$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/D4FC5DAE5B9E11EF9205B45BC4F9AE02.roa File: D4FC5DAE5B9E11EF9205B45BC4F9AE02.roa (raw, json) Hash identifier: CgPRx4xYkJ9MsNRxqHiEwCH23g8u+Rv2yHcGrJnrP8g= Subject key identifier: F8:06:4F:02:2E:B8:D7:69:23:81:C4:D9:FF:0F:88:F5:89:99:2B:A9 Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: 02 Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/D4FC5DAE5B9E11EF9205B45BC4F9AE02.roa Signing time: Fri 16 Aug 2024 07:12:01 +0000 ROA not before: Fri 16 Aug 2024 07:12:01 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 26658 IP address blocks: 103.207.116.0/22 maxlen: 22 121.46.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Validity Not Before: Aug 16 07:12:01 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66befbc1-748c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c2:38:8b:0b:e9:13:9d:c3:1b:d5:c5:10:c9: 75:a4:02:e9:3d:7e:2c:d5:25:18:4e:13:66:37:1d: 32:28:cd:a8:75:2a:3c:b1:f9:0c:8c:3b:de:18:fa: 65:bc:e0:e0:b1:8d:86:6a:45:5b:c0:2c:6e:9b:56: 74:be:2e:e6:69:c7:92:99:e5:e2:1c:55:52:d0:59: fc:b9:f1:26:9c:6e:0d:b7:42:5c:62:5a:17:05:78: cc:ef:03:dd:7b:f9:2c:3b:1e:79:aa:f8:91:68:a5: 80:81:15:74:61:0a:21:9b:a8:a0:4d:a4:e0:e2:f2: e6:2a:1e:82:eb:75:f1:b5:82:bf:dc:d3:52:bb:01: 89:be:18:b8:ee:9a:f1:48:48:61:6b:5e:bf:98:ac: 77:34:f5:eb:f5:04:01:e1:50:8b:51:06:8b:ca:d4: ea:cb:d7:e4:3b:1f:6d:55:a0:39:ea:8f:1c:8d:e4: ea:90:c1:52:7d:dc:c8:77:87:3a:30:b9:00:92:3b: b5:f5:6e:87:fe:c7:40:41:08:3b:fa:2a:be:0e:76: d7:80:8e:7c:ec:ab:b4:af:92:31:7f:0f:d7:fc:db: 82:30:b8:d3:8f:24:02:f1:3c:00:7c:1a:4e:82:68: fe:13:99:c2:12:93:0b:ff:e9:b9:0e:c4:75:27:6a: a8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:06:4F:02:2E:B8:D7:69:23:81:C4:D9:FF:0F:88:F5:89:99:2B:A9 X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/D4FC5DAE5B9E11EF9205B45BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.116.0/22 121.46.80.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:a4:99:4a:da:28:db:b2:a6:43:2b:44:b8:83:5b:48:a9:f0: c9:ec:23:c9:2d:48:25:c2:13:c6:4c:43:cd:19:0d:aa:48:96: db:1b:00:70:2a:d5:82:5e:c4:20:1f:f7:1a:ac:28:31:48:71: c8:df:56:0a:d9:a2:3f:0f:8f:bc:9c:06:e3:0f:3a:14:8d:ca: 50:7e:7b:da:54:42:a0:04:14:7a:16:d4:22:bd:bc:f1:f1:6b: f2:87:f8:ad:ea:58:8b:e9:fb:21:2d:e0:a4:a7:ce:aa:de:73: 5e:e0:fd:03:51:b7:a1:00:96:29:b0:a7:95:fa:5d:4b:41:ca: af:c1:47:34:55:df:d9:8b:36:2e:09:a1:f4:e8:4a:f3:e4:e1: ec:48:c2:b3:57:e7:7f:34:2f:05:94:b7:77:e2:a0:55:07:5c: 1c:c0:b0:9a:a9:08:0f:5b:14:f0:47:a9:90:04:77:06:0d:81: 83:d3:f1:da:3b:61:69:54:ba:cd:43:ab:65:40:1d:b0:cf:2e: f1:9c:2f:7e:1d:05:42:51:20:05:8f:e6:ba:a8:65:ad:9b:36: eb:dc:ee:87:d7:a1:63:a5:49:c2:32:76:ba:45:1a:2f:88:49: 8d:24:e2:30:be:0c:0c:13:21:de:4f:b9:d5:d3:ee:4e:fd:26: 25:83:5e:6c -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RjlGNTExMC8GA1UEBRMoODdCMUVFM0U5RUUyQUQxQTExM0YyN0EyQTU0RTJDMEI4 RDVBRkIzNDAeFw0yNDA4MTYwNzEyMDFaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmVmYmMxLTc0OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHwjiLC+kTncMb1cUQyXWkAuk9fizVJRhOE2Y3HTIozah1Kjyx+QyMO94Y+mW8 4OCxjYZqRVvALG6bVnS+LuZpx5KZ5eIcVVLQWfy58Sacbg23QlxiWhcFeMzvA917 +Sw7Hnmq+JFopYCBFXRhCiGbqKBNpODi8uYqHoLrdfG1gr/c01K7AYm+GLjumvFI SGFrXr+YrHc09ev1BAHhUItRBovK1OrL1+Q7H21VoDnqjxyN5OqQwVJ93Mh3hzow uQCSO7X1bof+x0BBCDv6Kr4OdteAjnzsq7SvkjF/D9f824IwuNOPJALxPAB8Gk6C aP4TmcISkwv/6bkOxHUnaqixAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU+AZPAi64 12kjgcTZ/w+I9YmZK6kwHwYDVR0jBBgwFoAUh7HuPp7irRoRPyeipU4sC41a+zQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGOUY1LzhCOTI2RDJBNUI5 RTExRUY4QkY5MTc1QkM0RjlBRTAyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDdIdVBwN2lyUm9SUHllaXBVNHNDNDFhLXpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlGNS84QjkyNkQyQTVCOUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9ENEZDNURBRTVC OUUxMUVGOTIwNUI0NUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmfPdAMEAnkuUDANBgkqhkiG9w0BAQsFAAOCAQEAPaSZStoo 27KmQytEuINbSKnwyewjyS1IJcITxkxDzRkNqkiW2xsAcCrVgl7EIB/3GqwoMUhx yN9WCtmiPw+PvJwG4w86FI3KUH572lRCoAQUehbUIr288fFr8of4repYi+n7IS3g pKfOqt5zXuD9A1G3oQCWKbCnlfpdS0HKr8FHNFXf2Ys2Lgmh9OhK8+Th7EjCs1fn fzQvBZS3d+KgVQdcHMCwmqkID1sU8EepkAR3Bg2Bg9Px2jthaVS6zUOrZUAdsM8u 8Zwvfh0FQlEgBY/muqhlrZs269zuh9ehY6VJwjJ2ukUaL4hJjSTiML4MDBMh3k+5 1dPuTv0mJYNebA== -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:23 2024 by rpki-client on console-fra.rpki-client.org