$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/6127B9001FE711ECB8454E83C4F9AE02.roa File: 6127B9001FE711ECB8454E83C4F9AE02.roa (raw, json) Hash identifier: 7a0PKUrsjiXICmXcKLCJ7/JMlQiHDgfv1DZP+kP6w2E= Subject key identifier: 71:D3:89:24:83:7E:DB:31:6F:45:75:76:27:62:F1:77:CD:45:6A:2E Certificate issuer: /CN=A91D3078/serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Certificate serial: 0FA2 Authority key identifier: 8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/6127B9001FE711ECB8454E83C4F9AE02.roa Signing time: Fri 02 Jun 2023 18:58:08 +0000 ROA not before: Fri 02 Jun 2023 18:58:08 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 63992 IP address blocks: 103.58.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4002 (0xfa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3078/serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Validity Not Before: Jun 2 18:58:08 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a3bc0-c315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:36:c7:42:90:12:74:97:3a:a9:42:ee:9d:99: 92:16:e2:28:80:fd:42:1f:c7:23:f6:63:c9:f7:85: df:63:e2:a8:75:94:4f:e3:7c:4b:de:41:eb:69:82: ab:6b:fe:74:3f:54:c6:d5:f1:f9:8a:3a:be:79:7d: 61:d7:c3:5c:0d:28:79:18:44:bf:ac:13:a6:32:54: 47:f6:e2:28:2f:30:47:68:49:cf:10:ce:e9:d1:b5: 08:2d:46:98:c8:64:da:8a:92:34:45:4e:0f:30:5f: bd:f2:81:08:f9:f3:c4:40:49:c5:73:93:32:f2:53: 68:c3:e1:77:5d:0c:45:a3:6f:1e:35:2b:eb:b0:8a: 76:55:fa:42:1e:64:bb:a7:7b:bf:64:30:60:24:c2: 22:ce:83:b1:ef:18:27:c4:02:87:13:4d:66:74:e7: 91:56:4d:90:c0:72:f7:f6:be:f6:20:15:7c:d9:6c: 0c:93:aa:25:02:be:78:5f:37:91:33:b1:b3:cb:50: 1a:33:1c:d7:f3:5b:7c:84:47:3a:06:01:3a:5f:74: f4:3b:0c:5e:16:04:68:df:1a:e5:a6:48:d6:a1:0f: 2b:94:5c:6e:d5:8f:bc:bb:b1:ae:30:27:a3:51:4b: f0:5b:54:66:be:64:81:62:4e:3d:ed:b7:eb:b0:54: 1f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D3:89:24:83:7E:DB:31:6F:45:75:76:27:62:F1:77:CD:45:6A:2E X509v3 Authority Key Identifier: keyid:8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/6127B9001FE711ECB8454E83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.220.0/22 Signature Algorithm: sha256WithRSAEncryption a3:c3:0d:f8:28:f6:87:8a:b5:3f:eb:66:2b:60:27:8a:79:f5: ca:15:41:ea:88:2b:8a:c2:35:f2:d2:99:49:dd:c2:b4:ad:f5: 59:f1:fc:b6:7d:ee:7b:c4:60:d2:41:4e:4f:d0:17:9f:dc:ed: a5:1d:68:ea:c3:02:27:75:b1:22:ba:11:4a:81:a0:bd:c4:cf: dd:29:e6:3a:5e:67:2b:e7:9d:eb:80:35:7f:bd:5e:6b:7f:42: 0a:f2:c9:f3:92:6d:86:27:97:b6:65:b4:0f:64:89:b7:cb:bc: 03:cf:4b:eb:a6:86:4c:5f:ad:0a:d2:4e:19:c6:6b:3f:45:c6: 04:6d:81:4c:8c:cd:3b:5c:ba:b3:94:51:02:d6:c9:ae:7a:86: 57:fd:79:7b:63:c4:20:22:f3:1f:84:29:3a:b0:99:22:01:62: 82:4d:54:74:8b:8f:ad:4d:90:1f:d1:51:ae:1f:eb:5e:29:ed: 09:82:7b:d8:ca:1a:6d:5d:0c:51:eb:06:f3:3a:57:38:f8:ce: e7:76:e9:eb:3b:d8:0c:6e:32:57:7b:ff:b2:74:e7:cc:10:31: 7a:f7:62:ef:3e:7b:fa:62:65:10:f2:a7:45:46:45:19:35:5a: 9c:71:27:61:8e:d7:0d:bc:6b:8c:f4:4e:d4:36:0e:fa:37:dd: fb:2b:3a:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMwNzgxMTAvBgNVBAUTKDhCMjYxNjg2QkQ5MkUyQ0Y2QkY1NDhDRDM1NTk2REVB OTVGRjU4MzMwHhcNMjMwNjAyMTg1ODA4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhM2JjMC1jMzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDbHQpASdJc6qULunZmSFuIogP1CH8cj9mPJ94XfY+KodZRP43xL3kHraYKr a/50P1TG1fH5ijq+eX1h18NcDSh5GES/rBOmMlRH9uIoLzBHaEnPEM7p0bUILUaY yGTaipI0RU4PMF+98oEI+fPEQEnFc5My8lNow+F3XQxFo28eNSvrsIp2VfpCHmS7 p3u/ZDBgJMIizoOx7xgnxAKHE01mdOeRVk2QwHL39r72IBV82WwMk6olAr54XzeR M7Gzy1AaMxzX81t8hEc6BgE6X3T0OwxeFgRo3xrlpkjWoQ8rlFxu1Y+8u7GuMCej UUvwW1RmvmSBYk497bfrsFQfGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHHTiSSD ftsxb0V1didi8XfNRWouMB8GA1UdIwQYMBaAFIsmFoa9kuLPa/VIzTVZbeqV/1gz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzA3OC82NkM4MzAyQzEz QkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRzOXI5VWpOTlZsdDZwWF9X RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5WVdocjJTNHM5cjlVak5OVmx0NnBYX1dETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDMwNzgvNjZDODMwMkMxM0JDMTFFOTk4N0M0NjQ2QzRGOUFFMDIvNjEyN0I5MDAx RkU3MTFFQ0I4NDU0RTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnOtwwDQYJKoZIhvcNAQELBQADggEBAKPDDfgo9oeKtT/r ZitgJ4p59coVQeqIK4rCNfLSmUndwrSt9Vnx/LZ97nvEYNJBTk/QF5/c7aUdaOrD Aid1sSK6EUqBoL3Ez90p5jpeZyvnneuANX+9Xmt/QgryyfOSbYYnl7ZltA9kibfL vAPPS+umhkxfrQrSThnGaz9FxgRtgUyMzTtcurOUUQLWya56hlf9eXtjxCAi8x+E KTqwmSIBYoJNVHSLj61NkB/RUa4f614p7QmCe9jKGm1dDFHrBvM6Vzj4zud26es7 2AxuMld7/7J058wQMXr3Yu8+e/piZRDyp0VGRRk1WpxxJ2GO1w28a4z0TtQ2Dvo3 3fsrOr0= -----END CERTIFICATE-----Generated at Fri May 10 20:05:36 2024 by rpki-client on console-fra.rpki-client.org