$ rpki-client -vvf rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/51F4389061F911EE8421531BC4F9AE02.roa File: 51F4389061F911EE8421531BC4F9AE02.roa (raw, json) Hash identifier: ElcRY+S+6W0DsXuDNCrFH+TYlEEUjp7N4csWW7ZwkFU= Subject key identifier: 6D:7B:A1:1E:85:D1:D3:6D:B0:01:FC:15:F2:2B:20:32:1F:53:FC:A1 Certificate issuer: /CN=A91F38FD/serialNumber=9CB5CA8072E269CE0555A600B217920EB9E1AC4F Certificate serial: 39 Authority key identifier: 9C:B5:CA:80:72:E2:69:CE:05:55:A6:00:B2:17:92:0E:B9:E1:AC:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLXKgHLiac4FVaYAsheSDrnhrE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/51F4389061F911EE8421531BC4F9AE02.roa Signing time: Thu 04 Jan 2024 13:33:09 +0000 ROA not before: Thu 04 Jan 2024 13:33:09 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151837 IP address blocks: 103.240.4.0/23 maxlen: 23 103.240.4.0/24 maxlen: 24 103.240.5.0/24 maxlen: 24 2401:72e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/nLXKgHLiac4FVaYAsheSDrnhrE8.crl rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/nLXKgHLiac4FVaYAsheSDrnhrE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLXKgHLiac4FVaYAsheSDrnhrE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 06:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F38FD/serialNumber=9CB5CA8072E269CE0555A600B217920EB9E1AC4F Validity Not Before: Jan 4 13:33:09 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6596b395-7ece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a5:4a:9f:13:8b:94:51:dd:5e:24:1e:c9:56: 94:a8:b6:88:3c:18:a6:e6:08:44:0b:1c:01:a6:07: b5:4d:47:95:d3:99:e6:23:b4:3e:c5:0f:ec:1d:fc: 1a:3a:b2:74:74:a1:c0:4c:86:0d:7a:19:f9:6c:98: 79:a9:9c:53:f4:52:f8:14:3f:88:52:f6:24:7e:96: 08:66:33:2c:b0:39:f1:4c:c4:94:9a:f5:09:f3:ca: 6e:6c:af:15:c4:c8:44:21:ec:cd:92:2c:56:3c:0b: ab:99:61:a7:b0:14:e0:12:90:3e:87:88:f0:b8:a0: 61:a4:a2:4a:a9:87:4e:35:f8:e9:15:7e:1b:58:87: 7d:6d:6e:74:6e:0a:d2:2d:0f:4d:17:14:82:f7:1c: 6f:06:ad:2f:0e:df:c7:eb:99:24:f8:35:94:fb:6d: 3e:7b:77:cf:1d:1f:77:3f:f0:f5:f5:a0:fe:b5:79: 36:b6:58:b1:07:da:fa:8c:d7:dc:f6:57:43:97:da: 41:b3:bc:73:29:59:b0:27:05:9b:70:98:00:e7:20: 1a:dc:2d:42:ba:12:b9:4d:23:df:bc:df:56:46:1e: 42:ff:4e:36:da:e7:a3:7e:b2:39:59:4b:76:b9:03: 34:bc:df:ea:ce:fa:6e:c1:a6:d0:a9:2c:f0:73:14: d2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:7B:A1:1E:85:D1:D3:6D:B0:01:FC:15:F2:2B:20:32:1F:53:FC:A1 X509v3 Authority Key Identifier: keyid:9C:B5:CA:80:72:E2:69:CE:05:55:A6:00:B2:17:92:0E:B9:E1:AC:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/nLXKgHLiac4FVaYAsheSDrnhrE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLXKgHLiac4FVaYAsheSDrnhrE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/51F4389061F911EE8421531BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.4.0/23 