$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/9AD7C430E06811EEAC73DC10C4F9AE02.roa File: 9AD7C430E06811EEAC73DC10C4F9AE02.roa (raw, json) Hash identifier: 2tA9RwPxa/lcHIQc3bvgrG9Xo/3t1a2zlU5f5Mo5W+8= Subject key identifier: EE:F1:26:06:07:3A:87:82:EB:4C:CF:28:EB:64:37:99:B9:F0:D6:04 Certificate issuer: /CN=A91DA59D/serialNumber=751FA49E712F88CF844CCD179EBE29B97EA1AACC Certificate serial: 06B9 Authority key identifier: 75:1F:A4:9E:71:2F:88:CF:84:4C:CD:17:9E:BE:29:B9:7E:A1:AA:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dR-knnEviM-ETM0Xnr4puX6hqsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/9AD7C430E06811EEAC73DC10C4F9AE02.roa Signing time: Tue 12 Mar 2024 12:05:10 +0000 ROA not before: Tue 12 Mar 2024 12:05:10 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 56110 IP address blocks: 103.138.188.0/24 maxlen: 24 103.138.189.0/24 maxlen: 24 2001:df0:4e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/dR-knnEviM-ETM0Xnr4puX6hqsw.crl rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/dR-knnEviM-ETM0Xnr4puX6hqsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dR-knnEviM-ETM0Xnr4puX6hqsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 22:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA59D/serialNumber=751FA49E712F88CF844CCD179EBE29B97EA1AACC Validity Not Before: Mar 12 12:05:10 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65f044f6-bfed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:72:cb:be:bb:df:63:14:33:fa:42:32:92:be: 42:4f:72:08:7c:e3:b2:25:33:1b:97:bc:9b:fa:a9: 77:9f:d0:c7:4a:82:75:43:41:fe:45:1b:56:a2:4a: b9:0a:89:05:2c:98:94:c7:0f:ec:e6:fb:a0:25:0f: 2f:96:03:38:88:cf:bb:b3:37:cc:be:07:e8:b2:d7: f0:17:ae:59:5b:89:2d:55:7e:40:85:f2:fe:24:6b: 72:a4:e4:22:5f:bd:58:3c:32:72:80:54:63:f1:27: 2b:4d:4a:f0:b6:48:30:8b:00:25:70:f3:c7:6d:09: 28:37:6c:38:9f:5c:74:cb:8d:f8:67:f0:cc:7a:77: 17:5e:bd:61:33:9a:9b:67:da:7e:a4:8e:25:63:5b: 93:ef:35:ac:af:c1:95:f5:6a:0e:0b:19:23:f1:0a: 10:85:f5:4e:31:f0:30:04:55:ab:91:fe:1a:43:b5: c8:58:b5:38:c0:64:4a:13:1f:78:ca:df:92:eb:ce: e6:40:02:34:24:00:4d:de:b5:19:26:86:3b:8e:15: b0:39:fe:72:d7:a1:ff:42:d7:89:c9:22:c2:59:8e: c5:85:f4:fe:03:d7:8b:ed:02:22:6f:09:e2:05:85: 74:bd:11:91:5f:1b:f3:d9:2c:c1:38:03:06:b7:56: 2f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F1:26:06:07:3A:87:82:EB:4C:CF:28:EB:64:37:99:B9:F0:D6:04 X509v3 Authority Key Identifier: keyid:75:1F:A4:9E:71:2F:88:CF:84:4C:CD:17:9E:BE:29:B9:7E:A1:AA:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/dR-knnEviM-ETM0Xnr4puX6hqsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dR-knnEviM-ETM0Xnr4puX6hqsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/9AD7C430E06811EEAC73DC10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.188.0/23 