$ rpki-client -vvf rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/E86C4B1E04AE11EC92C8D079C4F9AE02.roa File: E86C4B1E04AE11EC92C8D079C4F9AE02.roa (raw, json) Hash identifier: saA04V/Dwpu6Fep2idzMymX2v03Eu/SKkVzn1J9xWt0= Subject key identifier: 47:34:8F:F6:3E:8F:16:BB:58:B7:C0:A1:35:2F:D8:98:4A:C5:6E:90 Certificate issuer: /CN=A91E13D0/serialNumber=FC80B49B507332FD4C9C92DD5E27A2DFCA8064DA Certificate serial: 040D Authority key identifier: FC:80:B4:9B:50:73:32:FD:4C:9C:92:DD:5E:27:A2:DF:CA:80:64:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/E86C4B1E04AE11EC92C8D079C4F9AE02.roa Signing time: Wed 13 Dec 2023 15:10:58 +0000 ROA not before: Wed 13 Dec 2023 15:10:58 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 139588 IP address blocks: 103.142.5.0/24 maxlen: 24 103.208.64.0/24 maxlen: 24 2001:df1:2280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.crl rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E13D0/serialNumber=FC80B49B507332FD4C9C92DD5E27A2DFCA8064DA Validity Not Before: Dec 13 15:10:58 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6579c982-1a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b7:ee:c3:bd:93:af:81:5f:f3:50:7b:83:d6: 91:ef:b1:ec:af:de:60:a7:1c:80:f4:dc:79:aa:6c: 41:5f:8a:8b:9d:30:4f:33:83:65:e1:25:4b:e6:04: 5b:06:8c:cf:3f:7d:9b:8a:cf:98:79:01:65:0c:6e: 0d:46:c1:14:d3:6d:86:b9:6a:4a:3e:de:89:ec:68: 5e:a1:5c:2d:bd:6d:28:24:3b:8f:6b:8a:b3:86:7c: 31:de:91:85:50:27:ef:d9:3e:d5:80:cb:76:6c:6a: 50:4f:3b:ce:c1:c0:31:d6:17:e5:28:2a:0b:3f:72: e5:37:b0:fa:7b:9d:e2:d7:fa:e4:74:e4:09:9f:f5: 79:98:ef:84:f5:e4:b3:2d:49:fb:78:19:9a:a5:5d: 49:57:45:20:ad:e3:50:32:48:05:4e:a4:14:4a:1b: 60:7d:a2:24:36:1e:31:9f:fc:5d:1a:9c:8b:33:ce: 0b:70:d7:03:c9:e5:59:9d:49:38:a1:46:c0:3d:ff: a0:37:5c:98:08:83:bf:14:ed:17:f8:02:06:df:f7: cd:23:37:09:4f:0d:0b:62:9b:8a:ce:98:d8:b9:3d: cc:f5:53:cf:30:16:68:88:a5:45:f2:d7:ff:ab:f9: e8:6a:e3:90:2d:1e:1b:7a:e8:e4:87:40:73:60:d9: 16:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:34:8F:F6:3E:8F:16:BB:58:B7:C0:A1:35:2F:D8:98:4A:C5:6E:90 X509v3 Authority Key Identifier: keyid:FC:80:B4:9B:50:73:32:FD:4C:9C:92:DD:5E:27:A2:DF:CA:80:64:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/E86C4B1E04AE11EC92C8D079C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.5.0/24 103.208.64.0/24 IPv6: 2001:df1:2280::/48 Signature Algorithm: sha256WithRSAEncryption 4f:ea:1a:f9:6a:23:db:86:7c:68:54:fb:07:44:b1:99:f3:99: 