$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/4140626CA95711EEB2D4837BC4F9AE02.roa File: 4140626CA95711EEB2D4837BC4F9AE02.roa (raw, json) Hash identifier: VhghPfXzTW9/2ppjpDzdkgvxCHKBA8iEEjWqqSeTk1w= Subject key identifier: E7:E6:6C:45:83:01:FD:EF:83:B5:94:18:9A:D0:35:33:EF:B7:52:A9 Certificate issuer: /CN=A91E0C33/serialNumber=80BE930E30649B12ACEE8DC40B575AB7DDE64945 Certificate serial: 30 Authority key identifier: 80:BE:93:0E:30:64:9B:12:AC:EE:8D:C4:0B:57:5A:B7:DD:E6:49:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/4140626CA95711EEB2D4837BC4F9AE02.roa Signing time: Tue 02 Jan 2024 10:11:12 +0000 ROA not before: Tue 02 Jan 2024 10:11:12 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 24499 IP address blocks: 103.249.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.crl rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 07:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C33/serialNumber=80BE930E30649B12ACEE8DC40B575AB7DDE64945 Validity Not Before: Jan 2 10:11:12 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6593e13f-d1b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:60:76:b5:98:ab:1a:51:2f:91:ef:cc:40:73: 41:3e:55:44:0f:bc:62:92:08:ea:34:c4:1a:9c:b6: 5d:b9:da:dc:74:42:d9:ac:82:16:f4:84:3e:7a:8b: 9e:f5:bf:37:20:2c:5c:5a:13:aa:85:2c:2f:fa:e7: 3b:ea:b9:61:62:c3:f0:c8:00:e1:ff:3f:e7:5c:8a: 36:ce:4c:58:17:e2:cc:3e:f7:9f:8f:c6:51:27:d4: 81:ed:9d:d3:fe:1e:35:a6:ae:ff:0b:14:ea:48:66: f7:e2:3e:9e:64:94:b6:9f:50:cd:a9:90:73:8e:59: a3:f9:52:dd:a2:da:4d:72:e4:eb:1b:94:88:c9:06: 85:11:64:4f:bf:ff:5a:f1:2c:70:e2:08:93:fa:dd: dc:eb:41:ef:08:76:89:cc:3c:d3:f9:37:14:34:29: 09:28:b0:30:aa:79:80:fc:a8:13:63:77:34:f6:bf: f2:3d:33:2c:1c:10:d6:5e:9c:cf:eb:f8:1a:40:0f: 87:e5:27:7d:06:17:db:f5:97:22:34:0d:80:7d:56: da:7a:c3:c6:12:67:2a:ca:4c:f5:e1:d3:e9:0a:03: 62:95:f0:8a:54:bb:c0:14:50:20:31:ba:12:b4:ad: d5:af:8d:0e:a9:ca:05:3c:8c:9f:56:65:51:81:27: 0b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E6:6C:45:83:01:FD:EF:83:B5:94:18:9A:D0:35:33:EF:B7:52:A9 X509v3 Authority Key Identifier: keyid:80:BE:93:0E:30:64:9B:12:AC:EE:8D:C4:0B:57:5A:B7:DD:E6:49:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/4140626CA95711EEB2D4837BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.114.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:9d:bd:3e:0d:a0:40:9d:14:4c:7f:47:c0:fa:89:1d:d1:9f: d6:0a:c2:d1:51:54:b6:c7:a2:fd:dd:32:3d:56:8d:5f:91:11: 94:7a:03:61:e2:41:02:07:25:eb:41:be:b8:d2:22:fe:1c:e0: 50:44:be:bf:fd:66:5a:df:59:b1:8e:d7:06:e9:e9:b4:9c:f3: a9:ec:1d:8f:68:3a:84:6b:a4:fe:fc:72:bc:a3:de:d3:e3:2c: 19:e4:e3:2d:fe:7d:72:12:b9:0c:f4:c4:39:69:9d:5f:9c:18: e8:b5:e2:3f:1f:f6:21:33:9e:10:c4:48:02:51:ab:84:43:8b: cd:12:c5:a0:8b:fe:a8:42:d4:59:74:18:85:6a:53:28:d3:61: ea:fd:79:b0:ca:3d:c8:05:d8:11:c4:33:0c:a1:33:b1:89:a0: af:d5:48:7f:85:77:18:72:5b:a5:62:31:9c:83:74:ff:8b:78: 0d:2e:f7:fe:8f:65:e9:80:16:4c:fb:43:9b:f2:5c:d5:6b:df: 55:7d:c3:58:ec:64:f6:eb:19:92:e3:72:9f:f5:aa:06:8a:ff: cf:bc:15:0a:3e:72:d4:83:0d:95:51:10:a6:09:9f:66:e7:2d: 7c:9c:49:fd:c7:a9:e9:38:c1:c9:df:b8:eb:ef:a2:75:3b:94: b7:5e:2e:e0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MEMzMzExMC8GA1UEBRMoODBCRTkzMEUzMDY0OUIxMkFDRUU4REM0MEI1NzVBQjdE REU2NDk0NTAeFw0yNDAxMDIxMDExMTJaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTNlMTNmLWQxYjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9YHa1mKsaUS+R78xAc0E+VUQPvGKSCOo0xBqctl252tx0Qtmsghb0hD56i571 vzcgLFxaE6qFLC/65zvquWFiw/DIAOH/P+dcijbOTFgX4sw+95+PxlEn1IHtndP+ HjWmrv8LFOpIZvfiPp5klLafUM2pkHOOWaP5Ut2i2k1y5OsblIjJBoURZE+//1rx LHDiCJP63dzrQe8IdonMPNP5NxQ0KQkosDCqeYD8qBNjdzT2v/I9MywcENZenM/r +BpAD4flJ30GF9v1lyI0DYB9Vtp6w8YSZyrKTPXh0+kKA2KV8IpUu8AUUCAxuhK0 rdWvjQ6pygU8jJ9WZVGBJwsHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5+ZsRYMB /e+DtZQYmtA1M++3UqkwHwYDVR0jBBgwFoAUgL6TDjBkmxKs7o3EC1dat93mSUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQzMzLzU0MjY1RjM0NjY4 NzExRUVCOTNEM0Y2Q0M0RjlBRTAyL2dMNlREakJrbXhLczdvM0VDMWRhdDkzbVNV VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0w2VERqQmtteEtzN28zRUMxZGF0OTNtU1VVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEMzMy81NDI2NUYzNDY2ODcxMUVFQjkzRDNGNkNDNEY5QUUwMi80MTQwNjI2Q0E5 NTcxMUVFQjJENDgzN0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf5cjANBgkqhkiG9w0BAQsFAAOCAQEAnZ29Pg2gQJ0UTH9H wPqJHdGf1grC0VFUtsei/d0yPVaNX5ERlHoDYeJBAgcl60G+uNIi/hzgUES+v/1m Wt9ZsY7XBunptJzzqewdj2g6hGuk/vxyvKPe0+MsGeTjLf59chK5DPTEOWmdX5wY 6LXiPx/2ITOeEMRIAlGrhEOLzRLFoIv+qELUWXQYhWpTKNNh6v15sMo9yAXYEcQz DKEzsYmgr9VIf4V3GHJbpWIxnIN0/4t4DS73/o9l6YAWTPtDm/Jc1WvfVX3DWOxk 9usZkuNyn/WqBor/z7wVCj5y1IMNlVEQpgmfZuctfJxJ/cep6TjByd+46++idTuU t14u4A== -----END CERTIFICATE-----Generated at Wed May 1 10:34:20 2024 by rpki-client on console-fra.rpki-client.org