IPv6: 2001:df0:4e80::/48 Signature Algorithm: sha256WithRSAEncryption 38:99:75:88:55:5e:58:09:1a:0c:63:0c:bf:94:72:a9:7f:ed: 13:7d:d4:be:41:a7:c9:85:21:9b:93:55:c9:95:14:ff:aa:39: cc:d4:75:9f:e3:5c:7e:7a:f9:f2:04:70:50:02:18:1b:12:b1: 99:e8:59:85:70:43:ea:79:96:cf:4e:ad:9a:dd:8c:90:52:75: 6f:eb:83:05:e6:11:cb:e1:53:e6:fb:9d:7d:15:45:7d:25:26: c4:a7:67:e9:5d:7c:12:a3:85:b1:3e:86:ec:2e:9d:1c:5c:8f: 8b:5a:2b:0c:cc:3e:a1:c2:20:52:f2:3c:53:8f:a8:4c:ba:43: 15:3c:93:33:e2:d5:ff:f6:8f:6d:ae:49:9c:79:c8:fc:af:79: 8f:4b:20:17:cf:4c:bc:9f:93:a8:95:5b:0d:74:43:d5:31:8d: e0:08:02:9a:8e:a6:d8:12:2a:89:ab:54:37:69:88:10:de:81: 9d:b1:47:86:8b:7b:43:b9:24:9e:79:15:4b:7f:88:60:ba:ed: 6a:ba:ec:11:68:ed:e6:48:92:6b:ad:29:58:38:af:1a:56:02: 0f:f6:5e:47:d5:74:1c:61:1d:1f:09:b8:9b:48:55:d1:88:f9: d0:89:b1:79:d6:d2:a8:cf:34:13:12:9e:54:74:ca:a8:49:94: 6f:96:e0:12 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OUQxMTAvBgNVBAUTKDc1MUZBNDlFNzEyRjg4Q0Y4NDRDQ0QxNzlFQkUyOUI5 N0VBMUFBQ0MwHhcNMjQwMzEyMTIwNTEwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwNDRmNi1iZmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03LLvrvfYxQz+kIykr5CT3IIfOOyJTMbl7yb+ql3n9DHSoJ1Q0H+RRtWokq5 CokFLJiUxw/s5vugJQ8vlgM4iM+7szfMvgfostfwF65ZW4ktVX5AhfL+JGtypOQi X71YPDJygFRj8ScrTUrwtkgwiwAlcPPHbQkoN2w4n1x0y434Z/DMencXXr1hM5qb Z9p+pI4lY1uT7zWsr8GV9WoOCxkj8QoQhfVOMfAwBFWrkf4aQ7XIWLU4wGRKEx94 yt+S687mQAI0JABN3rUZJoY7jhWwOf5y16H/QteJySLCWY7FhfT+A9eL7QIibwni BYV0vRGRXxvz2SzBOAMGt1YveQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO7xJgYH OoeC60zPKOtkN5m58NYEMB8GA1UdIwQYMBaAFHUfpJ5xL4jPhEzNF56+Kbl+oarM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5RC81NjNERTUwRTBE NTYxMUVCQTNEMTVEMkNDNEY5QUUwMi9kUi1rbm5FdmlNLUVUTTBYbnI0cHVYNmhx c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RSLWtubkV2aU0tRVRNMFhucjRwdVg2aHFzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REE1OUQvNTYzREU1MEUwRDU2MTFFQkEzRDE1RDJDQzRGOUFFMDIvOUFEN0M0MzBF MDY4MTFFRUFDNzNEQzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnirwwDwQCAAIwCQMHACABDfBOgDANBgkqhkiG9w0BAQsF AAOCAQEAOJl1iFVeWAkaDGMMv5RyqX/tE33UvkGnyYUhm5NVyZUU/6o5zNR1n+Nc fnr58gRwUAIYGxKxmehZhXBD6nmWz06tmt2MkFJ1b+uDBeYRy+FT5vudfRVFfSUm xKdn6V18EqOFsT6G7C6dHFyPi1orDMw+ocIgUvI8U4+oTLpDFTyTM+LV//aPba5J nHnI/K95j0sgF89MvJ+TqJVbDXRD1TGN4AgCmo6m2BIqiatUN2mIEN6BnbFHhot7 Q7kknnkVS3+IYLrtarrsEWjt5kiSa60pWDivGlYCD/ZeR9V0HGEdHwm4m0hV0Yj5 0ImxedbSqM80ExKeVHTKqEmUb5bgEg== -----END CERTIFICATE-----Generated at Tue May 14 23:45:45 2024 by rpki-client on console-fra.rpki-client.org