$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/1004D41ED21D11E992825429C4F9AE02.roa File: 1004D41ED21D11E992825429C4F9AE02.roa (raw, json) Hash identifier: Zc60K4ZMZPyJuc6g6BeiVIXF/a+xAC8+kYk2iliu0z8= Subject key identifier: 53:52:95:89:29:27:EB:38:6A:3D:F2:59:B9:C5:B1:A8:DE:2F:6A:22 Certificate issuer: /CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Certificate serial: 0BDB Authority key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/1004D41ED21D11E992825429C4F9AE02.roa Signing time: Tue 06 Jun 2023 19:59:42 +0000 ROA not before: Tue 06 Jun 2023 19:59:42 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 136379 IP address blocks: 103.138.192.0/24 maxlen: 24 103.138.193.0/24 maxlen: 24 2001:df0:5080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3035 (0xbdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Validity Not Before: Jun 6 19:59:42 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647f902d-cf39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:cf:71:74:ce:b0:28:d2:b2:27:9b:29:2c:e0: 68:1d:3d:78:52:ec:5b:73:1b:80:e5:42:8a:e9:32: 4a:ae:5a:76:cd:2e:a4:86:68:0a:20:2f:d8:9b:93: 66:1a:32:de:34:6a:cf:4d:13:1a:54:0b:4f:13:be: 55:d9:7c:b0:51:5c:70:aa:93:a1:f3:1f:53:cd:6a: 77:5a:f0:05:76:b8:fe:1f:ea:ff:ce:94:4f:e1:71: 06:77:7a:00:2a:1b:ee:9e:61:d3:67:9f:be:49:65: 0f:9b:14:5a:9b:66:10:f6:1d:2f:55:a0:84:5c:0d: e6:0b:06:48:3e:f9:cb:8e:27:a7:f3:24:16:94:be: 9d:2f:e9:39:12:7d:45:21:91:96:4e:87:ae:89:30: 21:7e:fc:56:2c:c6:6e:13:4f:8e:74:cb:2f:bd:de: d9:d9:73:07:31:77:08:2a:8f:44:01:93:4d:db:5a: 44:20:58:4a:2d:ff:41:19:2b:31:6c:ad:8a:b7:78: 93:c7:68:b2:42:7b:d2:4a:73:06:a9:8f:45:35:b9: a4:a5:46:2d:27:d6:12:93:7f:0e:a0:27:ca:09:cb: 53:14:60:76:5d:a1:fa:18:b1:73:3a:98:bb:b5:12: 5b:4b:48:14:7c:d3:c0:e4:0a:b9:6f:8d:f3:1e:8b: da:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:52:95:89:29:27:EB:38:6A:3D:F2:59:B9:C5:B1:A8:DE:2F:6A:22 X509v3 Authority Key Identifier: keyid:EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/1004D41ED21D11E992825429C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.192.0/23 IPv6: 2001:df0:5080::/48 Signature Algorithm: sha256WithRSAEncryption a9:29:8e:53:6c:a0:73:57:58:52:87:3d:be:1f:b1:03:1a:a3: cd:9c:81:e3:82:bd:d0:94:b0:11:b8:6e:e3:e2:20:5e:12:a9: 09:e8:8b:45:e5:08:4d:e5:9e:75:bd:63:4e:1d:ee:b9:8d:61: 74:05:fc:0c:e2:75:28:66:cc:fc:cc:14:6d:0a:15:77:9d:f4: a8:a8:f0:d0:12:23:22:63:a1:ec:ca:96:ac:37:cf:27:d4:33: 4f:33:8d:80:ac:ed:d6:20:71:03:34:6b:2c:b2:5b:96:40:32: c4:a6:0d:a7:fc:6b:39:8f:c2:3d:1a:e8:89:59:6c:32:f3:22: b8:b7:96:d8:02:71:66:ba:6d:c0:95:1c:62:ba:7a:6f:17:a9: 53:b9:13:c8:61:fe:57:c5:19:c6:30:c1:cc:3b:b8:12:10:f8: 84:74:99:57:61:e5:5d:64:6c:46:46:48:57:98:33:16:75:28: 08:4f:dc:de:58:05:fb:28:d3:ab:20:a5:72:d0:58:d5:67:60: 2a:34:9b:ba:ec:1c:98:fc:3c:26:6e:39:0d:61:c0:b5:cd:23: 2b:95:a7:c1:72:3a:67:1a:eb:d1:e6:cc:46:00:bb:c4:59:fc: f4:62:80:ea:fc:26:43:2a:ee:6d:42:ce:14:ef:84:f3:41:54: fd:ef:fc:0c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5QzAxMTAvBgNVBAUTKEVGQ0YwNTJEOTg5MjkyQ0VCMTA1MDkxMjlDOERFMjAz RDQ5RjY4MDQwHhcNMjMwNjA2MTk1OTQyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdmOTAyZC1jZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAms9xdM6wKNKyJ5spLOBoHT14UuxbcxuA5UKK6TJKrlp2zS6khmgKIC/Ym5Nm GjLeNGrPTRMaVAtPE75V2XywUVxwqpOh8x9TzWp3WvAFdrj+H+r/zpRP4XEGd3oA KhvunmHTZ5++SWUPmxRam2YQ9h0vVaCEXA3mCwZIPvnLjien8yQWlL6dL+k5En1F IZGWToeuiTAhfvxWLMZuE0+OdMsvvd7Z2XMHMXcIKo9EAZNN21pEIFhKLf9BGSsx bK2Kt3iTx2iyQnvSSnMGqY9FNbmkpUYtJ9YSk38OoCfKCctTFGB2XaH6GLFzOpi7 tRJbS0gUfNPA5Aq5b43zHovaiQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFNSlYkp J+s4aj3yWbnFsajeL2oiMB8GA1UdIwQYMBaAFO/PBS2YkpLOsQUJEpyN4gPUn2gE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlDMC9EMzY0RjBDQ0Qy MUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tzNnhCUWtTbkkzaUE5U2Zh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OEZMWmlTa3M2eEJRa1NuSTNpQTlTZmFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI5QzAvRDM2NEYwQ0NEMjFBMTFFOTgzRjlFNTI0QzRGOUFFMDIvMTAwNEQ0MUVE MjFEMTFFOTkyODI1NDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnisAwDwQCAAIwCQMHACABDfBQgDANBgkqhkiG9w0BAQsF AAOCAQEAqSmOU2ygc1dYUoc9vh+xAxqjzZyB44K90JSwEbhu4+IgXhKpCeiLReUI TeWedb1jTh3uuY1hdAX8DOJ1KGbM/MwUbQoVd530qKjw0BIjImOh7MqWrDfPJ9Qz TzONgKzt1iBxAzRrLLJblkAyxKYNp/xrOY/CPRroiVlsMvMiuLeW2AJxZrptwJUc Yrp6bxepU7kTyGH+V8UZxjDBzDu4EhD4hHSZV2HlXWRsRkZIV5gzFnUoCE/c3lgF +yjTqyClctBY1WdgKjSbuuwcmPw8Jm45DWHAtc0jK5WnwXI6Zxrr0ebMRgC7xFn8 9GKA6vwmQyrubULOFO+E80FU/e/8DA== -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org