13:e8:6d:01:4b:8e:3c:50:f1:e8:21:07:b9:10: 93:64:e0:05 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0I2ODExMC8GA1UEBRMoOUFDQjgwNjY2M0ZCMEZDRjZFQkM0M0MwMTBCOTM1RTA1 MjE0RkM5RjAeFw0yNDA0MTIyMTU5MzRaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTlhZWM2LWVkOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjecYAIArsftzml6PR3hbAQmYpaHYQM5Di18nCdkUaLmbNzProW8nroIofsXcF WkASJz4Dv6aR2yYi7+yzGR2WKbFaVpUxG33Tja68tkIBrbUvFndfrWtQoJSRecmT 03CiEnnJvW7llqd8jagE0nwwEWDNBzZ6YA6L8mdcoZmqjVn/WSt1suHCYHGIeUgp 7VNg6xkxP7WFHqeqC7rkUNGWNDyKzeNL1WZncSY0wEr0hWoYWzB/jYEfsuiseOVm m3J1A/vgJ7HIx6V218RdvHBRnj5a0okEVNpsfgyB3u+Jrlrkl6yi6YbbeGy62eUf e1Qk/aBxtCHsXobP8cjVA3rRAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU+Xgnb1Xd Tz6Nefkgd1tdFFQitSUwHwYDVR0jBBgwFoAUmsuAZmP7D89uvEPAELk14FIU/J8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3QjY4LzUzQTdCOTJDQjBB NTExRUE4RjkyRUQxN0M0RjlBRTAyL21zdUFabVA3RDg5dXZFUEFFTGsxNEZJVV9K OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbXN1QVptUDdEODl1dkVQQUVMazE0RklVX0o4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0I2OC81M0E3QjkyQ0IwQTUxMUVBOEY5MkVEMTdDNEY5QUUwMi9GMjZBNUZGNkY5 MTcxMUVFQjRENDk2MEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGfWnwMEAJAwczANBgkqhkiG9w0BAQsFAAOCAQEAKS2gpXWI hXga6Ka8N0JwI8gpqBzlLaF291EyzxHLbO+ZGYWVe2/t8lq4ZowXRsF0Ujro5B4m XhH6DYL9yTMrxXvInBWiZiXDvopNpBGuCbhnxJWpeuNoLgTe4lT+FTSUvkvNQqyO tAtz916YgpvDVu8QgR3ID0RL6S4pSBn34XvEjA8JVh9JkDdUJvN1Nyk4ZEjgmOj/ iPlS/B82G3mQH4pSJid4fBoTJPLejCsE5q/lB/0oZV85faFa2yYOXXrPQoz8z9D0 GGc2U35+lkeqj3tOpgiohUVSD9sdmnxQQhGv+iN9JqqEGWakhrhF5xPobQFLjjxQ 8eghB7kQk2TgBQ== -----END CERTIFICATE-----Generated at Tue Apr 30 20:56:57 2024 by rpki-client on console-fra.rpki-client.org