$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa File: D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa (raw, json) Hash identifier: XtPZc43LcNddLgZeOf9NK4ZrrcvhqyG22Dj6LiPpNtE= Subject key identifier: 56:8C:00:FF:A3:49:BB:35:33:91:F9:65:0A:6E:B4:EB:10:B9:2A:DB Certificate issuer: /CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Certificate serial: 10CC Authority key identifier: 37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa Signing time: Wed 20 Sep 2023 17:35:23 +0000 ROA not before: Wed 20 Sep 2023 17:35:23 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 55799 IP address blocks: 103.70.59.0/24 maxlen: 24 103.81.247.0/24 maxlen: 24 103.82.4.0/23 maxlen: 23 103.82.4.0/24 maxlen: 24 103.82.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4300 (0x10cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Validity Not Before: Sep 20 17:35:23 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=650b2d5b-b602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:19:17:b9:9a:ee:69:4a:d6:12:b5:77:83:48: 82:ea:c6:9c:22:8c:60:12:a5:57:e8:cd:a3:02:27: 34:c9:68:07:66:7e:ba:04:28:66:fa:a9:10:cb:b1: 66:5e:43:3e:13:36:30:94:d6:42:ae:ef:9f:e6:7c: 9a:0c:ad:e2:ad:f8:85:b2:eb:0e:0e:3d:5f:b9:9b: d6:f8:1a:0e:d0:d5:0f:76:bb:dc:89:16:03:24:a8: e5:91:3f:7d:e5:17:04:a0:5f:09:a8:c8:df:d6:a0: 38:8e:8c:fe:50:a9:89:b0:35:b3:30:50:2f:67:75: c9:6c:7e:20:ee:30:ac:d1:ad:c3:07:bd:ac:71:dc: 35:b9:39:bc:e5:ab:5f:d5:d9:42:b5:93:5c:5f:99: 6a:1d:90:d9:24:a7:bf:33:e0:28:23:eb:a7:1f:f5: 1e:57:63:69:76:ae:e1:82:67:ab:a7:12:08:c3:c2: 74:70:ad:da:51:fc:e5:28:03:9d:79:6e:e4:00:36: 25:e7:b6:ca:e3:99:ca:58:78:0f:c8:b2:23:e6:44: 2d:ca:a4:c5:25:c7:51:c6:3b:b2:70:be:d9:b7:cb: 23:f2:d1:4c:12:99:b0:a9:3f:b2:6f:fb:e0:5f:34: d6:80:dd:c9:b0:15:80:b1:29:ec:a8:85:bc:fa:e2: 96:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8C:00:FF:A3:49:BB:35:33:91:F9:65:0A:6E:B4:EB:10:B9:2A:DB X509v3 Authority Key Identifier: keyid:37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.59.0/24 103.81.247.0/24 103.82.4.0/23 Signature Algorithm: sha256WithRSAEncryption 45:e3:50:58:94:22:04:50:53:91:3c:9b:10:14:97:51:bd:c3: 08:b2:f9:f1:8b:18:7d:66:57:97:1b:e8:5f:19:c8:6a:73:db: d2:c0:ac:2e:db:c6:9b:ff:fe:ed:eb:09:86:36:5e:fb:a3:ea: 51:95:93:20:12:0c:d9:e1:10:b7:97:35:bd:ca:33:8b:60:7d: c2:74:66:0f:67:28:14:e5:cd:cc:6c:80:14:8e:12:ae:55:82: 1d:da:b5:36:ae:13:72:d5:7f:61:03:ab:8d:73:92:d1:2f:8b: 33:f4:87:1d:59:6f:a1:b2:f0:e4:ff:cb:72:c7:c7:12:bc:cd: 2a:ba:f6:f4:d3:f0:f6:e3:dc:68:ca:08:37:37:d1:0c:40:a0: 6d:e3:ee:1b:31:33:4e:da:80:d0:54:94:e3:52:19:e8:7d:0c: a2:48:58:03:6d:3f:8d:f6:8e:a5:e1:99:a8:14:98:5f:0b:0d: 4f:9c:c7:3d:d1:04:df:95:9f:17:46:cf:da:be:08:30:58:4b: 4c:29:8e:5a:ca:47:69:9a:8d:d8:a2:0e:03:d7:4c:9e:99:c6: 01:44:50:f4:da:05:75:00:7c:ce:14:d6:99:a0:47:db:48:4d: 75:92:48:39:ba:af:c6:ff:3f:15:23:9f:ac:d8:98:47:40:01: 07:d2:45:ec -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMzMxMTAvBgNVBAUTKDM3OTc0MzcxNENFMDEyMjMwQUE5NzhCQjFBQThDNzkw RTcwNjY3QUIwHhcNMjMwOTIwMTczNTIzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBiMmQ1Yi1iNjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xkXuZruaUrWErV3g0iC6sacIoxgEqVX6M2jAic0yWgHZn66BChm+qkQy7Fm XkM+EzYwlNZCru+f5nyaDK3irfiFsusODj1fuZvW+BoO0NUPdrvciRYDJKjlkT99 5RcEoF8JqMjf1qA4joz+UKmJsDWzMFAvZ3XJbH4g7jCs0a3DB72scdw1uTm85atf 1dlCtZNcX5lqHZDZJKe/M+AoI+unH/UeV2Npdq7hgmerpxIIw8J0cK3aUfzlKAOd eW7kADYl57bK45nKWHgPyLIj5kQtyqTFJcdRxjuycL7Zt8sj8tFMEpmwqT+yb/vg XzTWgN3JsBWAsSnsqIW8+uKWYQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFaMAP+j Sbs1M5H5ZQputOsQuSrbMB8GA1UdIwQYMBaAFDeXQ3FM4BIjCql4uxqox5DnBmer MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UzMy84NzdBNzlCNkU5 RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0VpTUtxWGk3R3FqSGtPY0da NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041ZERjVXpnRWlNS3FYaTdHcWpIa09jR1o2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNFMzMvODc3QTc5QjZFOUQxMTFFOEFDODkyNzcwQzRGOUFFMDIvRDBCOEMwOUUx QkJGMTFFQUE2NEVDRjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnRjsDBABnUfcDBAFnUgQwDQYJKoZIhvcNAQELBQADggEB AEXjUFiUIgRQU5E8mxAUl1G9wwiy+fGLGH1mV5cb6F8ZyGpz29LArC7bxpv//u3r CYY2Xvuj6lGVkyASDNnhELeXNb3KM4tgfcJ0Zg9nKBTlzcxsgBSOEq5Vgh3atTau E3LVf2EDq41zktEvizP0hx1Zb6Gy8OT/y3LHxxK8zSq69vTT8Pbj3GjKCDc30QxA oG3j7hsxM07agNBUlONSGeh9DKJIWANtP432jqXhmagUmF8LDU+cxz3RBN+VnxdG z9q+CDBYS0wpjlrKR2majdiiDgPXTJ6ZxgFEUPTaBXUAfM4U1pmgR9tITXWSSDm6 r8b/PxUjn6zYmEdAAQfSRew= -----END CERTIFICATE-----Generated at Sat May 18 18:46:47 2024 by rpki-client on console-fra.rpki-client.org