$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/1863E71EE86511ED9B3E3257C4F9AE02.roa File: 1863E71EE86511ED9B3E3257C4F9AE02.roa (raw, json) Hash identifier: d0+VsKWqslGrsihw5DgPjKXNZkQWNLKVvJ8jNtxr1ao= Subject key identifier: 7F:54:33:3B:1A:E8:5E:66:90:C6:D5:9E:75:CC:C9:D9:74:61:31:00 Certificate issuer: /CN=A91EEC3B/serialNumber=B7667505BB2042E72B62AE05BE2D1A3B41B4D235 Certificate serial: 060A Authority key identifier: B7:66:75:05:BB:20:42:E7:2B:62:AE:05:BE:2D:1A:3B:41:B4:D2:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t2Z1BbsgQucrYq4Fvi0aO0G00jU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/1863E71EE86511ED9B3E3257C4F9AE02.roa Signing time: Mon 02 Oct 2023 16:54:01 +0000 ROA not before: Mon 02 Oct 2023 16:54:01 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136917 IP address blocks: 103.110.124.0/24 maxlen: 24 103.110.125.0/24 maxlen: 24 103.110.126.0/24 maxlen: 24 2401:a840::/32 maxlen: 32 2401:a840::/36 maxlen: 36 2401:a840::/40 maxlen: 40 2401:a840:100::/40 maxlen: 40 2401:a840:200::/40 maxlen: 40 2401:a840:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/t2Z1BbsgQucrYq4Fvi0aO0G00jU.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/t2Z1BbsgQucrYq4Fvi0aO0G00jU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t2Z1BbsgQucrYq4Fvi0aO0G00jU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1546 (0x60a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B/serialNumber=B7667505BB2042E72B62AE05BE2D1A3B41B4D235 Validity Not Before: Oct 2 16:54:01 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651af5a8-7dd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:52:62:3c:eb:fe:c7:0b:c9:e1:62:d1:11:43: 59:a7:d7:52:cc:0c:a3:dd:49:d7:ef:f6:c5:79:23: 77:47:49:41:2a:ce:92:07:c8:16:50:6b:04:cd:1c: 92:bb:99:bb:a4:0e:1b:7f:40:c4:bd:63:db:9c:3d: d6:7b:c2:53:cf:f0:39:37:07:97:18:d5:aa:82:d3: b6:26:47:7d:9b:ca:fd:37:d8:64:80:15:7f:b1:9b: 03:b3:4e:44:aa:e9:6a:5e:fc:e2:de:ca:cc:67:74: a7:34:fe:58:6d:39:9e:b4:9b:ce:6f:77:28:f7:1d: 03:39:c9:21:65:25:44:1d:ed:ff:d6:47:45:4d:6e: 4b:18:ed:39:8c:46:8a:32:bb:4a:3e:e6:3d:45:e2: 0c:70:95:fe:d3:2f:03:71:d0:c5:49:af:81:1b:2d: 88:de:69:94:c5:06:4c:6c:68:de:e4:0e:f0:4a:7d: 0a:89:54:8a:9b:26:7c:3d:ed:0a:05:c3:f0:50:03: e9:ec:90:f1:d2:69:e9:eb:67:9e:3e:0c:13:88:c3: 33:c3:63:d9:f4:d9:b7:3d:d7:b9:34:99:73:6d:29: ab:c9:8a:3f:92:96:bf:71:da:35:c0:2f:81:4d:4a: cd:fa:b5:23:cf:ae:dc:4a:59:b3:e8:73:5c:41:56: 88:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:54:33:3B:1A:E8:5E:66:90:C6:D5:9E:75:CC:C9:D9:74:61:31:00 X509v3 Authority Key Identifier: