$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa File: 5AFFB9E48C2211EDAE44DD87C4F9AE02.roa (raw, json) Hash identifier: mffY3AuaPAKQ52OkYd/j1Cv7tCpL1MMwz1fbq1wCKrw= Subject key identifier: D1:5F:17:A1:0B:05:2C:8C:B2:E5:52:08:4A:68:8B:14:B3:2B:FE:FE Certificate issuer: /CN=A91E8903/serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Certificate serial: 0104 Authority key identifier: 45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa Signing time: Tue 23 Apr 2024 05:39:15 +0000 ROA not before: Tue 23 Apr 2024 05:39:15 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 131471 IP address blocks: 103.221.246.0/24 maxlen: 24 103.221.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 05:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8903/serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Validity Not Before: Apr 23 05:39:15 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=66274982-eacf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:66:11:79:d9:96:f0:72:d9:9b:81:c1:0c: 07:43:d8:c1:9b:43:01:7d:81:56:c6:8f:03:4e:09: a3:4f:76:97:cb:c7:25:28:cf:7a:7e:28:4c:af:3b: db:0d:88:4d:58:b1:86:53:8b:59:63:68:6c:fe:7c: ca:9e:d2:93:14:4f:59:70:82:5d:03:8b:87:c6:6f: 6e:93:b2:52:22:35:b1:00:6f:1c:d7:a5:3d:a1:61: 3f:56:be:e7:3e:0d:96:1a:54:c9:f9:3d:f0:39:31: a4:17:fd:5f:3e:4a:98:92:6d:62:c0:20:d7:81:9c: 71:30:7b:13:69:9e:1f:bc:72:e7:f7:d2:40:6a:e4: 11:03:07:f0:05:b7:16:51:a4:59:e7:22:46:f2:1b: ee:e6:d3:15:cc:25:78:e2:ea:09:c6:a7:ec:dd:1c: fc:ea:db:c5:ac:82:e7:3e:0e:c1:3b:bd:9a:12:db: 3f:24:9d:70:b9:03:03:3e:bc:3d:8d:58:cd:da:6f: 54:17:4a:f2:b5:27:46:86:5e:2f:07:7c:29:32:3b: db:67:35:50:66:4f:e0:01:4c:48:b7:1c:2f:38:86: c9:be:ce:b0:b4:60:5c:b4:da:13:08:07:fc:5e:bd: bb:c6:f1:79:7c:11:e7:3f:aa:37:2d:3a:8b:e6:12: 36:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:5F:17:A1:0B:05:2C:8C:B2:E5:52:08:4A:68:8B:14:B3:2B:FE:FE X509v3 Authority Key Identifier: keyid:45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.221.246.0/23 Signature Algorithm: sha256WithRSAEncryption 98:90:88:e6:a5:cc:60:e1:f7:6c:dc:ca:55:cd:dd:e5:47:08: 67:55:72:b2:6d:42:c4:53:23:ca:a6:4e:c8:a4:9f:d7:3c:4b: ec:39:2f:cb:e2:72:7a:d4:38:e5:e8:d4:88:3f:7d:ef:b6:64: a0:80:b7:ac:fc:dd:c3:cb:f2:10:dd:a3:4b:91:5e:10:c8:0e: 7e:51:e3:8b:6d:c4:9c:cb:0f:15:3b:95:5d:78:66:bf:12:97: c7:a7:9d:c0:53:19:96:65:77:a5:21:67:cf:ab:ab:23:da:ed: e2:ed:b1:12:af:95:2b:91:71:cd:29:ae:de:84:cc:9b:73:bb: 06:d7:64:70:ec:52:9b:6f:c7:35:87:17:c3:86:85:c6:95:e1: a1:b5:a0:b8:06:8a:39:17:9b:e2:2c:9d:15:46:fb:02:9e:33: 96:0e:90:d2:82:d4:96:aa:1c:61:1b:4d:71:4c:d4:50:18:cf: f7:75:0b:55:f3:28:0c:a2:c1:1a:2a:13:cb:a9:ac:2b:ba:12: c5:ac:79:ff:e6:4d:80:f2:24:62:fc:c1:bd:cc:33:0d:fd:12: 62:27:6a:d1:b3:40:a2:bf:d5:9e:8f:21:5c:4a:b5:34:75:a1: 45:7f:75:43:a2:80:ad:0c:31:48:b0:9f:68:88:d2:88:cb:62: 39:34:3e:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MDMxMTAvBgNVBAUTKDQ1NkFGNUU1NjY3REUyNDhBOUNGMENFQjkwQzZEMUIz RDNFRDZGQTgwHhcNMjQwNDIzMDUzOTE1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI3NDk4Mi1lYWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwX1mEXnZlvBy2ZuBwQwHQ9jBm0MBfYFWxo8DTgmjT3aXy8clKM96fihMrzvb DYhNWLGGU4tZY2hs/nzKntKTFE9ZcIJdA4uHxm9uk7JSIjWxAG8c16U9oWE/Vr7n Pg2WGlTJ+T3wOTGkF/1fPkqYkm1iwCDXgZxxMHsTaZ4fvHLn99JAauQRAwfwBbcW UaRZ5yJG8hvu5tMVzCV44uoJxqfs3Rz86tvFrILnPg7BO72aEts/JJ1wuQMDPrw9 jVjN2m9UF0rytSdGhl4vB3wpMjvbZzVQZk/gAUxItxwvOIbJvs6wtGBctNoTCAf8 Xr27xvF5fBHnP6o3LTqL5hI2swIDAQABo4IClTCCApEwHQYDVR0OBBYEFNFfF6EL BSyMsuVSCEpoixSzK/7+MB8GA1UdIwQYMBaAFEVq9eVmfeJIqc8M65DG0bPT7W+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkwMy9EODk4MjY1QThD MUYxMUVEQUU0NDFEODdDNEY5QUUwMi9SV3IxNVdaOTRraXB6d3pya01iUnM5UHRi NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXcjE1V1o5NGtpcHp3enJrTWJSczlQdGI2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MDMvRDg5ODI2NUE4QzFGMTFFREFFNDQxRDg3QzRGOUFFMDIvNUFGRkI5RTQ4 QzIyMTFFREFFNDRERDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn3fYwDQYJKoZIhvcNAQELBQADggEBAJiQiOalzGDh92zc ylXN3eVHCGdVcrJtQsRTI8qmTsikn9c8S+w5L8vicnrUOOXo1Ig/fe+2ZKCAt6z8 3cPL8hDdo0uRXhDIDn5R44ttxJzLDxU7lV14Zr8Sl8enncBTGZZld6UhZ8+rqyPa 7eLtsRKvlSuRcc0prt6EzJtzuwbXZHDsUptvxzWHF8OGhcaV4aG1oLgGijkXm+Is nRVG+wKeM5YOkNKC1JaqHGEbTXFM1FAYz/d1C1XzKAyiwRoqE8uprCu6EsWsef/m TYDyJGL8wb3MMw39EmInatGzQKK/1Z6PIVxKtTR1oUV/dUOigK0MMUiwn2iI0ojL Yjk0Pgg= -----END CERTIFICATE-----Generated at Mon May 13 07:30:03 2024 by rpki-client on console-fra.rpki-client.org