$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/207388F2D45E11EE8D29793EC4F9AE02.roa File: 207388F2D45E11EE8D29793EC4F9AE02.roa (raw, json) Hash identifier: 0MLHTxdXjJr4xQjhr2hOHvYGlL6GShqhdXBiCt0rZcY= Subject key identifier: 93:F9:7E:0B:6A:C1:37:FF:8A:1A:79:40:B1:48:56:53:5E:12:C5:E1 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 03A9 Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/207388F2D45E11EE8D29793EC4F9AE02.roa Signing time: Fri 01 Mar 2024 02:34:11 +0000 ROA not before: Fri 01 Mar 2024 02:34:11 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 136897 IP address blocks: 103.175.196.0/23 maxlen: 23 103.175.196.0/24 maxlen: 24 2001:df7:fc80::/48 maxlen: 48 2001:df7:fc80::/56 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: Mar 1 02:34:11 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65e13ea3-7514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fa:a0:59:10:98:db:42:1b:a5:88:48:39:99: 8a:0e:29:9b:a7:10:7a:e9:80:f7:d2:a0:7d:34:01: 4b:62:42:38:71:78:ab:a4:98:e6:08:1f:e0:f8:13: af:1c:27:02:dd:6b:d2:1c:b1:4e:b3:1c:30:44:b0: e0:a8:e4:2c:07:51:d4:4d:8e:f6:87:5f:fc:c8:6e: d4:0d:cb:8a:cd:0d:02:e0:40:93:ef:11:e7:a0:12: 02:0f:d7:f0:a2:4b:49:a2:bc:bb:b9:e5:70:88:5b: 79:dc:0a:a8:d0:09:5c:0e:6f:8c:8e:52:a0:7c:5e: 76:05:d2:af:05:dc:9f:40:98:e7:a4:09:8f:67:97: f3:31:93:6d:fd:58:60:5c:80:cd:23:70:e2:18:f1: 2d:3c:02:45:cd:0a:7b:89:22:33:8e:c2:72:18:93: 02:32:56:16:0b:1d:0d:2d:a8:69:4b:aa:f0:a6:ea: 55:92:1c:b0:e5:37:5a:23:eb:e1:23:83:e9:b3:3c: 88:49:2b:f2:0d:bf:95:10:af:aa:09:a0:ab:81:4d: 21:39:96:67:a3:ad:d0:ba:6b:ae:2d:1b:c2:be:21: 07:93:f3:5a:83:a3:b3:d2:b6:27:07:8a:fc:21:a4: d0:2e:d9:7d:29:d4:fe:21:14:3d:01:66:58:b0:0b: 74:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F9:7E:0B:6A:C1:37:FF:8A:1A:79:40:B1:48:56:53:5E:12:C5:E1 X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/207388F2D45E11EE8D29793EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.196.0/23 IPv6: 2001:df7:fc80::/48 Signature Algorithm: sha256WithRSAEncryption 65:f0:16:8f:23:76:f7:6a:4a:42:82:c4:c5:7d:2c:cf:fc:b4: 9d:c9:87:4e:fd:67:70:fe:13:55:43:48:da:96:05:27:c9:f7: c3:74:12:b3:8e:64:af:5f:9f:c1:fc:47:fa:5e:97:c6:9c:b8: 63:18:3f:ee:26:7e:5a:ec:29:90:1c:9e:58:dd:d7:76:56:65: e2:cd:20:48:dd:f4:5b:1d:49:a1:9a:80:87:63:bd:7b:b6:aa: ca:e6:fc:25:08:09:92:f1:81:7e:b5:38:04:08:76:41:4e:02: 72:80:ac:87:c8:41:c9:b3:a0:82:fa:12:48:77:01:29:ce:5a: 1a:2b:41:38:d8:25:43:bd:5d:ce:46:c2:cb:2c:d2:bf:d3:b9: 96:66:94:41:ff:fb:54:b9:17:f4:c0:1a:a2:97:63:40:db:94: 1c:ad:5d:97:89:58:56:c4:33:bc:ef:a6:1f:8e:25:c2:2c:22: 05:8f:7e:60:94:ee:ee:ff:f7:b5:91:4d:36:a3:45:51:d1:f7: f7:bb:c0:40:33:ee:d8:f4:7f:e4:bc:87:c3:ab:81:79:6f:7b: c4:34:92:1e:1f:b8:6d:ae:4a:53:5c:ee:a7:a3:86:e6:9a:2f: 23:a5:2a:38:d8:3f:cb:2b:98:f4:19:35:79:af:3c:ac:dd:e4: 3f:0d:21:36 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjQwMzAxMDIzNDExWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxM2VhMy03NTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/qgWRCY20IbpYhIOZmKDimbpxB66YD30qB9NAFLYkI4cXirpJjmCB/g+BOv HCcC3WvSHLFOsxwwRLDgqOQsB1HUTY72h1/8yG7UDcuKzQ0C4ECT7xHnoBICD9fw oktJory7ueVwiFt53Aqo0AlcDm+MjlKgfF52BdKvBdyfQJjnpAmPZ5fzMZNt/Vhg XIDNI3DiGPEtPAJFzQp7iSIzjsJyGJMCMlYWCx0NLahpS6rwpupVkhyw5TdaI+vh I4PpszyISSvyDb+VEK+qCaCrgU0hOZZno63QumuuLRvCviEHk/Nag6Oz0rYnB4r8 IaTQLtl9KdT+IRQ9AWZYsAt0TQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJP5fgtq wTf/ihp5QLFIVlNeEsXhMB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E4RUEvRDhDQTEzQzI0MDQ5MTFFQzlCNkVGRTdCQzRGOUFFMDIvMjA3Mzg4RjJE NDVFMTFFRThEMjk3OTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnr8QwDwQCAAIwCQMHACABDff8gDANBgkqhkiG9w0BAQsF AAOCAQEAZfAWjyN292pKQoLExX0sz/y0ncmHTv1ncP4TVUNI2pYFJ8n3w3QSs45k r1+fwfxH+l6Xxpy4Yxg/7iZ+WuwpkByeWN3XdlZl4s0gSN30Wx1JoZqAh2O9e7aq yub8JQgJkvGBfrU4BAh2QU4CcoCsh8hBybOggvoSSHcBKc5aGitBONglQ71dzkbC yyzSv9O5lmaUQf/7VLkX9MAaopdjQNuUHK1dl4lYVsQzvO+mH44lwiwiBY9+YJTu 7v/3tZFNNqNFUdH397vAQDPu2PR/5LyHw6uBeW97xDSSHh+4ba5KU1zup6OG5pov I6UqONg/yyuY9Bk1ea88rN3kPw0hNg== -----END CERTIFICATE-----Generated at Tue May 21 03:39:39 2024 by rpki-client on console-ams.rpki-client.org