$ rpki-client -vvf rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3E3640816B711ECBD752D47C4F9AE02.roa File: A3E3640816B711ECBD752D47C4F9AE02.roa (raw, json) Hash identifier: R4vb2XINGzLjrNXfNhN9sER/3BLPFSIzshMBqh9O7Ms= Subject key identifier: 7B:37:1C:E3:17:61:EF:11:78:F1:D6:4E:50:16:29:F3:A7:3C:F3:3A Certificate issuer: /CN=A91D891D/serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Certificate serial: 037F Authority key identifier: 41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3E3640816B711ECBD752D47C4F9AE02.roa Signing time: Tue 23 May 2023 00:48:19 +0000 ROA not before: Tue 23 May 2023 00:48:19 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 63916 IP address blocks: 103.113.156.0/22 maxlen: 22 103.113.156.0/24 maxlen: 24 103.113.157.0/24 maxlen: 24 103.113.158.0/24 maxlen: 24 103.113.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D891D/serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Validity Not Before: May 23 00:48:19 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646c0d53-6b14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:70:50:fb:26:f1:95:79:d3:ad:4d:3d:d6: e3:7e:b2:b1:a5:c9:63:97:6f:de:40:ce:eb:39:4c: 0c:43:c9:65:3b:6f:d2:4b:e6:fb:c5:ca:99:ac:07: 72:6f:b6:41:b7:9b:12:cd:87:68:2d:e6:22:bb:94: 7c:ce:2d:99:99:1a:71:90:18:84:30:d0:53:0e:2c: ad:e0:ef:a5:b4:64:7c:66:6b:b3:a0:af:79:dc:1d: 5c:a5:a4:38:70:60:67:92:76:be:14:4e:e3:78:90: 3d:01:09:f4:ec:f1:f7:4d:46:95:c9:06:d1:aa:e7: e6:52:d1:95:80:2d:b2:74:ed:bf:dc:a9:07:a5:f9: 83:e0:fb:9c:bb:09:92:f3:c5:c1:0c:b9:9d:8d:82: c4:c1:8d:26:08:91:7d:bc:bf:4f:10:5b:10:15:bd: 16:a3:84:fe:45:9c:3d:2d:df:ee:77:95:f2:54:84: 64:52:59:5f:b1:65:08:02:8e:9f:fb:12:e4:ba:c5: 4f:d7:9a:cc:30:48:ce:a6:94:0b:0c:b7:9b:97:db: 28:02:e1:c0:91:e0:66:cd:91:c8:9a:45:d6:51:37: 2b:48:6c:b6:b5:d1:bd:ba:3a:23:45:e1:f7:4d:d9: 96:54:5f:72:08:3e:f6:ca:0d:f8:19:f3:e6:c5:f5: 31:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:37:1C:E3:17:61:EF:11:78:F1:D6:4E:50:16:29:F3:A7:3C:F3:3A X509v3 Authority Key Identifier: keyid:41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3E3640816B711ECBD752D47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.156.0/22 Signature Algorithm: sha256WithRSAEncryption 89:13:73:f1:e1:86:86:a6:2f:69:12:3b:01:00:6a:5f:08:d3: 63:23:c7:74:74:b7:65:6c:c7:dd:2c:5e:8b:de:67:d4:74:d7: d3:bd:71:c9:1b:6b:27:af:89:8a:83:9d:5d:57:6f:63:c2:7d: 0b:41:dc:98:ce:07:07:f1:73:f5:c4:e6:91:d1:a1:ca:73:14: ed:2f:27:4d:e7:3b:1c:fa:e7:c2:40:6e:e1:62:ee:4e:72:4a: 19:10:86:0a:66:71:6c:fc:3f:79:c6:10:07:7f:e3:dd:24:9d: e5:a6:b8:85:05:19:a8:fe:66:fb:f3:0c:2e:f3:be:f1:89:ce: e8:c7:ec:ac:88:b8:4c:8b:6c:12:fa:11:5e:78:7f:b8:d1:70: 97:06:97:d5:8a:f7:87:1d:18:54:5d:83:2b:c3:37:9f:7b:76: 01:a0:c8:f9:e7:14:4f:76:b2:68:11:ea:eb:ce:23:ca:8e:95: 90:d3:f7:9b:0c:6d:09:7e:ca:50:62:34:19:de:38:00:99:57: 7c:ec:7c:d6:97:35:5c:f8:6e:20:8c:b9:58:98:ac:2c:6c:01: 36:23:5e:92:c1:82:da:1d:85:29:ad:fe:8b:7a:ed:b1:5b:fa: e2:90:d3:d9:dc:c3:8f:56:f9:cb:4c:8e:9c:0e:7a:33:20:af: c5:bd:56:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MUQxMTAvBgNVBAUTKDQxRDI2OEM1MTEzRUYzRUQ3QjE3M0I3ODBFMDE3RUQz RkU4NTU1RjcwHhcNMjMwNTIzMDA0ODE5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZjMGQ1My02YjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtVwUPsm8ZV5061NPdbjfrKxpcljl2/eQM7rOUwMQ8llO2/SS+b7xcqZrAdy b7ZBt5sSzYdoLeYiu5R8zi2ZmRpxkBiEMNBTDiyt4O+ltGR8ZmuzoK953B1cpaQ4 cGBnkna+FE7jeJA9AQn07PH3TUaVyQbRqufmUtGVgC2ydO2/3KkHpfmD4PucuwmS 88XBDLmdjYLEwY0mCJF9vL9PEFsQFb0Wo4T+RZw9Ld/ud5XyVIRkUllfsWUIAo6f +xLkusVP15rMMEjOppQLDLebl9soAuHAkeBmzZHImkXWUTcrSGy2tdG9ujojReH3 TdmWVF9yCD72yg34GfPmxfUxOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHs3HOMX Ye8RePHWTlAWKfOnPPM6MB8GA1UdIwQYMBaAFEHSaMURPvPtexc7eA4BftP+hVX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkxRC8zODFBOEYyQTFD QzIxMUVCODJCNTcxNzhDNEY5QUUwMi9RZEpveFJFLTgtMTdGenQ0RGdGLTBfNkZW ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FkSm94UkUtOC0xN0Z6dDREZ0YtMF82RlZmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5MUQvMzgxQThGMkExQ0MyMTFFQjgyQjU3MTc4QzRGOUFFMDIvQTNFMzY0MDgx NkI3MTFFQ0JENzUyRDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncZwwDQYJKoZIhvcNAQELBQADggEBAIkTc/HhhoamL2kS OwEAal8I02Mjx3R0t2Vsx90sXoveZ9R019O9cckbayeviYqDnV1Xb2PCfQtB3JjO Bwfxc/XE5pHRocpzFO0vJ03nOxz658JAbuFi7k5yShkQhgpmcWz8P3nGEAd/490k neWmuIUFGaj+ZvvzDC7zvvGJzujH7KyIuEyLbBL6EV54f7jRcJcGl9WK94cdGFRd gyvDN597dgGgyPnnFE92smgR6uvOI8qOlZDT95sMbQl+ylBiNBneOACZV3zsfNaX NVz4biCMuViYrCxsATYjXpLBgtodhSmt/ot67bFb+uKQ09ncw49W+ctMjpwOejMg r8W9Vg8= -----END CERTIFICATE-----Generated at Tue May 7 01:58:29 2024 by rpki-client on console-fra.rpki-client.org