$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/6084E4F217E811EC8A22700DC4F9AE02.roa File: 6084E4F217E811EC8A22700DC4F9AE02.roa (raw, json) Hash identifier: I4txh1OY5AHA1SpkilEKCcB/8ZP3lIX6/f0rM9QjBjo= Subject key identifier: C2:30:95:FE:7C:BA:10:ED:4F:32:EC:7A:2A:5B:7B:22:99:6F:19:D9 Certificate issuer: /CN=A91E8B44/serialNumber=21F713C808BCD14BFCBCCFD46273C20ED07B4107 Certificate serial: 03C1 Authority key identifier: 21:F7:13:C8:08:BC:D1:4B:FC:BC:CF:D4:62:73:C2:0E:D0:7B:41:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfcTyAi80Uv8vM_UYnPCDtB7QQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/6084E4F217E811EC8A22700DC4F9AE02.roa Signing time: Sat 21 Oct 2023 01:13:32 +0000 ROA not before: Sat 21 Oct 2023 01:13:32 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 56264 IP address blocks: 103.173.100.0/24 maxlen: 24 103.173.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/IfcTyAi80Uv8vM_UYnPCDtB7QQc.crl rsync://rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/IfcTyAi80Uv8vM_UYnPCDtB7QQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfcTyAi80Uv8vM_UYnPCDtB7QQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 00:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8B44/serialNumber=21F713C808BCD14BFCBCCFD46273C20ED07B4107 Validity Not Before: Oct 21 01:13:32 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653325bc-f272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:79:92:91:1c:ab:04:d8:1d:23:8c:9d:98:ec: 8c:46:cd:19:fa:4e:8b:a5:39:e3:49:a8:66:5b:28: 4f:be:b7:8c:e4:1b:c1:51:2e:74:40:34:5e:63:7f: be:29:ac:9c:89:3e:55:49:ce:ce:6f:23:58:04:6e: 9d:31:52:7e:59:e9:e0:23:3e:e5:45:47:eb:73:60: d1:76:14:52:7f:af:ed:07:ac:ed:49:6a:0c:a3:a0: 29:6d:ef:a5:51:d0:75:c3:8b:05:d9:ef:fd:11:80: 5e:da:18:de:03:be:20:45:83:b2:c8:30:86:32:54: 1b:4e:3f:60:46:51:61:10:39:ef:e4:da:ac:2e:51: 72:74:6b:d4:7e:42:ec:35:70:03:ea:68:98:1a:de: d1:47:52:ff:ba:f3:8c:48:19:77:c5:a0:a9:a5:67: 88:e7:11:e9:6b:0f:61:01:63:57:5f:4d:45:c0:7f: ce:69:80:97:2c:15:4c:bf:e8:fe:b6:ea:3e:ce:20: 54:92:90:a4:b3:a0:74:d5:f0:82:a7:8b:fd:eb:c3: 11:7a:6a:73:0e:da:45:b2:33:92:02:af:f7:40:de: 52:af:4e:f2:28:fa:d5:9d:4d:a9:75:90:c1:c7:06: 68:a7:d9:9b:90:67:2a:3b:f0:3a:97:c0:4a:4d:4b: 1a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:30:95:FE:7C:BA:10:ED:4F:32:EC:7A:2A:5B:7B:22:99:6F:19:D9 X509v3 Authority Key Identifier: keyid:21:F7:13:C8:08:BC:D1:4B:FC:BC:CF:D4:62:73:C2:0E:D0:7B:41:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/IfcTyAi80Uv8vM_UYnPCDtB7QQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfcTyAi80Uv8vM_UYnPCDtB7QQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8B44/F3B164AC17E411EC9B884685C4F9AE02/6084E4F217E811EC8A22700DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.100.0/23 