$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/FFFE92D29CE611EE883A672FC4F9AE02.roa File: FFFE92D29CE611EE883A672FC4F9AE02.roa (raw, json) Hash identifier: Kf1M3R61MFcIHrcxRj+dAedpIik9nmlYZYIYC6Z+R54= Subject key identifier: 31:33:54:A9:14:B8:DF:67:62:2F:32:8A:2F:94:FC:66:41:8E:DD:7D Certificate issuer: /CN=A91CAA4E/serialNumber=9C4FFE65DEA35233D39E8702238565574DED466E Certificate serial: 060A Authority key identifier: 9C:4F:FE:65:DE:A3:52:33:D3:9E:87:02:23:85:65:57:4D:ED:46:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/FFFE92D29CE611EE883A672FC4F9AE02.roa Signing time: Sun 17 Dec 2023 14:17:25 +0000 ROA not before: Sun 17 Dec 2023 14:17:25 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 138023 IP address blocks: 103.137.108.0/23 maxlen: 23 103.137.108.0/24 maxlen: 24 103.137.109.0/24 maxlen: 24 2001:df6:700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1546 (0x60a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E/serialNumber=9C4FFE65DEA35233D39E8702238565574DED466E Validity Not Before: Dec 17 14:17:25 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=657f02f4-6bf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:06:e9:51:f7:fc:26:34:c5:9f:34:b2:57:27: a5:4c:60:67:17:89:a7:ff:d1:a2:b0:98:1e:05:7e: e7:7c:60:a5:b2:6a:81:76:9e:fe:6e:2f:62:49:0e: c7:d5:2d:65:49:b8:30:d9:08:81:8b:b2:7c:c2:cc: 1c:d5:e7:a8:c2:c1:4b:b4:47:6d:d1:d8:96:34:6a: 01:4f:8d:dc:84:c7:dc:93:27:6b:6b:5c:4d:11:3d: 50:99:e6:08:f1:62:15:f8:d4:bc:40:b8:10:e6:e8: c1:09:99:c0:bb:fd:15:6f:19:68:9f:35:a4:2a:84: c0:15:2b:7a:d5:d9:90:df:0a:7d:40:76:15:26:a9: 47:a0:71:94:e7:6a:8f:e0:67:48:ca:90:5f:60:50: 19:48:d4:ab:c7:69:bb:30:9d:9c:6b:00:2e:f9:33: e9:4b:23:5a:3a:bd:b4:18:63:db:60:fe:55:ca:fc: 4e:3b:f6:65:35:eb:be:4b:8e:d6:b0:29:6d:24:97: b0:53:87:60:e0:f3:cc:dd:3b:f6:20:a0:68:8a:16: c2:a0:34:68:b9:bf:b9:4c:9c:75:15:ae:39:4d:ce: c4:9b:ab:9b:5b:0c:16:23:10:57:f5:fb:1d:b5:e0: 00:b1:e1:57:15:62:32:ea:e0:c3:4f:b5:ea:dc:70: bf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:33:54:A9:14:B8:DF:67:62:2F:32:8A:2F:94:FC:66:41:8E:DD:7D X509v3 Authority Key Identifier: keyid:9C:4F:FE:65:DE:A3:52:33:D3:9E:87:02:23:85:65:57:4D:ED:46:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/FFFE92D29CE611EE883A672FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.108.0/23 IPv6: 2001:df6:700::/48 Signature Algorithm: sha256WithRSAEncryption 