$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/234205EA327A11E8A1143B79C4F9AE02.roa File: 234205EA327A11E8A1143B79C4F9AE02.roa (raw, json) Hash identifier: dNRtXVoOTZwtJ1I2U7amdHCRzMyv1RMCXarfjz4uRlY= Subject key identifier: 63:8B:95:19:32:6E:D4:E1:48:4B:29:DF:95:A2:ED:6B:97:B8:4A:78 Certificate issuer: /CN=A91DCD09/serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Certificate serial: 18E7 Authority key identifier: 18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/234205EA327A11E8A1143B79C4F9AE02.roa Signing time: Fri 06 Oct 2023 16:54:03 +0000 ROA not before: Fri 06 Oct 2023 16:54:03 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 19905 IP address blocks: 103.241.84.0/24 maxlen: 24 103.241.85.0/24 maxlen: 24 103.241.86.0/24 maxlen: 24 103.241.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6375 (0x18e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09/serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Validity Not Before: Oct 6 16:54:03 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65203bab-6d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:21:42:c5:43:50:42:2c:72:30:40:8e:e5:f6: 78:c2:f3:51:13:a8:2a:62:58:37:f6:8d:46:43:0b: 27:12:71:89:f9:3e:3f:25:f5:15:53:c9:0f:a2:d4: 7c:5a:fa:61:6a:ee:f0:2b:59:c7:80:25:d4:d5:70: ca:a6:23:2e:d3:56:f2:cc:02:5a:f9:ca:6e:9d:3c: bb:49:69:9c:cb:a2:5b:18:9b:a8:ec:29:6c:6b:09: ad:b5:6f:df:b4:bb:04:ec:34:e5:50:38:3d:53:a0: 60:5e:3b:11:6a:b7:bd:51:42:a8:92:38:a7:18:8f: c7:54:a4:2a:d3:3c:75:5e:cc:07:d7:d7:9f:5f:15: 04:5c:f4:4b:93:e5:05:cd:f0:86:31:18:53:74:27: 31:9a:c9:d7:c0:0f:09:b3:53:5a:99:64:f8:d4:3b: c9:ac:a1:61:c6:9b:c3:c3:7d:64:c3:8b:de:2a:34: a2:56:20:d2:e6:cc:86:be:ab:8b:33:29:7d:5b:99: 3b:8a:17:20:de:f7:a5:5a:93:4d:2e:f8:84:a7:84: fb:99:93:e0:e5:ca:09:2e:15:3a:83:e3:d0:83:a6: e4:af:6a:94:4e:c0:61:fd:90:94:53:dc:e7:7c:61: a6:6a:1a:c2:af:8a:f9:ad:e1:a8:0d:21:57:69:7a: b0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:8B:95:19:32:6E:D4:E1:48:4B:29:DF:95:A2:ED:6B:97:B8:4A:78 X509v3 Authority Key Identifier: keyid:18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/234205EA327A11E8A1143B79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.84.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:41:0a:1e:ca:fe:5f:2b:05:f8:a5:f5:97:f1:d4:ef:e5:6d: d3:17:e1:fa:60:66:a5:9d:8e:0b:a5:3d:58:f2:59:71:9c:02: f9:3d:d1:e0:a5:13:04:0e:1b:6c:f4:1b:fe:63:9f:09:eb:9f: 52:d2:aa:c7:f8:cf:1c:9b:92:46:a1:f0:ed:66:ca:b8:3a:79: 1e:81:ee:32:d7:3f:39:b7:52:c9:94:4f:60:fa:fa:64:ea:9a: 77:3a:05:d5:11:79:d3:a3:d0:f9:88:1a:de:04:dc:0e:f5:b8: 63:24:ae:1d:26:df:75:46:aa:cf:8a:26:7b:e7:5b:84:64:24: 60:1f:28:06:e2:96:a2:c8:52:aa:c6:a7:1b:62:08:dd:83:84: ba:9b:c5:1e:9e:2a:17:fa:de:99:92:ee:e5:da:db:ce:2d:35: ea:aa:fe:00:09:eb:a4:32:0a:4b:1f:c3:0b:72:5b:b4:a4:90: 2c:72:f6:3d:4e:2e:90:4a:22:25:33:bd:09:f9:c1:30:4b:b7: 3c:16:de:99:0d:1d:80:ea:b6:f5:0e:c1:4b:eb:05:5e:01:92: fd:12:7e:b8:dd:67:3f:f4:eb:57:80:76:93:47:1d:f8:a2:65: 93:8e:3f:2a:b0:19:23:46:1c:09:e5:2e:e7:96:b9:5f:28:f8: ce:93:ca:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKDE4Rjk3RDA5OEU0RUJEMDYxMEQ1NEY0OEQ1QjNFMUFB NzQzQTIwMjkwHhcNMjMxMDA2MTY1NDAzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwM2JhYi02ZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySFCxUNQQixyMECO5fZ4wvNRE6gqYlg39o1GQwsnEnGJ+T4/JfUVU8kPotR8 Wvphau7wK1nHgCXU1XDKpiMu01byzAJa+cpunTy7SWmcy6JbGJuo7ClsawmttW/f tLsE7DTlUDg9U6BgXjsRare9UUKokjinGI/HVKQq0zx1XswH19efXxUEXPRLk+UF zfCGMRhTdCcxmsnXwA8Js1NamWT41DvJrKFhxpvDw31kw4veKjSiViDS5syGvquL Myl9W5k7ihcg3velWpNNLviEp4T7mZPg5coJLhU6g+PQg6bkr2qUTsBh/ZCUU9zn fGGmahrCr4r5reGoDSFXaXqwcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGOLlRky btThSEsp35Wi7WuXuEp4MB8GA1UdIwQYMBaAFBj5fQmOTr0GENVPSNWz4ap0OiAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS8yRjhCODU1MjU0 ODUxMUU3QjFEODQ3MTNDNEY5QUUwMi9HUGw5Q1k1T3ZRWVExVTlJMWJQaHFuUTZJ Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dQbDlDWTVPdlFZUTFVOUkxYlBocW5RNklDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvMkY4Qjg1NTI1NDg1MTFFN0IxRDg0NzEzQzRGOUFFMDIvMjM0MjA1RUEz MjdBMTFFOEExMTQzQjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8VQwDQYJKoZIhvcNAQELBQADggEBAFxBCh7K/l8rBfil 9Zfx1O/lbdMX4fpgZqWdjgulPVjyWXGcAvk90eClEwQOG2z0G/5jnwnrn1LSqsf4 zxybkkah8O1myrg6eR6B7jLXPzm3UsmUT2D6+mTqmnc6BdURedOj0PmIGt4E3A71 uGMkrh0m33VGqs+KJnvnW4RkJGAfKAbilqLIUqrGpxtiCN2DhLqbxR6eKhf63pmS 7uXa284tNeqq/gAJ66QyCksfwwtyW7SkkCxy9j1OLpBKIiUzvQn5wTBLtzwW3pkN HYDqtvUOwUvrBV4Bkv0SfrjdZz/061eAdpNHHfiiZZOOPyqwGSNGHAnlLueWuV8o +M6TylA= -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:41 2024 by rpki-client on console-fra.rpki-client.org