Signature Algorithm: sha256WithRSAEncryption 42:aa:ed:82:d5:34:8f:ef:f5:1d:f2:2b:ca:ce:54:6e:91:2b: 62:75:d7:8e:a5:ce:5a:0a:2f:eb:37:e1:b1:72:8f:f3:dd:86: cd:ed:59:57:3d:15:af:13:45:25:a3:93:23:d2:04:45:da:e7: 91:72:4a:15:5d:dd:31:18:ad:7a:51:c6:39:f2:72:a4:57:de: 93:88:08:e8:5b:17:79:1c:c9:ad:79:2c:b6:13:45:98:d7:d5: 35:cd:76:3b:d3:25:bb:c1:01:ad:4c:5d:a6:a5:7e:29:de:ba: 67:84:9d:0c:d8:67:45:e7:30:81:4a:db:a5:b9:49:bb:f0:86: ad:22:fa:27:85:d2:7e:a9:82:68:f8:1f:73:c8:ab:33:55:19: 20:93:a7:f1:5f:74:82:c1:b0:dd:89:93:d0:db:f3:fd:2f:f8: f5:03:da:e5:f4:d4:41:75:96:43:d7:ca:bc:2a:5c:a3:a7:67: 0f:b5:4b:08:ac:9f:ff:68:31:78:a0:f6:04:14:0c:18:16:11: 85:34:b0:54:fc:08:b5:e7:60:ef:61:74:e8:50:37:d0:9b:5c: 97:48:40:72:f6:da:15:7d:92:4b:64:43:e0:cc:14:93:15:26: ea:62:ea:6a:32:a6:6d:dd:80:fb:4d:da:80:0c:c1:60:13:97: 26:a4:9c:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCNDQxMTAvBgNVBAUTKDIxRjcxM0M4MDhCQ0QxNEJGQ0JDQ0ZENDYyNzNDMjBF RDA3QjQxMDcwHhcNMjMxMDIxMDExMzMyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMzMjViYy1mMjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynmSkRyrBNgdI4ydmOyMRs0Z+k6LpTnjSahmWyhPvreM5BvBUS50QDReY3++ KayciT5VSc7ObyNYBG6dMVJ+WengIz7lRUfrc2DRdhRSf6/tB6ztSWoMo6Apbe+l UdB1w4sF2e/9EYBe2hjeA74gRYOyyDCGMlQbTj9gRlFhEDnv5NqsLlFydGvUfkLs NXAD6miYGt7RR1L/uvOMSBl3xaCppWeI5xHpaw9hAWNXX01FwH/OaYCXLBVMv+j+ tuo+ziBUkpCks6B01fCCp4v968MRempzDtpFsjOSAq/3QN5Sr07yKPrVnU2pdZDB xwZop9mbkGcqO/A6l8BKTUsanwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMIwlf58 uhDtTzLseipbeyKZbxnZMB8GA1UdIwQYMBaAFCH3E8gIvNFL/LzP1GJzwg7Qe0EH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEI0NC9GM0IxNjRBQzE3 RTQxMUVDOUI4ODQ2ODVDNEY5QUUwMi9JZmNUeUFpODBVdjh2TV9VWW5QQ0R0QjdR UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmY1R5QWk4MFV2OHZNX1VZblBDRHRCN1FRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThCNDQvRjNCMTY0QUMxN0U0MTFFQzlCODg0Njg1QzRGOUFFMDIvNjA4NEU0RjIx N0U4MTFFQzhBMjI3MDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrWQwDQYJKoZIhvcNAQELBQADggEBAEKq7YLVNI/v9R3y K8rOVG6RK2J1146lzloKL+s34bFyj/Pdhs3tWVc9Fa8TRSWjkyPSBEXa55FyShVd 3TEYrXpRxjnycqRX3pOICOhbF3kcya15LLYTRZjX1TXNdjvTJbvBAa1MXaalfine umeEnQzYZ0XnMIFK26W5Sbvwhq0i+ieF0n6pgmj4H3PIqzNVGSCTp/FfdILBsN2J k9Db8/0v+PUD2uX01EF1lkPXyrwqXKOnZw+1Swisn/9oMXig9gQUDBgWEYU0sFT8 CLXnYO9hdOhQN9CbXJdIQHL22hV9kktkQ+DMFJMVJupi6moypm3dgPtN2oAMwWAT lyaknEs= -----END CERTIFICATE-----Generated at Sat May 25 03:06:00 2024 by rpki-client on console-fra.rpki-client.org