$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/97B81DD6BF9F11ECAB5B1239C4F9AE02.roa File: 97B81DD6BF9F11ECAB5B1239C4F9AE02.roa (raw, json) Hash identifier: FVzcEavihlH8kMCyqaKG50pf3MU+fWjBVs43IHGTcS0= Subject key identifier: 10:86:83:17:CD:74:E1:67:AF:B7:CE:0F:40:F9:25:B7:C2:94:EF:1F Certificate issuer: /CN=A91F9749/serialNumber=35E6C87F6BA1B6513A1270F6DC136DDB71136457 Certificate serial: 01FC Authority key identifier: 35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/97B81DD6BF9F11ECAB5B1239C4F9AE02.roa Signing time: Thu 07 Sep 2023 02:53:10 +0000 ROA not before: Thu 07 Sep 2023 02:53:10 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 55720 IP address blocks: 103.154.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.crl rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 03:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9749/serialNumber=35E6C87F6BA1B6513A1270F6DC136DDB71136457 Validity Not Before: Sep 7 02:53:10 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f93b15-85aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:44:ed:f2:56:61:cd:74:88:20:df:6c:eb:d2: 57:ad:ca:60:54:17:85:ea:22:1a:4f:f1:ff:8f:34: e3:4f:0d:e7:29:74:5e:85:02:f0:a0:f7:57:78:db: bf:29:9b:52:80:27:3f:08:e6:99:49:94:4a:e1:0b: 42:0c:6c:d2:f3:fe:d5:ba:21:2b:6e:15:ab:ba:f8: 8e:8e:1a:b8:97:b4:8b:8b:ca:2e:a5:b5:6e:9b:20: 55:ca:80:a1:97:ab:3c:54:9e:c3:fa:f6:66:48:3e: ff:91:05:2a:e9:a2:6a:29:2d:2b:b3:08:e9:92:d3: b9:5e:0f:e1:61:3e:e8:c6:56:19:36:65:4c:04:90: 7f:d0:f8:be:95:de:3e:fb:fe:d5:11:88:bf:bd:31: b8:6a:7d:62:98:12:b3:9d:af:f7:b6:77:1a:fe:55: da:b3:58:a1:ff:3c:2e:3a:9a:a7:dd:9e:71:f9:1c: a2:35:b8:5e:54:92:65:cf:e7:b7:2a:d6:57:c7:77: 39:cb:4c:e4:3b:9b:bf:8a:24:4a:fd:34:0a:50:4d: 9e:86:15:c0:30:12:06:49:50:aa:05:c3:f0:f0:f8: 15:23:ef:4b:64:ba:5f:89:0b:f8:ee:d4:0d:97:48: 6d:3d:50:ea:76:24:11:d8:41:05:09:d7:ab:16:00: 2f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:86:83:17:CD:74:E1:67:AF:B7:CE:0F:40:F9:25:B7:C2:94:EF:1F X509v3 Authority Key Identifier: keyid:35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/97B81DD6BF9F11ECAB5B1239C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.232.0/24 Signature Algorithm: sha256WithRSAEncryption 41:d6:69:23:fc:e3:0c:70:82:59:f3:a2:d5:d7:44:4b:90:4e: 12:23:cc:83:4e:5d:1e:c8:27:44:50:07:52:c1:8d:77:f9:1e: c6:4a:05:de:6c:b4:cb:d0:2b:0e:1e:00:93:76:ea:87:9e:00: 18:4d:88:e3:b5:a6:f4:a1:0d:5b:77:89:a5:01:1d:8e:a9:8e: 91:f1:5c:a6:fc:5b:9d:dd:f7:79:7d:7f:e0:7a:97:ce:e1:21: 32:77:33:2b:d1:ec:9d:d9:ad:b9:95:b2:99:24:46:82:1c:a6: 33:96:b1:24:af:5b:68:7d:8f:28:1d:15:29:23:fa:b0:19:98: e9:ba:fd:15:eb:fe:73:28:d8:50:4a:ba:eb:50:82:28:ac:c7: 4e:f8:12:1a:ff:12:09:4a:7f:af:47:30:36:02:2a:d6:0c:0f: 70:93:2c:53:67:03:1f:f0:8d:65:64:d3:5c:0e:46:07:d2:65: e5:31:ee:73:fc:84:82:44:b9:5a:58:47:c7:3e:84:5d:f2:75: 80:e7:d1:dd:97:e8:59:f7:ed:9c:b5:e1:d5:44:64:85:f8:e3: b1:1a:bf:dd:6e:55:be:c2:a9:0c:00:81:8d:f4:bd:fb:ad:da: 36:3d:69:1b:43:05:65:c0:3e:df:7d:cc:40:0c:02:82:67:e9: c8:2d:b4:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjk3NDkxMTAvBgNVBAUTKDM1RTZDODdGNkJBMUI2NTEzQTEyNzBGNkRDMTM2RERC NzExMzY0NTcwHhcNMjMwOTA3MDI1MzEwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY5M2IxNS04NWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9kTt8lZhzXSIIN9s69JXrcpgVBeF6iIaT/H/jzTjTw3nKXRehQLwoPdXeNu/ KZtSgCc/COaZSZRK4QtCDGzS8/7VuiErbhWruviOjhq4l7SLi8oupbVumyBVyoCh l6s8VJ7D+vZmSD7/kQUq6aJqKS0rswjpktO5Xg/hYT7oxlYZNmVMBJB/0Pi+ld4+ +/7VEYi/vTG4an1imBKzna/3tnca/lXas1ih/zwuOpqn3Z5x+RyiNbheVJJlz+e3 KtZXx3c5y0zkO5u/iiRK/TQKUE2ehhXAMBIGSVCqBcPw8PgVI+9LZLpfiQv47tQN l0htPVDqdiQR2EEFCderFgAvcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBCGgxfN dOFnr7fOD0D5JbfClO8fMB8GA1UdIwQYMBaAFDXmyH9robZROhJw9twTbdtxE2RX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTc0OS85OUQxN0Q5NkJG OUIxMUVDQUQzQzBBMzBDNEY5QUUwMi9OZWJJZjJ1aHRsRTZFbkQyM0JOdDIzRVRa RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05lYklmMnVodGxFNkVuRDIzQk50MjNFVFpGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjk3NDkvOTlEMTdEOTZCRjlCMTFFQ0FEM0MwQTMwQzRGOUFFMDIvOTdCODFERDZC RjlGMTFFQ0FCNUIxMjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmugwDQYJKoZIhvcNAQELBQADggEBAEHWaSP84wxwglnz otXXREuQThIjzINOXR7IJ0RQB1LBjXf5HsZKBd5stMvQKw4eAJN26oeeABhNiOO1 pvShDVt3iaUBHY6pjpHxXKb8W53d93l9f+B6l87hITJ3MyvR7J3ZrbmVspkkRoIc pjOWsSSvW2h9jygdFSkj+rAZmOm6/RXr/nMo2FBKuutQgiisx074Ehr/EglKf69H MDYCKtYMD3CTLFNnAx/wjWVk01wORgfSZeUx7nP8hIJEuVpYR8c+hF3ydYDn0d2X 6Fn37Zy14dVEZIX447Eav91uVb7CqQwAgY30vfut2jY9aRtDBWXAPt99zEAMAoJn 6cgttPM= -----END CERTIFICATE-----Generated at Thu Apr 25 05:44:55 2024 by rpki-client on console-fra.rpki-client.org