$ rpki-client -vvf rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/E0A69DBC2AB311EE9CA5E515C4F9AE02.roa File: E0A69DBC2AB311EE9CA5E515C4F9AE02.roa (raw, json) Hash identifier: Q1Ci8XSusOlbJiaQgnsA9zwbSmyc3pDAXKY43VYpnTI= Subject key identifier: 52:E3:66:A0:50:0F:86:4D:3C:33:B8:1D:12:A3:28:DF:B0:04:A6:47 Certificate issuer: /CN=A91F05B5/serialNumber=095F6C6BB387C6932FDA01C0BFA626F6AAC7BB00 Certificate serial: 57 Authority key identifier: 09:5F:6C:6B:B3:87:C6:93:2F:DA:01:C0:BF:A6:26:F6:AA:C7:BB:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/E0A69DBC2AB311EE9CA5E515C4F9AE02.roa Signing time: Fri 29 Dec 2023 06:07:35 +0000 ROA not before: Fri 29 Dec 2023 06:07:35 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 131267 IP address blocks: 103.1.28.0/22 maxlen: 24 183.182.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.crl rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F05B5/serialNumber=095F6C6BB387C6932FDA01C0BFA626F6AAC7BB00 Validity Not Before: Dec 29 06:07:35 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658e6227-4144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f6:9a:bb:4a:91:38:87:d2:c5:2c:a2:c3:0c: a3:dd:94:6b:93:ad:d1:f7:53:2e:2b:ef:7a:51:d1: 13:28:68:f9:3d:17:7b:dc:eb:a2:93:ee:35:59:4a: 67:1f:6c:8b:43:75:86:0d:0f:cb:7b:88:d8:8a:99: 4c:90:21:cd:63:83:9f:55:d5:85:74:14:2e:2e:73: 8d:3e:b8:7b:7a:14:ed:73:37:7e:43:98:53:71:82: ba:ff:ab:88:c0:66:22:f6:c1:a4:55:ae:88:5e:23: 12:d2:07:7f:b4:af:31:f9:40:67:50:67:47:4c:90: 11:5d:ae:db:0b:f5:42:05:a6:73:bf:4d:be:30:8c: e6:f8:a2:a6:ff:80:6b:c9:cf:81:56:2d:e2:32:a0: a7:17:33:23:0d:5b:70:e1:41:18:93:27:f4:41:de: c6:43:3e:a3:46:cc:4a:a3:9f:b9:fb:91:b1:28:63: 93:69:d2:6d:00:71:b9:b9:5a:fc:07:a7:96:8a:8f: 59:49:d9:0b:e6:56:2d:1a:93:36:3d:03:8d:b1:2a: b8:cf:fa:95:e8:81:0a:ea:76:1b:9e:95:cd:cf:71: 95:f3:11:a9:b9:72:7e:4c:79:fe:4a:44:ca:94:17: d3:f5:44:8f:04:56:e5:e5:6e:1d:34:b6:29:5b:bb: 91:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E3:66:A0:50:0F:86:4D:3C:33:B8:1D:12:A3:28:DF:B0:04:A6:47 X509v3 Authority Key Identifier: keyid:09:5F:6C:6B:B3:87:C6:93:2F:DA:01:C0:BF:A6:26:F6:AA:C7:BB:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/E0A69DBC2AB311EE9CA5E515C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.28.0/22 183.182.96.0/19 Signature Algorithm: sha256WithRSAEncryption 7f:52:ed:17:fa:9a:eb:e8:60:11:58:a7:15:3d:fe:ea:25:97: