$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa File: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (raw, json) Hash identifier: NQOVTH1BC/AMK+gLfRO4HuRWXWoZYIEDQJeqtZklkIk= Subject key identifier: 2D:1B:DA:99:55:A6:BD:60:AC:F5:91:C1:C5:9E:B3:76:AE:CE:30:23 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 2A Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa Signing time: Wed 26 Jul 2023 07:00:03 +0000 ROA not before: Wed 26 Jul 2023 07:00:03 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151480 IP address blocks: 103.243.100.0/23 maxlen: 23 202.53.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 04:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: Jul 26 07:00:03 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64c0c473-c814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d6:7c:b8:83:51:f3:27:0e:14:ff:d2:a5:4f: 43:8e:6f:3e:0d:ca:b4:96:8e:c8:6b:1b:54:ae:d7: 93:ff:c7:96:0a:96:a5:e0:37:e4:2a:c6:54:92:15: e9:f6:1e:5c:c6:b8:16:ba:3c:2a:17:79:18:10:37: 1e:f0:43:73:ad:fb:22:38:c5:a0:5e:a4:da:f3:70: 91:18:5a:ec:9a:53:90:57:09:66:7a:f5:ab:cd:a4: e8:75:3c:f3:e5:59:fa:85:54:27:5a:28:5b:e7:71: c3:cf:d6:59:d3:3b:46:db:06:f9:b1:b5:fe:41:10: 02:36:0e:17:98:45:e2:07:07:00:06:ad:b5:2c:ed: 82:d2:af:56:7a:b9:3b:2d:48:55:5b:f3:79:a6:b9: 37:3a:77:8c:ec:76:03:80:07:d3:69:5f:9d:c8:0c: a7:5e:df:1b:09:f3:98:f1:6d:d9:1c:53:9b:7b:94: 7c:fb:9f:5d:54:63:da:d0:9a:18:d1:f9:a9:02:ec: 1e:03:98:da:04:ce:96:14:85:0b:16:40:ad:68:52: 2e:06:58:a0:d6:95:2a:97:b8:26:27:b4:c1:8c:cb: ed:63:1e:81:bd:8d:b2:63:dd:99:ff:07:e5:cd:03: d1:23:f4:ce:5b:ac:82:f3:67:71:16:78:c9:38:90: cb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1B:DA:99:55:A6:BD:60:AC:F5:91:C1:C5:9E:B3:76:AE:CE:30:23 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.100.0/23 202.53.0.0/22 Signature Algorithm: sha256WithRSAEncryption 81:0d:b9:3a:d3:c4:8d:48:2f:99:3f:da:63:48:3a:38:6c:9f: c2:34:fe:98:1b:2e:a6:49:20:79:c3:c9:ad:3b:bc:ab:a0:2e: 22:b8:8f:b1:71:b4:01:04:73:d3:08:bb:66:fb:81:6a:2c:0e: d9:cd:f1:5e:36:ce:cd:21:8d:34:92:cb:ce:ac:e9:81:8d:33: fc:fe:2f:a5:cb:00:e7:66:e1:58:2b:df:91:b4:4b:3b:68:65: 45:bc:7d:2e:18:05:be:c8:5e:4d:85:ec:4e:5f:61:c5:ba:15: e7:28:6e:22:a0:50:81:11:e6:66:33:81:8c:ac:47:11:72:60: 36:b9:bd:6b:41:63:c4:af:ea:d1:09:ce:76:27:14:e0:72:3b: 6b:78:3f:4c:f4:06:3c:35:93:54:86:ea:7e:1f:01:fa:24:4e: 13:04:c3:34:60:85:3e:10:03:0f:0e:b1:5b:6c:1f:79:13:6f: 99:ab:65:2b:95:32:e2:5f:27:b4:20:97:2a:13:d1:5f:2c:5b: eb:7a:4e:c7:dd:4c:e3:cc:5a:5d:23:45:61:ed:e7:ff:2f:1b: e9:2f:b9:7b:21:37:6b:d2:78:eb:d2:db:09:37:65:00:f3:90: e2:82:7d:f0:c7:1f:41:02:d2:f3:bc:7e:4f:fb:d6:c8:ed:df: 85:f2:1e:bb -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTY0QzExMC8GA1UEBRMoNTY2QTZGMzQ0NDBBQzkyOTVFRDhBMDAyRDUwNDlGNTc0 Q0YxNkM4ODAeFw0yMzA3MjYwNzAwMDNaFw0yNDA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YzBjNDczLWM4MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDq1ny4g1HzJw4U/9KlT0OObz4NyrSWjshrG1Su15P/x5YKlqXgN+QqxlSSFen2 HlzGuBa6PCoXeRgQNx7wQ3Ot+yI4xaBepNrzcJEYWuyaU5BXCWZ69avNpOh1PPPl WfqFVCdaKFvnccPP1lnTO0bbBvmxtf5BEAI2DheYReIHBwAGrbUs7YLSr1Z6uTst SFVb83mmuTc6d4zsdgOAB9NpX53IDKde3xsJ85jxbdkcU5t7lHz7n11UY9rQmhjR +akC7B4DmNoEzpYUhQsWQK1oUi4GWKDWlSqXuCYntMGMy+1jHoG9jbJj3Zn/B+XN A9Ej9M5brILzZ3EWeMk4kMu9AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQULRvamVWm vWCs9ZHBxZ6zdq7OMCMwHwYDVR0jBBgwFoAUVmpvNEQKySle2KAC1QSfV0zxbIgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNjRDL0UxQTU0NjI2Rjc5 ODExRUQ5Njc3NzEyNEM0RjlBRTAyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVm1wdk5FUUt5U2xlMktBQzFRU2ZWMHp4YklnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9GRkNFMDcyRTJC ODExMUVFOUJERUMwNzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAWfzZAMEAso1ADANBgkqhkiG9w0BAQsFAAOCAQEAgQ25OtPE jUgvmT/aY0g6OGyfwjT+mBsupkkgecPJrTu8q6AuIriPsXG0AQRz0wi7ZvuBaiwO 2c3xXjbOzSGNNJLLzqzpgY0z/P4vpcsA52bhWCvfkbRLO2hlRbx9LhgFvsheTYXs Tl9hxboV5yhuIqBQgRHmZjOBjKxHEXJgNrm9a0FjxK/q0QnOdicU4HI7a3g/TPQG PDWTVIbqfh8B+iROEwTDNGCFPhADDw6xW2wfeRNvmatlK5Uy4l8ntCCXKhPRXyxb 63pOx91M48xaXSNFYe3n/y8b6S+5eyE3a9J469LbCTdlAPOQ4oJ98McfQQLS87x+ T/vWyO3fhfIeuw== -----END CERTIFICATE-----Generated at Thu May 23 06:54:46 2024 by rpki-client on console-fra.rpki-client.org