IPv6: 2401:72e0::/32 Signature Algorithm: sha256WithRSAEncryption 5c:c5:a1:fa:3c:31:c8:84:e2:71:16:b6:17:5a:ff:bd:3f:b1: 81:9b:61:7b:a5:08:3b:3f:95:2a:e4:ee:b3:88:35:99:ca:70: c7:ab:9b:27:d7:c5:44:f6:48:e2:52:72:a5:21:7a:60:39:e6: 9b:ae:9b:b7:6b:6e:f2:73:e8:ec:9f:a7:9f:8e:b0:f5:fd:2d: e0:c9:2f:a6:22:94:54:05:4f:78:cc:26:59:b9:63:94:30:c6: 22:c9:27:51:76:06:0b:45:c6:cd:5a:ef:58:c8:14:20:86:92: e8:41:d0:0c:91:42:0c:ee:69:dd:39:2b:bf:a2:af:bb:df:0a: 83:fe:04:07:eb:6a:68:7e:01:4c:98:02:39:db:84:e4:3e:a1: 12:a3:f3:14:af:c2:9b:32:06:4b:5b:e9:2c:e2:52:a8:20:3c: 54:85:69:66:e6:b4:f4:5c:62:3b:2f:a0:9d:1e:7e:57:29:b0: 85:90:ba:a3:97:e6:5b:f1:a6:3a:a4:a8:09:be:f4:6c:c0:89: 29:77:1f:ad:94:4d:fd:60:62:42:a2:2a:38:d6:0d:f8:f3:16: 8c:e6:1f:5e:f3:35:9d:6f:d7:0e:79:69:cb:c9:db:30:15:82: 05:c6:b3:12:f9:01:83:2d:e5:5b:e6:23:f4:b4:1a:bf:b8:12: 44:a4:bd:ba -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzhGRDExMC8GA1UEBRMoOUNCNUNBODA3MkUyNjlDRTA1NTVBNjAwQjIxNzkyMEVC OUUxQUM0RjAeFw0yNDAxMDQxMzMzMDlaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTZiMzk1LTdlY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKpUqfE4uUUd1eJB7JVpSotog8GKbmCEQLHAGmB7VNR5XTmeYjtD7FD+wd/Bo6 snR0ocBMhg16GflsmHmpnFP0UvgUP4hS9iR+lghmMyywOfFMxJSa9Qnzym5srxXE yEQh7M2SLFY8C6uZYaewFOASkD6HiPC4oGGkokqph041+OkVfhtYh31tbnRuCtIt D00XFIL3HG8GrS8O38frmST4NZT7bT57d88dH3c/8PX1oP61eTa2WLEH2vqM19z2 V0OX2kGzvHMpWbAnBZtwmADnIBrcLUK6ErlNI9+831ZGHkL/Tjba56N+sjlZS3a5 AzS83+rO+m7BptCpLPBzFNJRAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUbXuhHoXR 022wAfwV8isgMh9T/KEwHwYDVR0jBBgwFoAUnLXKgHLiac4FVaYAsheSDrnhrE8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzOEZEL0E1QTZGMzdBNjFG ODExRUU5Rjc5NDAxQUM0RjlBRTAyL25MWEtnSExpYWM0RlZhWUFzaGVTRHJuaHJF OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbkxYS2dITGlhYzRGVmFZQXNoZVNEcm5ockU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzhGRC9BNUE2RjM3QTYxRjgxMUVFOUY3OTQwMUFDNEY5QUUwMi81MUY0Mzg5MDYx RjkxMUVFODQyMTUzMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWfwBDANBAIAAjAHAwUAJAFy4DANBgkqhkiG9w0BAQsFAAOC AQEAXMWh+jwxyITicRa2F1r/vT+xgZthe6UIOz+VKuTus4g1mcpwx6ubJ9fFRPZI 4lJypSF6YDnmm66bt2tu8nPo7J+nn46w9f0t4MkvpiKUVAVPeMwmWbljlDDGIskn UXYGC0XGzVrvWMgUIIaS6EHQDJFCDO5p3Tkrv6Kvu98Kg/4EB+tqaH4BTJgCOduE 5D6hEqPzFK/CmzIGS1vpLOJSqCA8VIVpZua09FxiOy+gnR5+VymwhZC6o5fmW/Gm OqSoCb70bMCJKXcfrZRN/WBiQqIqONYN+PMWjOYfXvM1nW/XDnlpy8nbMBWCBcaz EvkBgy3lW+Yj9LQav7gSRKS9ug== -----END CERTIFICATE-----Generated at Wed May 29 09:16:50 2024 by rpki-client on console-fra.rpki-client.org