$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/F22D283A9B3B11EBA5C76B80C4F9AE02.roa File: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (raw, json) Hash identifier: Ps9MJyIGPdd10OsB8MEoWJPewnLOmiN38spNkATkPVk= Subject key identifier: DA:C0:56:77:34:5D:4B:78:6F:A0:FD:98:92:99:25:24:EC:CA:B6:67 Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 08F1 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/F22D283A9B3B11EBA5C76B80C4F9AE02.roa Signing time: Mon 06 Nov 2023 21:08:46 +0000 ROA not before: Mon 06 Nov 2023 21:08:46 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141768 IP address blocks: 103.144.40.0/23 maxlen: 23 103.144.40.0/24 maxlen: 24 103.144.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:04:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2289 (0x8f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Nov 6 21:08:46 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654955de-c3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:58:47:11:11:e9:46:70:ad:5c:0d:4f:0a:18: 19:d6:3b:88:38:4b:20:51:ab:18:07:d1:a4:46:82: 87:34:18:ad:87:6b:22:56:bd:f7:a3:14:aa:18:2a: 2f:2a:ce:63:b7:ff:94:88:e8:78:88:87:f9:bd:c1: 68:c5:5e:fd:bd:66:ec:2d:c1:3e:c9:fd:16:83:82: f4:5c:ee:9b:b7:82:c0:ff:c8:ef:25:bf:d9:3c:00: 2e:8f:e5:fb:1f:e0:02:0b:2e:a0:ce:f3:d6:4b:a5: 22:e2:f6:a5:c4:d9:52:d5:f6:0b:a5:d1:7c:1c:57: 59:23:56:af:c0:4d:6d:b2:69:4c:ec:65:3f:45:b5: b2:7a:25:84:93:77:0d:ee:84:ad:bb:d9:86:fe:35: 55:db:48:ba:55:5f:1f:98:64:eb:8c:c1:85:71:bb: 56:25:86:ee:4a:44:04:8a:a8:9d:3b:d6:5c:5c:43: f8:ec:10:5f:41:97:64:51:55:21:ee:1a:36:92:73: 3d:fb:b2:f1:59:b8:57:77:43:25:e1:72:0d:ee:46: 01:10:97:e3:de:6b:96:44:23:a7:ca:5e:95:85:55: 21:43:0e:01:0a:31:80:80:3b:12:8a:85:83:59:14: e6:29:3f:37:c1:3d:bd:53:6f:21:bb:c2:79:a7:11: d4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C0:56:77:34:5D:4B:78:6F:A0:FD:98:92:99:25:24:EC:CA:B6:67 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/F22D283A9B3B11EBA5C76B80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.40.0/23 Signature Algorithm: sha256WithRSAEncryption 66:a2:50:79:0b:19:de:43:4f:d9:e9:13:d8:55:57:28:dc:ab: f8:e6:80:96:b9:cd:f8:37:8d:48:a3:50:45:37:3a:1f:5e:24: 3b:9c:12:66:fa:51:a9:e2:9a:82:33:8c:50:ff:be:94:10:66: 00:2e:16:3c:f2:41:6b:7a:aa:6c:0d:35:ba:ae:3c:36:f4:68: ef:d3:d6:1c:8e:77:ed:9e:2e:4b:ad:b4:41:80:83:97:a2:b5: 1f:3c:88:34:49:ea:93:f2:4d:94:e4:8c:fe:56:e7:5a:63:e0: e5:b2:fe:d3:c8:ed:cf:7b:39:7b:15:bc:51:cd:52:27:52:c5: f7:19:2c:a6:35:cc:fd:56:be:6c:f4:f0:bc:aa:1b:fe:95:b4: 4c:b8:c7:81:3d:24:c5:cb:0f:c5:92:5a:68:46:a1:7a:9e:61: 34:4a:34:8d:38:c4:e9:ff:98:af:46:3a:47:2a:a4:c4:38:3f: bb:1b:5a:8b:f2:9c:c8:ab:a9:ff:10:34:c7:5d:f2:93:28:ca: 23:cd:da:c2:db:c5:5d:78:c5:c3:b1:03:3a:2b:39:1b:ac:cd: 28:16:ec:32:6f:bf:7b:6a:a8:10:29:cf:6f:76:42:0b:76:3e: 5b:e4:f8:72:eb:38:b0:15:c3:7f:cf:e6:61:16:10:9f:10:a0: 6a:c6:7a:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjMxMTA2MjEwODQ2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ5NTVkZS1jM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FhHERHpRnCtXA1PChgZ1juIOEsgUasYB9GkRoKHNBith2siVr33oxSqGCov Ks5jt/+UiOh4iIf5vcFoxV79vWbsLcE+yf0Wg4L0XO6bt4LA/8jvJb/ZPAAuj+X7 H+ACCy6gzvPWS6Ui4valxNlS1fYLpdF8HFdZI1avwE1tsmlM7GU/RbWyeiWEk3cN 7oStu9mG/jVV20i6VV8fmGTrjMGFcbtWJYbuSkQEiqidO9ZcXEP47BBfQZdkUVUh 7ho2knM9+7LxWbhXd0Ml4XIN7kYBEJfj3muWRCOnyl6VhVUhQw4BCjGAgDsSioWD WRTmKT83wT29U28hu8J5pxHU7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNrAVnc0 XUt4b6D9mJKZJSTsyrZnMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJBQ0YvNUFDNjJCMkE3M0UzMTFFQTlCNTk0MzZFQzRGOUFFMDIvRjIyRDI4M0E5 QjNCMTFFQkE1Qzc2QjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkCgwDQYJKoZIhvcNAQELBQADggEBAGaiUHkLGd5DT9np E9hVVyjcq/jmgJa5zfg3jUijUEU3Oh9eJDucEmb6UanimoIzjFD/vpQQZgAuFjzy QWt6qmwNNbquPDb0aO/T1hyOd+2eLkuttEGAg5eitR88iDRJ6pPyTZTkjP5W51pj 4OWy/tPI7c97OXsVvFHNUidSxfcZLKY1zP1Wvmz08LyqG/6VtEy4x4E9JMXLD8WS WmhGoXqeYTRKNI04xOn/mK9GOkcqpMQ4P7sbWovynMirqf8QNMdd8pMoyiPN2sLb xV14xcOxAzorORuszSgW7DJvv3tqqBApz292Qgt2Plvk+HLrOLAVw3/P5mEWEJ8Q oGrGelk= -----END CERTIFICATE-----Generated at Wed May 22 22:41:55 2024 by rpki-client on console-fra.rpki-client.org