71:f9:0b:c5:5b:57:7f:0e:be:62:4c:0d:d7:f6:b7:1b:0f:1a: ee:40:73:72:e8:fe:40:8d:fe:79:08:5f:18:b2:27:79:60:0e: 77:fa:2c:79:a8:98:b0:fe:7a:c2:41:19:06:e1:fd:8c:98:e2: 58:aa:af:cc:99:72:4d:05:98:a6:12:4e:09:12:4a:81:33:c6: e0:5d:d5:b5:5e:0a:be:02:28:af:14:35:20:d1:b7:68:9a:54: 88:5e:20:20:4b:7c:77:d1:91:aa:48:9b:ab:c5:b3:5c:7f:06: 46:76:3c:34:7f:21:c6:17:03:8f:88:ee:8d:9a:67:91:4c:51: 9e:3a:3d:65:9c:c8:f3:72:a2:49:5b:f0:da:9e:ce:f5:c7:57: 82:f0:7d:8e:8a:b5:df:91:8d:7b:5c:39:f9:65:ef:7a:a3:b8: cb:0c:44:d2:d8:6e:fb:c2:0f:50:8a:9e:ea:55:d1:bf:b4:bd: 5c:b3:60:03:e2:ef:ab:39:5f:0d:4f:64:db:9f:3e:6b:fe:c1: 95:1c:f0:6c:e7:8b:e3:ad:bf:38:19:5b:e4:51:24:d0:4a:30: 86:cb:b4:c0:cf:75:ee:54:33:32:00:be:13:15:70:86:c6:69: f6:6d:91:22 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEzRDAxMTAvBgNVBAUTKEZDODBCNDlCNTA3MzMyRkQ0QzlDOTJERDVFMjdBMkRG Q0E4MDY0REEwHhcNMjMxMjEzMTUxMDU4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc5Yzk4Mi0xYTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrfuw72Tr4Ff81B7g9aR77Hsr95gpxyA9Nx5qmxBX4qLnTBPM4Nl4SVL5gRb BozPP32bis+YeQFlDG4NRsEU022GuWpKPt6J7GheoVwtvW0oJDuPa4qzhnwx3pGF UCfv2T7VgMt2bGpQTzvOwcAx1hflKCoLP3LlN7D6e53i1/rkdOQJn/V5mO+E9eSz LUn7eBmapV1JV0UgreNQMkgFTqQUShtgfaIkNh4xn/xdGpyLM84LcNcDyeVZnUk4 oUbAPf+gN1yYCIO/FO0X+AIG3/fNIzcJTw0LYpuKzpjYuT3M9VPPMBZoiKVF8tf/ q/noauOQLR4beujkh0BzYNkWQQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEc0j/Y+ jxa7WLfAoTUv2JhKxW6QMB8GA1UdIwQYMBaAFPyAtJtQczL9TJyS3V4not/KgGTa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTNEMC9EN0E0QkI1NjA0 QUMxMUVDQkVCNTBDNzlDNEY5QUUwMi9fSUMwbTFCek12MU1uSkxkWGllaTM4cUFa Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JQzBtMUJ6TXYxTW5KTGRYaWVpMzhxQVpOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTEzRDAvRDdBNEJCNTYwNEFDMTFFQ0JFQjUwQzc5QzRGOUFFMDIvRTg2QzRCMUUw NEFFMTFFQzkyQzhEMDc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjgUDBABn0EAwDwQCAAIwCQMHACABDfEigDANBgkqhkiG 9w0BAQsFAAOCAQEAT+oa+Woj24Z8aFT7B0SxmfOZcfkLxVtXfw6+YkwN1/a3Gw8a 7kBzcuj+QI3+eQhfGLIneWAOd/oseaiYsP56wkEZBuH9jJjiWKqvzJlyTQWYphJO CRJKgTPG4F3VtV4KvgIorxQ1ING3aJpUiF4gIEt8d9GRqkibq8WzXH8GRnY8NH8h xhcDj4jujZpnkUxRnjo9ZZzI83KiSVvw2p7O9cdXgvB9joq135GNe1w5+WXveqO4 ywxE0thu+8IPUIqe6lXRv7S9XLNgA+LvqzlfDU9k258+a/7BlRzwbOeL462/OBlb 5FEk0Eowhsu0wM917lQzMgC+ExVwhsZp9m2RIg== -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:08 2024 by rpki-client on console-fra.rpki-client.org