$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/5DB7C89AF25E11EE9239B009C4F9AE02.roa File: 5DB7C89AF25E11EE9239B009C4F9AE02.roa (raw, json) Hash identifier: L7qLWgmtFTBW+bZWQgEGFlOf1bK7ALDRsuEjN3YGqhU= Subject key identifier: C5:26:95:03:1D:59:5B:9B:22:8A:3A:26:5F:70:71:97:30:0E:81:5C Certificate issuer: /CN=A91DE9CC/serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324 Certificate serial: 010E Authority key identifier: 82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/5DB7C89AF25E11EE9239B009C4F9AE02.roa Signing time: Thu 04 Apr 2024 08:36:01 +0000 ROA not before: Thu 04 Apr 2024 08:36:01 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 150408 IP address blocks: 103.31.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.crl rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE9CC/serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324 Validity Not Before: Apr 4 08:36:01 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=660e6671-55dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ee:f4:a9:a8:11:d8:cc:6a:3d:93:22:be:52: a2:49:4d:7b:5a:1a:d7:b4:b4:45:8a:77:e8:5e:4c: 97:bb:d2:b0:78:af:4f:cd:01:36:89:52:30:31:c5: e3:de:c7:e3:e2:f4:fb:29:30:9c:cd:55:8a:92:c3: 8a:d1:00:2c:5c:1c:0d:b0:d9:7e:c9:87:aa:b2:9f: 5b:7c:9e:72:b7:29:e3:c4:c0:54:8c:42:28:ec:35: 2e:29:b9:54:c6:18:c9:56:4d:81:b4:66:e5:9e:c8: 3e:5d:b4:17:72:f2:b2:cc:b2:01:d7:0a:3c:c9:ad: db:d3:7f:e3:37:ed:c2:82:a3:3b:f5:bc:8a:d8:ef: 76:77:a0:03:b8:ed:8e:81:26:4a:6a:d9:3b:a7:a0: 61:4f:18:25:99:cf:7d:16:38:fa:ed:cf:7b:6d:28: cf:11:ca:2b:19:82:19:61:70:84:6d:a8:f1:07:54: 24:2c:91:74:58:00:c1:2f:06:64:9f:ef:dc:92:03: a8:8e:12:91:cc:23:de:4a:07:77:e3:fd:54:08:73: 54:79:29:3c:40:71:9d:cc:ad:db:1b:28:83:9d:5b: 0e:59:2f:6d:5f:7e:f6:6b:8d:e8:22:8d:b9:b3:07: 50:0e:72:65:b0:b3:3d:42:35:dd:1e:e2:a4:86:e5: 1f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:26:95:03:1D:59:5B:9B:22:8A:3A:26:5F:70:71:97:30:0E:81:5C X509v3 Authority Key Identifier: keyid:82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/5DB7C89AF25E11EE9239B009C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.10.0/24 Signature Algorithm: sha256WithRSAEncryption a4:24:1c:95:c8:ba:42:ec:9d:95:aa:3b:fc:b6:a0:62:aa:85: f8:a4:86:f1:6d:c0:05:b1:63:cb:8a:c1:80:1f:00:de:1a:4b: 40:f0:11:16:30:15:23:17:50:5c:51:5a:07:88:23:13:9b:36: 06:75:8f:4a:61:3a:ac:5e:8d:bc:24:b5:0a:e2:55:cb:89:ef: 76:2f:76:2b:b3:d1:43:52:35:a6:42:e0:f6:ea:f0:8f:03:99: 8e:81:22:11:5d:b0:d5:25:17:ef:1a:d0:46:41:4a:52:03:74: 2b:aa:30:2a:0d:bd:a3:9a:bd:28:8f:0e:19:30:32:2a:9a:94: 09:e7:e2:09:86:05:a8:a3:c8:79:fe:5b:75:18:a9:20:a3:7b: 60:60:20:98:3d:14:d2:f3:37:26:9e:7d:17:2c:e6:52:e4:e5: 5d:2a:6d:c6:9a:36:38:a6:5b:c7:c6:2c:ea:a9:c6:81:ed:07: 87:35:e2:d8:78:fb:64:6a:c2:ca:a9:0f:1b:4f:31:b5:fe:f5: e0:c9:4f:31:e7:f7:8e:7f:fd:71:34:38:fe:bc:5d:e3:84:f6: f4:e8:7d:96:06:ea:2c:7c:8f:52:ac:cb:3c:62:fe:5d:84:57: bf:dd:1e:c0:bb:05:46:c8:b0:f7:96:b7:6f:ed:de:80:b4:c0: 2e:9f:7b:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU5Q0MxMTAvBgNVBAUTKDgyOTQ0RTZBQTU3MUMwRUIzNUUyNzkxQkMxNTk2Rjc3 Mjc3QTczMjQwHhcNMjQwNDA0MDgzNjAxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlNjY3MS01NWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0e70qagR2MxqPZMivlKiSU17WhrXtLRFinfoXkyXu9KweK9PzQE2iVIwMcXj 3sfj4vT7KTCczVWKksOK0QAsXBwNsNl+yYeqsp9bfJ5ytynjxMBUjEIo7DUuKblU xhjJVk2BtGblnsg+XbQXcvKyzLIB1wo8ya3b03/jN+3CgqM79byK2O92d6ADuO2O gSZKatk7p6BhTxglmc99Fjj67c97bSjPEcorGYIZYXCEbajxB1QkLJF0WADBLwZk n+/ckgOojhKRzCPeSgd34/1UCHNUeSk8QHGdzK3bGyiDnVsOWS9tX372a43oIo25 swdQDnJlsLM9QjXdHuKkhuUfBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMUmlQMd WVubIoo6Jl9wcZcwDoFcMB8GA1UdIwQYMBaAFIKUTmqlccDrNeJ5G8FZb3cnenMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTlDQy82MEI0NDdCQTVG NEExMUVEQUQ2ODY1N0VDNEY5QUUwMi9ncFJPYXFWeHdPczE0bmtid1ZsdmR5ZDZj eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dwUk9hcVZ4d09zMTRua2J3Vmx2ZHlkNmN5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU5Q0MvNjBCNDQ3QkE1RjRBMTFFREFENjg2NTdFQzRGOUFFMDIvNURCN0M4OUFG MjVFMTFFRTkyMzlCMDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnHwowDQYJKoZIhvcNAQELBQADggEBAKQkHJXIukLsnZWq O/y2oGKqhfikhvFtwAWxY8uKwYAfAN4aS0DwERYwFSMXUFxRWgeIIxObNgZ1j0ph OqxejbwktQriVcuJ73Yvdiuz0UNSNaZC4Pbq8I8DmY6BIhFdsNUlF+8a0EZBSlID dCuqMCoNvaOavSiPDhkwMiqalAnn4gmGBaijyHn+W3UYqSCje2BgIJg9FNLzNyae fRcs5lLk5V0qbcaaNjimW8fGLOqpxoHtB4c14th4+2RqwsqpDxtPMbX+9eDJTzHn 945//XE0OP68XeOE9vTofZYG6ix8j1Ksyzxi/l2EV7/dHsC7BUbIsPeWt2/t3oC0 wC6fe5g= -----END CERTIFICATE-----Generated at Sun May 19 05:48:52 2024 by rpki-client on console-fra.rpki-client.org