$ rpki-client -vvf rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/1752A952B44711EDB021F350C4F9AE02.roa File: 1752A952B44711EDB021F350C4F9AE02.roa (raw, json) Hash identifier: CmY3H6MLM8sPTwL3Kw+WquoJl8ZVYZgWOsoVa3VE2V8= Subject key identifier: 2C:D1:A3:B8:72:19:99:F7:5F:00:D1:BD:CE:C0:CA:8A:22:96:C5:0E Certificate issuer: /CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56 Certificate serial: 0B8C Authority key identifier: B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/1752A952B44711EDB021F350C4F9AE02.roa Signing time: Fri 24 Nov 2023 19:06:46 +0000 ROA not before: Fri 24 Nov 2023 19:06:46 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 137045 IP address blocks: 103.102.246.0/24 maxlen: 24 103.102.247.0/24 maxlen: 24 2001:df1:4d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2956 (0xb8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56 Validity Not Before: Nov 24 19:06:46 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6560f446-d107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:74:6e:81:0d:75:60:1b:87:af:2c:10:14:5c: 1a:53:ec:40:5f:a0:a3:8c:91:13:ec:89:9a:ef:e7: 21:e4:5a:d1:e3:03:65:0b:53:65:9b:65:7f:1f:79: 43:35:1b:39:f6:2a:79:b6:ab:50:09:8c:f2:0f:a2: 0c:5d:4e:9e:87:f5:d8:9a:1b:88:f7:9d:7f:a1:12: 97:26:15:3b:c9:75:6c:9f:01:97:da:0c:bb:f4:55: 77:67:27:10:15:18:7f:1b:8f:5d:3f:bf:6f:02:e0: 4c:62:d4:8b:7a:ad:a8:a1:b8:3e:99:fe:87:fb:ff: 32:55:87:ac:05:57:9a:c4:ad:63:a1:e7:47:7c:59: f6:af:c8:73:9f:d3:40:c1:6d:85:53:dd:4d:e8:0f: 3e:f9:54:03:15:32:19:9d:12:8b:06:f9:2b:8b:8f: 4a:43:26:35:8b:41:ec:6d:d2:a6:29:65:4e:39:fc: 35:36:58:6a:6a:a0:7b:db:ad:0e:7b:9a:a4:78:a3: 3a:7f:18:5b:75:e0:3a:e9:d0:1a:76:ed:93:b5:b7: 83:c4:5e:5b:ee:90:be:76:4f:d4:f0:3e:76:d7:fb: ad:f5:b3:06:af:f8:94:d7:01:f0:21:47:2d:a6:d1: a4:19:ca:8b:11:7e:42:d5:4e:63:c6:13:33:96:51: 52:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D1:A3:B8:72:19:99:F7:5F:00:D1:BD:CE:C0:CA:8A:22:96:C5:0E X509v3 Authority Key Identifier: keyid:B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/1752A952B44711EDB021F350C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.246.0/23 IPv6: 2001:df1:4d80::/48 Signature Algorithm: sha256WithRSAEncryption 5b:ce:a8:e6:07:e5:7b:93:b3:50:ef:d7:e0:73:08:5c:d1:c1: 54:9d:d8:39:cd:a4:6d:f7:1e:10:db:ac:fc:4a:90:86:57:8b: 10:18:0d:ce:31:64:2e:6d:71:00:56:8a:b5:51:a6:46:f7:d2: e0:f4:96:0e:3f:7c:87:2d:96:19:24:5a:96:02:60:80:10:fa: 3d:95:39:1a:87:21:0b:c5:42:21:89:68:41:15:94:9f:2c:8e: fc:f6:6c:d6:f8:de:e2:a6:00:55:19:ed:fa:a9:f3:49:93:1f: 23:83:c0:f6:a8:c4:53:29:3c:e8:49:84:ec:7f:46:51:48:35: f4:d2:50:c2:a1:55:5f:c1:d3:86:3c:91:e8:88:b2:14:00:7d: 10:9f:be:bb:05:af:eb:c2:20:b5:9f:44:34:89:bb:1f:ea:5a: 1d:9a:58:38:67:4f:7e:1d:af:97:5e:04:70:11:cd:01:4d:90: 44:b7:5e:a7:f6:83:49:50:0f:92:69:44:d3:1c:92:fa:03:fa: 5d:fe:95:62:a3:6c:d6:cc:ec:d9:8f:58:2f:01:a3:7b:be:78: 0b:ed:0c:50:cb:36:c0:35:05:37:1a:42:c4:fb:93:ab:06:d2: e9:7a:86:21:00:67:ad:68:18:d2:bd:a9:62:ac:32:bc:e5:8d: 0a:6f:85:a9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk4RkMxMTAvBgNVBAUTKEIzOTlCNEFEQTA3NTAxQTgyOUQ1NkYyMURBOEVCNURD MzIwMzRBNTYwHhcNMjMxMTI0MTkwNjQ2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYwZjQ0Ni1kMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHRugQ11YBuHrywQFFwaU+xAX6CjjJET7Ima7+ch5FrR4wNlC1Nlm2V/H3lD NRs59ip5tqtQCYzyD6IMXU6eh/XYmhuI951/oRKXJhU7yXVsnwGX2gy79FV3ZycQ FRh/G49dP79vAuBMYtSLeq2oobg+mf6H+/8yVYesBVeaxK1joedHfFn2r8hzn9NA wW2FU91N6A8++VQDFTIZnRKLBvkri49KQyY1i0HsbdKmKWVOOfw1NlhqaqB7260O e5qkeKM6fxhbdeA66dAadu2TtbeDxF5b7pC+dk/U8D521/ut9bMGr/iU1wHwIUct ptGkGcqLEX5C1U5jxhMzllFS6wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCzRo7hy GZn3XwDRvc7AyooilsUOMB8GA1UdIwQYMBaAFLOZtK2gdQGoKdVvIdqOtdwyA0pW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOThGQy8xQzg5OUUyNkY0 RUMxMUU5OEZCRTlCMEZDNEY5QUUwMi9zNW0wcmFCMUFhZ3AxVzhoMm82MTNESURT bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1bTByYUIxQWFncDFXOGgybzYxM0RJRFNsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDk4RkMvMUM4OTlFMjZGNEVDMTFFOThGQkU5QjBGQzRGOUFFMDIvMTc1MkE5NTJC NDQ3MTFFREIwMjFGMzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnZvYwDwQCAAIwCQMHACABDfFNgDANBgkqhkiG9w0BAQsF AAOCAQEAW86o5gfle5OzUO/X4HMIXNHBVJ3YOc2kbfceENus/EqQhleLEBgNzjFk Lm1xAFaKtVGmRvfS4PSWDj98hy2WGSRalgJggBD6PZU5GochC8VCIYloQRWUnyyO /PZs1vje4qYAVRnt+qnzSZMfI4PA9qjEUyk86EmE7H9GUUg19NJQwqFVX8HThjyR 6IiyFAB9EJ++uwWv68IgtZ9ENIm7H+paHZpYOGdPfh2vl14EcBHNAU2QRLdep/aD SVAPkmlE0xyS+gP6Xf6VYqNs1szs2Y9YLwGje754C+0MUMs2wDUFNxpCxPuTqwbS 6XqGIQBnrWgY0r2pYqwyvOWNCm+FqQ== -----END CERTIFICATE-----Generated at Tue May 28 19:51:25 2024 by rpki-client on console-fra.rpki-client.org