$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/14A07422D45E11EEB37CB639C4F9AE02.roa File: 14A07422D45E11EEB37CB639C4F9AE02.roa (raw, json) Hash identifier: nG4YRGpTri2EvHlJTJHeJXOnJo+V1CyAuzEb1Zxwv9k= Subject key identifier: 0E:64:F7:34:C2:2D:48:DA:DA:89:8F:8D:A9:12:9A:C3:D6:0C:F0:83 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 03A2 Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/14A07422D45E11EEB37CB639C4F9AE02.roa Signing time: Mon 26 Feb 2024 04:18:23 +0000 ROA not before: Mon 26 Feb 2024 04:18:23 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 131495 IP address blocks: 103.175.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: Feb 26 04:18:23 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65dc110f-088c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:28:2f:f9:74:b6:cf:3c:e5:76:04:e9:0b:89: 21:9c:d7:6c:50:be:25:a3:b0:b8:7d:6b:fc:f5:d2: 31:7c:d0:83:08:19:a9:21:8e:3a:33:4b:f2:72:58: f3:4d:f9:a0:ea:c9:b1:c2:ff:61:67:ea:b5:83:a4: 31:0d:37:58:5f:3e:a4:67:e8:96:9d:71:ea:8e:b7: c7:67:c7:bc:2b:88:ce:02:0f:88:5f:3f:d7:67:9f: 37:f8:fb:8f:00:0d:4d:62:1b:cc:ac:0a:89:6f:ae: 73:ec:ad:fd:4d:fb:07:44:1e:9a:30:cf:da:0c:6f: 19:35:cd:04:90:fd:83:22:b6:b7:62:8a:b6:cb:1b: f5:c1:a0:1b:8f:ad:8d:f5:59:3f:53:74:b1:bb:d2: 65:34:56:b8:15:9e:94:ea:b4:27:22:b5:c0:62:27: e3:b9:8e:aa:b8:2b:e9:b6:c6:16:fd:9c:1b:ef:9f: 8b:80:6b:67:e7:76:58:19:67:ec:42:df:6a:5c:92: 94:ca:60:8a:10:e6:a9:43:74:6a:d9:ad:ef:85:31: cb:8a:87:55:0a:62:86:c9:97:45:5e:f1:09:0a:b3: 3b:b3:71:5c:ab:60:00:eb:18:9e:c8:ea:e7:45:3e: d2:f3:93:05:ed:3f:49:75:18:f4:6c:f4:26:95:d6: eb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:64:F7:34:C2:2D:48:DA:DA:89:8F:8D:A9:12:9A:C3:D6:0C:F0:83 X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/14A07422D45E11EEB37CB639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.197.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:27:58:92:7e:b2:2c:8b:89:43:40:f8:61:e3:43:4e:a2:6e: 0e:d7:41:0d:75:a6:2c:3c:a8:25:9a:97:d8:90:9f:63:3e:28: a0:05:8d:63:ba:9c:ce:dc:0e:c1:6f:04:b2:cc:95:35:cf:8b: 0d:c1:0a:e2:dc:2b:69:33:69:2d:c0:44:9f:ad:5f:15:64:0a: ae:5e:a0:cc:b1:c5:a6:bb:f0:3f:09:84:c9:89:1f:23:81:37: 08:97:92:fb:ba:e7:0d:8a:6e:25:4b:8c:6b:97:ee:18:93:0b: 5f:a1:38:68:f8:a9:dc:58:aa:17:83:05:71:70:e6:29:9b:a2: bc:b2:90:94:5f:fd:07:d8:e5:25:6b:b9:cd:f1:c6:c8:e0:14: 4e:69:a6:7b:25:f7:8c:c8:58:b9:b6:a5:94:54:fe:36:6c:c7: 41:0e:5d:04:90:23:0a:7a:cb:58:7e:de:6b:18:6b:5b:8a:3d: fe:a1:89:76:66:54:c1:84:ac:4a:a2:99:1f:a6:8e:61:af:4a: 6e:c7:3a:ac:29:0f:97:7a:21:d0:c5:07:70:7e:5d:fb:83:5e: 08:41:20:eb:ff:48:25:69:e1:1c:29:b0:68:98:e3:d5:d4:a0: a3:37:46:f4:0d:dc:1f:a4:ce:e5:a0:dc:3e:bb:8c:f9:5f:87: c5:2a:35:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjQwMjI2MDQxODIzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRjMTEwZi0wODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCgv+XS2zzzldgTpC4khnNdsUL4lo7C4fWv89dIxfNCDCBmpIY46M0vycljz Tfmg6smxwv9hZ+q1g6QxDTdYXz6kZ+iWnXHqjrfHZ8e8K4jOAg+IXz/XZ583+PuP AA1NYhvMrAqJb65z7K39TfsHRB6aMM/aDG8ZNc0EkP2DIra3Yoq2yxv1waAbj62N 9Vk/U3Sxu9JlNFa4FZ6U6rQnIrXAYifjuY6quCvptsYW/Zwb75+LgGtn53ZYGWfs Qt9qXJKUymCKEOapQ3Rq2a3vhTHLiodVCmKGyZdFXvEJCrM7s3Fcq2AA6xieyOrn RT7S85MF7T9JdRj0bPQmldbrowIDAQABo4IClTCCApEwHQYDVR0OBBYEFA5k9zTC LUja2omPjakSmsPWDPCDMB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E4RUEvRDhDQTEzQzI0MDQ5MTFFQzlCNkVGRTdCQzRGOUFFMDIvMTRBMDc0MjJE NDVFMTFFRUIzN0NCNjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnr8UwDQYJKoZIhvcNAQELBQADggEBAF0nWJJ+siyLiUNA +GHjQ06ibg7XQQ11piw8qCWal9iQn2M+KKAFjWO6nM7cDsFvBLLMlTXPiw3BCuLc K2kzaS3ARJ+tXxVkCq5eoMyxxaa78D8JhMmJHyOBNwiXkvu65w2KbiVLjGuX7hiT C1+hOGj4qdxYqheDBXFw5imboryykJRf/QfY5SVruc3xxsjgFE5ppnsl94zIWLm2 pZRU/jZsx0EOXQSQIwp6y1h+3msYa1uKPf6hiXZmVMGErEqimR+mjmGvSm7HOqwp D5d6IdDFB3B+XfuDXghBIOv/SCVp4RwpsGiY49XUoKM3RvQN3B+kzuWg3D67jPlf h8UqNVA= -----END CERTIFICATE-----Generated at Fri May 17 03:17:01 2024 by rpki-client on console-fra.rpki-client.org