$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/4B1E3E947EB411E994ED5B25C4F9AE02.roa File: 4B1E3E947EB411E994ED5B25C4F9AE02.roa (raw, json) Hash identifier: yxqOrTWG1l4E66Ldnkh3RH8ccpHwkvnioa7/AvcJV9Q= Subject key identifier: B9:FD:34:04:D5:6E:CD:FE:21:D8:C2:8D:71:7F:04:73:E2:E3:C5:FB Certificate issuer: /CN=A91E1155/serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Certificate serial: 0DD2 Authority key identifier: 0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/4B1E3E947EB411E994ED5B25C4F9AE02.roa Signing time: Tue 31 Oct 2023 18:46:02 +0000 ROA not before: Tue 31 Oct 2023 18:46:02 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 45780 IP address blocks: 103.100.149.0/24 maxlen: 24 2001:df2:7d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3538 (0xdd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1155/serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Validity Not Before: Oct 31 18:46:02 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65414b69-25b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c3:a8:5c:44:9b:33:02:94:67:84:2c:de:25: 99:53:62:ce:8f:af:41:7f:f6:1d:d8:20:3a:ab:e3: cb:a8:fb:4e:a5:89:fc:09:2e:71:98:3a:cb:68:01: be:39:e0:75:7b:e6:77:76:86:b2:07:d1:59:74:b8: 57:f1:8d:0e:8d:5c:19:d6:9a:69:b4:29:f9:1d:0f: 88:ab:45:18:86:67:4d:e0:b6:9b:43:31:79:d4:46: 90:6e:1c:a3:a4:7d:32:86:d0:11:50:f7:c0:d6:5b: 8c:06:71:6f:fc:54:ba:11:d8:16:1f:51:76:e0:63: f2:73:4f:cf:6a:37:a2:dc:12:3f:1c:89:2a:43:29: 41:e8:fc:fa:d4:e2:d3:25:53:00:a9:b7:f8:fa:a8: 89:4c:11:9d:93:de:c9:7f:ec:cc:92:6d:17:bf:e7: 41:1a:7e:00:78:0e:a8:85:f4:75:f6:a9:84:db:5e: 30:85:b4:e3:14:80:62:ac:e7:79:80:00:cf:50:52: e6:b6:49:27:5a:57:5b:0c:82:8d:37:bb:90:e9:09: 74:0f:8c:6a:24:ed:b1:7a:bd:03:ff:2a:3f:ef:8e: 2d:61:de:4d:db:9c:54:e6:a1:64:ac:6b:5f:ea:d5: 34:6f:be:70:4c:7c:21:d9:29:db:a7:2e:49:c2:fe: 3b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:FD:34:04:D5:6E:CD:FE:21:D8:C2:8D:71:7F:04:73:E2:E3:C5:FB X509v3 Authority Key Identifier: keyid:0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/4B1E3E947EB411E994ED5B25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.149.0/24 IPv6: 2001:df2:7d00::/48 Signature Algorithm: sha256WithRSAEncryption 0b:c4:fa:5c:3b:eb:62:90:61:a5:54:c9:1e:62:40:ea:e6:95: 5f:d1:93:a7:1e:b1:05:ed:a0:9d:24:eb:06:2f:26:e0:7b:74: c2:ab:6a:cf:88:46:75:6e:e7:42:f7:c0:af:40:8d:8d:f0:72: d7:da:aa:af:02:3a:50:88:fe:1d:16:a9:f4:96:18:c8:7c:a3: 3b:6b:78:cf:3f:29:0f:09:b8:f8:40:2d:11:ff:f4:a1:c7:cd: f9:55:d6:c2:4c:37:84:d7:dd:43:f8:40:e9:12:39:1d:f0:5e: be:a3:ed:2a:3d:72:33:e0:32:aa:af:a0:f7:83:88:d9:1b:20: 0a:8e:52:a4:48:92:a3:3c:ca:b6:27:92:ef:4b:11:71:5a:e5: 7b:9b:b2:32:cd:af:90:af:30:44:c8:06:21:41:d8:72:ce:b5: ad:06:5c:44:4f:33:a1:cb:a9:5c:3e:90:e1:58:8e:8e:e3:b4: b0:0d:f4:2b:69:ed:5d:dd:96:65:6a:b6:61:e9:29:3c:fe:3a: 65:90:1d:6a:0d:5d:93:fa:ac:e8:57:05:88:f6:46:01:dc:07: eb:20:eb:27:2b:a1:17:e1:84:69:fc:a3:51:c3:97:22:88:1e: 2c:6d:55:5b:6c:89:4c:b4:41:ec:79:22:69:ef:17:9e:cb:5c: c8:fe:e9:34 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNTUxMTAvBgNVBAUTKDBCMjU2MUM0QjU3REE4MUQ3MEYzOTcyNEIwREUyQzcx MDE3NDlGNUQwHhcNMjMxMDMxMTg0NjAyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxNGI2OS0yNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocOoXESbMwKUZ4Qs3iWZU2LOj69Bf/Yd2CA6q+PLqPtOpYn8CS5xmDrLaAG+ OeB1e+Z3doayB9FZdLhX8Y0OjVwZ1ppptCn5HQ+Iq0UYhmdN4LabQzF51EaQbhyj pH0yhtARUPfA1luMBnFv/FS6EdgWH1F24GPyc0/Pajei3BI/HIkqQylB6Pz61OLT JVMAqbf4+qiJTBGdk97Jf+zMkm0Xv+dBGn4AeA6ohfR19qmE214whbTjFIBirOd5 gADPUFLmtkknWldbDIKNN7uQ6Ql0D4xqJO2xer0D/yo/744tYd5N25xU5qFkrGtf 6tU0b75wTHwh2Snbpy5Jwv47OQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLn9NATV bs3+IdjCjXF/BHPi48X7MB8GA1UdIwQYMBaAFAslYcS1fagdcPOXJLDeLHEBdJ9d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE1NS81Mzk5OEEzNDdF QjMxMUU5QUI5QzdCMjRDNEY5QUUwMi9DeVZoeExWOXFCMXc4NWNrc040c2NRRjBu MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N5Vmh4TFY5cUIxdzg1Y2tzTjRzY1FGMG4xMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTExNTUvNTM5OThBMzQ3RUIzMTFFOUFCOUM3QjI0QzRGOUFFMDIvNEIxRTNFOTQ3 RUI0MTFFOTk0RUQ1QjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnZJUwDwQCAAIwCQMHACABDfJ9ADANBgkqhkiG9w0BAQsF AAOCAQEAC8T6XDvrYpBhpVTJHmJA6uaVX9GTpx6xBe2gnSTrBi8m4Ht0wqtqz4hG dW7nQvfAr0CNjfBy19qqrwI6UIj+HRap9JYYyHyjO2t4zz8pDwm4+EAtEf/0ocfN +VXWwkw3hNfdQ/hA6RI5HfBevqPtKj1yM+Ayqq+g94OI2RsgCo5SpEiSozzKtieS 70sRcVrle5uyMs2vkK8wRMgGIUHYcs61rQZcRE8zocupXD6Q4ViOjuO0sA30K2nt Xd2WZWq2YekpPP46ZZAdag1dk/qs6FcFiPZGAdwH6yDrJyuhF+GEafyjUcOXIoge LG1VW2yJTLRB7Hkiae8XnstcyP7pNA== -----END CERTIFICATE-----Generated at Thu May 16 19:10:56 2024 by rpki-client on console-fra.rpki-client.org