$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/2A22D2FCB6CB11ECA43EEE87C4F9AE02.roa File: 2A22D2FCB6CB11ECA43EEE87C4F9AE02.roa (raw, json) Hash identifier: 17zYLasmjWkylExtRqYU5N/LN7+1/9TF71dGXdEDivA= Subject key identifier: 30:3F:9C:B2:32:3F:EE:4B:72:DB:5E:BF:2A:D8:B8:C7:D6:19:F2:CA Certificate issuer: /CN=A91D6F2B/serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Certificate serial: 025B Authority key identifier: 56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/2A22D2FCB6CB11ECA43EEE87C4F9AE02.roa Signing time: Thu 25 Jan 2024 03:25:09 +0000 ROA not before: Thu 25 Jan 2024 03:25:09 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136240 IP address blocks: 103.84.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6F2B/serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Validity Not Before: Jan 25 03:25:09 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b1d494-23c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:30:08:ce:cb:97:1f:4b:fd:12:ec:00:94:35: f7:cb:15:a1:03:a6:38:47:b2:83:4e:c3:34:1e:d4: b1:a9:f0:82:9a:f4:f2:49:a3:e7:02:7b:16:28:79: 80:87:54:8e:b6:18:18:ee:78:18:1c:73:9c:87:b0: 77:78:a9:13:a4:c6:c1:ba:73:45:b6:52:ed:28:91: c3:1f:31:ba:cc:e1:db:4a:03:8a:2a:0b:ac:1d:31: a6:1d:ad:7c:f3:c3:44:a4:ab:ca:15:b1:3c:71:a4: 37:24:46:35:f4:27:aa:2f:ce:76:90:55:d3:c1:23: d5:f0:db:a2:8c:e3:0d:c0:8a:9f:d1:5e:e6:d7:b2: cd:32:d6:b3:54:bd:68:85:e1:90:52:16:74:7a:f1: 1c:77:eb:bc:2b:f0:39:46:f9:28:dd:8d:77:d6:95: 32:42:56:17:dd:48:db:44:be:20:ac:e8:36:56:c6: 26:64:03:60:85:7f:2c:49:99:24:57:2d:5d:99:9a: ca:ec:28:66:13:89:60:85:14:4a:00:f0:71:7f:d9: 8c:88:01:3b:8b:91:63:4d:c7:9b:41:a9:8d:0c:8a: 68:7c:fb:5c:e6:1d:6a:c5:a4:5d:54:0f:ed:c9:18: 44:a0:23:a6:50:6e:be:59:8a:10:5e:47:a0:d1:10: 23:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3F:9C:B2:32:3F:EE:4B:72:DB:5E:BF:2A:D8:B8:C7:D6:19:F2:CA X509v3 Authority Key Identifier: keyid:56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/2A22D2FCB6CB11ECA43EEE87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.135.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:c3:c9:5a:0b:6d:1c:76:8e:ae:bc:21:1c:26:8c:c1:af:45: 28:cf:2b:d6:af:f0:9f:ce:07:35:91:a4:e4:d6:6c:6e:c5:ce: e4:b5:ce:8e:44:d4:1e:9b:4b:03:72:b7:66:fc:4b:d5:86:12: af:36:98:a0:75:ad:cf:79:c2:99:5e:1c:8a:e6:20:2b:5a:a6: 03:b7:a5:d9:6b:cc:ef:a1:e8:90:ea:01:29:79:32:c9:f0:c9: 4d:56:82:14:15:36:90:e2:b5:b6:13:85:3d:8f:bc:36:d6:df: f7:7f:ce:46:be:34:0d:d7:64:c2:30:e2:93:ad:24:2d:74:b3: 81:74:b7:e6:bb:1d:8f:b8:0a:e0:37:40:ef:db:4b:38:df:53: 73:ca:d8:27:f9:8b:bd:67:62:27:11:ea:dd:22:8b:7c:7e:0c: bd:6b:81:95:96:f9:98:f1:9e:1d:6f:b3:57:45:b5:85:54:a5: 17:c4:9d:89:60:bd:00:1e:56:b0:35:a7:43:08:40:c7:1f:f4: 26:ea:0e:1b:9e:aa:2e:0e:69:5f:0f:f7:21:57:fa:d7:a6:00: 33:98:f8:e2:09:7b:f0:74:fb:39:ee:e7:f9:03:c7:49:86:b3: 5e:71:1d:e7:43:fe:d9:ab:dd:d9:ad:c1:47:a3:93:b3:e2:12: f2:10:04:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZGMkIxMTAvBgNVBAUTKDU2MzhDQjFFMjZEMTE5OURBQkU4QjhDN0VEMjJCMDND NENFOEM4MEEwHhcNMjQwMTI1MDMyNTA5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIxZDQ5NC0yM2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTAIzsuXH0v9EuwAlDX3yxWhA6Y4R7KDTsM0HtSxqfCCmvTySaPnAnsWKHmA h1SOthgY7ngYHHOch7B3eKkTpMbBunNFtlLtKJHDHzG6zOHbSgOKKgusHTGmHa18 88NEpKvKFbE8caQ3JEY19CeqL852kFXTwSPV8NuijOMNwIqf0V7m17LNMtazVL1o heGQUhZ0evEcd+u8K/A5Rvko3Y131pUyQlYX3UjbRL4grOg2VsYmZANghX8sSZkk Vy1dmZrK7ChmE4lghRRKAPBxf9mMiAE7i5FjTcebQamNDIpofPtc5h1qxaRdVA/t yRhEoCOmUG6+WYoQXkeg0RAj5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDA/nLIy P+5LcttevyrYuMfWGfLKMB8GA1UdIwQYMBaAFFY4yx4m0Rmdq+i4x+0isDxM6MgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkYyQi8zMzg2Njc2NkI2 QzkxMUVDODlCREM2ODdDNEY5QUUwMi9WampMSGliUkdaMnI2TGpIN1NLd1BFem95 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqakxIaWJSR1oycjZMakg3U0t3UEV6b3lBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZGMkIvMzM4NjY3NjZCNkM5MTFFQzg5QkRDNjg3QzRGOUFFMDIvMkEyMkQyRkNC NkNCMTFFQ0E0M0VFRTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVIcwDQYJKoZIhvcNAQELBQADggEBADrDyVoLbRx2jq68 IRwmjMGvRSjPK9av8J/OBzWRpOTWbG7FzuS1zo5E1B6bSwNyt2b8S9WGEq82mKB1 rc95wpleHIrmICtapgO3pdlrzO+h6JDqASl5MsnwyU1WghQVNpDitbYThT2PvDbW 3/d/zka+NA3XZMIw4pOtJC10s4F0t+a7HY+4CuA3QO/bSzjfU3PK2Cf5i71nYicR 6t0ii3x+DL1rgZWW+Zjxnh1vs1dFtYVUpRfEnYlgvQAeVrA1p0MIQMcf9CbqDhue qi4OaV8P9yFX+temADOY+OIJe/B0+znu5/kDx0mGs15xHedD/tmr3dmtwUejk7Pi EvIQBDw= -----END CERTIFICATE-----Generated at Tue May 21 04:10:46 2024 by rpki-client on console-fra.rpki-client.org