3c:2c:c4:ee:b4:ee:0a:cc:b3:58:f6:6d:93:b2:90:14:a8:af: 79:8f:df:e3:95:16:b4:92:f7:a7:6d:6e:29:03:2c:ef:99:d1: c2:5f:76:48:81:01:27:dc:1f:60:87:65:48:f3:fc:31:5e:bb: b2:83:31:e3:95:ac:dc:59:81:fa:fc:ce:6f:fe:68:a8:14:48: cc:a4:9d:b3:ac:fe:71:f8:37:0a:c7:c4:00:c7:44:28:15:de: 32:f2:9d:bf:d0:14:39:e8:39:9f:f9:43:3e:a0:95:1c:c2:4d: 2c:17:84:6d:b5:06:2f:36:6b:19:4e:8d:49:2b:07:e5:0a:80: f6:84:78:66:08:4c:88:12:b8:1c:10:ae:85:04:54:82:7c:46: f4:aa:76:2c:05:54:72:8c:ad:aa:34:97:3f:54:ca:34:b8:9e: 9a:43:e0:57:20:0c:9d:44:df:b3:09:e9:8e:be:b7:d1:dc:fd: b5:3e:81:64:5f:c6:9e:c8:89:1e:de:91:2b:9a:e3:ba:19:5b: 42:ba:c0:e8:65:b1:92:38:6d:bb:c3:aa:77:ce:2d:bb:a8:81: ff:23:33:04:8a:fb:b4:0a:98:8c:56:22:45:7a:d2:6b:7f:5e: 8e:74:6b:af:1d:d7:70:bb:4d:39:d9:8b:15:a6:24:b2:5e:a4: 07:9b:0a:4f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDlDNEZGRTY1REVBMzUyMzNEMzlFODcwMjIzODU2NTU3 NERFRDQ2NkUwHhcNMjMxMjE3MTQxNzI1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdmMDJmNC02YmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7wbpUff8JjTFnzSyVyelTGBnF4mn/9GisJgeBX7nfGClsmqBdp7+bi9iSQ7H 1S1lSbgw2QiBi7J8wswc1eeowsFLtEdt0diWNGoBT43chMfckydra1xNET1QmeYI 8WIV+NS8QLgQ5ujBCZnAu/0VbxlonzWkKoTAFSt61dmQ3wp9QHYVJqlHoHGU52qP 4GdIypBfYFAZSNSrx2m7MJ2cawAu+TPpSyNaOr20GGPbYP5VyvxOO/ZlNeu+S47W sCltJJewU4dg4PPM3Tv2IKBoihbCoDRoub+5TJx1Fa45Tc7Em6ubWwwWIxBX9fsd teAAseFXFWIy6uDDT7Xq3HC/UQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDEzVKkU uN9nYi8yii+U/GZBjt19MB8GA1UdIwQYMBaAFJxP/mXeo1Iz056HAiOFZVdN7UZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9uRV8tWmQ2alVqUFRub2NDSTRWbFYwM3RS bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25FXy1aZDZqVWpQVG5vY0NJNFZsVjAzdFJtNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0FBNEUvNTVFOTc5NUFBOTRGMTFFOEFBMEM5MDBFQzRGOUFFMDIvRkZGRTkyRDI5 Q0U2MTFFRTg4M0E2NzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFniWwwDwQCAAIwCQMHACABDfYHADANBgkqhkiG9w0BAQsF AAOCAQEAPCzE7rTuCsyzWPZtk7KQFKiveY/f45UWtJL3p21uKQMs75nRwl92SIEB J9wfYIdlSPP8MV67soMx45Ws3FmB+vzOb/5oqBRIzKSds6z+cfg3CsfEAMdEKBXe MvKdv9AUOeg5n/lDPqCVHMJNLBeEbbUGLzZrGU6NSSsH5QqA9oR4ZghMiBK4HBCu hQRUgnxG9Kp2LAVUcoytqjSXP1TKNLiemkPgVyAMnUTfswnpjr630dz9tT6BZF/G nsiJHt6RK5rjuhlbQrrA6GWxkjhtu8Oqd84tu6iB/yMzBIr7tAqYjFYiRXrSa39e jnRrrx3XcLtNOdmLFaYksl6kB5sKTw== -----END CERTIFICATE-----Generated at Thu May 16 18:26:09 2024 by rpki-client on console-fra.rpki-client.org