$ rpki-client -vvf rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/FEB624F6B94911EE897F7947C4F9AE02.roa File: FEB624F6B94911EE897F7947C4F9AE02.roa (raw, json) Hash identifier: aJbZJVn/58MPVkydp5AJxQsxzBgpIoXPDTMR+AGZjMI= Subject key identifier: 00:51:9B:6E:67:74:42:FA:D3:78:5A:40:34:BF:A8:49:33:B2:C7:79 Certificate issuer: /CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Certificate serial: 0BE8 Authority key identifier: DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/FEB624F6B94911EE897F7947C4F9AE02.roa Signing time: Mon 22 Jan 2024 17:16:35 +0000 ROA not before: Mon 22 Jan 2024 17:16:35 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 395363 IP address blocks: 103.80.4.0/24 maxlen: 24 103.80.5.0/24 maxlen: 24 2400:4840::/48 maxlen: 48 2400:4840:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3048 (0xbe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Validity Not Before: Jan 22 17:16:35 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65aea2f3-85bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2b:d2:3a:10:50:bb:57:b0:31:01:b3:f2:ed: 96:d1:0e:54:78:dd:03:b1:28:6a:49:d4:4e:72:ec: 4f:69:10:d6:5e:c2:bd:5e:c0:c5:cd:a0:ee:09:2d: 77:75:84:ce:6b:23:40:ac:91:7c:d5:c4:8d:56:f6: 63:87:1f:dc:f6:cd:cf:cc:18:14:e7:24:a0:4b:af: 88:c7:ac:3a:cd:aa:4e:58:a2:02:1e:20:d4:e6:fa: 00:73:d5:02:33:2c:fb:25:2b:11:19:3e:a0:9c:92: 24:5a:71:04:3e:55:8b:20:3e:12:cd:a7:e5:70:77: 34:7c:42:97:10:62:4f:a3:28:96:56:98:4f:55:a1: 0f:3c:65:0d:23:ed:9b:6b:ed:a0:4f:49:42:04:09: af:4e:9b:76:f0:8c:5e:96:3a:9f:51:15:48:42:02: 9c:17:e6:74:de:89:5d:a7:0e:48:c3:bc:99:ed:06: 17:dd:f4:ef:ef:ec:30:12:e4:db:9d:3c:ce:67:a8: 01:0b:8a:45:72:c2:af:12:55:43:6f:bd:be:6b:29: c7:c1:cb:a4:e2:f7:8f:fd:ba:1d:d6:ed:d4:dc:a4: a4:fa:34:43:a3:44:61:86:6f:27:7f:3b:16:fd:bd: 47:5e:5c:7f:c1:58:af:e5:de:29:5a:0a:ac:bc:95: b3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:51:9B:6E:67:74:42:FA:D3:78:5A:40:34:BF:A8:49:33:B2:C7:79 X509v3 Authority Key Identifier: keyid:DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/FEB624F6B94911EE897F7947C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.4.0/23 IPv6: 2400:4840::/48 2400:4840:10::/48 Signature Algorithm: sha256WithRSAEncryption 78:11:66:75:d7:00:03:79:14:5f:d9:59:0c:2c:8c:ee:b1:b0: 63:d1:bb:da:e5:40:d8:79:0c:c5:36:a1:d9:1e:3d:70:ae:1c: 3b:7a:50:49:4b:4c:84:2b:e4:db:7f:90:52:d8:e0:e6:d3:a6: a1:92:f4:e5:d5:22:62:14:f2:6c:ce:34:2f:d2:0a:e6:49:7d: f5:f4:6c:87:86:8a:d2:91:ba:3b:c7:fb:ca:08:0a:4a:e1:50: 7d:10:14:a6:47:e1:18:4e:30:81:99:e3:1f:a4:32:0b:41:87: 99:3d:cc:57:32:87:15:15:83:2e:b4:08:bb:9a:aa:a7:df:4e: 99:5e:ff:35:ba:4a:86:bb:81:b1:9d:35:b9:f9:20:04:2e:65: 3c:c9:0a:fe:6a:dd:a4:08:ef:44:a3:44:33:5a:48:8d:af:bc: 30:25:3f:44:7d:7d:fe:38:ce:eb:f8:41:ff:71:af:e1:f2:8e: bf:d6:de:db:9a:c2:67:13:ff:72:5d:a8:73:8b:fe:d7:62:2b: c6:7c:dc:d5:4a:96:db:22:14:39:a8:38:af:39:57:13:4f:c1: 68:29:e2:a8:55:8e:ec:c0:ed:68:99:7e:bc:3e:84:04:20:f6: 62:cd:15:06:98:5e:c6:60:ed:ce:07:b3:df:80:88:14:07:58: 1e:f3:e8:31 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICC+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcwRUQxMTAvBgNVBAUTKERBM0M5MUY4RjE1NUQ5MEI5OTg3QzkxM0IyNEM0RjlF NTQ0NUU5Q0MwHhcNMjQwMTIyMTcxNjM1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFlYTJmMy04NWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyvSOhBQu1ewMQGz8u2W0Q5UeN0DsShqSdROcuxPaRDWXsK9XsDFzaDuCS13 dYTOayNArJF81cSNVvZjhx/c9s3PzBgU5ySgS6+Ix6w6zapOWKICHiDU5voAc9UC Myz7JSsRGT6gnJIkWnEEPlWLID4SzaflcHc0fEKXEGJPoyiWVphPVaEPPGUNI+2b a+2gT0lCBAmvTpt28IxeljqfURVIQgKcF+Z03oldpw5Iw7yZ7QYX3fTv7+wwEuTb nTzOZ6gBC4pFcsKvElVDb72+aynHwcuk4veP/bod1u3U3KSk+jRDo0Rhhm8nfzsW /b1HXlx/wViv5d4pWgqsvJWzTwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFABRm25n dEL603haQDS/qEkzssd5MB8GA1UdIwQYMBaAFNo8kfjxVdkLmYfJE7JMT55URenM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzBFRC9FNjI3N0EzRUU5 RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJRdVpoOGtUc2t4UG5sUkY2 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqeVItUEZWMlF1Wmg4a1Rza3hQbmxSRjZjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcwRUQvRTYyNzdBM0VFOUUxMTFFOUE1OTg3RTFGQzRGOUFFMDIvRkVCNjI0RjZC OTQ5MTFFRTg5N0Y3OTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnUAQwGAQCAAIwEgMHACQASEAAAAMHACQASEAAEDANBgkq hkiG9w0BAQsFAAOCAQEAeBFmddcAA3kUX9lZDCyM7rGwY9G72uVA2HkMxTah2R49 cK4cO3pQSUtMhCvk23+QUtjg5tOmoZL05dUiYhTybM40L9IK5kl99fRsh4aK0pG6 O8f7yggKSuFQfRAUpkfhGE4wgZnjH6QyC0GHmT3MVzKHFRWDLrQIu5qqp99OmV7/ NbpKhruBsZ01ufkgBC5lPMkK/mrdpAjvRKNEM1pIja+8MCU/RH19/jjO6/hB/3Gv 4fKOv9be25rCZxP/cl2oc4v+12Irxnzc1UqW2yIUOag4rzlXE0/BaCniqFWO7MDt aJl+vD6EBCD2Ys0VBphexmDtzgez34CIFAdYHvPoMQ== -----END CERTIFICATE-----Generated at Wed May 8 21:04:05 2024 by rpki-client on console-fra.rpki-client.org