$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D6AAA3B2DFFD11EE97B62A3CC4F9AE02.roa File: D6AAA3B2DFFD11EE97B62A3CC4F9AE02.roa (raw, json) Hash identifier: dH/dI9NKlgKXp1vrlH29LwYMzXgppca6gSzeHJf+2cU= Subject key identifier: BB:20:20:53:F8:81:4E:60:DA:6C:52:4F:7A:0A:85:D5:40:0C:FF:C5 Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0B10 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D6AAA3B2DFFD11EE97B62A3CC4F9AE02.roa Signing time: Mon 11 Mar 2024 23:19:42 +0000 ROA not before: Mon 11 Mar 2024 23:19:42 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138024 IP address blocks: 103.195.0.0/24 maxlen: 24 103.195.1.0/24 maxlen: 24 103.195.2.0/24 maxlen: 24 103.195.3.0/24 maxlen: 24 139.5.132.0/24 maxlen: 24 139.5.133.0/24 maxlen: 24 139.5.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2832 (0xb10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Mar 11 23:19:42 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65ef918d-0dcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e7:55:06:de:36:25:22:de:56:25:cc:4b:70: c5:32:8b:f0:64:73:50:76:1f:b9:66:1d:9a:86:fa: 7a:43:24:ad:8d:bd:90:74:05:95:a9:e5:cb:b4:c8: cf:a8:b6:f0:59:cc:32:d1:b8:9b:1d:49:0a:aa:10: 34:ca:5e:7e:2b:d0:5c:3d:7d:e4:ba:a2:bf:cd:38: de:87:47:58:1f:d9:9f:91:bc:22:b1:53:2d:c1:ac: 2e:8f:17:e4:fd:2a:c7:18:00:ed:07:70:6f:69:e4: 25:cc:b2:14:21:3b:a6:f1:7d:99:54:34:35:89:9d: e0:7f:c7:ea:fb:75:07:7f:5e:4e:3f:90:a1:11:0e: 8f:d9:cc:06:d8:90:fd:59:ca:ad:23:41:6f:1c:cb: 7e:28:60:f4:91:95:89:79:01:55:50:9f:62:43:70: c0:26:c5:08:43:ea:c6:16:b5:68:3e:4d:09:58:13: 7e:fd:fb:7f:1e:90:43:e7:c2:a9:e5:fc:18:66:f6: 9f:98:e7:4a:f9:c3:00:14:ce:4d:d8:e5:39:9b:67: 78:41:00:aa:30:2d:96:c0:62:f8:a3:69:b9:5b:e1: 9b:26:40:e7:dd:b6:0c:5a:48:1a:96:0f:1a:e4:11: b6:8a:82:c0:22:e1:35:f6:ea:40:cb:a4:d3:f8:25: ce:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:20:20:53:F8:81:4E:60:DA:6C:52:4F:7A:0A:85:D5:40:0C:FF:C5 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D6AAA3B2DFFD11EE97B62A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.0.0/22 139.5.132.0-139.5.134.255 Signature Algorithm: sha256WithRSAEncryption 76:6b:c9:76:f1:a7:55:0d:67:9e:b5:2c:86:5a:46:dd:25:3e: 0f:8f:fb:6f:eb:34:b0:e1:ad:77:30:c4:40:72:2d:4c:83:6e: 42:89:21:d9:a7:b1:1f:39:3f:64:0c:4d:7c:50:0e:36:fa:d2: 4f:49:4f:62:3f:19:f6:75:a5:fa:5c:d4:16:e4:1f:35:93:56: c9:ac:ea:74:6d:53:dc:69:28:e6:1f:45:ff:38:f0:ff:2e:95: 1f:1a:a6:b5:76:23:71:42:9f:6a:6f:6e:75:fd:c5:4f:f7:0c: 04:72:27:25:67:11:e9:23:fe:ce:26:3a:59:e8:4b:9a:3f:d3: a2:d8:20:e9:36:77:bd:ec:cb:b9:ea:1a:ea:5f:3e:85:cd:bd: d1:fd:a5:3e:d3:36:b2:77:12:18:f4:84:1d:00:a9:70:a2:d3: 33:94:c5:c6:80:1f:ee:6b:2c:fb:af:1d:86:06:8c:d0:2f:62: 7d:41:f2:a5:b1:d0:5f:7d:f5:17:ef:07:00:13:10:04:dc:92: 37:a7:4b:60:ae:74:97:82:32:5d:0b:ab:69:da:e1:49:50:ee: 11:29:15:b5:11:5c:31:e5:ba:ac:3c:44:44:17:ef:9d:20:f8: f9:c7:74:70:d4:ce:6c:c0:c4:29:b8:3e:e5:a1:76:14:a5:75: 6d:50:64:6c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjQwMzExMjMxOTQyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWVmOTE4ZC0wZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzudVBt42JSLeViXMS3DFMovwZHNQdh+5Zh2ahvp6QyStjb2QdAWVqeXLtMjP qLbwWcwy0bibHUkKqhA0yl5+K9BcPX3kuqK/zTjeh0dYH9mfkbwisVMtwawujxfk /SrHGADtB3BvaeQlzLIUITum8X2ZVDQ1iZ3gf8fq+3UHf15OP5ChEQ6P2cwG2JD9 WcqtI0FvHMt+KGD0kZWJeQFVUJ9iQ3DAJsUIQ+rGFrVoPk0JWBN+/ft/HpBD58Kp 5fwYZvafmOdK+cMAFM5N2OU5m2d4QQCqMC2WwGL4o2m5W+GbJkDn3bYMWkgalg8a 5BG2ioLAIuE19upAy6TT+CXOMwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFLsgIFP4 gU5g2mxST3oKhdVADP/FMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JEQzgvNjY5NzYzRjAxOEUwMTFFQUEwQzM4RTdCQzRGOUFFMDIvRDZBQUEzQjJE RkZEMTFFRTk3QjYyQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAJnwwAwDAMEAosFhAMEAIsFhjANBgkqhkiG9w0BAQsFAAOC AQEAdmvJdvGnVQ1nnrUshlpG3SU+D4/7b+s0sOGtdzDEQHItTINuQokh2aexHzk/ ZAxNfFAONvrST0lPYj8Z9nWl+lzUFuQfNZNWyazqdG1T3Gko5h9F/zjw/y6VHxqm tXYjcUKfam9udf3FT/cMBHInJWcR6SP+ziY6WehLmj/Totgg6TZ3vezLueoa6l8+ hc290f2lPtM2sncSGPSEHQCpcKLTM5TFxoAf7mss+68dhgaM0C9ifUHypbHQX331 F+8HABMQBNySN6dLYK50l4IyXQuradrhSVDuESkVtRFcMeW6rDxERBfvnSD4+cd0 cNTObMDEKbg+5aF2FKV1bVBkbA== -----END CERTIFICATE-----Generated at Tue May 14 20:52:16 2024 by rpki-client on console-fra.rpki-client.org