keyid:B7:66:75:05:BB:20:42:E7:2B:62:AE:05:BE:2D:1A:3B:41:B4:D2:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/t2Z1BbsgQucrYq4Fvi0aO0G00jU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t2Z1BbsgQucrYq4Fvi0aO0G00jU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/1863E71EE86511ED9B3E3257C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.124.0-103.110.126.255 IPv6: 2401:a840::/32 Signature Algorithm: sha256WithRSAEncryption 09:05:49:9b:38:17:39:99:a3:90:f5:53:e8:42:2c:dc:87:61: 54:77:76:63:23:12:24:4c:25:97:d0:1c:2a:16:fb:b9:04:de: a6:4d:e3:3b:df:ac:71:94:30:7a:ff:36:ac:48:12:fe:26:24: c1:09:70:3e:a0:67:27:d4:0c:dd:f0:11:bf:6a:54:79:09:4d: 78:4e:ff:f3:9e:93:a3:81:be:f8:4c:99:2a:2f:9c:fe:45:47: be:3d:07:29:ce:b6:ad:9f:b1:4c:4f:6f:35:2e:f3:ff:d6:60: 20:70:52:1e:9a:d0:1f:50:ce:04:72:6c:ee:2b:5e:a1:7b:13: 67:3b:b3:e1:93:81:29:99:a8:57:25:32:49:50:0a:29:00:9e: 08:d4:88:be:f1:16:01:68:b0:62:9e:bf:8d:68:da:55:5f:f2: 1f:0d:3a:02:de:dd:a6:5c:3b:e4:19:fc:f7:b7:c1:0e:de:3b: dc:6c:95:cc:c6:e0:c0:c6:63:ee:a0:21:98:8a:d8:25:56:a8: 47:c3:07:2b:3d:1d:0d:89:8a:e8:0a:54:46:33:43:4c:34:fd: 74:5e:60:84:db:45:27:8a:71:26:9e:e3:44:9e:2b:fa:5c:f2: f2:99:d7:d8:5f:e1:cd:a3:b5:a2:bc:74:be:ac:11:58:9a:7f: 74:26:cb:4e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKEI3NjY3NTA1QkIyMDQyRTcyQjYyQUUwNUJFMkQxQTNC NDFCNEQyMzUwHhcNMjMxMDAyMTY1NDAxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZjVhOC03ZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlJiPOv+xwvJ4WLREUNZp9dSzAyj3UnX7/bFeSN3R0lBKs6SB8gWUGsEzRyS u5m7pA4bf0DEvWPbnD3We8JTz/A5NweXGNWqgtO2Jkd9m8r9N9hkgBV/sZsDs05E qulqXvzi3srMZ3SnNP5YbTmetJvOb3co9x0DOckhZSVEHe3/1kdFTW5LGO05jEaK MrtKPuY9ReIMcJX+0y8DcdDFSa+BGy2I3mmUxQZMbGje5A7wSn0KiVSKmyZ8Pe0K BcPwUAPp7JDx0mnp62eePgwTiMMzw2PZ9Nm3Pde5NJlzbSmryYo/kpa/cdo1wC+B TUrN+rUjz67cSlmz6HNcQVaIMwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFH9UMzsa 6F5mkMbVnnXMydl0YTEAMB8GA1UdIwQYMBaAFLdmdQW7IELnK2KuBb4tGjtBtNI1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi90MloxQmJzZ1F1Y3JZcTRGdmkwYU8wRzAw alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QyWjFCYnNnUXVjcllxNEZ2aTBhTzBHMDBqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDM0IvNkIzN0UxOUM4NDE3MTFFNzg1RjE3MDgwQzRGOUFFMDIvMTg2M0U3MUVF ODY1MTFFRDlCM0UzMjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAmdufAMEAGdufjANBAIAAjAHAwUAJAGoQDANBgkqhkiG 9w0BAQsFAAOCAQEACQVJmzgXOZmjkPVT6EIs3IdhVHd2YyMSJEwll9AcKhb7uQTe pk3jO9+scZQwev82rEgS/iYkwQlwPqBnJ9QM3fARv2pUeQlNeE7/856To4G++EyZ Ki+c/kVHvj0HKc62rZ+xTE9vNS7z/9ZgIHBSHprQH1DOBHJs7iteoXsTZzuz4ZOB KZmoVyUySVAKKQCeCNSIvvEWAWiwYp6/jWjaVV/yHw06At7dplw75Bn897fBDt47 3GyVzMbgwMZj7qAhmIrYJVaoR8MHKz0dDYmK6ApURjNDTDT9dF5ghNtFJ4pxJp7j RJ4r+lzy8pnX2F/hzaO1orx0vqwRWJp/dCbLTg== -----END CERTIFICATE-----Generated at Thu May 16 18:26:10 2024 by rpki-client on console-fra.rpki-client.org