$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/FA272BC67EBE11EEABD00B4DC4F9AE02.roa File: FA272BC67EBE11EEABD00B4DC4F9AE02.roa (raw, json) Hash identifier: KY4aaNbNR/WIo9SsVxf2BG+N++qSnRS+00C68EAHaOA= Subject key identifier: A6:C8:1E:83:32:46:68:7E:17:F7:6C:3D:81:5A:0B:B5:40:56:43:0B Certificate issuer: /CN=A91DF31D/serialNumber=4600C18D62C6F724D5C95506F41B8C95FC390DC0 Certificate serial: 59 Authority key identifier: 46:00:C1:8D:62:C6:F7:24:D5:C9:55:06:F4:1B:8C:95:FC:39:0D:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RgDBjWLG9yTVyVUG9BuMlfw5DcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/FA272BC67EBE11EEABD00B4DC4F9AE02.roa Signing time: Mon 18 Mar 2024 18:47:21 +0000 ROA not before: Mon 18 Mar 2024 18:47:21 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151802 IP address blocks: 103.226.26.0/24 maxlen: 24 103.226.27.0/24 maxlen: 24 2401:ce0:a100::/40 maxlen: 40 2401:ce0:a200::/40 maxlen: 40 2401:ce0:aa00::/40 maxlen: 40 2401:ce0:ab00::/40 maxlen: 40 2401:ce0:beef::/48 maxlen: 48 2401:ce0:face::/48 maxlen: 48 2401:ce0:fade::/48 maxlen: 48 2401:ce0:faee::/48 maxlen: 48 2401:ce0:fafe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/RgDBjWLG9yTVyVUG9BuMlfw5DcA.crl rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/RgDBjWLG9yTVyVUG9BuMlfw5DcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RgDBjWLG9yTVyVUG9BuMlfw5DcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 06:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF31D/serialNumber=4600C18D62C6F724D5C95506F41B8C95FC390DC0 Validity Not Before: Mar 18 18:47:21 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65f88c38-acfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ee:d2:59:e4:2f:ac:b0:ed:08:d8:51:e2:1c: 03:f5:06:e5:13:e3:f6:6b:ea:91:ee:e2:b5:92:2f: f6:3c:59:41:83:f2:92:d9:26:f0:53:cf:2d:c7:6f: ee:6c:b1:9f:d5:f6:37:44:a9:00:72:c3:88:59:7a: 39:b2:c7:c2:cc:a1:b0:6e:5b:c3:26:e1:2b:05:6b: bd:49:a8:b6:50:7a:71:e3:85:61:bd:b5:ee:af:32: 1d:4f:fb:a8:52:ea:47:14:5a:14:df:10:de:45:65: 29:0a:30:40:a5:b8:76:83:47:49:7c:9c:eb:d5:d2: 4b:0b:b7:6f:fd:49:1a:d4:3f:1a:9e:a8:4c:e5:eb: 39:7e:9f:b0:44:8d:5f:a7:85:a9:f1:9f:c2:fb:3f: 28:e4:99:3c:ef:69:f5:5f:61:a1:cf:2e:9e:d0:ce: 6c:3c:a2:61:10:0a:d5:09:23:78:12:91:ea:2e:f2: ea:40:da:6b:9c:1d:c3:f5:a3:88:cb:59:5a:91:10: 08:cc:00:26:5c:9f:53:88:9f:d3:66:0f:83:72:1f: e0:c3:47:50:11:9d:30:71:38:af:1f:bb:57:b2:8f: f5:2a:d2:2f:25:12:51:5a:d5:5b:f8:81:05:d9:2f: 86:7f:18:97:65:9a:cc:8c:4c:68:a4:d0:fd:13:3e: 02:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C8:1E:83:32:46:68:7E:17:F7:6C:3D:81:5A:0B:B5:40:56:43:0B X509v3 Authority Key Identifier: keyid:46:00:C1:8D:62:C6:F7:24:D5:C9:55:06:F4:1B:8C:95:FC:39:0D:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/RgDBjWLG9yTVyVUG9BuMlfw5DcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RgDBjWLG9yTVyVUG9BuMlfw5DcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/FA272BC67EBE11EEABD00B4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.26.0/23 