$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE4A1/85FA0CE880B711EC9FEB2C67C4F9AE02/2D81FF3680BB11EC8FD7663DC4F9AE02.roa File: 2D81FF3680BB11EC8FD7663DC4F9AE02.roa (raw, json) Hash identifier: ACYS4E6s5g3Yyp9k5cK0cHZKIktS2+m7MVWC1wBjVGg= Subject key identifier: 71:26:78:DC:4B:E0:0E:A4:63:04:85:32:99:0B:FD:BF:37:4D:3D:D2 Certificate issuer: /CN=A91CE4A1/serialNumber=15473EFB3C5AE8A0C47647B7E0FDE5886B6B1FA3 Certificate serial: 02CE Authority key identifier: 15:47:3E:FB:3C:5A:E8:A0:C4:76:47:B7:E0:FD:E5:88:6B:6B:1F:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FUc--zxa6KDEdke34P3liGtrH6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE4A1/85FA0CE880B711EC9FEB2C67C4F9AE02/2D81FF3680BB11EC8FD7663DC4F9AE02.roa Signing time: Wed 15 Nov 2023 02:54:21 +0000 ROA not before: Wed 15 Nov 2023 02:54:21 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139029 IP address blocks: 103.138.172.0/24 maxlen: 24 103.138.173.0/24 maxlen: 24 2406:6fc0::/32 maxlen: 32 2406:6fc0:1::/48 maxlen: 48 2406:6fc0:2::/48 maxlen: 48 2406:6fc0:3::/48 maxlen: 48 2406:6fc0:4::/48 maxlen: 48 2406:6fc0:5::/48 maxlen: 48 2406:6fc0:6::/48 maxlen: 48 2406:6fc0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE4A1/85FA0CE880B711EC9FEB2C67C4F9AE02/FUc--zxa6KDEdke34P3liGtrH6M.crl rsync://rpki.apnic.net/member_repository/A91CE4A1/85FA0CE880B711EC9FEB2C67C4F9AE02/FUc--zxa6KDEdke34P3liGtrH6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FUc--zxa6KDEdke34P3liGtrH6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE4A1/serialNumber=15473EFB3C5AE8A0C47647B7E0FDE5886B6B1FA3 Validity Not Before: Nov 15 02:54:21 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=655432dc-9515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0d:95:19:c4:59:e8:8d:a2:d1:10:fc:24:3f: ff:e3:fc:0f:0e:13:2a:4d:d6:1b:d6:02:40:99:47: 5b:40:84:6d:3a:62:01:0b:90:c3:fe:5d:68:1e:31: 9d:6e:d5:7e:62:41:db:80:a6:f8:86:47:e6:97:3c: 0c:bd:e2:26:fd:49:4d:1f:50:c4:17:bc:7c:c2:3b: ed:cb:15:ea:b9:42:eb:7e:a7:3a:e7:55:72:af:46: 95:53:b3:a8:4f:e2:aa:f6:46:4a:18:e6:fd:f7:a2: 29:f3:11:e8:a2:84:e9:8f:85:92:02:98:bc:52:42: 1d:61:e3:40:19:4b:34:b4:24:cf:c7:78:67:af:cd: 74:bf:05:f6:6f:32:66:ba:3c:f9:9e:a7:9b:ca:21: 5f:0d:a7:9d:42:38:d1:99:09:ae:7f:6b:f1:68:d3: 79:f5:06:54:10:dc:60:5a:56:53:b2:62:34:48:69: 2b:d9:28:ef:80:49:8e:80:19:a6:58:27:da:55:77: 85:9c:d2:b0:a3:de:1d:48:84:48:05:cb:05:ee:7b: c6:50:05:08:8e:62:80:3d:1a:af:ea:d3:d5:01:ad: a8:9e:b7:d1:a7:6d:de:dd:49:d0:3f:b8:66:d6:15: 3a:26:73:60:07:4f:33:ab:10:d5:00:3d:2c:29:27: 1a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:26:78:DC:4B:E0:0E:A4:63:04:85:32:99:0B:FD:BF:37:4D:3D:D2 X509v3 Authority Key Identifier: