$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/452DDFB4011611EA972FFC57C4F9AE02.roa File: 452DDFB4011611EA972FFC57C4F9AE02.roa (raw, json) Hash identifier: 6Q4mSCHV8BQvnZjmfuRVPn50cZ9zStqqddBgjxs4pRg= Subject key identifier: F5:65:FE:46:26:55:53:E7:34:94:8C:B2:C2:B9:A8:32:1B:DE:A1:9E Certificate issuer: /CN=A91DE8C5/serialNumber=EF95CBD598352640D42B0AAC600041065B4DC442 Certificate serial: 0B2A Authority key identifier: EF:95:CB:D5:98:35:26:40:D4:2B:0A:AC:60:00:41:06:5B:4D:C4:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75XL1Zg1JkDUKwqsYABBBltNxEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/452DDFB4011611EA972FFC57C4F9AE02.roa Signing time: Wed 04 Oct 2023 18:56:56 +0000 ROA not before: Wed 04 Oct 2023 18:56:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 135562 IP address blocks: 103.123.30.0/24 maxlen: 24 103.123.31.0/24 maxlen: 24 2403:9bc0::/48 maxlen: 48 2403:9bc0:1::/48 maxlen: 48 2403:9bc0:2::/48 maxlen: 48 2403:9bc0:3::/48 maxlen: 48 2403:9bc0:4::/48 maxlen: 48 2403:9bc0:5::/48 maxlen: 48 2403:9bc0:6::/48 maxlen: 48 2403:9bc0:7::/48 maxlen: 48 2403:9bc0:8::/48 maxlen: 48 2403:9bc0:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/75XL1Zg1JkDUKwqsYABBBltNxEI.crl rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/75XL1Zg1JkDUKwqsYABBBltNxEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75XL1Zg1JkDUKwqsYABBBltNxEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2858 (0xb2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8C5/serialNumber=EF95CBD598352640D42B0AAC600041065B4DC442 Validity Not Before: Oct 4 18:56:56 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651db577-0dc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:be:38:ea:91:2b:4d:fe:33:d0:31:df:ca:6d: 43:cc:87:6a:c5:03:66:34:ad:a0:7e:97:f8:de:57: a2:ca:f5:21:22:88:b8:10:a4:6c:26:58:2b:e7:15: 26:bf:1b:17:3c:64:ff:7c:1d:70:26:77:ac:36:7e: e4:a6:a0:d4:05:27:68:5e:88:f0:43:f5:45:aa:56: 3a:64:97:fc:7b:f5:0e:9e:02:c0:1f:f9:8c:63:bc: 8c:f8:87:3b:92:c7:cb:cc:21:39:d3:48:47:ac:a7: 93:2d:3e:17:33:86:05:2c:e0:e7:c0:79:08:b0:4e: e9:3e:ae:97:93:3c:84:de:74:57:ec:ea:81:ef:da: 6c:de:49:fd:66:58:34:cc:6a:67:66:6a:a1:54:89: dc:c3:23:90:bd:ee:45:50:d3:0b:95:dc:b2:b0:97: a3:9d:1a:e9:34:95:1f:46:eb:d7:25:17:7e:36:01: c5:f4:8d:0d:ab:74:af:b6:0d:5f:67:dc:71:d1:92: be:0d:90:d0:38:24:99:a8:ec:fc:37:35:53:f3:23: 75:8e:2a:5f:dc:1a:67:85:f7:7f:5d:05:b4:85:59: 53:05:c2:18:de:be:b8:23:8d:a0:09:68:ad:bf:1d: 03:fa:68:08:f2:5d:ed:63:99:42:a8:2d:b8:db:41: 5f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:65:FE:46:26:55:53:E7:34:94:8C:B2:C2:B9:A8:32:1B:DE:A1:9E X509v3 Authority Key Identifier: