$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/14820EDE248611EEB600357DC4F9AE02.roa File: 14820EDE248611EEB600357DC4F9AE02.roa (raw, json) Hash identifier: 0/4blx4DV4o0XHT92JvfQApnCqJsED9XF07o3w0iEXQ= Subject key identifier: 2E:CB:D3:47:4E:0C:E4:8B:6E:6E:9C:A4:F2:8C:AE:19:36:40:6F:0F Certificate issuer: /CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Certificate serial: 2B77 Authority key identifier: 3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/14820EDE248611EEB600357DC4F9AE02.roa Signing time: Tue 26 Sep 2023 15:52:10 +0000 ROA not before: Tue 26 Sep 2023 15:52:10 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136759 IP address blocks: 103.102.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11127 (0x2b77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Validity Not Before: Sep 26 15:52:10 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6512fe2a-57b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ab:de:54:a5:8a:05:4a:0e:32:c6:3d:76:f2: dd:c2:c8:eb:b3:c7:f6:72:a4:1b:ec:cd:2d:23:7c: 1e:18:bb:34:13:20:7a:88:3c:61:e1:f5:38:13:81: 17:8e:fe:40:f1:26:16:f8:94:f9:cd:d0:47:56:89: a6:6a:e4:bd:8b:d0:4e:76:42:0b:0e:23:39:de:8f: c2:9f:8e:23:ad:93:8c:86:f1:eb:46:34:76:ff:60: 2c:03:73:92:32:69:14:0c:95:91:8e:1e:7e:b6:22: d7:b8:fc:51:82:d8:16:e5:ff:c7:ef:50:cb:43:2d: fa:31:de:c1:44:9f:14:51:b5:24:91:b9:d6:e3:93: bc:fc:81:3b:03:96:b6:e3:fc:24:65:63:c0:25:ec: 66:06:89:cc:c9:c9:47:63:49:49:b1:f3:00:f1:86: c9:96:fc:9a:0c:7d:6b:44:05:bb:96:33:69:7b:96: c6:c0:c7:f3:41:12:a1:3c:dc:d8:5d:80:cc:aa:1b: 92:60:73:e7:d7:14:69:a8:c7:35:e4:00:e2:71:44: 8e:5a:73:b2:8b:21:9a:af:a9:72:bf:6f:5e:44:11: 69:05:c2:50:7f:03:df:cc:c2:e6:ec:bc:86:34:89: 83:54:da:5e:67:7b:ce:6e:39:8c:3d:18:8d:21:f6: c4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:CB:D3:47:4E:0C:E4:8B:6E:6E:9C:A4:F2:8C:AE:19:36:40:6F:0F X509v3 Authority Key Identifier: keyid:3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/14820EDE248611EEB600357DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.42.0/24 Signature Algorithm: sha256WithRSAEncryption 48:7c:b4:3f:4b:97:1e:40:d0:75:30:f4:b1:d6:4a:dd:e9:5e: ef:9c:08:81:bc:ab:cd:d6:27:52:8f:70:02:75:9e:64:90:6b: bb:ea:d5:69:71:d2:81:e8:33:66:31:7a:e8:38:44:5f:32:4a: 1b:01:d2:2d:7e:46:e0:f0:4c:f6:6c:32:a8:36:c9:79:ef:3d: 3d:d8:e4:c2:ac:a3:28:65:e8:4d:df:fc:e9:9e:a6:c7:fe:2a: 8d:27:32:a7:0b:bc:b9:43:8a:99:03:06:c8:dc:5b:54:63:61: 85:1f:5e:31:9f:a2:cf:88:b5:95:f7:bb:1e:cf:1f:bc:4b:ae: 6d:31:7e:89:f2:61:85:61:33:4d:8a:51:a5:b2:fc:f5:da:76: 87:3e:a4:8d:4f:4b:00:43:ab:c2:ce:0d:22:ff:4f:ca:4b:25: 26:50:4f:6c:40:05:04:f4:57:91:5e:a8:0b:d6:54:02:89:55: 4f:06:96:98:91:90:55:5e:56:d5:20:b4:41:d4:ec:7d:5a:26: 14:b7:e7:6c:0c:e8:e0:26:21:cf:27:fd:1e:78:72:0d:d3:35: c8:cf:70:91:7a:a2:30:a8:d9:00:b1:ff:ab:c8:5f:8c:65:af: 96:3c:96:8a:e7:65:3e:90:7d:d0:60:e3:30:eb:e1:f7:5a:3d: 94:0a:88:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICK3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyRDUxMTAvBgNVBAUTKDNDMUM4NzczNDdFRTgyNzI5NjM2QUYwRjNBMzc1RDM5 MTA5MEY5MjEwHhcNMjMwOTI2MTU1MjEwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEyZmUyYS01N2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKveVKWKBUoOMsY9dvLdwsjrs8f2cqQb7M0tI3weGLs0EyB6iDxh4fU4E4EX jv5A8SYW+JT5zdBHVommauS9i9BOdkILDiM53o/Cn44jrZOMhvHrRjR2/2AsA3OS MmkUDJWRjh5+tiLXuPxRgtgW5f/H71DLQy36Md7BRJ8UUbUkkbnW45O8/IE7A5a2 4/wkZWPAJexmBonMyclHY0lJsfMA8YbJlvyaDH1rRAW7ljNpe5bGwMfzQRKhPNzY XYDMqhuSYHPn1xRpqMc15ADicUSOWnOyiyGar6lyv29eRBFpBcJQfwPfzMLm7LyG NImDVNpeZ3vObjmMPRiNIfbE0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFC7L00dO DOSLbm6cpPKMrhk2QG8PMB8GA1UdIwQYMBaAFDwch3NH7oJyljavDzo3XTkQkPkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTJENS81Rjg2MUVFNkI4 OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWduS1dOcThQT2pkZE9SQ1Et U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCeUhjMGZ1Z25LV05xOFBPamRkT1JDUS1TRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEyRDUvNUY4NjFFRTZCODlBMTFFM0I0QUM3RTc4NTkxMUVBMzIvMTQ4MjBFREUy NDg2MTFFRUI2MDAzNTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZiowDQYJKoZIhvcNAQELBQADggEBAEh8tD9Llx5A0HUw 9LHWSt3pXu+cCIG8q83WJ1KPcAJ1nmSQa7vq1Wlx0oHoM2Yxeug4RF8yShsB0i1+ RuDwTPZsMqg2yXnvPT3Y5MKsoyhl6E3f/Omepsf+Ko0nMqcLvLlDipkDBsjcW1Rj YYUfXjGfos+ItZX3ux7PH7xLrm0xfonyYYVhM02KUaWy/PXadoc+pI1PSwBDq8LO DSL/T8pLJSZQT2xABQT0V5FeqAvWVAKJVU8GlpiRkFVeVtUgtEHU7H1aJhS352wM 6OAmIc8n/R54cg3TNcjPcJF6ojCo2QCx/6vIX4xlr5Y8lornZT6QfdBg4zDr4fda PZQKiPo= -----END CERTIFICATE-----Generated at Wed May 8 18:14:39 2024 by rpki-client on console-fra.rpki-client.org