$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/3FE88D863D8211EEA0E4DD46C4F9AE02.roa File: 3FE88D863D8211EEA0E4DD46C4F9AE02.roa (raw, json) Hash identifier: 5YAK6oFx/wOmrdb3rL8SmMD+EJ6DNVcJg0NK4N3BzGI= Subject key identifier: 4D:5A:4F:AD:6F:82:09:89:36:56:2F:39:31:F9:F1:B4:05:97:10:98 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0D36 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/3FE88D863D8211EEA0E4DD46C4F9AE02.roa Signing time: Fri 08 Sep 2023 18:25:44 +0000 ROA not before: Fri 08 Sep 2023 18:25:44 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132021 IP address blocks: 103.5.0.0/22 maxlen: 22 103.5.0.0/23 maxlen: 23 103.5.0.0/24 maxlen: 24 103.5.1.0/24 maxlen: 24 103.5.2.0/23 maxlen: 23 103.5.2.0/24 maxlen: 24 103.5.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3382 (0xd36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Sep 8 18:25:44 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64fb6728-f749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b0:51:11:d6:ee:05:b7:41:c6:a5:1a:a8:1a: 44:ab:c2:e9:aa:6a:2c:18:25:be:6b:86:df:30:f1: 3e:ee:da:bf:0b:8e:65:f2:49:46:2d:15:c6:9e:ac: 25:09:06:f6:eb:67:4a:b9:a8:77:e0:5f:cf:7f:d1: 2e:08:be:a9:96:34:ba:4b:06:4f:ee:4c:6c:1e:18: 94:87:42:d2:88:50:80:04:7f:52:b6:2d:69:2d:09: 09:31:4b:3c:05:12:f2:f5:cc:47:69:f9:20:b0:f2: 38:94:48:79:c9:79:49:e7:e4:07:4f:33:1d:8f:46: 7f:8d:e7:7f:04:a8:5c:7b:52:2e:48:40:4b:33:24: 75:71:e6:21:80:19:7e:b9:0e:66:0f:1d:f8:4b:5b: 0b:c8:8b:90:3e:35:77:4b:fb:ab:68:ad:4c:91:14: ce:a7:c5:2f:2d:4e:d6:52:cc:46:4c:02:2f:04:12: c3:85:1c:b2:63:ed:51:ec:13:8c:e7:d8:b8:9e:02: 32:d5:46:96:c5:57:73:7c:22:e9:10:d6:57:c9:ff: 5f:2d:55:70:d1:f0:a1:8f:89:c5:79:be:47:a8:57: 5b:b3:5c:d7:f8:f7:e8:5f:2c:51:d0:50:2a:03:e5: 21:21:d9:0c:98:0e:70:40:b2:53:4e:87:46:ae:c5: e1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:5A:4F:AD:6F:82:09:89:36:56:2F:39:31:F9:F1:B4:05:97:10:98 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/3FE88D863D8211EEA0E4DD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.0.0/22 Signature Algorithm: sha256WithRSAEncryption af:44:2b:fb:ab:a8:d0:89:0f:fb:0a:1c:2c:b6:65:c1:33:cc: 7c:56:96:c1:b6:57:b4:8b:50:89:b2:4a:c4:91:70:ff:f7:6b: 82:53:12:96:b9:09:b6:03:ca:89:56:bc:6f:4a:74:0c:94:db: 23:33:04:d0:ad:5d:4f:24:47:b8:c7:33:c5:e1:85:e1:90:ea: 41:61:1d:3a:25:55:06:91:08:f7:cc:29:5b:55:ee:0f:eb:67: e8:b2:26:7d:c3:08:37:74:96:44:08:3d:a4:ac:42:d9:a3:3f: 97:f9:a8:3d:6e:45:2a:4e:2e:52:8e:b9:a8:5b:dc:e7:f6:b3: 83:9e:52:67:34:52:ba:0c:f1:e8:31:b7:bf:47:7e:cb:c7:c1: 07:b0:ce:09:fb:f5:94:2e:63:df:26:41:23:0f:ba:b6:14:b1: 56:75:94:4d:af:82:23:77:67:78:7e:ce:ac:3a:8c:28:8e:53: a2:2b:3a:f6:22:0a:90:97:f5:bc:bf:ae:cf:dd:19:62:be:06: e1:11:3a:3e:ff:d0:2a:b6:f1:22:d5:c1:e0:0e:f3:48:8d:2d: 87:cc:1f:ef:38:5c:c4:a1:57:3c:00:3c:f3:36:aa:fb:8f:69: 96:6a:76:0a:ad:ab:59:89:48:5b:87:7c:41:91:8d:d8:6a:e9: ec:c9:24:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjMwOTA4MTgyNTQ0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZiNjcyOC1mNzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7BREdbuBbdBxqUaqBpEq8LpqmosGCW+a4bfMPE+7tq/C45l8klGLRXGnqwl CQb262dKuah34F/Pf9EuCL6pljS6SwZP7kxsHhiUh0LSiFCABH9Sti1pLQkJMUs8 BRLy9cxHafkgsPI4lEh5yXlJ5+QHTzMdj0Z/jed/BKhce1IuSEBLMyR1ceYhgBl+ uQ5mDx34S1sLyIuQPjV3S/uraK1MkRTOp8UvLU7WUsxGTAIvBBLDhRyyY+1R7BOM 59i4ngIy1UaWxVdzfCLpENZXyf9fLVVw0fChj4nFeb5HqFdbs1zX+PfoXyxR0FAq A+UhIdkMmA5wQLJTTodGrsXhewIDAQABo4IClTCCApEwHQYDVR0OBBYEFE1aT61v ggmJNlYvOTH58bQFlxCYMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2OEMvM0ZCOTMzNjhBOURCMTFFOTg0Mjg1Mjg2QzRGOUFFMDIvM0ZFODhEODYz RDgyMTFFRUEwRTRERDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBQAwDQYJKoZIhvcNAQELBQADggEBAK9EK/urqNCJD/sK HCy2ZcEzzHxWlsG2V7SLUImySsSRcP/3a4JTEpa5CbYDyolWvG9KdAyU2yMzBNCt XU8kR7jHM8XhheGQ6kFhHTolVQaRCPfMKVtV7g/rZ+iyJn3DCDd0lkQIPaSsQtmj P5f5qD1uRSpOLlKOuahb3Of2s4OeUmc0UroM8egxt79HfsvHwQewzgn79ZQuY98m QSMPurYUsVZ1lE2vgiN3Z3h+zqw6jCiOU6IrOvYiCpCX9by/rs/dGWK+BuEROj7/ 0Cq28SLVweAO80iNLYfMH+84XMShVzwAPPM2qvuPaZZqdgqtq1mJSFuHfEGRjdhq 6ezJJMU= -----END CERTIFICATE-----Generated at Fri May 10 20:05:37 2024 by rpki-client on console-fra.rpki-client.org