$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/CA42E5689FA411EBBC1FFB40C4F9AE02.roa File: CA42E5689FA411EBBC1FFB40C4F9AE02.roa (raw, json) Hash identifier: sN9C7nPWDakKP9w8LzClMGecHePSf8JTR+Rrj9/9ZzM= Subject key identifier: 4C:BA:BC:59:E6:BF:68:B8:9E:9A:1B:E5:E7:4C:96:67:68:92:CF:CB Certificate issuer: /CN=A91CDFFB/serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Certificate serial: 06EA Authority key identifier: DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/CA42E5689FA411EBBC1FFB40C4F9AE02.roa Signing time: Tue 26 Sep 2023 21:59:12 +0000 ROA not before: Tue 26 Sep 2023 21:59:12 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140957 IP address blocks: 103.153.198.0/23 maxlen: 23 103.153.198.0/24 maxlen: 24 103.153.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1770 (0x6ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDFFB/serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Validity Not Before: Sep 26 21:59:12 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65135430-f4f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:83:3f:11:d3:36:21:41:08:9d:58:e1:bc:8b: 21:95:94:e2:96:91:8e:44:2a:c5:61:fa:14:78:55: 70:54:c5:ed:94:42:08:49:46:67:8a:08:b4:5d:a3: ab:9e:f8:50:18:b9:7d:94:a4:3d:46:a1:c0:6a:37: 4e:2e:58:26:94:a9:1e:c6:f9:66:94:01:35:d3:40: 14:5c:1d:6b:b1:f2:ef:bb:eb:32:5c:a0:24:9d:ca: 40:40:a6:71:91:82:1f:da:9e:9e:83:bf:30:b2:66: fb:6f:3a:c3:5e:34:78:87:1d:f5:a8:47:bf:bb:3e: d0:7c:1f:e5:cc:a9:0e:20:5b:78:77:66:5f:4b:c0: 3d:21:4c:fc:b0:a0:40:f6:eb:ad:40:5c:60:3d:58: 73:fb:d4:81:0a:b8:ec:6a:a1:c9:ce:b0:a6:82:b2: 2b:8c:42:3f:9c:b3:de:3e:c2:bc:a4:9d:c4:a8:6c: 77:8d:90:0c:2d:92:9f:2e:0c:7f:5b:b9:3b:7a:72: d4:d4:d3:14:7d:21:c8:02:7b:8c:a5:aa:66:57:6b: f1:9d:96:d4:1b:2e:92:c3:ec:13:10:4b:43:02:1b: 7d:e1:f9:ed:41:47:1a:9f:59:1c:59:c3:2a:58:6a: 6c:c1:03:96:ed:c4:9f:e4:be:16:a3:01:15:cc:b7: 27:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:BA:BC:59:E6:BF:68:B8:9E:9A:1B:E5:E7:4C:96:67:68:92:CF:CB X509v3 Authority Key Identifier: keyid:DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/CA42E5689FA411EBBC1FFB40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.198.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:cc:77:12:c7:29:a6:a4:e8:cc:a7:52:f3:ae:90:9c:cb:4a: 54:d3:eb:92:21:10:ae:e8:42:38:90:71:a7:39:90:ae:0e:e1: bd:d5:fa:82:16:06:c9:08:91:f5:b6:5b:04:5a:99:3e:24:1f: 4d:38:20:7f:b3:f7:38:6c:4e:39:3c:d3:93:9c:82:94:ff:7a: 4e:b2:33:c6:a1:c3:d5:df:47:7c:60:2c:f2:d0:4c:0b:16:f8: cd:5f:f0:bf:e0:65:53:93:40:ed:cd:13:50:0d:05:65:31:c0: d1:10:b2:d1:28:9e:ae:4d:a8:ae:b9:ae:17:8c:68:0f:59:c6: 2a:95:98:60:6f:ee:81:90:de:99:20:46:99:f9:80:92:66:cc: 42:10:d5:e0:9b:79:7b:72:a9:6e:54:4a:3a:3a:5e:01:cf:53: 61:83:8d:6a:0e:e6:1b:ff:68:53:07:31:c0:4b:fc:0f:7e:40: d7:88:8b:f5:53:ea:f1:f2:8c:be:56:31:29:f7:4c:74:1f:df: be:5c:3a:c9:cf:20:bf:4c:29:b6:2f:d1:ab:5a:2f:61:eb:2a: 4c:65:bf:7d:b1:10:99:b9:fc:de:c5:b7:6a:b6:0b:31:90:57: 83:11:bc:f0:b1:0c:dd:5e:25:88:ba:15:b1:6a:43:cf:84:ef: ef:94:2a:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGRkIxMTAvBgNVBAUTKERFQjU2MzlGNTg0N0M3MERFMEZDNDRCRTc4NDI0MTE4 RjhBMjA2QzYwHhcNMjMwOTI2MjE1OTEyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzNTQzMC1mNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oM/EdM2IUEInVjhvIshlZTilpGORCrFYfoUeFVwVMXtlEIISUZnigi0XaOr nvhQGLl9lKQ9RqHAajdOLlgmlKkexvlmlAE100AUXB1rsfLvu+syXKAkncpAQKZx kYIf2p6eg78wsmb7bzrDXjR4hx31qEe/uz7QfB/lzKkOIFt4d2ZfS8A9IUz8sKBA 9uutQFxgPVhz+9SBCrjsaqHJzrCmgrIrjEI/nLPePsK8pJ3EqGx3jZAMLZKfLgx/ W7k7enLU1NMUfSHIAnuMpapmV2vxnZbUGy6Sw+wTEEtDAht94fntQUcan1kcWcMq WGpswQOW7cSf5L4WowEVzLcn4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEy6vFnm v2i4npob5edMlmdoks/LMB8GA1UdIwQYMBaAFN61Y59YR8cN4PxEvnhCQRj4ogbG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREZGQi8yN0U1MDZFNkQ0 RUYxMUVBOUE2MTcyNEFDNEY5QUUwMi8zclZqbjFoSHh3M2dfRVMtZUVKQkdQaWlC c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNyVmpuMWhIeHczZ19FUy1lRUpCR1BpaUJzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RGRkIvMjdFNTA2RTZENEVGMTFFQTlBNjE3MjRBQzRGOUFFMDIvQ0E0MkU1Njg5 RkE0MTFFQkJDMUZGQjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmcYwDQYJKoZIhvcNAQELBQADggEBAA/MdxLHKaak6Myn UvOukJzLSlTT65IhEK7oQjiQcac5kK4O4b3V+oIWBskIkfW2WwRamT4kH004IH+z 9zhsTjk805OcgpT/ek6yM8ahw9XfR3xgLPLQTAsW+M1f8L/gZVOTQO3NE1ANBWUx wNEQstEonq5NqK65rheMaA9ZxiqVmGBv7oGQ3pkgRpn5gJJmzEIQ1eCbeXtyqW5U Sjo6XgHPU2GDjWoO5hv/aFMHMcBL/A9+QNeIi/VT6vHyjL5WMSn3THQf375cOsnP IL9MKbYv0ataL2HrKkxlv32xEJm5/N7Ft2q2CzGQV4MRvPCxDN1eJYi6FbFqQ8+E 7++UKio= -----END CERTIFICATE-----Generated at Thu May 16 22:58:19 2024 by rpki-client on console-fra.rpki-client.org