$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/10A8D0E263F611ECB344F979C4F9AE02.roa File: 10A8D0E263F611ECB344F979C4F9AE02.roa (raw, json) Hash identifier: LNDhHPgZ8KmrkKSEFNRjipLAUn9FqfZhDfW5knC3Ulw= Subject key identifier: 26:17:65:3A:87:E9:FA:BC:C2:ED:81:B5:1F:F2:BF:44:FC:B2:6D:26 Certificate issuer: /CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Certificate serial: 0341 Authority key identifier: 5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/10A8D0E263F611ECB344F979C4F9AE02.roa Signing time: Mon 23 Oct 2023 01:33:50 +0000 ROA not before: Mon 23 Oct 2023 01:33:50 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132420 IP address blocks: 103.173.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 02:37:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Validity Not Before: Oct 23 01:33:50 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6535cd7e-627a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9d:3a:2c:0a:bf:2f:ee:54:22:47:43:89:cc: f6:d7:62:8b:fc:13:2f:75:c7:4c:56:d3:56:b0:0a: 0e:ef:f1:d9:00:dc:6d:f7:86:af:38:5e:b2:5b:a4: ff:0c:8e:28:be:de:16:ae:99:91:18:c6:fe:d5:3e: 67:bf:f0:e1:f6:a0:13:6f:dc:7a:45:b0:89:5e:ea: eb:6e:bf:ad:61:51:7d:0e:3d:cf:e4:81:48:18:3a: 29:35:5b:4c:a7:7f:f6:96:ce:27:d9:43:6e:ed:73: 61:38:30:85:cc:a0:38:7d:07:1f:ed:a4:c2:51:1c: d5:72:f2:6a:d6:79:80:cb:8e:11:67:34:83:bd:c3: c8:22:f3:a5:1f:cb:9a:5c:25:b7:57:8f:5a:f6:3e: cc:a6:73:ed:64:ae:81:57:b2:58:0e:1f:4e:7e:bb: 10:5d:83:99:9c:74:7d:b5:11:ed:10:9d:ac:ab:7a: 4c:31:7f:ec:b6:e8:d0:a3:53:54:b2:48:bd:ce:6a: f6:f5:38:d4:b6:80:75:d6:57:5b:b9:5f:e8:59:9f: bd:4a:2c:cc:52:28:40:71:a6:1b:fe:a3:25:b1:67: 00:6f:62:04:3c:2e:41:a0:c6:12:c4:8f:5c:bc:cd: 09:45:61:2a:15:68:6a:16:d3:ac:3b:cc:c5:68:8b: cd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:17:65:3A:87:E9:FA:BC:C2:ED:81:B5:1F:F2:BF:44:FC:B2:6D:26 X509v3 Authority Key Identifier: keyid:5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/10A8D0E263F611ECB344F979C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.112.0/24 Signature Algorithm: sha256WithRSAEncryption 77:6c:a8:e3:d7:b9:58:64:0d:b1:cb:13:d6:8c:48:a1:18:00: 91:f5:2a:72:bb:6b:e9:b8:51:06:26:52:f7:8e:e6:d0:eb:3a: 3c:66:aa:c3:1a:88:d0:51:82:c7:05:16:de:e5:dc:1a:a7:78: 80:48:d9:ea:99:b6:9d:a4:06:3e:6c:cb:77:1a:13:b1:40:6a: d4:7b:66:1a:67:57:a9:95:d5:a8:f5:bd:27:09:1c:ea:68:12: ff:91:8e:82:70:37:38:e6:fa:4e:79:a0:0a:c6:41:2c:e6:1a: 69:1b:fc:cb:0b:02:0e:3c:1f:0d:6e:d0:c9:7c:02:f3:00:50: 04:c1:c2:e2:03:b9:ea:b4:39:b9:cc:ba:2a:c8:4a:10:7a:25: 8d:f8:c3:39:0b:13:bb:3c:68:1a:ac:9c:a6:52:11:45:96:d8: 75:77:12:a1:5e:d0:d2:bb:63:9a:36:b9:11:ce:c8:7c:57:07: c2:5a:9f:02:81:00:1c:3c:ad:a2:2c:3f:52:37:a2:84:3e:10: 54:d6:de:ac:c9:3f:f1:df:cd:4f:2b:b8:e7:55:5a:a0:c1:72: 24:b9:fc:d5:a2:a6:98:76:f9:de:99:da:da:63:24:eb:4b:f3: a5:07:8e:ef:2c:36:eb:b8:90:9a:96:4d:e7:7d:22:49:56:a0: e9:4c:a8:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQTgxMTAvBgNVBAUTKDVDRTdCQ0Q5QzZFNDEzODFDQzBBRjkwOTkwRERBMDM2 OTM4NUU2NTUwHhcNMjMxMDIzMDEzMzUwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM1Y2Q3ZS02MjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Z06LAq/L+5UIkdDicz212KL/BMvdcdMVtNWsAoO7/HZANxt94avOF6yW6T/ DI4ovt4WrpmRGMb+1T5nv/Dh9qATb9x6RbCJXurrbr+tYVF9Dj3P5IFIGDopNVtM p3/2ls4n2UNu7XNhODCFzKA4fQcf7aTCURzVcvJq1nmAy44RZzSDvcPIIvOlH8ua XCW3V49a9j7MpnPtZK6BV7JYDh9OfrsQXYOZnHR9tRHtEJ2sq3pMMX/stujQo1NU ski9zmr29TjUtoB11ldbuV/oWZ+9SizMUihAcaYb/qMlsWcAb2IEPC5BoMYSxI9c vM0JRWEqFWhqFtOsO8zFaIvNFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCYXZTqH 6fq8wu2BtR/yv0T8sm0mMB8GA1UdIwQYMBaAFFznvNnG5BOBzAr5CZDdoDaTheZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNBOC8yMUZBMDI3MjRD NkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0SE1DdmtKa04yZ05wT0Y1 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPZTgyY2JrRTRITUN2a0prTjJnTnBPRjVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUMzQTgvMjFGQTAyNzI0QzZDMTFFQ0JCQ0ZBRDI2QzRGOUFFMDIvMTBBOEQwRTI2 M0Y2MTFFQ0IzNDRGOTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrXAwDQYJKoZIhvcNAQELBQADggEBAHdsqOPXuVhkDbHL E9aMSKEYAJH1KnK7a+m4UQYmUveO5tDrOjxmqsMaiNBRgscFFt7l3BqneIBI2eqZ tp2kBj5sy3caE7FAatR7ZhpnV6mV1aj1vScJHOpoEv+RjoJwNzjm+k55oArGQSzm Gmkb/MsLAg48Hw1u0Ml8AvMAUATBwuIDueq0ObnMuirIShB6JY34wzkLE7s8aBqs nKZSEUWW2HV3EqFe0NK7Y5o2uRHOyHxXB8JanwKBABw8raIsP1I3ooQ+EFTW3qzJ P/HfzU8ruOdVWqDBciS5/NWipph2+d6Z2tpjJOtL86UHju8sNuu4kJqWTed9IklW oOlMqK8= -----END CERTIFICATE-----Generated at Wed May 15 03:50:01 2024 by rpki-client on console-fra.rpki-client.org