$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa File: 4AE6CFF8B25211EBA977EE09C4F9AE02.roa (raw, json) Hash identifier: W7J7CZ7K1SQs80EMK/WL5CtVaWJnhQcFLeI1LnfC9vE= Subject key identifier: B3:34:19:86:E5:80:23:B9:73:9C:93:87:F9:AF:1E:88:E5:5E:AF:DC Certificate issuer: /CN=A91F8336/serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Certificate serial: 10BB Authority key identifier: D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa Signing time: Mon 18 Mar 2024 17:56:07 +0000 ROA not before: Mon 18 Mar 2024 17:56:07 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138495 IP address blocks: 103.126.244.0/22 maxlen: 24 2404:1540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:55:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4283 (0x10bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8336/serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Validity Not Before: Mar 18 17:56:07 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65f88036-248e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:11:76:68:77:3b:d0:76:e8:2c:3d:9a:6b:d9: ee:3d:e0:24:14:18:39:b4:99:2d:35:e4:b0:fa:74: 27:8e:a0:84:d2:42:df:af:fb:49:c7:f9:bb:6d:51: ce:33:3c:c2:18:9f:bd:de:ae:69:0d:a4:1f:2e:64: 8e:49:04:3f:32:e1:7a:f3:b9:ed:f9:ba:5a:93:6e: 0b:f1:f3:06:00:8c:06:aa:32:f8:4c:71:12:c3:4c: d6:2b:c9:93:f3:48:0b:40:82:f0:c4:20:cf:46:51: 96:1f:a9:92:80:1d:ff:e0:95:12:32:1f:f0:d7:71: ec:29:99:36:d7:6a:16:1d:e7:e8:d4:e1:a9:da:4a: 81:da:6a:7e:85:4e:be:fd:18:dd:33:f9:23:54:ba: b9:e2:b6:aa:6e:fc:8c:c3:9e:94:29:9c:32:0d:c9: 2a:7b:6f:8e:4a:93:e6:58:a1:92:04:e5:5f:40:bd: 08:3a:fc:53:78:01:69:1e:e0:23:42:23:da:e5:16: d1:c8:86:64:a4:84:81:ab:4f:20:96:7d:37:f8:a1: d0:fe:81:0a:00:cf:ae:58:7f:ed:00:56:78:ae:34: b9:65:b6:43:b4:e0:ba:1a:ca:b2:ae:3b:aa:07:78: a1:d6:60:db:e5:b3:1f:6f:cb:0a:2b:19:77:96:09: 85:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:34:19:86:E5:80:23:B9:73:9C:93:87:F9:AF:1E:88:E5:5E:AF:DC X509v3 Authority Key Identifier: keyid:D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.244.0/22 IPv6: 2404:1540::/32 Signature Algorithm: sha256WithRSAEncryption 1d:58:84:c5:4b:05:02:9e:2a:e0:37:9f:82:e6:c2:0a:2c:b0: 5d:e0:95:6f:c1:79:c7:60:40:fe:f1:66:d7:b8:a8:35:50:c3: 9f:95:6d:97:bf:f6:38:55:1c:9b:6d:73:df:10:80:00:e2:63: ab:bd:da:b9:db:42:32:61:38:44:d1:3d:6e:96:2b:52:72:3a: 6f:31:e9:6d:96:c2:24:f0:3d:a9:df:7b:d0:12:f5:b4:ef:8d: e1:68:21:50:cc:43:32:42:25:ba:43:47:77:a6:bb:1f:66:e5: 53:17:d9:57:92:56:c2:aa:28:0b:4e:24:9c:8b:4d:47:a8:dd: 69:fc:38:c2:3e:1d:e2:f1:72:7f:5e:7d:01:fc:3d:48:df:53: d6:83:fb:5a:00:d9:67:34:de:a7:f2:d7:e7:cb:b6:e4:63:10: f7:7c:3a:25:6b:32:8a:c6:89:c3:02:3d:9f:a3:cc:60:6f:e6: 7c:28:83:3e:ae:e6:dc:20:f5:fd:4d:3a:92:13:76:2a:03:75: fe:3b:98:c2:c0:8f:f8:9d:2e:47:3e:82:6a:1e:8c:f2:ed:a8: c1:e1:23:f1:cc:03:e1:6e:f7:2e:c6:f5:bd:1d:69:1e:50:0e: 3e:03:83:03:07:dd:4c:be:54:3a:01:bd:62:05:6d:0f:1e:a8: 95:32:90:1d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICELswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzMzYxMTAvBgNVBAUTKEQ3N0YzNzk3NTIzNUFCREU1RjQ5ODlGQkYzRkU5MzhE NTI3QzE5NDgwHhcNMjQwMzE4MTc1NjA3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY4ODAzNi0yNDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BF2aHc70HboLD2aa9nuPeAkFBg5tJktNeSw+nQnjqCE0kLfr/tJx/m7bVHO MzzCGJ+93q5pDaQfLmSOSQQ/MuF687nt+bpak24L8fMGAIwGqjL4THESw0zWK8mT 80gLQILwxCDPRlGWH6mSgB3/4JUSMh/w13HsKZk212oWHefo1OGp2kqB2mp+hU6+ /RjdM/kjVLq54raqbvyMw56UKZwyDckqe2+OSpPmWKGSBOVfQL0IOvxTeAFpHuAj QiPa5RbRyIZkpISBq08gln03+KHQ/oEKAM+uWH/tAFZ4rjS5ZbZDtOC6Gsqyrjuq B3ih1mDb5bMfb8sKKxl3lgmF4QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLM0GYbl gCO5c5yTh/mvHojlXq/cMB8GA1UdIwQYMBaAFNd/N5dSNaveX0mJ+/P+k41SfBlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODMzNi8zN0UxNjczRUZE MUQxMUU4QjNFMzZFNTdDNEY5QUUwMi8xMzgzbDFJMXE5NWZTWW43OF82VGpWSjhH VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEzODNsMUkxcTk1ZlNZbjc4XzZUalZKOEdVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgzMzYvMzdFMTY3M0VGRDFEMTFFOEIzRTM2RTU3QzRGOUFFMDIvNEFFNkNGRjhC MjUyMTFFQkE5NzdFRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfvQwDQQCAAIwBwMFACQEFUAwDQYJKoZIhvcNAQELBQAD ggEBAB1YhMVLBQKeKuA3n4LmwgossF3glW/BecdgQP7xZte4qDVQw5+VbZe/9jhV HJttc98QgADiY6u92rnbQjJhOETRPW6WK1JyOm8x6W2WwiTwPanfe9AS9bTvjeFo IVDMQzJCJbpDR3emux9m5VMX2VeSVsKqKAtOJJyLTUeo3Wn8OMI+HeLxcn9efQH8 PUjfU9aD+1oA2Wc03qfy1+fLtuRjEPd8OiVrMorGicMCPZ+jzGBv5nwogz6u5twg 9f1NOpITdioDdf47mMLAj/idLkc+gmoejPLtqMHhI/HMA+Fu9y7G9b0daR5QDj4D gwMH3Uy+VDoBvWIFbQ8eqJUykB0= -----END CERTIFICATE-----Generated at Sun May 26 19:58:58 2024 by rpki-client on console-fra.rpki-client.org