$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/C145485EAE9A11E9B17AC77EC4F9AE02.roa File: C145485EAE9A11E9B17AC77EC4F9AE02.roa (raw, json) Hash identifier: MYnAOKFhtPFDSVx5w1AeF2WcTeeQt92qEyTTumSyEDs= Subject key identifier: 6D:BC:68:2C:B6:E9:FB:EA:10:A1:B3:E1:50:B3:E1:CF:40:6C:A8:37 Certificate issuer: /CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Certificate serial: 0CA4 Authority key identifier: 11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/C145485EAE9A11E9B17AC77EC4F9AE02.roa Signing time: Wed 12 Jul 2023 18:35:16 +0000 ROA not before: Wed 12 Jul 2023 18:35:16 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137932 IP address blocks: 103.117.128.0/24 maxlen: 24 103.117.129.0/24 maxlen: 24 103.117.130.0/24 maxlen: 24 103.117.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3236 (0xca4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Validity Not Before: Jul 12 18:35:16 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64aef264-c273 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:69:23:61:55:72:cc:8b:af:db:ed:e7:5c:b5: 5e:03:04:b0:89:2e:90:7d:7f:9c:d1:ee:e8:3a:ad: 44:e0:b6:a1:d2:92:7e:c1:78:b5:35:b7:5f:bb:96: 19:93:77:be:da:49:f9:15:82:ff:ad:1b:62:51:67: 9f:95:45:14:22:6f:95:78:81:32:93:73:29:60:57: f8:a9:de:ad:45:75:f1:3a:a0:75:43:6d:48:66:fb: 9b:6f:b7:bd:fd:ca:a0:0b:60:54:35:3f:f2:2a:5c: bc:ae:b3:19:f7:0a:5a:69:6a:a3:3d:1b:ad:9d:8f: 27:06:30:93:92:c3:fa:42:98:e6:09:d8:f6:df:f4: 34:36:f1:76:c3:ad:75:53:40:8e:5c:e0:a3:7e:8b: be:92:03:02:95:3e:1f:9a:c1:d1:6b:b9:b2:c1:84: 1e:d7:c5:4b:b1:d2:d4:c5:ed:88:b7:74:f7:bf:d8: b8:56:a8:b1:cb:34:c6:37:ca:a6:3a:37:50:15:42: af:5c:8f:ca:88:5e:ec:dc:67:44:fd:85:ca:5e:62: 23:3d:d6:44:f8:f5:5a:cd:66:07:f1:28:18:96:ff: 5d:ad:80:db:00:9e:96:f8:dc:a1:c9:5e:16:a4:a8: 2c:b5:6e:32:27:fa:8c:fc:b1:d1:68:a7:eb:30:48: 8b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BC:68:2C:B6:E9:FB:EA:10:A1:B3:E1:50:B3:E1:CF:40:6C:A8:37 X509v3 Authority Key Identifier: keyid:11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/C145485EAE9A11E9B17AC77EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.128.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:fa:71:ea:59:20:54:d4:b1:a1:80:f8:1e:c1:69:bb:6f:bb: c8:2f:83:5a:76:f5:b3:58:f9:cf:0a:79:8e:f2:eb:7e:fc:37: ed:42:e6:e6:a8:f1:71:7d:89:62:b9:5c:a5:89:ff:52:d8:82: e7:c3:ba:e0:d9:cc:b6:2f:8e:30:9f:cc:5e:03:f4:5e:53:15: 37:dc:c6:3a:d4:85:ea:2d:12:a3:f8:98:fc:c8:d6:96:85:1d: a8:34:9d:56:6d:27:10:54:b3:b8:3f:7d:be:df:2e:e2:57:30: 40:3f:ec:46:9a:47:59:61:57:23:23:59:f9:09:ae:ac:6b:af: 6f:cf:e9:18:a4:38:51:70:9b:07:e9:53:d4:cd:16:69:46:24: 79:47:b3:b6:0c:ae:fc:09:ee:2a:8c:4c:2a:b6:04:1f:aa:7b: 44:3d:67:21:ce:83:a1:22:f2:cf:1b:62:fe:c6:98:4d:f1:0f: 00:fa:09:71:99:eb:f0:22:8b:96:fd:ac:18:f6:45:7f:bb:20: 70:45:ce:41:f4:f3:72:6a:9c:b7:ae:d1:c3:f7:1b:a3:ef:b5: ee:a0:b0:67:a0:4d:0d:20:d7:fe:9f:08:15:01:6e:ec:8b:2c: e8:eb:54:73:d6:5c:12:99:1c:d2:fd:55:70:b3:e7:29:10:ca: ea:35:30:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3QjIxMTAvBgNVBAUTKDExNTYyMDVFQzczODBBMDBGMTBGMzQxMDExNEQwNDAz NTdGMDBGRjEwHhcNMjMwNzEyMTgzNTE2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFlZjI2NC1jMjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7GkjYVVyzIuv2+3nXLVeAwSwiS6QfX+c0e7oOq1E4Lah0pJ+wXi1Nbdfu5YZ k3e+2kn5FYL/rRtiUWeflUUUIm+VeIEyk3MpYFf4qd6tRXXxOqB1Q21IZvubb7e9 /cqgC2BUNT/yKly8rrMZ9wpaaWqjPRutnY8nBjCTksP6QpjmCdj23/Q0NvF2w611 U0COXOCjfou+kgMClT4fmsHRa7mywYQe18VLsdLUxe2It3T3v9i4VqixyzTGN8qm OjdQFUKvXI/KiF7s3GdE/YXKXmIjPdZE+PVazWYH8SgYlv9drYDbAJ6W+NyhyV4W pKgstW4yJ/qM/LHRaKfrMEiLjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG28aCy2 6fvqEKGz4VCz4c9AbKg3MB8GA1UdIwQYMBaAFBFWIF7HOAoA8Q80EBFNBANX8A/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTdCMi8zRUUzMjM1QUFF OTkxMUU5QUM1MEUxN0JDNEY5QUUwMi9FVllnWHNjNENnRHhEelFRRVUwRUExZndE X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VWWWdYc2M0Q2dEeER6UVFFVTBFQTFmd0RfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3QjIvM0VFMzIzNUFBRTk5MTFFOUFDNTBFMTdCQzRGOUFFMDIvQzE0NTQ4NUVB RTlBMTFFOUIxN0FDNzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndYAwDQYJKoZIhvcNAQELBQADggEBAH/6cepZIFTUsaGA +B7Babtvu8gvg1p29bNY+c8KeY7y6378N+1C5uao8XF9iWK5XKWJ/1LYgufDuuDZ zLYvjjCfzF4D9F5TFTfcxjrUheotEqP4mPzI1paFHag0nVZtJxBUs7g/fb7fLuJX MEA/7EaaR1lhVyMjWfkJrqxrr2/P6RikOFFwmwfpU9TNFmlGJHlHs7YMrvwJ7iqM TCq2BB+qe0Q9ZyHOg6Ei8s8bYv7GmE3xDwD6CXGZ6/Aii5b9rBj2RX+7IHBFzkH0 83JqnLeu0cP3G6Pvte6gsGegTQ0g1/6fCBUBbuyLLOjrVHPWXBKZHNL9VXCz5ykQ yuo1MBA= -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org