$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/37D4A3DE20BA11EF9B035D1FC4F9AE02.roa File: 37D4A3DE20BA11EF9B035D1FC4F9AE02.roa (raw, json) Hash identifier: XvWRCynYkFhCMaJDNTtD88NyWN5MgwjlrDADWnFFA8Q= Subject key identifier: D3:5C:62:E7:67:CC:78:72:D0:69:78:D8:6B:48:CF:B5:9B:86:61:0A Certificate issuer: /CN=A91D3D89/serialNumber=48F96009BCD4CE06CD60D125F0A91B23FEC30360 Certificate serial: 04 Authority key identifier: 48:F9:60:09:BC:D4:CE:06:CD:60:D1:25:F0:A9:1B:23:FE:C3:03:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPlgCbzUzgbNYNEl8KkbI_7DA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/37D4A3DE20BA11EF9B035D1FC4F9AE02.roa Signing time: Sun 02 Jun 2024 08:31:47 +0000 ROA not before: Sun 02 Jun 2024 08:31:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152856 IP address blocks: 103.159.210.0/23 maxlen: 24 2001:df3:d140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/SPlgCbzUzgbNYNEl8KkbI_7DA2A.crl rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/SPlgCbzUzgbNYNEl8KkbI_7DA2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPlgCbzUzgbNYNEl8KkbI_7DA2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D89/serialNumber=48F96009BCD4CE06CD60D125F0A91B23FEC30360 Validity Not Before: Jun 2 08:31:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665c2df3-af31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:83:da:d9:d7:c0:f6:1c:a0:07:a9:8d:5a:d8: 07:40:8c:e9:23:59:83:a1:7a:0b:0c:a5:ab:79:f9: 1f:e5:a3:07:50:7d:de:dd:f5:3c:54:c3:35:f8:61: 84:a2:36:c2:4b:9c:80:06:79:11:4a:9c:80:30:a6: 87:df:c0:65:e0:9f:4e:d6:2f:d0:49:0b:37:2e:78: 4b:ed:d1:9d:82:4c:8e:f1:b2:ad:40:15:39:18:e5: 55:6a:49:c5:a2:ef:7b:d8:a3:dc:b4:1a:b0:99:90: 53:2e:b5:96:7e:d4:be:67:e4:29:02:93:83:b7:44: 53:24:7d:be:3c:44:96:db:ee:2c:7b:2e:3f:73:9b: 5c:4d:75:61:7c:60:45:bf:48:81:c7:fd:3a:99:27: 86:51:18:99:1a:2d:33:cf:07:6b:1a:bb:32:a8:11: 46:aa:d1:fe:5b:8d:cb:c9:d4:1b:81:f2:68:d5:02: 96:ac:27:31:de:3b:e1:5a:4c:7f:4b:ea:1b:6e:ad: 50:73:ab:86:28:1a:bf:d9:00:e4:36:26:4a:c9:e4: 46:98:bf:1e:7f:c1:90:84:1c:6b:bb:fa:78:19:5a: b6:8f:3c:38:d7:73:26:fb:83:3f:50:75:bc:46:5e: 5e:68:0e:03:66:7a:e0:ba:a7:1b:f7:49:a7:dd:04: 07:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:5C:62:E7:67:CC:78:72:D0:69:78:D8:6B:48:CF:B5:9B:86:61:0A X509v3 Authority Key Identifier: keyid:48:F9:60:09:BC:D4:CE:06:CD:60:D1:25:F0:A9:1B:23:FE:C3:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/SPlgCbzUzgbNYNEl8KkbI_7DA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPlgCbzUzgbNYNEl8KkbI_7DA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/37D4A3DE20BA11EF9B035D1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.210.0/23 