$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/68C5CFBE076911EF8569F157C4F9AE02.roa File: 68C5CFBE076911EF8569F157C4F9AE02.roa (raw, json) Hash identifier: 3urSEYH0gjusIwXeqrofJiltAWjh56tWGXZgfGhU66o= Subject key identifier: 7A:60:6D:0B:77:E4:1E:E6:74:28:0F:C9:24:8D:7E:07:A5:FD:BE:3B Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 0743 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/68C5CFBE076911EF8569F157C4F9AE02.roa Signing time: Wed 01 May 2024 03:19:01 +0000 ROA not before: Wed 01 May 2024 03:19:01 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 997 IP address blocks: 103.213.244.0/22 maxlen: 24 144.48.4.0/22 maxlen: 24 2401:1640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1859 (0x743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: May 1 03:19:01 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6631b4a5-9e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6d:4b:7f:f7:c8:f6:79:63:ac:81:d3:2e:9b: 3b:0f:6b:c0:7c:b6:a4:a1:f2:2d:09:98:37:15:c5: d3:1b:7e:a9:ad:87:66:99:5c:28:c5:61:54:61:69: 97:36:6d:0e:5c:34:4a:c5:8b:ca:ba:68:17:b4:cf: ea:0a:4b:9e:c8:0f:73:26:c1:3a:f0:fb:2b:3f:20: 6d:0e:75:d6:bc:13:23:51:57:a7:6a:d7:ba:ab:a2: 8f:0b:15:75:a4:95:87:56:92:56:32:d7:4d:4b:fe: 47:8f:36:72:eb:3c:75:33:e1:0c:d3:6c:41:b4:43: 6e:8a:71:0e:df:ce:75:bf:39:9e:b3:5d:de:0f:31: 02:a7:03:aa:b4:b5:8b:6d:20:13:79:b4:be:ed:cd: 79:3c:51:ee:ea:6f:45:9d:72:38:06:27:a8:64:ed: 08:b2:26:b4:f8:ff:72:e4:08:d0:eb:b1:c2:65:46: a7:5d:a0:af:5d:7a:6f:8c:48:72:f5:1a:33:42:8b: ff:62:d3:3b:a9:16:6f:b7:67:c3:20:8c:44:59:aa: 9b:a2:56:8e:9a:29:ec:35:b4:a7:d2:6b:81:1b:00: a9:0a:8e:89:2b:a7:36:ca:2d:26:86:82:f7:59:b6: 64:94:6d:3b:42:16:33:be:42:2f:4f:41:44:db:08: d0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:60:6D:0B:77:E4:1E:E6:74:28:0F:C9:24:8D:7E:07:A5:FD:BE:3B X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/68C5CFBE076911EF8569F157C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/22 144.48.4.0/22 IPv6: 2401:1640::/32 Signature Algorithm: sha256WithRSAEncryption 7b:7d:b0:ac:c5:93:a6:b3:24:03:ff:08:80:a7:38:e8:47:4e: eb:5b:41:f5:fd:ee:6b:ea:ab:4e:8e:a8:f9:38:75:73:47:9d: ac:fd:bc:ba:46:2c:08:55:22:40:fd:7d:e1:dd:66:40:42:a5: 15:8c:c5:78:47:5c:23:6c:86:74:f7:cf:32:18:48:7b:19:4d: f7:30:4f:27:2d:0c:f8:c5:e5:97:be:7e:52:3a:19:d1:a7:a6: 95:da:4c:b6:21:52:10:7d:bd:d4:dc:5c:87:c5:a9:41:84:b0: 2a:b7:c1:c8:64:85:fe:76:e8:dc:85:2c:21:54:96:29:e5:92: 3c:0b:a9:49:04:fa:82:27:f3:37:d6:d2:80:b8:ae:3a:59:e9: 4e:bb:45:3f:1b:74:b9:dc:33:7d:c1:7b:98:af:d8:00:26:61: 8c:46:69:72:aa:d9:96:98:bb:62:fe:8b:28:58:4b:c0:2b:91: f5:f8:1f:43:4d:3f:02:1a:d5:d6:27:76:b5:5f:71:51:06:2d: ef:cd:35:9a:15:4d:31:db:b6:dd:3a:01:9d:00:11:a0:f5:77: a0:ef:5c:18:3c:7c:e0:cb:ac:b3:a0:f9:62:5a:ca:8a:a4:ec: d3:13:8a:6c:23:42:9a:38:d2:5e:3d:44:af:62:6c:57:b9:c4: 2f:f1:5d:9f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjQwNTAxMDMxOTAxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxYjRhNS05ZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw21Lf/fI9nljrIHTLps7D2vAfLakofItCZg3FcXTG36prYdmmVwoxWFUYWmX Nm0OXDRKxYvKumgXtM/qCkueyA9zJsE68PsrPyBtDnXWvBMjUVenate6q6KPCxV1 pJWHVpJWMtdNS/5HjzZy6zx1M+EM02xBtENuinEO3851vzmes13eDzECpwOqtLWL bSATebS+7c15PFHu6m9FnXI4BieoZO0Isia0+P9y5AjQ67HCZUanXaCvXXpvjEhy 9RozQov/YtM7qRZvt2fDIIxEWaqbolaOminsNbSn0muBGwCpCo6JK6c2yi0mhoL3 WbZklG07QhYzvkIvT0FE2wjQRQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFHpgbQt3 5B7mdCgPySSNfgel/b47MB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvNjhDNUNGQkUw NzY5MTFFRjg1NjlGMTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn1fQDBAKQMAQwDQQCAAIwBwMFACQBFkAwDQYJKoZIhvcN AQELBQADggEBAHt9sKzFk6azJAP/CICnOOhHTutbQfX97mvqq06OqPk4dXNHnaz9 vLpGLAhVIkD9feHdZkBCpRWMxXhHXCNshnT3zzIYSHsZTfcwTyctDPjF5Ze+flI6 GdGnppXaTLYhUhB9vdTcXIfFqUGEsCq3wchkhf526NyFLCFUlinlkjwLqUkE+oIn 8zfW0oC4rjpZ6U67RT8bdLncM33Be5iv2AAmYYxGaXKq2ZaYu2L+iyhYS8ArkfX4 H0NNPwIa1dYndrVfcVEGLe/NNZoVTTHbtt06AZ0AEaD1d6DvXBg8fODLrLOg+WJa yoqk7NMTimwjQpo40l49RK9ibFe5xC/xXZ8= -----END CERTIFICATE-----Generated at Sun May 19 00:16:19 2024 by rpki-client on console-fra.rpki-client.org