$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/1EEB10267CFB11EBA8C7B009C4F9AE02.roa File: 1EEB10267CFB11EBA8C7B009C4F9AE02.roa (raw, json) Hash identifier: a/MoRoBo0aOxnaGvmYiSBL3O+4s2Cj39IafwaUYXkUc= Subject key identifier: B2:B9:9A:4B:DA:5E:04:E1:A1:B9:3A:5D:00:C2:E9:69:73:05:B7:7C Certificate issuer: /CN=A91F5CE4/serialNumber=9B202F95851EFC4B64CE3B409C6C604B35B498D8 Certificate serial: 0871 Authority key identifier: 9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/1EEB10267CFB11EBA8C7B009C4F9AE02.roa Signing time: Wed 30 Aug 2023 21:08:41 +0000 ROA not before: Wed 30 Aug 2023 21:08:41 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 3170 IP address blocks: 103.141.24.0/23 maxlen: 24 2001:df0:e780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.crl rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5CE4/serialNumber=9B202F95851EFC4B64CE3B409C6C604B35B498D8 Validity Not Before: Aug 30 21:08:41 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64efafd9-fe20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c0:c6:30:c8:23:c0:b1:c3:16:3e:af:bc:ab: ee:fe:2a:f1:e1:ab:1b:7f:8f:6a:2b:4e:b4:e5:92: b8:73:50:51:06:17:69:39:02:cd:f8:4e:88:84:f3: 8c:b9:93:da:f7:88:0e:6d:c0:14:3b:4c:29:ea:5f: 14:9c:6d:ac:d8:f2:bd:76:10:a1:c0:09:be:b0:ee: c8:09:d1:8a:79:f4:9e:a2:e9:61:bf:6e:28:f3:a0: fc:4a:18:ce:17:d0:57:41:d1:ba:e8:8d:72:0e:a5: c1:ba:cc:25:2c:50:a4:4f:58:95:08:b5:5d:e9:8e: 02:6d:08:90:78:f7:05:af:15:5f:0c:bb:c6:1d:70: 9d:b5:58:5e:ef:c5:0c:86:5e:5e:62:d8:e5:8e:fd: b3:48:2c:37:02:40:d2:41:86:cf:60:f6:84:0b:c0: 86:27:09:76:68:16:c5:d2:f3:45:0f:16:e9:9c:9e: d5:ae:9d:22:ff:d6:28:f4:df:ca:f9:50:55:54:22: 0d:fb:ea:84:e3:c7:40:5d:2f:cb:68:be:e4:ff:81: 8b:a0:56:85:c6:81:dd:21:51:69:a3:ad:1b:5a:3a: eb:4a:57:a7:88:47:c4:94:31:3e:36:ef:f5:3f:3c: fd:d1:de:a4:80:ab:57:b8:64:56:f1:4c:ef:6e:ca: fc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B9:9A:4B:DA:5E:04:E1:A1:B9:3A:5D:00:C2:E9:69:73:05:B7:7C X509v3 Authority Key Identifier: keyid:9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/1EEB10267CFB11EBA8C7B009C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.24.0/23 IPv6: 2001:df0:e780::/48 Signature Algorithm: sha256WithRSAEncryption 9a:f5:10:95:b5:2d:75:fd:a6:1b:60:33:ed:c7:f0:81:74:4f: de:33:e1:b0:46:ad:f6:3c:00:b7:9d:c1:e3:df:27:82:51:cc: 82:59:c9:82:ac:44:13:38:e0:97:f6:a5:b5:a5:df:1e:68:63: a8:45:9e:6e:a5:7d:6e:01:cb:59:a1:86:3a:37:73:bf:69:69: 81:96:2e:b9:8f:61:81:0d:78:ac:b9:0a:61:78:a9:04:7b:68: 23:78:8a:60:4c:4a:8b:bb:82:c8:9c:5a:22:66:69:dd:6b:30: 04:47:d6:b7:f0:51:74:9b:1d:e0:d4:3f:9a:cf:72:f2:7d:0e: ad:76:0e:73:8c:61:53:d0:de:cb:66:d4:a2:dd:30:91:fd:f6: 5d:a8:5a:f2:fa:30:7d:8b:90:f2:a7:0c:37:be:22:57:4c:ef: 2b:25:52:55:63:00:05:e5:9c:df:fc:74:28:0c:35:c6:f9:f4: 54:7c:18:d0:e0:4e:f3:3a:f6:07:cc:d0:4e:43:9c:01:ba:9f: 24:26:28:8d:8f:c1:11:f2:a5:ce:e3:20:8b:99:77:c6:ca:1a: f8:60:63:2a:ff:a0:94:62:b9:ae:23:23:5b:2c:7b:80:97:16: 24:04:9a:c6:de:47:d2:35:09:cc:7c:89:2d:56:f6:24:17:26: 3c:82:44:7e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDRTQxMTAvBgNVBAUTKDlCMjAyRjk1ODUxRUZDNEI2NENFM0I0MDlDNkM2MDRC MzVCNDk4RDgwHhcNMjMwODMwMjEwODQxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVmYWZkOS1mZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8MDGMMgjwLHDFj6vvKvu/irx4asbf49qK0605ZK4c1BRBhdpOQLN+E6IhPOM uZPa94gObcAUO0wp6l8UnG2s2PK9dhChwAm+sO7ICdGKefSeoulhv24o86D8ShjO F9BXQdG66I1yDqXBuswlLFCkT1iVCLVd6Y4CbQiQePcFrxVfDLvGHXCdtVhe78UM hl5eYtjljv2zSCw3AkDSQYbPYPaEC8CGJwl2aBbF0vNFDxbpnJ7Vrp0i/9Yo9N/K +VBVVCIN++qE48dAXS/LaL7k/4GLoFaFxoHdIVFpo60bWjrrSleniEfElDE+Nu/1 Pzz90d6kgKtXuGRW8Uzvbsr8bwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLK5mkva XgThobk6XQDC6WlzBbd8MB8GA1UdIwQYMBaAFJsgL5WFHvxLZM47QJxsYEs1tJjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUNFNC8zRUZGMUE5QTg2 MzYxMUVBQUU2QjExNDJDNEY5QUUwMi9teUF2bFlVZV9FdGt6anRBbkd4Z1N6VzBt TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL215QXZsWVVlX0V0a3pqdEFuR3hnU3pXMG1OZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjVDRTQvM0VGRjFBOUE4NjM2MTFFQUFFNkIxMTQyQzRGOUFFMDIvMUVFQjEwMjY3 Q0ZCMTFFQkE4QzdCMDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjRgwDwQCAAIwCQMHACABDfDngDANBgkqhkiG9w0BAQsF AAOCAQEAmvUQlbUtdf2mG2Az7cfwgXRP3jPhsEat9jwAt53B498nglHMglnJgqxE Ezjgl/altaXfHmhjqEWebqV9bgHLWaGGOjdzv2lpgZYuuY9hgQ14rLkKYXipBHto I3iKYExKi7uCyJxaImZp3WswBEfWt/BRdJsd4NQ/ms9y8n0OrXYOc4xhU9Dey2bU ot0wkf32Xaha8vowfYuQ8qcMN74iV0zvKyVSVWMABeWc3/x0KAw1xvn0VHwY0OBO 8zr2B8zQTkOcAbqfJCYojY/BEfKlzuMgi5l3xsoa+GBjKv+glGK5riMjWyx7gJcW JASaxt5H0jUJzHyJLVb2JBcmPIJEfg== -----END CERTIFICATE-----Generated at Mon May 6 23:05:52 2024 by rpki-client on console-fra.rpki-client.org