IPv6: 2001:df3:d140::/48 Signature Algorithm: sha256WithRSAEncryption 08:3c:6f:b7:f5:3a:64:fb:5f:80:55:bc:c7:31:25:be:87:8b: 12:28:da:d8:7b:c2:3e:fc:b7:dd:91:28:cc:36:97:b7:a5:78: d2:60:4f:9c:b5:03:65:a2:bf:f8:6d:c2:e4:f4:3c:89:ca:76: 42:7a:c6:80:21:18:68:28:8d:b7:31:5f:f3:c6:e1:59:84:f8: 03:66:5b:b6:1e:d3:04:b8:29:4c:b4:7f:9a:df:d5:f1:37:04: 3b:0b:9c:cd:e9:dc:cd:f8:39:8e:59:02:0a:c0:85:3c:f4:49: 67:35:00:63:1a:ad:27:9d:f2:3b:45:d1:90:2d:eb:80:d8:a4: a9:ad:b3:60:00:dc:c3:5b:48:25:7d:15:63:11:fb:5d:dc:a3: 5e:85:46:84:a6:3d:e6:59:8b:f7:5f:7d:72:a3:27:e6:9c:93: 3c:35:df:0b:8d:3c:5d:e4:3b:c1:60:f1:ea:2f:85:27:15:c4: a7:14:42:8d:00:84:13:9e:ae:26:d6:3c:cd:ad:ea:4e:23:2f: f3:20:3e:fa:34:bb:fb:f0:bb:18:d4:26:17:56:6c:23:7a:17: f2:b1:22:a9:fa:68:f4:59:27:d4:42:c3:fa:af:e2:09:ca:f0: 0e:f0:91:78:0a:80:57:72:f2:bf:14:0b:ac:8c:18:0b:e2:ee: 66:73:cb:5f -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE M0Q4OTExMC8GA1UEBRMoNDhGOTYwMDlCQ0Q0Q0UwNkNENjBEMTI1RjBBOTFCMjNG RUMzMDM2MDAeFw0yNDA2MDIwODMxNDdaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWMyZGYzLWFmMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2g9rZ18D2HKAHqY1a2AdAjOkjWYOhegsMpat5+R/lowdQfd7d9TxUwzX4YYSi NsJLnIAGeRFKnIAwpoffwGXgn07WL9BJCzcueEvt0Z2CTI7xsq1AFTkY5VVqScWi 73vYo9y0GrCZkFMutZZ+1L5n5CkCk4O3RFMkfb48RJbb7ix7Lj9zm1xNdWF8YEW/ SIHH/TqZJ4ZRGJkaLTPPB2sauzKoEUaq0f5bjcvJ1BuB8mjVApasJzHeO+FaTH9L 6hturVBzq4YoGr/ZAOQ2JkrJ5EaYvx5/wZCEHGu7+ngZWraPPDjXcyb7gz9QdbxG Xl5oDgNmeuC6pxv3SafdBAetAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU01xi52fM eHLQaXjYa0jPtZuGYQowHwYDVR0jBBgwFoAUSPlgCbzUzgbNYNEl8KkbI/7DA2Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzRDg5L0QzRUQ1ODU4MjBC ODExRUZCRTFDMjgxNUM0RjlBRTAyL1NQbGdDYnpVemdiTllORWw4S2tiSV83REEy QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU1BsZ0NielV6Z2JOWU5FbDhLa2JJXzdEQTJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Q4OS9EM0VENTg1ODIwQjgxMUVGQkUxQzI4MTVDNEY5QUUwMi8zN0Q0QTNERTIw QkExMUVGOUIwMzVEMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWef0jAPBAIAAjAJAwcAIAEN89FAMA0GCSqGSIb3DQEBCwUA A4IBAQAIPG+39Tpk+1+AVbzHMSW+h4sSKNrYe8I+/LfdkSjMNpe3pXjSYE+ctQNl or/4bcLk9DyJynZCesaAIRhoKI23MV/zxuFZhPgDZlu2HtMEuClMtH+a39XxNwQ7 C5zN6dzN+DmOWQIKwIU89ElnNQBjGq0nnfI7RdGQLeuA2KSprbNgANzDW0glfRVj Eftd3KNehUaEpj3mWYv3X31yoyfmnJM8Nd8LjTxd5DvBYPHqL4UnFcSnFEKNAIQT nq4m1jzNrepOIy/zID76NLv78LsY1CYXVmwjehfysSKp+mj0WSfUQsP6r+IJyvAO 8JF4CoBXcvK/FAusjBgL4u5mc8tf -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:33 2024 by rpki-client on console-fra.rpki-client.org