keyid:EF:95:CB:D5:98:35:26:40:D4:2B:0A:AC:60:00:41:06:5B:4D:C4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/75XL1Zg1JkDUKwqsYABBBltNxEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75XL1Zg1JkDUKwqsYABBBltNxEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/452DDFB4011611EA972FFC57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.30.0/23 IPv6: 2403:9bc0::-2403:9bc0:9:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 23:ba:20:29:49:6b:92:9b:04:3a:bf:b7:db:61:20:7d:0d:40: 20:c2:19:02:22:cb:b9:55:93:14:5b:1c:11:46:62:4e:37:5e: e9:77:ea:e2:56:d0:77:78:60:33:c7:bb:ae:5d:77:1c:4b:da: bd:33:26:fb:fa:28:95:1e:bb:b0:38:b9:a2:5f:1b:bc:c9:fc: f3:aa:75:f2:cf:b8:6a:d4:61:f8:58:63:d1:cc:a7:dd:10:28: a4:9c:c9:35:ac:14:1f:98:c1:75:73:aa:0d:fd:d6:8e:59:a2: 30:5f:cd:5a:b8:92:b1:f9:c5:7b:8c:af:6b:ea:71:8d:6e:23: 7c:f4:a4:65:a6:99:31:13:3b:46:e1:76:f7:2f:1f:95:ef:69: 34:6f:16:ca:0b:28:67:2d:44:d7:a7:2e:90:9f:75:c9:d2:1a: 9c:70:de:fc:fa:16:34:d1:4f:78:63:a9:89:02:e9:bc:4c:82: 78:2c:b4:14:e2:7f:e9:fc:80:82:01:fc:ad:9f:ef:2b:12:6d: e2:cb:50:06:d8:47:83:f2:bc:3f:de:52:5b:d5:82:d7:b7:5d: 55:e5:26:79:ea:45:14:78:d3:b1:ba:4a:98:98:35:41:05:e8: 1a:01:1a:b4:a0:45:0d:88:6d:08:9a:aa:b7:9b:21:d0:47:55: a3:96:8e:0f -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QzUxMTAvBgNVBAUTKEVGOTVDQkQ1OTgzNTI2NDBENDJCMEFBQzYwMDA0MTA2 NUI0REM0NDIwHhcNMjMxMDA0MTg1NjU2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkYjU3Ny0wZGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwL446pErTf4z0DHfym1DzIdqxQNmNK2gfpf43leiyvUhIoi4EKRsJlgr5xUm vxsXPGT/fB1wJnesNn7kpqDUBSdoXojwQ/VFqlY6ZJf8e/UOngLAH/mMY7yM+Ic7 ksfLzCE500hHrKeTLT4XM4YFLODnwHkIsE7pPq6XkzyE3nRX7OqB79ps3kn9Zlg0 zGpnZmqhVIncwyOQve5FUNMLldyysJejnRrpNJUfRuvXJRd+NgHF9I0Nq3Svtg1f Z9xx0ZK+DZDQOCSZqOz8NzVT8yN1jipf3Bpnhfd/XQW0hVlTBcIY3r64I42gCWit vx0D+mgI8l3tY5lCqC2420FfLQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFPVl/kYm VVPnNJSMssK5qDIb3qGeMB8GA1UdIwQYMBaAFO+Vy9WYNSZA1CsKrGAAQQZbTcRC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThDNS8wNTJDODRGQzAx MTUxMUVBQTk4QTYyNTVDNEY5QUUwMi83NVhMMVpnMUprRFVLd3FzWUFCQkJsdE54 RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1WEwxWmcxSmtEVUt3cXNZQUJCQmx0TnhFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU4QzUvMDUyQzg0RkMwMTE1MTFFQUE5OEE2MjU1QzRGOUFFMDIvNDUyRERGQjQw MTE2MTFFQTk3MkZGQzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnex4wGAQCAAIwEjAQAwUGJAObwAMHASQDm8AACDANBgkq hkiG9w0BAQsFAAOCAQEAI7ogKUlrkpsEOr+322EgfQ1AIMIZAiLLuVWTFFscEUZi Tjde6Xfq4lbQd3hgM8e7rl13HEvavTMm+/oolR67sDi5ol8bvMn886p18s+4atRh +Fhj0cyn3RAopJzJNawUH5jBdXOqDf3WjlmiMF/NWriSsfnFe4yva+pxjW4jfPSk ZaaZMRM7RuF29y8fle9pNG8WygsoZy1E16cukJ91ydIanHDe/PoWNNFPeGOpiQLp vEyCeCy0FOJ/6fyAggH8rZ/vKxJt4stQBthHg/K8P95SW9WC17ddVeUmeepFFHjT sbpKmJg1QQXoGgEatKBFDYhtCJqqt5sh0EdVo5aODw== -----END CERTIFICATE-----Generated at Sat May 18 19:56:07 2024 by rpki-client on console-fra.rpki-client.org