$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/DE524D283F0511EBBB4C174FC4F9AE02.roa File: DE524D283F0511EBBB4C174FC4F9AE02.roa (raw, json) Hash identifier: p7kzWVn5QnTbiNl5YAhRwhI2rAlI1JbZ8THOCFNXxlQ= Subject key identifier: 7D:B2:F5:38:07:CB:98:F4:86:76:61:B3:71:88:1D:CC:FC:11:E5:31 Certificate issuer: /CN=A91C8BEE/serialNumber=6969C20B8699A48D072D4A3067CFF00D5F447C98 Certificate serial: 05EF Authority key identifier: 69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/DE524D283F0511EBBB4C174FC4F9AE02.roa Signing time: Tue 14 Nov 2023 23:31:16 +0000 ROA not before: Tue 14 Nov 2023 23:31:16 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139347 IP address blocks: 103.157.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1519 (0x5ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BEE/serialNumber=6969C20B8699A48D072D4A3067CFF00D5F447C98 Validity Not Before: Nov 14 23:31:16 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65540344-647a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2f:85:92:c1:22:07:0d:05:33:0c:0d:11:fb: 7e:3f:39:6b:eb:76:50:c2:ab:c9:c0:98:14:18:24: a6:b9:61:c9:f0:54:40:ef:98:45:e8:b0:40:bb:c2: 27:ce:da:19:a7:75:f3:5b:6e:fd:c7:51:3d:fd:68: 72:bd:13:27:8a:0e:09:69:7d:7d:91:a9:74:35:a0: 43:2e:43:e6:40:bc:74:4e:80:09:b5:41:83:e9:61: 50:8d:f0:12:bd:6c:43:ed:bb:e0:da:16:2a:13:f6: 88:e7:28:fe:50:01:ed:78:9f:8b:f5:00:2e:43:71: 89:2e:7b:cf:6e:5e:42:a1:29:cf:f7:b6:9f:be:04: e4:73:45:ea:ee:06:49:1f:80:95:1e:32:98:c8:da: 15:e3:28:dc:d7:db:e2:2f:c5:a3:72:04:f6:ab:29: e7:c3:c8:90:36:37:30:11:c2:83:d6:ae:cb:5d:14: 60:37:09:5c:55:42:46:01:d6:52:0c:fe:7b:ef:3f: a5:0a:c6:ef:48:74:a6:7e:58:9a:55:8d:bc:ed:b5: a2:ef:db:45:3b:45:bd:c8:1b:8e:dd:48:2b:99:35: 2a:8b:1b:1c:8d:a3:49:f3:96:68:d8:b8:8c:7e:4d: ac:20:fb:86:47:73:e0:92:f5:05:a4:74:ae:77:d9: 48:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B2:F5:38:07:CB:98:F4:86:76:61:B3:71:88:1D:CC:FC:11:E5:31 X509v3 Authority Key Identifier: keyid:69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/DE524D283F0511EBBB4C174FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.237.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:0a:2a:64:9a:7e:28:73:09:6f:85:88:db:e8:50:46:4b:86: af:c9:c3:9f:43:0a:89:bb:71:5e:d2:ff:17:ae:14:8f:bb:98: 41:f3:39:07:44:1d:0c:0d:02:9c:d2:7d:36:3a:85:3c:6e:93: da:4d:ba:ab:3d:12:71:59:4c:f7:f4:93:3f:59:ae:c5:51:e1: 4f:ad:56:1f:52:97:72:d8:a6:91:7a:82:8e:b4:3d:79:e2:0b: d0:16:c1:c0:20:6e:f9:53:54:7a:0b:51:11:cd:c4:9b:6a:12: d1:81:49:2b:dd:49:07:dd:05:38:8c:90:ea:56:9f:bc:88:18: 76:60:88:b9:b3:8b:85:71:77:65:ad:33:80:7a:b4:13:b5:8f: 08:a2:cd:4f:fd:6d:70:b9:a9:be:8a:20:38:31:16:e9:84:3e: b5:aa:54:3a:90:53:e1:8a:e7:bf:b8:70:db:de:f8:f7:92:9c: 34:23:84:b5:07:b1:85:2e:10:ff:96:4a:5c:50:a6:a9:7b:81: f4:ca:10:45:5c:e7:65:85:d9:be:dc:b3:6c:02:9e:37:ff:a3: 3c:35:c4:ab:3f:0b:9a:64:92:d6:7b:dd:f0:ff:a3:81:92:42: 6e:0f:c3:a6:10:e5:1c:b9:81:a4:62:57:6f:4b:63:59:24:f9: 07:0a:16:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCRUUxMTAvBgNVBAUTKDY5NjlDMjBCODY5OUE0OEQwNzJENEEzMDY3Q0ZGMDBE NUY0NDdDOTgwHhcNMjMxMTE0MjMzMTE2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU0MDM0NC02NDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoS+FksEiBw0FMwwNEft+Pzlr63ZQwqvJwJgUGCSmuWHJ8FRA75hF6LBAu8In ztoZp3XzW279x1E9/WhyvRMnig4JaX19kal0NaBDLkPmQLx0ToAJtUGD6WFQjfAS vWxD7bvg2hYqE/aI5yj+UAHteJ+L9QAuQ3GJLnvPbl5CoSnP97afvgTkc0Xq7gZJ H4CVHjKYyNoV4yjc19viL8WjcgT2qynnw8iQNjcwEcKD1q7LXRRgNwlcVUJGAdZS DP577z+lCsbvSHSmfliaVY287bWi79tFO0W9yBuO3UgrmTUqixscjaNJ85Zo2LiM fk2sIPuGR3PgkvUFpHSud9lI8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFH2y9TgH y5j0hnZhs3GIHcz8EeUxMB8GA1UdIwQYMBaAFGlpwguGmaSNBy1KMGfP8A1fRHyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJFRS82RTA2MjdGODNG MDMxMUVCQkU3NUI0NEJDNEY5QUUwMi9hV25DQzRhWnBJMEhMVW93Wjhfd0RWOUVm SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXbkNDNGFacEkwSExVb3daOF93RFY5RWZKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhCRUUvNkUwNjI3RjgzRjAzMTFFQkJFNzVCNDRCQzRGOUFFMDIvREU1MjREMjgz RjA1MTFFQkJCNEMxNzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnne0wDQYJKoZIhvcNAQELBQADggEBAJ0KKmSafihzCW+F iNvoUEZLhq/Jw59DCom7cV7S/xeuFI+7mEHzOQdEHQwNApzSfTY6hTxuk9pNuqs9 EnFZTPf0kz9ZrsVR4U+tVh9Sl3LYppF6go60PXniC9AWwcAgbvlTVHoLURHNxJtq EtGBSSvdSQfdBTiMkOpWn7yIGHZgiLmzi4Vxd2WtM4B6tBO1jwiizU/9bXC5qb6K IDgxFumEPrWqVDqQU+GK57+4cNve+PeSnDQjhLUHsYUuEP+WSlxQpql7gfTKEEVc 52WF2b7cs2wCnjf/ozw1xKs/C5pkktZ73fD/o4GSQm4Pw6YQ5Ry5gaRiV29LY1kk +QcKFj4= -----END CERTIFICATE-----Generated at Fri May 17 00:24:22 2024 by rpki-client on console-fra.rpki-client.org