$ rpki-client -vvf rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/1BFCE1E0554F11E8A5C82D57C4F9AE02.roa File: 1BFCE1E0554F11E8A5C82D57C4F9AE02.roa (raw, json) Hash identifier: VSZF4pfvX3hNmiEIQb+Zju7e+lRhTIy0RpGZEc7WBnA= Subject key identifier: 51:C3:31:0C:D0:9E:A5:E5:81:8E:99:DC:60:34:6D:B2:DA:1C:5D:36 Certificate issuer: /CN=A91D599B/serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Certificate serial: 136C Authority key identifier: FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/1BFCE1E0554F11E8A5C82D57C4F9AE02.roa Signing time: Fri 02 Jun 2023 18:17:46 +0000 ROA not before: Fri 02 Jun 2023 18:17:46 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 2635 IP address blocks: 103.115.8.0/22 maxlen: 24 2402:dac0::/32 maxlen: 32 2402:dac0::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 17:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4972 (0x136c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D599B/serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Validity Not Before: Jun 2 18:17:46 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a3249-e0f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:62:16:13:67:53:fb:91:de:23:b9:91:98:7f: 04:c2:e2:0d:1f:77:2b:6a:93:7a:76:2d:1d:39:9a: 10:9d:d2:ae:c5:ce:84:c0:68:42:c5:fb:53:5b:b0: 76:c5:5e:3c:3f:36:5c:23:9e:a6:d8:10:d0:2a:5c: 49:4a:63:60:2c:98:9f:c9:b1:33:32:25:e3:b3:2a: 51:58:04:25:b7:0d:d4:78:69:66:f6:1b:71:7b:09: 0d:10:54:68:7e:03:be:b7:5e:d1:dd:d9:7c:34:c8: c3:20:a1:0d:a1:4c:6d:2d:c9:80:4f:ae:b2:e3:41: 33:94:2a:41:ad:3a:2d:7d:1c:d8:b2:81:8d:30:7c: 5e:d5:b5:43:b2:07:50:58:8c:1c:f2:59:f2:21:8d: c1:cb:3d:cf:db:35:58:cb:bb:e9:13:e6:1f:74:91: 8c:53:c5:92:f6:37:77:a7:f7:45:f8:49:d8:70:1c: 02:16:64:58:79:a8:04:84:d9:89:80:b5:e2:88:f7: 8c:ab:92:eb:cd:45:da:47:e2:06:bd:67:fe:97:b1: af:f2:ba:de:3e:4e:6b:0c:17:e2:fd:98:69:91:4d: 23:a9:c5:cb:8c:a7:f1:42:12:eb:45:55:e7:b1:2b: 51:18:b0:c9:c8:2e:64:a6:41:65:c7:79:d0:11:05: 43:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C3:31:0C:D0:9E:A5:E5:81:8E:99:DC:60:34:6D:B2:DA:1C:5D:36 X509v3 Authority Key Identifier: keyid:FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/1BFCE1E0554F11E8A5C82D57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.8.0/22 IPv6: 2402:dac0::/32 Signature Algorithm: sha256WithRSAEncryption 89:18:dd:6d:b9:d6:fb:cc:ce:eb:ea:f7:89:f4:7e:0e:1f:2c: c4:8f:36:5e:c9:87:95:7d:23:15:7e:8e:a3:70:84:df:f5:54: 41:40:ac:ae:02:81:13:4a:eb:cb:df:db:35:27:a2:d3:69:64: a7:84:27:c7:bd:5b:97:13:6a:44:3e:45:ab:03:3b:fc:e7:75: d6:f1:60:fa:2e:1d:54:07:42:5a:73:77:0a:de:67:7e:ed:55: e3:75:15:a7:4a:87:85:9b:3b:64:e9:9d:2d:f7:10:46:59:cd: 6e:bc:11:5f:9c:3c:b8:93:80:06:28:70:9f:34:90:20:8d:86: ca:84:31:4c:79:cf:7c:97:9e:0b:1b:95:2d:a8:e8:18:b9:db: 40:20:18:a6:34:2d:1f:0a:91:6f:98:58:78:54:66:1b:92:35: c0:5b:ae:32:df:cc:2b:56:92:d3:02:d3:de:22:1c:bc:87:fa: 25:fd:6d:1c:67:10:2c:52:22:94:bb:d8:51:95:57:b5:4e:07: b7:dd:10:67:67:a5:81:81:e3:6a:26:f8:e3:90:b6:3d:9b:56: 4d:7f:b0:66:2c:a8:52:9a:19:bc:9a:4b:79:71:d0:9b:82:a1: dd:6a:0b:ba:02:b3:38:ed:9b:15:ab:c4:25:e7:e2:9c:a8:b7: 19:aa:69:2f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICE2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU5OUIxMTAvBgNVBAUTKEZDQjIzQzdCRjVGMTkzNTYyNzVCQUNGNTdDREI1NUJG RDYwRTA0QUMwHhcNMjMwNjAyMTgxNzQ2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhMzI0OS1lMGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2IWE2dT+5HeI7mRmH8EwuINH3crapN6di0dOZoQndKuxc6EwGhCxftTW7B2 xV48PzZcI56m2BDQKlxJSmNgLJifybEzMiXjsypRWAQltw3UeGlm9htxewkNEFRo fgO+t17R3dl8NMjDIKENoUxtLcmAT66y40EzlCpBrTotfRzYsoGNMHxe1bVDsgdQ WIwc8lnyIY3Byz3P2zVYy7vpE+YfdJGMU8WS9jd3p/dF+EnYcBwCFmRYeagEhNmJ gLXiiPeMq5LrzUXaR+IGvWf+l7Gv8rrePk5rDBfi/ZhpkU0jqcXLjKfxQhLrRVXn sStRGLDJyC5kpkFlx3nQEQVDcwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFHDMQzQ nqXlgY6Z3GA0bbLaHF02MB8GA1UdIwQYMBaAFPyyPHv18ZNWJ1us9XzbVb/WDgSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTk5Qi9ENzIyNEZGMjU0 QjIxMUU4OEU2OUU5MDlDNEY5QUUwMi9fTEk4ZV9YeGsxWW5XNnoxZk50VnY5WU9C S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19MSThlX1h4azFZblc2ejFmTnRWdjlZT0JLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU5OUIvRDcyMjRGRjI1NEIyMTFFODhFNjlFOTA5QzRGOUFFMDIvMUJGQ0UxRTA1 NTRGMTFFOEE1QzgyRDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncwgwDQQCAAIwBwMFACQC2sAwDQYJKoZIhvcNAQELBQAD ggEBAIkY3W251vvMzuvq94n0fg4fLMSPNl7Jh5V9IxV+jqNwhN/1VEFArK4CgRNK 68vf2zUnotNpZKeEJ8e9W5cTakQ+RasDO/znddbxYPouHVQHQlpzdwreZ37tVeN1 FadKh4WbO2TpnS33EEZZzW68EV+cPLiTgAYocJ80kCCNhsqEMUx5z3yXngsblS2o 6Bi520AgGKY0LR8KkW+YWHhUZhuSNcBbrjLfzCtWktMC094iHLyH+iX9bRxnECxS IpS72FGVV7VOB7fdEGdnpYGB42om+OOQtj2bVk1/sGYsqFKaGbyaS3lx0JuCod1q C7oCszjtmxWrxCXn4pyotxmqaS8= -----END CERTIFICATE-----Generated at Thu Apr 18 18:16:08 2024 by rpki-client on console-fra.rpki-client.org