$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/573BE4DE3D0811EF84157B26C4F9AE02.roa File: 573BE4DE3D0811EF84157B26C4F9AE02.roa (raw, json) Hash identifier: nywG68ULgKtBcMdjYbgBHpATJxb1PptzCmatC6Dkc8Q= Subject key identifier: E3:2A:C6:07:4C:FA:C0:F5:28:84:40:2F:0E:A7:E3:14:3B:72:CF:F1 Certificate issuer: /CN=A91D9B1B/serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Certificate serial: 05 Authority key identifier: D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/573BE4DE3D0811EF84157B26C4F9AE02.roa Signing time: Mon 08 Jul 2024 08:59:10 +0000 ROA not before: Mon 08 Jul 2024 08:59:10 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 27385 IP address blocks: 103.75.172.0/23 maxlen: 23 103.75.172.0/24 maxlen: 24 103.75.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9B1B/serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Validity Not Before: Jul 8 08:59:10 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=668baa5e-6d25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:c4:af:1f:f4:8a:6f:9a:5b:6e:81:ca:c1: 5f:01:71:ef:0c:9a:43:95:b9:d8:a3:61:b3:e5:18: 0f:cd:2b:32:08:55:dd:be:3d:9f:8c:3b:dc:10:1c: 38:ea:5e:a9:25:b7:38:60:4e:ca:ba:b8:ba:e7:e3: 62:ca:c6:da:99:1a:10:87:28:3e:54:04:15:6d:93: b7:e6:27:30:1f:39:6a:40:84:27:3c:c1:ec:c9:37: 71:ab:b1:ca:40:2f:43:8b:d2:9b:6d:02:ce:05:98: 02:89:af:ea:1a:09:ea:77:8c:4d:93:70:49:36:bd: 73:ca:f9:dd:37:b1:ba:1e:7a:65:e2:7f:81:82:61: ba:fe:cf:73:50:59:4b:91:63:01:3a:01:ba:d1:f7: b0:2d:86:a8:7b:1e:df:07:b0:da:28:47:25:30:77: 45:cb:1a:80:01:61:37:e3:70:9d:b4:a5:e6:f3:f9: 29:8b:49:00:1b:6d:d1:3e:28:22:54:54:95:1b:33: e5:3c:74:d3:5f:f9:9a:82:f1:d4:12:4e:66:2d:fc: 0f:93:66:e9:b7:d9:bb:ba:69:40:93:77:61:90:9e: ce:09:3f:f5:2f:77:62:98:38:ba:c8:f3:33:5f:bb: 9d:c8:60:ac:69:14:0d:d9:70:f8:35:08:91:07:7a: e7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:2A:C6:07:4C:FA:C0:F5:28:84:40:2F:0E:A7:E3:14:3B:72:CF:F1 X509v3 Authority Key Identifier: keyid:D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/573BE4DE3D0811EF84157B26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.75.172.0/23 Signature Algorithm: sha256WithRSAEncryption 24:68:a0:36:66:f7:76:8a:0b:dc:8f:eb:f4:26:eb:cb:6c:09: eb:ad:c0:6b:59:7e:e1:3a:62:18:14:6e:54:52:c5:43:4f:a4: cc:01:cb:58:c7:4e:c5:04:f5:02:73:2d:62:e1:57:bf:30:c8: 7e:bd:96:57:6a:81:c6:a0:a4:ba:d3:d1:11:f7:ab:03:17:61: c7:d8:29:19:c3:18:aa:7f:2b:0d:18:d9:13:78:4e:ba:ba:16: b9:51:72:eb:66:c7:11:65:c2:77:e6:f6:9a:ac:31:8e:b5:8d: a9:87:dd:c8:ea:9c:6c:8a:1f:97:8a:77:91:9e:5d:11:32:53: 27:67:8e:0d:b8:17:f0:0f:26:da:ea:d8:c2:60:eb:2b:6b:2b: 41:ac:b8:77:ad:65:fd:01:11:0e:7e:3b:d9:07:0b:66:97:63: be:c2:78:ae:29:4e:70:68:d0:40:94:e6:a4:3d:2a:ca:13:18: 03:c1:f7:53:cd:30:ff:d3:1f:6e:56:c3:a2:0c:9e:11:a9:ab: 1f:38:73:c2:a7:31:27:86:31:9b:bc:a6:a6:9f:48:06:d1:2c: c6:cf:b3:e5:4a:c2:5e:4b:b3:91:69:80:09:e1:8a:5f:64:ec: 20:d2:b5:a8:8e:48:fe:5d:40:19:27:c9:d8:2b:99:9b:07:13: 57:80:71:e9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUIxQjExMC8GA1UEBRMoRDM1OUU1NkREQTAwMDNDNDgzRjNBRDZBNDBDMDgwRTkw Q0I4RDQ3MjAeFw0yNDA3MDgwODU5MTBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OGJhYTVlLTZkMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZdcSvH/SKb5pbboHKwV8Bce8MmkOVudijYbPlGA/NKzIIVd2+PZ+MO9wQHDjq XqkltzhgTsq6uLrn42LKxtqZGhCHKD5UBBVtk7fmJzAfOWpAhCc8wezJN3GrscpA L0OL0pttAs4FmAKJr+oaCep3jE2TcEk2vXPK+d03sboeemXif4GCYbr+z3NQWUuR YwE6AbrR97Athqh7Ht8HsNooRyUwd0XLGoABYTfjcJ20pebz+SmLSQAbbdE+KCJU VJUbM+U8dNNf+ZqC8dQSTmYt/A+TZum32bu6aUCTd2GQns4JP/Uvd2KYOLrI8zNf u53IYKxpFA3ZcPg1CJEHeufbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4yrGB0z6 wPUohEAvDqfjFDtyz/EwHwYDVR0jBBgwFoAU01nlbdoAA8SD861qQMCA6Qy41HIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5QjFCL0Y5RkVFMDQ2M0NG ODExRUZBMzY3QzM4NUM0RjlBRTAyLzAxbmxiZG9BQThTRDg2MXFRTUNBNlF5NDFI SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDFubGJkb0FBOFNEODYxcVFNQ0E2UXk0MUhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUIxQi9GOUZFRTA0NjNDRjgxMUVGQTM2N0MzODVDNEY5QUUwMi81NzNCRTRERTNE MDgxMUVGODQxNTdCMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdLrDANBgkqhkiG9w0BAQsFAAOCAQEAJGigNmb3dooL3I/r 9Cbry2wJ663Aa1l+4TpiGBRuVFLFQ0+kzAHLWMdOxQT1AnMtYuFXvzDIfr2WV2qB xqCkutPREferAxdhx9gpGcMYqn8rDRjZE3hOuroWuVFy62bHEWXCd+b2mqwxjrWN qYfdyOqcbIofl4p3kZ5dETJTJ2eODbgX8A8m2urYwmDrK2srQay4d61l/QERDn47 2QcLZpdjvsJ4rilOcGjQQJTmpD0qyhMYA8H3U80w/9MfblbDogyeEamrHzhzwqcx J4Yxm7ympp9IBtEsxs+z5UrCXkuzkWmACeGKX2TsINK1qI5I/l1AGSfJ2CuZmwcT V4Bx6Q== -----END CERTIFICATE-----Generated at Tue Sep 17 07:38:40 2024 by rpki-client on console-fra.rpki-client.org