$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa File: 0EF4DA3A38D011EC936A8C4FC4F9AE02.roa (raw, json) Hash identifier: EL8qrYYkjLLsLn4vlWB8WNnpF1jgzXlPUP7HIco7dnU= Subject key identifier: 43:5F:AA:A6:24:13:52:8F:76:74:93:4C:C0:D0:F7:1B:D4:D5:27:6A Certificate issuer: /CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Certificate serial: 03FA Authority key identifier: BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa Signing time: Sun 27 Aug 2023 00:41:49 +0000 ROA not before: Sun 27 Aug 2023 00:41:49 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140499 IP address blocks: 103.169.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1018 (0x3fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Validity Not Before: Aug 27 00:41:49 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ea9bcd-8c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:69:aa:46:e2:55:c8:c1:4c:6c:49:8b:cc:4e: 70:41:19:e0:52:c8:fd:76:48:b5:72:a4:8b:36:32: d1:32:cc:ba:3b:c9:d2:bf:be:74:a9:c1:f7:3f:39: 15:e2:cb:49:50:d1:dc:08:0f:ac:d0:8d:7c:6d:59: c9:ce:c8:f0:f2:1d:ab:4e:a5:69:0d:98:f2:fb:da: 1f:24:fc:b7:79:de:ab:91:fd:0f:68:1c:17:2f:19: 6d:c8:0b:a6:c3:ac:2e:05:20:66:89:b1:1d:e9:21: ad:62:6d:32:7c:62:fb:f9:96:50:5d:55:84:12:eb: 3c:c5:c5:17:d9:37:37:e7:5e:4f:73:3f:fe:eb:28: 29:7e:e0:3e:88:30:07:e5:55:4f:05:32:4f:3f:89: 17:4e:55:b0:64:99:6e:5f:b6:2e:66:c8:d7:b7:a8: 74:7d:5b:8f:b6:54:ae:0f:77:be:89:8d:7f:89:06: 20:f7:c6:56:44:ec:17:28:04:59:f2:ee:f2:9d:0d: bf:66:c2:ba:9d:98:ea:c3:3b:72:69:28:30:3b:12: f0:e1:ec:9d:89:4b:13:67:22:6a:d4:f4:71:0f:5b: c9:15:6b:c6:91:18:34:03:0c:51:61:19:ba:fe:0e: d2:52:87:d6:73:6d:a0:a4:21:21:0f:ed:a7:f7:93: 16:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:5F:AA:A6:24:13:52:8F:76:74:93:4C:C0:D0:F7:1B:D4:D5:27:6A X509v3 Authority Key Identifier: keyid:BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.64.0/24 Signature Algorithm: sha256WithRSAEncryption b3:6f:57:ee:7b:0d:03:2c:1c:6f:cc:65:cd:3a:e2:4b:93:21: ad:88:75:fc:c5:03:78:b9:2c:77:0a:97:bc:87:26:c8:44:d0: 2c:2a:29:1d:98:eb:1e:bf:dd:92:18:51:86:b4:55:06:ee:9d: 87:5a:13:76:e4:4c:dc:8e:49:46:be:f2:bb:eb:b3:31:ca:71: 41:14:d5:f5:3a:7f:ff:ff:9f:38:ef:a3:0c:36:9b:e3:78:ba: 8c:bc:02:2a:9d:e0:81:da:5f:ed:56:f4:e6:a6:bf:7d:55:5f: b1:6e:d2:8e:dc:9d:be:8d:63:f1:a1:d0:35:b7:f4:22:14:52: 42:66:0a:b7:aa:3d:05:7a:3b:aa:20:0a:4a:d7:68:77:b7:65: f3:ba:12:84:3b:82:13:06:52:cd:1c:cd:cd:2f:26:80:f8:a9: ce:8e:e8:d0:d8:9e:86:27:d8:b8:79:08:2f:b0:68:ee:da:d9: 00:5b:43:a5:f7:bd:08:56:6e:83:78:53:99:f8:9c:8e:85:4d: 0d:95:e5:cb:9f:3a:03:88:c8:a5:22:2a:67:ac:22:27:c5:fa: 3f:73:fd:3b:f7:87:79:c6:63:05:45:4f:da:f4:e2:9b:cf:76: 3f:60:ba:64:01:1c:e0:68:fa:8d:76:cc:77:fd:85:f7:d3:e8: ea:f5:18:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdDMjExMTAvBgNVBAUTKEJDMkRBMzVDQjU2NTEzQTk0QTY4QjU5MUREMkM3NkM1 MUQ4MTExMzQwHhcNMjMwODI3MDA0MTQ5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVhOWJjZC04YzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52mqRuJVyMFMbEmLzE5wQRngUsj9dki1cqSLNjLRMsy6O8nSv750qcH3PzkV 4stJUNHcCA+s0I18bVnJzsjw8h2rTqVpDZjy+9ofJPy3ed6rkf0PaBwXLxltyAum w6wuBSBmibEd6SGtYm0yfGL7+ZZQXVWEEus8xcUX2Tc3515Pcz/+6ygpfuA+iDAH 5VVPBTJPP4kXTlWwZJluX7YuZsjXt6h0fVuPtlSuD3e+iY1/iQYg98ZWROwXKARZ 8u7ynQ2/ZsK6nZjqwztyaSgwOxLw4eydiUsTZyJq1PRxD1vJFWvGkRg0AwxRYRm6 /g7SUofWc22gpCEhD+2n95MWWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFENfqqYk E1KPdnSTTMDQ9xvU1SdqMB8GA1UdIwQYMBaAFLwto1y1ZROpSmi1kd0sdsUdgRE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0MyMS8zQkNEMDA3NEY1 QUUxMUVCOEUzRUZCMzNDNEY5QUUwMi92QzJqWExWbEU2bEthTFdSM1N4MnhSMkJF VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZDMmpYTFZsRTZsS2FMV1IzU3gyeFIyQkVUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdDMjEvM0JDRDAwNzRGNUFFMTFFQjhFM0VGQjMzQzRGOUFFMDIvMEVGNERBM0Ez OEQwMTFFQzkzNkE4QzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqUAwDQYJKoZIhvcNAQELBQADggEBALNvV+57DQMsHG/M Zc064kuTIa2IdfzFA3i5LHcKl7yHJshE0CwqKR2Y6x6/3ZIYUYa0VQbunYdaE3bk TNyOSUa+8rvrszHKcUEU1fU6f///nzjvoww2m+N4uoy8Aiqd4IHaX+1W9Oamv31V X7Fu0o7cnb6NY/Gh0DW39CIUUkJmCreqPQV6O6ogCkrXaHe3ZfO6EoQ7ghMGUs0c zc0vJoD4qc6O6NDYnoYn2Lh5CC+waO7a2QBbQ6X3vQhWboN4U5n4nI6FTQ2V5cuf OgOIyKUiKmesIifF+j9z/Tv3h3nGYwVFT9r04pvPdj9gumQBHOBo+o12zHf9hffT 6Or1GIE= -----END CERTIFICATE-----Generated at Fri May 17 02:38:41 2024 by rpki-client on console-fra.rpki-client.org