keyid:15:47:3E:FB:3C:5A:E8:A0:C4:76:47:B7:E0:FD:E5:88:6B:6B:1F:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE4A1/85FA0CE880B711EC9FEB2C67C4F9AE02/FUc--zxa6KDEdke34P3liGtrH6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FUc--zxa6KDEdke34P3liGtrH6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE4A1/85FA0CE880B711EC9FEB2C67C4F9AE02/2D81FF3680BB11EC8FD7663DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.172.0/23 IPv6: 2406:6fc0::/32 Signature Algorithm: sha256WithRSAEncryption 06:df:84:64:de:c3:41:30:dc:56:24:5a:71:b3:fd:a0:f3:83: e0:3f:91:bd:3b:31:e6:d5:bf:ec:84:e8:a1:0a:10:2f:08:a7: 33:1b:f3:f3:17:1c:9e:f8:2b:94:b0:ce:70:cd:3b:23:fd:04: 62:cf:3a:e2:ef:27:e4:f8:94:e2:a9:12:76:9a:d8:f7:2f:42: be:0f:32:8b:38:b5:23:37:5f:a9:af:da:83:52:45:45:94:cf: fd:ef:06:9d:51:75:19:09:2e:47:7f:d1:23:0c:6e:cd:09:1a: 63:16:c0:f0:89:54:f9:3d:68:2d:28:aa:bd:90:2b:da:a3:f5: c7:f6:95:84:0e:93:2f:e6:5b:73:6d:42:5b:1f:e4:2e:58:55: f5:6d:90:bc:57:35:e3:b8:d4:65:f6:99:b2:41:00:dc:28:87: b1:6e:e9:95:46:9f:d4:78:d9:6e:51:25:99:fa:94:4e:dd:4a: f8:1f:51:06:65:3f:85:14:58:80:d9:9a:24:26:e9:4e:ae:f3: e8:1a:b4:49:66:f6:bd:bb:7c:0d:f7:23:7e:44:a6:84:1e:11: b1:d6:de:52:69:ec:95:4d:62:17:76:c6:0b:55:bd:cb:4d:a9: 0c:f7:8c:4a:12:da:d3:1f:47:4a:fd:41:46:db:69:0d:59:87: 86:fd:aa:0c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U0QTExMTAvBgNVBAUTKDE1NDczRUZCM0M1QUU4QTBDNDc2NDdCN0UwRkRFNTg4 NkI2QjFGQTMwHhcNMjMxMTE1MDI1NDIxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU0MzJkYy05NTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Q2VGcRZ6I2i0RD8JD//4/wPDhMqTdYb1gJAmUdbQIRtOmIBC5DD/l1oHjGd btV+YkHbgKb4hkfmlzwMveIm/UlNH1DEF7x8wjvtyxXquULrfqc651Vyr0aVU7Oo T+Kq9kZKGOb996Ip8xHoooTpj4WSApi8UkIdYeNAGUs0tCTPx3hnr810vwX2bzJm ujz5nqebyiFfDaedQjjRmQmuf2vxaNN59QZUENxgWlZTsmI0SGkr2SjvgEmOgBmm WCfaVXeFnNKwo94dSIRIBcsF7nvGUAUIjmKAPRqv6tPVAa2onrfRp23e3UnQP7hm 1hU6JnNgB08zqxDVAD0sKScaawIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHEmeNxL 4A6kYwSFMpkL/b83TT3SMB8GA1UdIwQYMBaAFBVHPvs8WuigxHZHt+D95Yhrax+j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTRBMS84NUZBMENFODgw QjcxMUVDOUZFQjJDNjdDNEY5QUUwMi9GVWMtLXp4YTZLREVka2UzNFAzbGlHdHJI Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZVYy0tenhhNktERWRrZTM0UDNsaUd0ckg2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U0QTEvODVGQTBDRTg4MEI3MTFFQzlGRUIyQzY3QzRGOUFFMDIvMkQ4MUZGMzY4 MEJCMTFFQzhGRDc2NjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFniqwwDQQCAAIwBwMFACQGb8AwDQYJKoZIhvcNAQELBQAD ggEBAAbfhGTew0Ew3FYkWnGz/aDzg+A/kb07MebVv+yE6KEKEC8IpzMb8/MXHJ74 K5SwznDNOyP9BGLPOuLvJ+T4lOKpEnaa2PcvQr4PMos4tSM3X6mv2oNSRUWUz/3v Bp1RdRkJLkd/0SMMbs0JGmMWwPCJVPk9aC0oqr2QK9qj9cf2lYQOky/mW3NtQlsf 5C5YVfVtkLxXNeO41GX2mbJBANwoh7Fu6ZVGn9R42W5RJZn6lE7dSvgfUQZlP4UU WIDZmiQm6U6u8+gatElm9r27fA33I35EpoQeEbHW3lJp7JVNYhd2xgtVvctNqQz3 jEoS2tMfR0r9QUbbaQ1Zh4b9qgw= -----END CERTIFICATE-----Generated at Tue May 21 03:29:52 2024 by rpki-client on console-fra.rpki-client.org