$ rpki-client -vvf rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/8446564EF96611E8BE431B17C4F9AE02.roa File: 8446564EF96611E8BE431B17C4F9AE02.roa (raw, json) Hash identifier: nJ9SJM6sBPF7wPXXxyjuPOz53EU2DHqysBnOoMO38lI= Subject key identifier: 51:5E:F8:E4:90:BC:FF:37:B8:9A:5A:57:B9:54:B3:7E:29:48:5B:51 Certificate issuer: /CN=A91C85E9/serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Certificate serial: 102A Authority key identifier: C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/8446564EF96611E8BE431B17C4F9AE02.roa Signing time: Wed 14 Jun 2023 18:17:44 +0000 ROA not before: Wed 14 Jun 2023 18:17:44 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 38303 IP address blocks: 103.114.174.0/23 maxlen: 23 103.114.174.0/24 maxlen: 24 103.114.175.0/24 maxlen: 24 103.219.114.0/23 maxlen: 23 103.219.114.0/24 maxlen: 24 103.219.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4138 (0x102a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C85E9/serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Validity Not Before: Jun 14 18:17:44 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=648a0448-303c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:55:97:8e:98:c1:36:55:ed:f2:93:3b:94: 97:fa:de:7f:45:c0:d1:bd:f7:44:7d:e3:21:c8:e0: e7:c1:64:17:b6:17:ef:e9:0f:74:a3:25:58:18:77: 4e:cf:0d:cf:18:d8:a4:df:c8:47:d0:13:a7:23:85: 18:c8:f0:05:cf:6d:a6:25:75:c7:e1:6f:e0:cd:f0: 3c:91:b7:f9:15:e0:13:c5:65:8d:a5:82:d5:22:98: 69:87:d4:f2:88:c6:72:9f:32:71:b2:16:3c:86:1e: ad:73:43:2c:2c:aa:10:35:f1:3b:f4:3a:68:34:e0: 86:a2:a2:04:42:4d:7e:49:2b:0e:ab:be:8b:30:56: 20:28:b3:fb:24:b2:e5:5b:7e:34:0d:fd:cf:cf:93: 6f:a8:12:86:24:71:cf:f4:8c:e7:d2:b1:5a:33:d2: 40:e6:8c:7c:b0:f2:58:08:a8:75:1d:7d:e7:2e:8b: fc:63:85:dd:f2:06:c2:6b:aa:4a:0a:12:90:1c:19: 66:72:76:a1:75:dd:53:e3:a4:02:0a:1b:c9:e7:3f: ae:18:78:48:e5:74:01:be:8e:28:74:12:82:5d:92: 02:b9:77:65:eb:92:2f:55:4a:a3:6c:80:34:89:68: b9:bd:e4:5e:41:e7:2f:ff:b0:c5:57:0f:7f:b6:1c: 99:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:5E:F8:E4:90:BC:FF:37:B8:9A:5A:57:B9:54:B3:7E:29:48:5B:51 X509v3 Authority Key Identifier: keyid:C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/8446564EF96611E8BE431B17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.174.0/23 103.219.114.0/23 Signature Algorithm: sha256WithRSAEncryption ad:bb:b6:c4:bf:30:b3:8f:98:8f:b1:df:0a:ac:4f:1b:bf:35: 5f:ec:97:79:01:91:9c:8c:8a:0e:ae:ab:27:bb:14:9e:cb:2c: de:a1:67:fd:8a:89:7c:ba:26:48:fe:8d:6a:90:af:85:e5:f0: e4:34:b7:16:f4:78:3b:08:0a:13:18:ae:ae:5d:e1:7e:0f:e6: b9:f3:58:93:83:21:e4:21:0c:a9:5a:5d:0c:97:22:ff:9f:f6: 08:94:6e:b5:1e:64:c2:cd:0c:43:7a:59:c4:25:b2:2b:c5:c4: a0:de:52:db:cb:7c:e9:4d:1a:89:5d:93:e3:45:e6:3f:de:7e: ed:5a:1b:c4:d5:75:1b:8b:17:bf:2b:97:5b:3f:79:bb:db:8b: c1:a7:34:2e:f9:b8:79:6d:d1:26:e0:bb:d5:bf:2e:4f:bc:9c: 89:2e:d7:ef:4b:79:59:90:28:25:50:fe:1b:0f:34:8a:17:62: ce:c6:44:70:a7:39:5b:c8:8d:e8:7f:68:02:7b:12:8e:a0:5f: 73:23:f3:e4:cf:5a:ae:66:02:04:39:fa:ab:49:15:29:d3:5d: dc:1b:3e:3d:10:29:2c:f8:61:da:ee:b9:72:32:3d:82:17:d3: f4:15:69:37:49:92:cf:4e:ac:90:19:3a:df:c6:4c:1c:b4:66: 55:63:66:a3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICECowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1RTkxMTAvBgNVBAUTKEM3Q0Y5NDNFM0E3NjRGMzdDMDAzQ0Q0MzVBMkI4NTQz QkNFNDc2MDkwHhcNMjMwNjE0MTgxNzQ0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhhMDQ0OC0zMDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVRVl46YwTZV7fKTO5SX+t5/RcDRvfdEfeMhyODnwWQXthfv6Q90oyVYGHdO zw3PGNik38hH0BOnI4UYyPAFz22mJXXH4W/gzfA8kbf5FeATxWWNpYLVIphph9Ty iMZynzJxshY8hh6tc0MsLKoQNfE79DpoNOCGoqIEQk1+SSsOq76LMFYgKLP7JLLl W340Df3Pz5NvqBKGJHHP9Izn0rFaM9JA5ox8sPJYCKh1HX3nLov8Y4Xd8gbCa6pK ChKQHBlmcnahdd1T46QCChvJ5z+uGHhI5XQBvo4odBKCXZICuXdl65IvVUqjbIA0 iWi5veReQecv/7DFVw9/thyZVwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFFe+OSQ vP83uJpaV7lUs34pSFtRMB8GA1UdIwQYMBaAFMfPlD46dk83wAPNQ1orhUO85HYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODVFOS8wODI1MzhFQ0Y5 NjUxMUU4QkMwNTI0MTFDNEY5QUUwMi94OC1VUGpwMlR6ZkFBODFEV2l1RlE3emtk Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4LVVQanAyVHpmQUE4MURXaXVGUTd6a2Rnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzg1RTkvMDgyNTM4RUNGOTY1MTFFOEJDMDUyNDExQzRGOUFFMDIvODQ0NjU2NEVG OTY2MTFFOEJFNDMxQjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFncq4DBAFn23IwDQYJKoZIhvcNAQELBQADggEBAK27tsS/ MLOPmI+x3wqsTxu/NV/sl3kBkZyMig6uqye7FJ7LLN6hZ/2KiXy6Jkj+jWqQr4Xl 8OQ0txb0eDsIChMYrq5d4X4P5rnzWJODIeQhDKlaXQyXIv+f9giUbrUeZMLNDEN6 WcQlsivFxKDeUtvLfOlNGoldk+NF5j/efu1aG8TVdRuLF78rl1s/ebvbi8GnNC75 uHlt0Sbgu9W/Lk+8nIku1+9LeVmQKCVQ/hsPNIoXYs7GRHCnOVvIjeh/aAJ7Eo6g X3Mj8+TPWq5mAgQ5+qtJFSnTXdwbPj0QKSz4YdruuXIyPYIX0/QVaTdJks9OrJAZ Ot/GTBy0ZlVjZqM= -----END CERTIFICATE-----Generated at Thu May 16 19:10:56 2024 by rpki-client on console-fra.rpki-client.org