$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/6A14D330F9AC11EEABC2273CC4F9AE02.roa File: 6A14D330F9AC11EEABC2273CC4F9AE02.roa (raw, json) Hash identifier: GBDcIOUFhH86ayboesK56jq4y2wO7QtOQxqIvFWl8ZA= Subject key identifier: 2E:D4:85:9B:D0:73:A5:E2:FB:8A:33:28:96:70:D9:EA:A4:86:CA:B3 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 27 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/6A14D330F9AC11EEABC2273CC4F9AE02.roa Signing time: Wed 22 May 2024 15:17:25 +0000 ROA not before: Wed 22 May 2024 15:17:25 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 63150 IP address blocks: 103.219.192.0/24 maxlen: 24 103.219.193.0/24 maxlen: 24 103.219.194.0/24 maxlen: 24 2401:7d20:200::/40 maxlen: 40 2401:7d20:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: May 22 15:17:25 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=664e0c85-3af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:a0:7a:57:70:26:dc:10:8f:76:26:c5:a8:82: 8d:b8:d0:fd:ba:41:35:20:b0:d7:2d:c7:8b:71:41: 9a:fd:d0:f8:19:14:d8:22:41:ff:9b:a6:10:3e:31: d9:38:37:42:10:b7:35:3c:3f:50:dc:1d:08:fb:73: b6:d3:81:10:c6:55:cd:8e:92:1b:0a:c6:d5:1c:11: f3:ad:74:61:b5:46:a5:ed:d0:5e:2e:1d:c0:fd:23: a9:e4:b0:13:fb:3a:36:74:7f:8e:ae:d4:57:f2:f8: 2f:a0:79:66:20:d7:c5:d0:c9:3e:03:8c:fd:a9:12: 4f:a1:6e:1b:e7:f8:41:d5:37:6a:f6:11:d8:5d:9e: 87:99:9f:5b:f5:ed:86:90:d2:bf:4e:d0:f5:57:cc: fb:6b:6e:ea:b0:20:d4:92:a3:e7:d8:74:44:1b:f8: 25:a4:9c:40:72:91:ca:26:4a:3c:20:47:c1:cc:f4: 30:9e:54:a6:1c:98:58:ba:7e:49:b4:79:59:80:d6: 1c:b9:77:43:50:d4:f7:c4:d4:a3:ca:30:f6:c0:38: ea:a5:ef:b6:0f:e7:be:c6:b3:98:bb:c2:c0:e6:70: 32:1d:b0:e6:cc:22:38:40:86:14:61:93:df:54:fe: c1:db:8d:b9:e0:98:68:4c:f9:72:c7:65:5a:2d:79: 96:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:D4:85:9B:D0:73:A5:E2:FB:8A:33:28:96:70:D9:EA:A4:86:CA:B3 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/6A14D330F9AC11EEABC2273CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.192.0-103.219.194.255 IPv6: 2401:7d20:200::/39 Signature Algorithm: sha256WithRSAEncryption 18:07:19:a0:76:af:7a:89:2d:86:11:83:cc:a3:ea:d9:74:14: 0d:1e:e9:19:ba:a8:c4:c5:43:b0:74:5a:4b:55:2d:bf:47:1d: 72:10:26:93:9c:a6:c2:1b:75:02:b0:f2:e3:4b:2a:36:73:02: 07:83:76:8a:c1:ac:b1:9e:2e:09:b4:e1:6b:70:45:4d:ab:6e: cd:49:9b:16:ab:6a:74:8c:fa:8d:bc:16:58:8d:7e:da:da:2e: 58:1b:8b:67:62:3c:86:dd:67:7e:6f:5a:93:b6:b2:91:4f:66: 5f:be:c3:5e:20:0a:35:41:43:66:82:32:06:07:e2:49:f4:1f: fd:a8:85:f0:98:65:fc:d2:80:70:93:99:c0:b8:c8:ad:95:3c: e4:b4:84:c8:12:6c:20:e1:9c:51:66:10:c3:65:ce:33:51:11: 04:e8:01:7a:0a:ce:ea:87:3d:c4:bd:5f:53:17:4e:b7:cb:ae: c1:56:2a:7b:78:36:dd:50:79:02:4d:bc:2c:c6:18:81:94:86: fd:18:f1:c1:d3:a2:66:3d:a5:97:54:c1:ee:cb:df:fd:d9:1a: 0f:c8:68:d9:46:3f:df:a8:59:93:9c:a8:a0:06:ad:28:80:8d: fa:1f:02:37:14:cc:17:19:f9:12:0b:94:e7:9f:20:fe:8f:7a: 44:93:e5:d8 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODM0NzExMC8GA1UEBRMoMkFEQkI3MUIxMTUyM0NBMzM5MkU1RjM3RDlEQzc2QjIx MURCRTA4MzAeFw0yNDA1MjIxNTE3MjVaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NGUwYzg1LTNhZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1oHpXcCbcEI92JsWogo240P26QTUgsNctx4txQZr90PgZFNgiQf+bphA+Mdk4 N0IQtzU8P1DcHQj7c7bTgRDGVc2OkhsKxtUcEfOtdGG1RqXt0F4uHcD9I6nksBP7 OjZ0f46u1Ffy+C+geWYg18XQyT4DjP2pEk+hbhvn+EHVN2r2EdhdnoeZn1v17YaQ 0r9O0PVXzPtrbuqwINSSo+fYdEQb+CWknEBykcomSjwgR8HM9DCeVKYcmFi6fkm0 eVmA1hy5d0NQ1PfE1KPKMPbAOOql77YP577Gs5i7wsDmcDIdsObMIjhAhhRhk99U /sHbjbngmGhM+XLHZVoteZaZAgMBAAGjggKtMIICqTAdBgNVHQ4EFgQULtSFm9Bz peL7ijMolnDZ6qSGyrMwHwYDVR0jBBgwFoAUKtu3GxFSPKM5Ll832dx2shHb4IMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzQ3L0MzRTcyMTkwRjlB OTExRUVBODJBNzkxQUM0RjlBRTAyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJ TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3R1M0d4RlNQS001TGw4MzJkeDJzaEhiNElNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi82QTE0RDMzMEY5 QUMxMUVFQUJDMjI3M0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA3BggrBgEFBQcBBwEB/wQo MCYwFAQCAAEwDjAMAwQGZ9vAAwQAZ9vCMA4EAgACMAgDBgEkAX0gAjANBgkqhkiG 9w0BAQsFAAOCAQEAGAcZoHaveokthhGDzKPq2XQUDR7pGbqoxMVDsHRaS1Utv0cd chAmk5ymwht1ArDy40sqNnMCB4N2isGssZ4uCbTha3BFTatuzUmbFqtqdIz6jbwW WI1+2touWBuLZ2I8ht1nfm9ak7aykU9mX77DXiAKNUFDZoIyBgfiSfQf/aiF8Jhl /NKAcJOZwLjIrZU85LSEyBJsIOGcUWYQw2XOM1ERBOgBegrO6oc9xL1fUxdOt8uu wVYqe3g23VB5Ak28LMYYgZSG/RjxwdOiZj2ll1TB7svf/dkaD8ho2UY/36hZk5yo oAatKICN+h8CNxTMFxn5EguU558g/o96RJPl2A== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:31 2024 by rpki-client on console-fra.rpki-client.org