$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/D7FC7B4C217A11EE8C2D2243C4F9AE02.roa File: D7FC7B4C217A11EE8C2D2243C4F9AE02.roa (raw, json) Hash identifier: lSpMkh86EhKjCYjkeuFiE9j4XZ7HscXF7PRFeYcpx+w= Subject key identifier: 24:00:38:C8:F9:DA:CD:17:C8:AB:66:CE:65:C5:8A:26:B0:6C:F3:E6 Certificate issuer: /CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Certificate serial: 06 Authority key identifier: 83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/D7FC7B4C217A11EE8C2D2243C4F9AE02.roa Signing time: Thu 13 Jul 2023 12:43:19 +0000 ROA not before: Thu 13 Jul 2023 12:43:19 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 24499 IP address blocks: 103.229.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Validity Not Before: Jul 13 12:43:19 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64aff167-2bc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d2:5a:ed:78:02:de:b2:14:3a:6a:2f:2a:12: 50:a9:16:af:5e:c3:3a:41:4d:d4:6f:19:2f:9d:03: c1:cb:aa:e5:43:eb:9c:66:6f:c2:11:2d:e6:6d:d4: 66:74:c9:18:6e:99:3c:53:01:55:52:dd:d5:8d:8a: 11:7e:a3:35:0e:cd:d9:c7:52:49:a7:ed:17:a1:0c: 28:20:53:99:51:b8:b0:7d:4c:74:12:30:04:65:c6: f3:35:06:ae:28:9f:20:03:3d:f4:23:db:3d:e2:58: 09:3e:5e:08:50:ae:d7:a9:cc:5a:41:9d:94:be:d3: 74:76:56:91:6d:df:9b:ef:63:30:12:2d:de:20:7e: 09:d4:25:47:c3:14:0a:e7:4f:0d:7f:ed:84:d2:9a: f1:30:9d:3d:0a:b5:4a:e0:28:e5:46:e1:ec:ff:a6: 99:ef:88:1f:dd:f6:17:24:9c:68:dc:d6:0a:40:20: d1:f7:88:52:92:f5:9b:dd:a3:aa:37:05:6d:ce:dd: 88:b3:88:bf:29:ca:28:2d:a0:1e:82:3e:6e:9e:08: 2e:c2:bc:68:0c:fc:97:28:4e:63:d2:df:56:9a:1a: 5f:a5:cb:ed:0a:40:0f:4b:c1:17:3d:7d:60:93:d5: fc:c8:23:1c:fa:2a:41:08:89:25:d6:d9:54:b8:2b: 13:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:00:38:C8:F9:DA:CD:17:C8:AB:66:CE:65:C5:8A:26:B0:6C:F3:E6 X509v3 Authority Key Identifier: keyid:83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/D7FC7B4C217A11EE8C2D2243C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.191.0/24 Signature Algorithm: sha256WithRSAEncryption 24:09:67:3f:bc:91:eb:38:d4:43:03:85:e8:9d:93:85:32:aa: 01:06:a6:ae:5c:21:28:d4:87:68:d6:99:ca:78:e9:bf:0b:06: 7f:5b:d2:49:e1:d9:21:d4:0e:06:61:ac:f4:06:e2:ab:49:66: 16:25:c0:8a:45:3e:5d:45:a2:60:b7:7e:9c:35:1a:62:b4:2a: 36:9a:18:a9:79:70:ab:d3:d6:4f:48:90:05:53:d4:b7:f9:a1: 25:76:b7:a2:fe:ea:5e:d7:a0:0f:e3:44:58:f0:bc:de:6c:48: 7d:de:86:98:79:6c:6b:00:40:39:85:ab:ab:f1:f3:a1:34:20: b8:bd:70:4d:d7:26:51:a8:76:99:62:23:54:34:74:44:15:bb: 96:80:e3:4a:c6:f7:c3:16:ec:28:ed:07:e4:1a:37:80:6f:c2: d6:11:7c:8c:3e:cb:96:b5:82:76:7c:ea:57:23:e2:5c:ea:59: 87:4c:f7:50:68:30:14:ce:eb:82:ff:42:db:25:09:b7:8f:c6: 2f:4a:07:88:4a:0e:c7:0c:b5:15:c7:ba:e2:40:98:b2:6b:d5: 2b:e5:c7:f8:07:63:83:18:f7:84:c3:f4:53:ac:8d:9f:89:b3: 72:1f:9a:11:87:76:37:1a:e0:a8:17:83:b2:81:6b:2d:b1:ae: 2d:d0:1e:b7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OUM0MjExMC8GA1UEBRMoODM3OUQ3NDdGNzRBNTVFREM3M0EwRTA0MjFDNzlCNUVD MEU0REU3NjAeFw0yMzA3MTMxMjQzMTlaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YWZmMTY3LTJiYzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK0lrteALeshQ6ai8qElCpFq9ewzpBTdRvGS+dA8HLquVD65xmb8IRLeZt1GZ0 yRhumTxTAVVS3dWNihF+ozUOzdnHUkmn7RehDCggU5lRuLB9THQSMARlxvM1Bq4o nyADPfQj2z3iWAk+XghQrtepzFpBnZS+03R2VpFt35vvYzASLd4gfgnUJUfDFArn Tw1/7YTSmvEwnT0KtUrgKOVG4ez/ppnviB/d9hcknGjc1gpAINH3iFKS9Zvdo6o3 BW3O3YiziL8pyigtoB6CPm6eCC7CvGgM/JcoTmPS31aaGl+ly+0KQA9LwRc9fWCT 1fzIIxz6KkEIiSXW2VS4KxNNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJAA4yPna zRfIq2bOZcWKJrBs8+YwHwYDVR0jBBgwFoAUg3nXR/dKVe3HOg4EIcebXsDk3nYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5QzQyLzI0QTY1RUJFMjBE MDExRUU5MDA4NEY1Q0M0RjlBRTAyL2czblhSX2RLVmUzSE9nNEVJY2ViWHNEazNu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZzNuWFJfZEtWZTNIT2c0RUljZWJYc0RrM25ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUM0Mi8yNEE2NUVCRTIwRDAxMUVFOTAwODRGNUNDNEY5QUUwMi9EN0ZDN0I0QzIx N0ExMUVFOEMyRDIyNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGflvzANBgkqhkiG9w0BAQsFAAOCAQEAJAlnP7yR6zjUQwOF 6J2ThTKqAQamrlwhKNSHaNaZynjpvwsGf1vSSeHZIdQOBmGs9Abiq0lmFiXAikU+ XUWiYLd+nDUaYrQqNpoYqXlwq9PWT0iQBVPUt/mhJXa3ov7qXtegD+NEWPC83mxI fd6GmHlsawBAOYWrq/HzoTQguL1wTdcmUah2mWIjVDR0RBW7loDjSsb3wxbsKO0H 5Bo3gG/C1hF8jD7LlrWCdnzqVyPiXOpZh0z3UGgwFM7rgv9C2yUJt4/GL0oHiEoO xwy1Fce64kCYsmvVK+XH+Adjgxj3hMP0U6yNn4mzch+aEYd2NxrgqBeDsoFrLbGu LdAetw== -----END CERTIFICATE-----Generated at Wed May 1 07:55:44 2024 by rpki-client on console-fra.rpki-client.org