IPv6: 2401:ce0:a100::-2401:ce0:a2ff:ffff:ffff:ffff:ffff:ffff 2401:ce0:aa00::/39 2401:ce0:beef::/48 2401:ce0:face::/48 2401:ce0:fade::/48 2401:ce0:faee::/48 2401:ce0:fafe::/48 Signature Algorithm: sha256WithRSAEncryption b0:73:ce:5c:0c:16:e5:f9:99:86:ad:15:46:74:fe:a5:52:13: cd:b4:ad:0f:79:34:69:c3:e6:46:44:b2:12:93:3d:71:91:1e: 0e:18:5e:4b:a9:26:74:4f:ef:ad:3c:b4:42:28:77:e1:a6:10: f5:5e:ab:73:08:4b:08:38:20:22:b6:e8:92:a7:2f:1c:1a:75: c5:d7:24:c9:a8:04:e5:8c:49:1f:0d:c6:89:be:07:18:70:33: 0e:b4:ec:ab:30:40:a1:d3:82:c9:1a:c0:74:25:59:ec:78:28: 9b:57:18:7f:02:29:62:b2:06:c5:e4:4d:88:e3:b3:63:74:36: 63:12:ba:71:fc:e1:96:8a:d0:13:ab:d1:48:49:55:8b:45:88: 8e:95:6f:9d:75:c9:85:79:dd:bb:e0:57:73:8b:17:7a:4d:ad: 07:94:68:29:74:65:aa:d1:bb:ca:a9:1c:da:8e:ae:eb:d2:13: 4f:8c:da:11:5e:8a:8b:5e:11:d0:d1:12:d5:6b:88:9d:ed:70: 8c:9e:00:e9:f9:bb:d7:92:5f:a7:42:a4:00:11:6a:ca:9c:ff: 28:c6:68:65:13:67:17:8e:5c:b2:54:68:90:b2:d0:e0:60:64: 10:fb:9e:5c:ea:62:3a:ed:2d:11:47:4b:73:ae:21:5a:78:45: ee:63:46:fd -----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjMxRDExMC8GA1UEBRMoNDYwMEMxOEQ2MkM2RjcyNEQ1Qzk1NTA2RjQxQjhDOTVG QzM5MERDMDAeFw0yNDAzMTgxODQ3MjFaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Zjg4YzM4LWFjZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm7tJZ5C+ssO0I2FHiHAP1BuUT4/Zr6pHu4rWSL/Y8WUGD8pLZJvBTzy3Hb+5s sZ/V9jdEqQByw4hZejmyx8LMobBuW8Mm4SsFa71JqLZQenHjhWG9te6vMh1P+6hS 6kcUWhTfEN5FZSkKMECluHaDR0l8nOvV0ksLt2/9SRrUPxqeqEzl6zl+n7BEjV+n hanxn8L7PyjkmTzvafVfYaHPLp7Qzmw8omEQCtUJI3gSkeou8upA2mucHcP1o4jL WVqREAjMACZcn1OIn9NmD4NyH+DDR1ARnTBxOK8fu1eyj/Uq0i8lElFa1Vv4gQXZ L4Z/GJdlmsyMTGik0P0TPgIZAgMBAAGjggLkMIIC4DAdBgNVHQ4EFgQUpsgegzJG aH4X92w9gVoLtUBWQwswHwYDVR0jBBgwFoAURgDBjWLG9yTVyVUG9BuMlfw5DcAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMzFELzA1NUFCNTQ0N0RG NzExRUU4N0I3RDQzMEM0RjlBRTAyL1JnREJqV0xHOXlUVnlWVUc5QnVNbGZ3NURj QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmdEQmpXTEc5eVRWeVZVRzlCdU1sZnc1RGNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjMxRC8wNTVBQjU0NDdERjcxMUVFODdCN0Q0MzBDNEY5QUUwMi9GQTI3MkJDNjdF QkUxMUVFQUJEMDBCNERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBuBggrBgEFBQcBBwEB/wRf MF0wDAQCAAEwBgMEAWfiGjBNBAIAAjBHMBADBgAkAQzgoQMGACQBDOCiAwYBJAEM 4KoDBwAkAQzgvu8DBwAkAQzg+s4DBwAkAQzg+t4DBwAkAQzg+u4DBwAkAQzg+v4w DQYJKoZIhvcNAQELBQADggEBALBzzlwMFuX5mYatFUZ0/qVSE820rQ95NGnD5kZE shKTPXGRHg4YXkupJnRP7608tEIod+GmEPVeq3MISwg4ICK26JKnLxwadcXXJMmo BOWMSR8Nxom+BxhwMw607KswQKHTgskawHQlWex4KJtXGH8CKWKyBsXkTYjjs2N0 NmMSunH84ZaK0BOr0UhJVYtFiI6Vb511yYV53bvgV3OLF3pNrQeUaCl0ZarRu8qp HNqOruvSE0+M2hFeioteEdDREtVriJ3tcIyeAOn5u9eSX6dCpAARasqc/yjGaGUT ZxeOXLJUaJCy0OBgZBD7nlzqYjrtLRFHS3OuIVp4Re5jRv0= -----END CERTIFICATE-----Generated at Wed May 29 09:16:50 2024 by rpki-client on console-fra.rpki-client.org