$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/67FF0960076911EF8569F157C4F9AE02.roa File: 67FF0960076911EF8569F157C4F9AE02.roa (raw, json) Hash identifier: hI29xSQXh1cP0cvokOmU5zY43qAdfumBYUMAD16rgjE= Subject key identifier: E1:20:AE:39:73:60:74:D9:6B:CE:AE:3A:8B:E0:33:62:BA:21:39:DD Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 073F Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/67FF0960076911EF8569F157C4F9AE02.roa Signing time: Wed 01 May 2024 03:17:57 +0000 ROA not before: Wed 01 May 2024 03:17:57 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 18254 IP address blocks: 103.213.244.0/23 maxlen: 23 103.213.245.0/24 maxlen: 24 103.213.246.0/23 maxlen: 23 103.213.246.0/24 maxlen: 24 103.213.247.0/24 maxlen: 24 144.48.4.0/23 maxlen: 24 144.48.6.0/23 maxlen: 23 144.48.6.0/24 maxlen: 24 144.48.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: May 1 03:17:57 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6631b465-f6d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:14:49:c2:25:cc:58:88:9d:78:bb:53:14: 85:56:54:f6:09:b2:53:85:df:0f:a5:c4:1a:a0:ea: 85:5e:a5:a8:d5:5b:a3:21:56:d7:d7:4e:7e:3a:a1: d4:01:95:b4:58:99:b2:ae:26:7d:99:d2:90:6c:6d: 82:99:c6:91:32:fa:1b:1d:ec:12:a8:19:54:43:74: f2:1f:8f:93:1c:de:fa:95:97:bb:dc:d5:98:30:86: 50:80:4f:87:31:66:d3:45:42:b2:23:74:e5:e2:ae: 94:4f:e9:53:9a:1e:22:b7:39:71:47:bf:9d:d3:21: 25:c0:3f:05:89:4a:ca:39:de:fa:c8:82:db:ea:bb: c2:a9:6f:e0:d5:eb:32:ca:d8:b7:6b:2e:6c:04:82: 79:99:7d:fb:a1:97:ab:3b:d1:76:3c:3f:a1:c2:ad: 1e:6a:92:57:1e:f0:83:ca:67:2b:4a:f7:18:a6:9f: 72:fa:69:57:20:9e:cd:76:02:23:00:60:13:eb:80: dc:2f:48:7b:12:9c:6b:11:a6:64:1c:42:84:34:2b: 2d:09:9a:10:2d:e9:8c:6a:4d:8c:2a:fd:f5:63:09: 1a:87:16:0b:e7:72:02:64:54:13:c8:28:d5:e0:67: 73:3a:00:89:f8:df:3e:9c:07:fc:fc:93:c5:51:8b: df:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:20:AE:39:73:60:74:D9:6B:CE:AE:3A:8B:E0:33:62:BA:21:39:DD X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/67FF0960076911EF8569F157C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/22 144.48.4.0/22 Signature Algorithm: sha256WithRSAEncryption 03:64:98:11:57:8d:b8:ad:80:9b:5a:ed:ca:9c:41:8d:76:67: bf:9a:95:24:39:26:5b:94:58:f5:00:a0:85:5f:a5:5e:a4:97: a0:22:21:39:a5:3d:9a:35:76:22:01:73:16:14:83:25:80:2c: 5d:c7:24:bb:03:88:12:48:10:d4:2f:18:12:08:e4:99:7f:95: 4a:d4:b5:59:ec:2b:a4:63:0c:26:46:e9:ce:51:98:57:13:e8: 56:d3:b8:16:ab:b9:45:06:95:58:73:12:64:d4:59:ce:0f:f8: fe:27:0b:8e:42:a7:d1:c4:08:0b:be:d5:e0:78:4d:85:58:ff: e9:47:7e:ca:eb:a9:a1:33:bb:3a:84:33:38:f7:77:f8:e4:85: 6b:6f:65:02:e3:86:76:89:89:8c:1f:8f:02:6a:d5:18:88:26: 3b:19:5a:b6:95:44:49:4e:59:94:f2:d3:f7:34:29:df:72:19: 0b:ca:6e:b9:ac:d3:10:89:e8:4d:e0:97:e9:a9:08:46:df:05: d7:eb:77:1a:99:ba:e6:a1:18:06:ed:90:d7:b7:12:bc:a4:3b: 84:b2:31:55:19:00:27:57:b6:b4:f9:6c:fc:92:22:95:2a:0a: da:43:60:4e:3e:5d:ab:94:ae:91:aa:8a:8c:ff:8a:d1:4a:40: bb:df:ef:14 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjQwNTAxMDMxNzU3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxYjQ2NS1mNmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv38UScIlzFiInXi7UxSFVlT2CbJThd8PpcQaoOqFXqWo1VujIVbX105+OqHU AZW0WJmyriZ9mdKQbG2CmcaRMvobHewSqBlUQ3TyH4+THN76lZe73NWYMIZQgE+H MWbTRUKyI3Tl4q6UT+lTmh4itzlxR7+d0yElwD8FiUrKOd76yILb6rvCqW/g1esy yti3ay5sBIJ5mX37oZerO9F2PD+hwq0eapJXHvCDymcrSvcYpp9y+mlXIJ7NdgIj AGAT64DcL0h7EpxrEaZkHEKENCstCZoQLemMak2MKv31YwkahxYL53ICZFQTyCjV 4GdzOgCJ+N8+nAf8/JPFUYvf8wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOEgrjlz YHTZa86uOovgM2K6ITndMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvNjdGRjA5NjAw NzY5MTFFRjg1NjlGMTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1fQDBAKQMAQwDQYJKoZIhvcNAQELBQADggEBAANkmBFX jbitgJta7cqcQY12Z7+alSQ5JluUWPUAoIVfpV6kl6AiITmlPZo1diIBcxYUgyWA LF3HJLsDiBJIENQvGBII5Jl/lUrUtVnsK6RjDCZG6c5RmFcT6FbTuBaruUUGlVhz EmTUWc4P+P4nC45Cp9HECAu+1eB4TYVY/+lHfsrrqaEzuzqEMzj3d/jkhWtvZQLj hnaJiYwfjwJq1RiIJjsZWraVRElOWZTy0/c0Kd9yGQvKbrms0xCJ6E3gl+mpCEbf BdfrdxqZuuahGAbtkNe3ErykO4SyMVUZACdXtrT5bPySIpUqCtpDYE4+XauUrpGq ioz/itFKQLvf7xQ= -----END CERTIFICATE-----Generated at Sun May 19 00:16:19 2024 by rpki-client on console-fra.rpki-client.org