$ rpki-client -vvf rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/6F882FB01D5211EE94C36C2FC4F9AE02.roa File: 6F882FB01D5211EE94C36C2FC4F9AE02.roa (raw, json) Hash identifier: eVRamCS2GWg+zFHWDNnLhbWa2ki2R6hG/Wn4oBAaQI4= Subject key identifier: F1:4D:67:F0:84:98:19:71:69:21:B4:AF:4D:A8:7A:64:3F:88:7E:35 Certificate issuer: /CN=A91F716F/serialNumber=DF0F1CE8F68C071143670E251EBB763BDB49BFD6 Certificate serial: 7F Authority key identifier: DF:0F:1C:E8:F6:8C:07:11:43:67:0E:25:1E:BB:76:3B:DB:49:BF:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/6F882FB01D5211EE94C36C2FC4F9AE02.roa Signing time: Thu 29 Feb 2024 08:48:46 +0000 ROA not before: Thu 29 Feb 2024 08:48:46 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151474 IP address blocks: 103.229.254.0/23 maxlen: 23 103.229.254.0/24 maxlen: 24 103.229.255.0/24 maxlen: 24 2001:df2:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.crl rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F716F/serialNumber=DF0F1CE8F68C071143670E251EBB763BDB49BFD6 Validity Not Before: Feb 29 08:48:46 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65e044ee-2a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6d:ab:6f:8e:c3:55:77:a6:b2:63:5e:2f:f8: 88:dd:84:45:ab:67:09:4e:73:36:db:5b:87:99:e4: 10:71:a1:63:7d:0a:5c:19:d1:13:ac:05:2a:1c:f1: 6d:28:fb:f0:06:e4:a2:6b:e8:0a:e9:14:a5:37:af: e3:e1:a3:93:f3:8c:43:f2:dd:05:82:79:33:5b:fb: 5c:31:26:c3:50:05:ca:1a:88:2b:eb:6b:7c:5a:8b: 42:84:a2:1a:22:6d:d9:8c:cc:9f:fe:60:48:27:f4: 60:57:f5:2f:01:07:1b:08:72:3d:d7:61:d4:71:58: 0a:f2:de:ef:b4:e0:70:81:4b:4f:cc:4b:6c:31:d0: 30:99:32:6a:14:65:60:22:87:21:c8:6b:f6:39:73: 24:81:b1:a8:58:bc:2b:37:60:39:46:83:52:b5:99: b9:c0:9a:c5:4f:8a:4c:3d:2e:34:e8:87:6d:6a:2e: 12:4d:a1:41:9b:13:b9:7e:7e:61:5d:41:75:bb:c1: bb:1e:fd:31:6a:14:99:e1:7d:3f:ea:ad:87:8c:f1: 6c:ab:a0:7d:a4:07:02:ea:1c:65:9f:9c:78:bf:90: 0f:fc:74:20:1b:62:c3:d1:0e:7b:f4:39:e3:ce:54: 7a:01:4a:95:60:d7:6a:f4:ca:43:a7:29:59:05:3e: 17:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4D:67:F0:84:98:19:71:69:21:B4:AF:4D:A8:7A:64:3F:88:7E:35 X509v3 Authority Key Identifier: keyid:DF:0F:1C:E8:F6:8C:07:11:43:67:0E:25:1E:BB:76:3B:DB:49:BF:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3w8c6PaMBxFDZw4lHrt2O9tJv9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F716F/15E4DDC01D5011EE917D9C2EC4F9AE02/6F882FB01D5211EE94C36C2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.254.0/23 IPv6: 2001:df2:a040::/48 Signature Algorithm: sha256WithRSAEncryption 48:dd:6c:25:cd:f3:ea:a6:ca:75:84:b6:4d:98:9f:3d:e5:b0: 8c:e7:23:d7:cd:aa:f6:4d:7d:32:e6:ed:9e:5c:d1:a8:e5:62: fc:26:7c:97:78:2d:91:63:a2:00:1d:bf:52:6d:f5:fc:45:d7: fe:bd:8d:87:d5:79:e7:36:ff:fb:41:da:3d:09:82:3f:82:c1: a2:04:c4:cd:ff:c1:2c:cb:7f:ad:2e:a0:7a:40:11:e0:46:d5: 57:c1:02:99:d6:1b:2a:19:e0:17:d6:21:33:97:e0:65:77:81: 2e:de:d6:59:fe:a4:08:cf:eb:da:ab:90:f1:75:7c:b2:ba:c2: bf:f4:8b:57:a4:d6:12:54:a4:b6:af:14:81:c3:a9:e3:aa:50: 23:d9:d1:f9:5b:ae:da:f7:7f:e9:0c:7e:24:fa:fe:b2:ec:75: 20:45:c1:10:fe:1e:c1:34:8e:60:18:2f:d0:1c:5e:bc:f5:f3: fb:93:ac:9e:b2:05:aa:4b:38:56:52:28:77:f5:4d:59:d8:67: 4d:8a:8c:ae:13:c4:8b:74:2e:dd:b6:f7:4e:12:e4:2b:e5:d2: 25:b2:00:30:b6:bc:38:be:31:c6:68:09:55:ad:2d:bb:20:9b: 85:af:95:f2:d9:c9:59:f4:b3:bd:e2:fc:dc:e4:79:69:5e:1d: 40:03:bc:9b -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzE2RjExMC8GA1UEBRMoREYwRjFDRThGNjhDMDcxMTQzNjcwRTI1MUVCQjc2M0JE QjQ5QkZENjAeFw0yNDAyMjkwODQ4NDZaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTA0NGVlLTJhODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqbatvjsNVd6ayY14v+IjdhEWrZwlOczbbW4eZ5BBxoWN9ClwZ0ROsBSoc8W0o +/AG5KJr6ArpFKU3r+Pho5PzjEPy3QWCeTNb+1wxJsNQBcoaiCvra3xai0KEohoi bdmMzJ/+YEgn9GBX9S8BBxsIcj3XYdRxWAry3u+04HCBS0/MS2wx0DCZMmoUZWAi hyHIa/Y5cySBsahYvCs3YDlGg1K1mbnAmsVPikw9LjToh21qLhJNoUGbE7l+fmFd QXW7wbse/TFqFJnhfT/qrYeM8WyroH2kBwLqHGWfnHi/kA/8dCAbYsPRDnv0OePO VHoBSpVg12r0ykOnKVkFPhcNAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU8U1n8ISY GXFpIbSvTah6ZD+IfjUwHwYDVR0jBBgwFoAU3w8c6PaMBxFDZw4lHrt2O9tJv9Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3MTZGLzE1RTREREMwMUQ1 MDExRUU5MTdEOUMyRUM0RjlBRTAyLzN3OGM2UGFNQnhGRFp3NGxIcnQyTzl0SnY5 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3c4YzZQYU1CeEZEWnc0bEhydDJPOXRKdjlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzE2Ri8xNUU0RERDMDFENTAxMUVFOTE3RDlDMkVDNEY5QUUwMi82Rjg4MkZCMDFE NTIxMUVFOTRDMzZDMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfl/jAPBAIAAjAJAwcAIAEN8qBAMA0GCSqGSIb3DQEBCwUA A4IBAQBI3WwlzfPqpsp1hLZNmJ895bCM5yPXzar2TX0y5u2eXNGo5WL8JnyXeC2R Y6IAHb9SbfX8Rdf+vY2H1XnnNv/7Qdo9CYI/gsGiBMTN/8Esy3+tLqB6QBHgRtVX wQKZ1hsqGeAX1iEzl+Bld4Eu3tZZ/qQIz+vaq5DxdXyyusK/9ItXpNYSVKS2rxSB w6njqlAj2dH5W67a93/pDH4k+v6y7HUgRcEQ/h7BNI5gGC/QHF689fP7k6yesgWq SzhWUih39U1Z2GdNioyuE8SLdC7dtvdOEuQr5dIlsgAwtrw4vjHGaAlVrS27IJuF r5Xy2clZ9LO94vzc5HlpXh1AA7yb -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:36 2024 by rpki-client on console-ams.rpki-client.org