b7:f5:7a:2c:f0:32:8a:b0:02:be:59:dc:d7:dd:f0:0c:ef:03: f2:35:b2:eb:e8:97:df:0f:81:85:bb:fb:91:6d:28:b4:01:f0: 2e:3f:5a:78:9b:70:9e:a7:3c:0d:59:ad:1d:0b:6e:22:17:47: b2:b3:05:35:2f:c6:da:36:b2:c5:e3:e9:3d:04:d8:5a:8a:f1: da:d3:4e:ed:b9:bc:b8:73:d2:6e:13:77:a0:67:81:0a:11:50: 29:61:8e:36:59:b2:54:0f:a6:4d:83:a3:f5:36:5a:db:dc:35: c6:8d:7b:6e:cf:6b:35:66:c3:59:b8:7a:c4:00:c0:21:f3:cb: f9:47:68:50:28:20:c3:b3:2b:1c:d3:fe:e6:68:a1:aa:06:1b: e3:a8:09:0e:a2:bf:7c:ce:f7:bb:fd:8c:0d:f1:3c:c3:fc:21: 17:27:1d:6a:4d:60:44:c8:7b:79:f7:dd:4a:2e:25:c1:a8:56: c3:5b:f0:72:60:1c:a7:ee:49:43:f3:15:2c:ca:2d:d6:73:83: 2a:52:af:f4:4c:dc:9a:07:83:2b:5b:e9:c0:ff:65:be:6f:48: 35:ca:35:a9:c4:f8:64:f7:3a:43:47:ac:9b:33:f0:c2:c8:d9: 72:11:ba:a0 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDVCNTExMC8GA1UEBRMoMDk1RjZDNkJCMzg3QzY5MzJGREEwMUMwQkZBNjI2RjZB QUM3QkIwMDAeFw0yMzEyMjkwNjA3MzVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OGU2MjI3LTQxNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCi9pq7SpE4h9LFLKLDDKPdlGuTrdH3Uy4r73pR0RMoaPk9F3vc66KT7jVZSmcf bItDdYYND8t7iNiKmUyQIc1jg59V1YV0FC4uc40+uHt6FO1zN35DmFNxgrr/q4jA ZiL2waRVroheIxLSB3+0rzH5QGdQZ0dMkBFdrtsL9UIFpnO/Tb4wjOb4oqb/gGvJ z4FWLeIyoKcXMyMNW3DhQRiTJ/RB3sZDPqNGzEqjn7n7kbEoY5Np0m0Acbm5WvwH p5aKj1lJ2QvmVi0akzY9A42xKrjP+pXogQrqdhuelc3PcZXzEam5cn5Mef5KRMqU F9P1RI8EVuXlbh00tilbu5FtAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUUuNmoFAP hk08M7gdEqMo37AEpkcwHwYDVR0jBBgwFoAUCV9sa7OHxpMv2gHAv6Ym9qrHuwAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwNUI1LzQ3NTAxMjA2MkFC MzExRUU4RkFFNzIxNEM0RjlBRTAyL0NWOXNhN09IeHBNdjJnSEF2NlltOXFySHV3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ1Y5c2E3T0h4cE12MmdIQXY2WW05cXJIdXdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDVCNS80NzUwMTIwNjJBQjMxMUVFOEZBRTcyMTRDNEY5QUUwMi9FMEE2OURCQzJB QjMxMUVFOUNBNUU1MTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmcBHAMEBbe2YDANBgkqhkiG9w0BAQsFAAOCAQEAf1LtF/qa 6+hgEVinFT3+6iWXt/V6LPAyirACvlnc193wDO8D8jWy6+iX3w+Bhbv7kW0otAHw Lj9aeJtwnqc8DVmtHQtuIhdHsrMFNS/G2jayxePpPQTYWorx2tNO7bm8uHPSbhN3 oGeBChFQKWGONlmyVA+mTYOj9TZa29w1xo17bs9rNWbDWbh6xADAIfPL+UdoUCgg w7MrHNP+5mihqgYb46gJDqK/fM73u/2MDfE8w/whFycdak1gRMh7effdSi4lwahW w1vwcmAcp+5JQ/MVLMot1nODKlKv9EzcmgeDK1vpwP9lvm9INco1qcT4ZPc6Q0es mzPwwsjZchG6oA== -----END CERTIFICATE-----Generated at Wed May 1 07:55:43 2024 by rpki-client on console-fra.rpki-client.org