$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/B84B847AEF3911EBACC9E938C4F9AE02.roa File: B84B847AEF3911EBACC9E938C4F9AE02.roa (raw, json) Hash identifier: eFPk203hg7cXo9QFRNYvARtLOQK8ggrqzsG+zT7kC6E= Subject key identifier: 88:63:08:ED:A1:4D:76:6F:F3:69:2D:5C:D9:81:66:B1:AA:34:8D:CD Certificate issuer: /CN=A91D3ED4/serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Certificate serial: 0400 Authority key identifier: C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/B84B847AEF3911EBACC9E938C4F9AE02.roa Signing time: Sat 05 Aug 2023 00:41:58 +0000 ROA not before: Sat 05 Aug 2023 00:41:58 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132849 IP address blocks: 103.170.102.0/23 maxlen: 23 103.170.102.0/24 maxlen: 24 103.170.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1024 (0x400) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3ED4/serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Validity Not Before: Aug 5 00:41:58 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cd9ad6-c27b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:01:0f:ac:e3:1c:59:7d:b0:df:e1:f9:35:8c: ba:4f:2d:0e:ee:e4:67:84:7f:a5:2d:7c:d8:fb:28: 52:39:e4:18:2f:07:99:f6:a0:b4:73:5a:bf:36:b5: 1f:12:5e:3a:07:81:0a:95:0a:fb:5e:2f:e3:6f:20: 56:85:68:6f:39:99:d4:06:94:1c:60:06:da:88:48: db:6c:96:70:8d:95:df:db:ee:55:36:9f:71:66:8c: 4c:e6:8a:c0:47:91:64:2d:0b:4f:b0:6c:84:82:f6: d7:c2:24:63:f4:80:70:fe:73:53:23:ff:aa:b8:a7: 3c:e9:f6:1c:ef:6c:b6:4c:ce:12:23:1d:22:9c:6f: 04:f9:e7:36:18:fb:d0:8e:ae:1f:cc:77:80:39:7d: 24:de:77:1e:cd:e6:88:f8:6f:4c:e4:fd:8c:bb:e1: d1:02:ca:b3:d7:a8:e0:a8:0c:38:b2:95:bb:27:4a: 57:14:6e:6f:d7:4a:b6:18:56:17:96:71:71:e4:23: 96:d1:69:38:ae:b1:bc:47:87:2f:6a:df:f1:61:b5: fe:5d:6a:27:3e:a7:72:79:ba:22:9f:c7:76:d0:18: 07:ec:60:0a:58:a5:d1:1e:a7:4f:f5:a2:46:4b:b2: ad:73:b2:06:f3:8e:f4:42:d6:2b:a4:01:4f:39:56: 2b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:63:08:ED:A1:4D:76:6F:F3:69:2D:5C:D9:81:66:B1:AA:34:8D:CD X509v3 Authority Key Identifier: keyid:C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/B84B847AEF3911EBACC9E938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.102.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:82:81:8a:a1:46:a6:28:ab:d3:a8:2e:f3:e1:fe:d9:1d:2d: 80:96:20:4f:f1:66:0a:7f:19:42:35:cf:67:7e:f7:f3:14:48: 90:6c:64:ce:df:06:99:49:5f:76:df:ad:46:55:c6:d0:cf:15: 87:a5:4e:1e:3c:02:68:cb:11:cc:17:eb:e7:1d:7f:cd:35:cf: e4:78:d4:a0:20:10:71:e5:1b:d1:01:ba:45:55:0f:5e:ee:fb: cf:12:74:9c:84:f5:96:ca:6d:2f:02:d5:2c:cb:15:71:01:98: 3e:7e:ca:1c:67:e7:c3:43:61:ca:72:2b:1c:71:4e:d4:89:bc: 85:9c:aa:44:ca:13:69:e3:bb:4c:0c:87:30:4f:3a:64:58:9e: 32:28:ad:8b:e6:4a:6e:bb:8b:7a:30:60:1b:dd:f3:73:54:8a: 05:a6:42:14:e3:81:8a:78:60:53:83:86:c7:5d:ee:6f:b0:ff: a1:89:c8:8e:7c:5b:e4:fe:50:63:0a:28:04:9c:32:a4:e3:d0: b8:fc:7b:36:f8:39:73:9b:10:af:94:5a:db:f7:66:a8:cc:e1: 0c:ab:03:da:97:88:f6:6a:04:c9:62:55:a2:a1:7f:62:96:56: 60:2b:25:1b:87:1b:52:c0:bc:1e:6c:33:9c:1e:c9:6e:c1:1b: c4:b5:62:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNFRDQxMTAvBgNVBAUTKEMyQzNCQTg4MkVDM0RDRkMyN0YxM0NFODcyMjU2MDdE QUFBMTc4NEQwHhcNMjMwODA1MDA0MTU4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkOWFkNi1jMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QEPrOMcWX2w3+H5NYy6Ty0O7uRnhH+lLXzY+yhSOeQYLweZ9qC0c1q/NrUf El46B4EKlQr7Xi/jbyBWhWhvOZnUBpQcYAbaiEjbbJZwjZXf2+5VNp9xZoxM5orA R5FkLQtPsGyEgvbXwiRj9IBw/nNTI/+quKc86fYc72y2TM4SIx0inG8E+ec2GPvQ jq4fzHeAOX0k3ncezeaI+G9M5P2Mu+HRAsqz16jgqAw4spW7J0pXFG5v10q2GFYX lnFx5COW0Wk4rrG8R4cvat/xYbX+XWonPqdyeboin8d20BgH7GAKWKXRHqdP9aJG S7Ktc7IG8470QtYrpAFPOVYrYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIhjCO2h TXZv82ktXNmBZrGqNI3NMB8GA1UdIwQYMBaAFMLDuoguw9z8J/E86HIlYH2qoXhN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0VENC8yOTA3OEE3MkVG MzcxMUVCOTE3NjhBMzZDNEY5QUUwMi93c082aUM3RDNQd244VHpvY2lWZ2ZhcWhl RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dzTzZpQzdEM1B3bjhUem9jaVZnZmFxaGVFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNFRDQvMjkwNzhBNzJFRjM3MTFFQjkxNzY4QTM2QzRGOUFFMDIvQjg0Qjg0N0FF RjM5MTFFQkFDQzlFOTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqmYwDQYJKoZIhvcNAQELBQADggEBAIuCgYqhRqYoq9Oo LvPh/tkdLYCWIE/xZgp/GUI1z2d+9/MUSJBsZM7fBplJX3bfrUZVxtDPFYelTh48 AmjLEcwX6+cdf801z+R41KAgEHHlG9EBukVVD17u+88SdJyE9ZbKbS8C1SzLFXEB mD5+yhxn58NDYcpyKxxxTtSJvIWcqkTKE2nju0wMhzBPOmRYnjIorYvmSm67i3ow YBvd83NUigWmQhTjgYp4YFODhsdd7m+w/6GJyI58W+T+UGMKKAScMqTj0Lj8ezb4 OXObEK+UWtv3ZqjM4QyrA9qXiPZqBMliVaKhf2KWVmArJRuHG1LAvB5sM5weyW7B G8S1Yrs= -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org