$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/E2DF828CF20211ECBCC9B986C4F9AE02.roa File: E2DF828CF20211ECBCC9B986C4F9AE02.roa (raw, json) Hash identifier: zYNwfSTLxxDuy8isKqJ7XOuhPSc7RcdJ6OAUOyFxCM8= Subject key identifier: 52:54:5D:CF:7D:6E:34:D4:08:7C:C9:91:4B:4B:7C:6E:54:A3:73:1F Certificate issuer: /CN=A91F6AE0/serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Certificate serial: 0157 Authority key identifier: E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/E2DF828CF20211ECBCC9B986C4F9AE02.roa Signing time: Thu 15 Jun 2023 04:43:02 +0000 ROA not before: Thu 15 Jun 2023 04:43:02 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 149983 IP address blocks: 103.189.246.0/23 maxlen: 23 103.189.246.0/24 maxlen: 24 103.189.247.0/24 maxlen: 24 2001:df0:dfc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:18:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6AE0/serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Validity Not Before: Jun 15 04:43:02 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=648a96d5-bca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a5:9f:b8:9c:51:40:61:22:74:c5:35:69:c2: 88:cd:8c:13:1d:97:56:d3:12:0d:88:54:38:8b:b2: 78:5e:c4:0c:81:56:a5:36:32:ab:56:5e:a1:53:34: cf:3f:38:7c:af:57:51:dd:23:d1:89:61:07:ef:8a: c6:7e:03:c6:ce:f0:a7:36:16:41:39:fa:a0:ab:91: dc:a5:0b:c4:d1:60:0e:43:94:3e:d9:67:3c:e4:71: c0:f4:41:38:bc:5d:b5:73:54:bf:53:e1:ae:d7:6c: 91:6d:7e:be:b2:3f:08:81:93:fe:64:60:e4:de:90: 4d:df:f9:9f:a4:31:29:ef:96:78:3c:7c:0e:eb:72: f2:01:c8:92:3f:b2:11:dc:fc:b6:3c:74:bf:b2:14: ae:15:81:78:2d:65:30:ad:cd:73:38:27:ec:4d:79: 00:a6:ac:76:91:14:ad:93:6a:46:f5:a3:5a:f6:90: 1d:99:f2:44:88:a1:d5:b9:bd:9e:38:ce:1a:fc:b3: 1c:ef:7d:17:d8:32:06:00:ae:99:17:f8:03:ce:c2: e9:85:f3:1f:b6:07:cc:ee:fb:04:d2:ea:30:4f:5c: b1:12:79:8c:4a:ce:1a:1b:b4:a4:e3:83:4c:4a:df: 94:20:35:3b:50:9c:f5:6e:c9:e5:10:b6:00:41:c7: a9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:54:5D:CF:7D:6E:34:D4:08:7C:C9:91:4B:4B:7C:6E:54:A3:73:1F X509v3 Authority Key Identifier: keyid:E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/E2DF828CF20211ECBCC9B986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.246.0/23 IPv6: 2001:df0:dfc0::/48 Signature Algorithm: sha256WithRSAEncryption 00:42:e6:e2:d9:e5:a9:98:01:dc:15:41:1c:2b:23:a2:08:98: 23:51:11:34:7d:2b:b9:4a:30:d2:aa:f0:e2:07:97:59:e3:6d: 87:0a:b5:9d:52:24:cd:61:8d:05:d0:44:f5:4a:53:fd:28:3d: 20:88:b9:26:03:df:05:fa:5a:22:d7:ab:4d:a4:f7:0e:9d:f3: 12:9b:36:f1:1e:05:a4:70:eb:08:8c:7e:ab:2b:5f:43:54:e1: b8:19:12:1d:a7:96:b8:13:28:cf:5d:b7:e0:47:b4:52:b7:2e: 64:66:1e:86:9d:26:1b:5e:3b:2a:21:57:71:12:cc:29:0e:8f: 1d:9a:4d:e9:5b:9d:84:dd:5a:75:92:31:71:82:e6:e7:01:33: c1:52:31:34:63:00:1e:5b:d8:54:97:76:89:d7:e5:4d:8a:42: 06:18:5b:1a:8e:8f:7a:be:f1:6f:67:e9:7a:0e:36:12:56:b2: bb:fc:61:55:b6:f2:ae:b4:86:36:4a:e9:4a:30:0d:c0:61:29: 07:04:4f:47:85:ea:aa:92:98:4b:7b:2e:ca:10:ea:7a:8f:8b: eb:ef:5e:61:9d:6f:2c:5b:3a:f3:2c:23:87:e6:66:f0:8b:6c: 21:79:a7:58:3f:c0:ae:d7:4e:52:73:5b:59:bc:ff:a2:52:0e: b6:43:fc:d7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBRTAxMTAvBgNVBAUTKEUxNDg5RTA1NDU2RTkyQ0FENzE1ODQ3MjAwRTRBNzVE NkMzRTQzQ0UwHhcNMjMwNjE1MDQ0MzAyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhhOTZkNS1iY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76WfuJxRQGEidMU1acKIzYwTHZdW0xINiFQ4i7J4XsQMgValNjKrVl6hUzTP Pzh8r1dR3SPRiWEH74rGfgPGzvCnNhZBOfqgq5HcpQvE0WAOQ5Q+2Wc85HHA9EE4 vF21c1S/U+Gu12yRbX6+sj8IgZP+ZGDk3pBN3/mfpDEp75Z4PHwO63LyAciSP7IR 3Py2PHS/shSuFYF4LWUwrc1zOCfsTXkApqx2kRStk2pG9aNa9pAdmfJEiKHVub2e OM4a/LMc730X2DIGAK6ZF/gDzsLphfMftgfM7vsE0uowT1yxEnmMSs4aG7Sk44NM St+UIDU7UJz1bsnlELYAQcepCwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFJUXc99 bjTUCHzJkUtLfG5Uo3MfMB8GA1UdIwQYMBaAFOFIngVFbpLK1xWEcgDkp11sPkPO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFFMC9GQTA0N0Y1NEYx RkMxMUVDOTlCMkNCNkJDNEY5QUUwMi80VWllQlVWdWtzclhGWVJ5QU9TblhXdy1R ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVaWVCVVZ1a3NyWEZZUnlBT1NuWFd3LVE4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZBRTAvRkEwNDdGNTRGMUZDMTFFQzk5QjJDQjZCQzRGOUFFMDIvRTJERjgyOENG MjAyMTFFQ0JDQzlCOTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnvfYwDwQCAAIwCQMHACABDfDfwDANBgkqhkiG9w0BAQsF AAOCAQEAAELm4tnlqZgB3BVBHCsjogiYI1ERNH0ruUow0qrw4geXWeNthwq1nVIk zWGNBdBE9UpT/Sg9IIi5JgPfBfpaIterTaT3Dp3zEps28R4FpHDrCIx+qytfQ1Th uBkSHaeWuBMoz1234Ee0UrcuZGYehp0mG147KiFXcRLMKQ6PHZpN6VudhN1adZIx cYLm5wEzwVIxNGMAHlvYVJd2idflTYpCBhhbGo6Per7xb2fpeg42Elayu/xhVbby rrSGNkrpSjANwGEpBwRPR4XqqpKYS3suyhDqeo+L6+9eYZ1vLFs68ywjh+Zm8Its IXmnWD/ArtdOUnNbWbz/olIOtkP81w== -----END CERTIFICATE-----Generated at Fri May 17 06:18:12 2024 by rpki-client on console-fra.rpki-client.org