$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/3E78F3541E2D11EB95754317C4F9AE02.roa File: 3E78F3541E2D11EB95754317C4F9AE02.roa (raw, json) Hash identifier: JivzgJ+k2/iUOpvsy3y8FaHjbJGiz8TL55U0x2CsjIc= Subject key identifier: 1C:4F:11:EF:84:33:EC:58:11:63:84:E4:14:48:FD:16:9C:2C:7D:CE Certificate issuer: /CN=A91E5191/serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3 Certificate serial: 061F Authority key identifier: 50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/3E78F3541E2D11EB95754317C4F9AE02.roa Signing time: Mon 31 Jul 2023 23:00:04 +0000 ROA not before: Mon 31 Jul 2023 23:00:04 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 9268 IP address blocks: 103.139.228.0/24 maxlen: 24 103.139.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5191/serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3 Validity Not Before: Jul 31 23:00:04 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c83cf4-a8ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:39:66:3e:3f:d9:ea:cb:31:70:e5:05:ba:1a: 98:88:d5:c7:fe:fc:f6:c1:39:d6:79:a4:09:a5:2f: 19:15:1b:ba:4f:5a:99:3b:30:22:1c:9a:86:a4:00: e8:32:84:b8:7e:5f:8d:14:e7:d4:5d:73:cb:31:6a: 0b:3b:3a:71:16:e2:5f:28:9e:06:bf:aa:94:65:73: 03:e2:a6:31:f5:d9:ba:bc:48:76:84:73:fa:4e:0c: ab:5a:af:29:a4:4e:cc:9e:0a:62:62:2f:58:28:ea: d5:d3:d5:63:5a:f3:fe:c8:c1:a3:83:29:3e:c0:46: 45:8b:df:a0:83:43:5f:21:4f:4b:bd:89:8a:ac:a3: 81:00:56:2d:2a:75:98:00:ff:60:54:76:37:53:42: 4c:d7:8b:f7:37:a9:60:50:2a:64:9e:b6:24:4f:30: c6:f1:24:27:dd:5e:8e:72:08:16:17:19:4d:4e:14: c5:49:6d:18:1f:0b:eb:c6:16:77:3c:1e:5e:24:19: a3:9a:b3:56:c0:66:27:23:6f:b6:dd:79:e9:52:bd: ed:73:43:00:96:5c:77:6b:92:f8:59:cd:e7:6f:cc: 7c:2e:8c:d8:b3:dd:4f:36:a8:31:7d:db:f8:34:c2: fb:be:22:37:d0:06:f3:c2:b9:24:1f:79:6e:13:e9: 81:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4F:11:EF:84:33:EC:58:11:63:84:E4:14:48:FD:16:9C:2C:7D:CE X509v3 Authority Key Identifier: keyid:50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/3E78F3541E2D11EB95754317C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.228.0/23 Signature Algorithm: sha256WithRSAEncryption ca:8f:d7:b2:da:61:00:4a:b1:af:6c:c6:c3:50:24:b7:94:be: 2f:cd:e0:63:34:05:d1:bd:fd:8b:4d:28:0e:50:df:ff:28:54: ba:9e:ca:86:af:95:d6:72:f6:ec:84:44:5b:76:3a:50:bf:c5: df:4e:6e:30:96:74:ad:23:a2:5d:7b:1e:69:e1:2b:3b:bb:66: 6c:47:82:e9:aa:0d:cb:d5:c8:f7:a2:09:f1:c8:0e:96:5d:5f: 55:46:02:a7:44:58:a4:79:40:36:87:94:2f:39:97:10:77:a1: dc:f5:d8:5e:92:ef:2c:85:a1:17:67:73:e2:ce:6e:b3:33:e7: d0:6a:72:93:5a:4e:64:dc:d4:ec:f7:f9:d3:2b:52:69:ac:2d: 7b:f6:b1:97:3b:f0:14:06:33:dc:cb:db:8d:b9:c0:2d:7f:13: 62:33:82:bc:e6:74:19:9a:bd:72:3d:69:a0:dd:62:54:6d:ea: ce:6a:15:e8:36:e8:5b:d0:a4:d4:cf:0a:96:0e:81:c5:34:d9: b5:42:8c:b5:60:89:dc:65:20:77:bf:7f:a3:32:90:3a:9b:4c: df:e0:a1:c6:dd:ce:4b:22:55:47:b1:0a:d8:cc:aa:86:ea:72: 5e:b7:3e:c9:58:cf:88:fa:e2:78:b1:12:63:b1:5e:90:31:b9: f5:2e:bc:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUxOTExMTAvBgNVBAUTKDUwQTcxMTZCQjlGMzY5N0JDNUUzRTIyMkVGMDM1Rjcw MzQyQ0REQTMwHhcNMjMwNzMxMjMwMDA0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4M2NmNC1hOGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAljlmPj/Z6ssxcOUFuhqYiNXH/vz2wTnWeaQJpS8ZFRu6T1qZOzAiHJqGpADo MoS4fl+NFOfUXXPLMWoLOzpxFuJfKJ4Gv6qUZXMD4qYx9dm6vEh2hHP6TgyrWq8p pE7MngpiYi9YKOrV09VjWvP+yMGjgyk+wEZFi9+gg0NfIU9LvYmKrKOBAFYtKnWY AP9gVHY3U0JM14v3N6lgUCpknrYkTzDG8SQn3V6OcggWFxlNThTFSW0YHwvrxhZ3 PB5eJBmjmrNWwGYnI2+23XnpUr3tc0MAllx3a5L4Wc3nb8x8LozYs91PNqgxfdv4 NML7viI30AbzwrkkH3luE+mBqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBxPEe+E M+xYEWOE5BRI/RacLH3OMB8GA1UdIwQYMBaAFFCnEWu582l7xePiIu8DX3A0LN2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTE5MS80OEFBMDcwNjE5 NzIxMUVCODA1RTZCN0ZDNEY5QUUwMi9VS2NSYTduemFYdkY0LUlpN3dOZmNEUXMz YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLY1JhN256YVh2RjQtSWk3d05mY0RRczNhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUxOTEvNDhBQTA3MDYxOTcyMTFFQjgwNUU2QjdGQzRGOUFFMDIvM0U3OEYzNTQx RTJEMTFFQjk1NzU0MzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFni+QwDQYJKoZIhvcNAQELBQADggEBAMqP17LaYQBKsa9s xsNQJLeUvi/N4GM0BdG9/YtNKA5Q3/8oVLqeyoavldZy9uyERFt2OlC/xd9ObjCW dK0jol17HmnhKzu7ZmxHgumqDcvVyPeiCfHIDpZdX1VGAqdEWKR5QDaHlC85lxB3 odz12F6S7yyFoRdnc+LObrMz59BqcpNaTmTc1Oz3+dMrUmmsLXv2sZc78BQGM9zL 2425wC1/E2IzgrzmdBmavXI9aaDdYlRt6s5qFeg26FvQpNTPCpYOgcU02bVCjLVg idxlIHe/f6MykDqbTN/gocbdzksiVUexCtjMqobqcl63PslYz4j64nixEmOxXpAx ufUuvBo= -----END CERTIFICATE-----Generated at Sun May 26 23:57:05 2024 by rpki-client on console-fra.rpki-client.org