$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/CF0AE2F0159411EDB66C5D82C4F9AE02.roa File: CF0AE2F0159411EDB66C5D82C4F9AE02.roa (raw, json) Hash identifier: kYt8HBbvvye45z7EQR9CTuy9yyrFOtEs94d8Z+Sgk6g= Subject key identifier: 91:BC:62:60:0E:49:BC:79:7B:9E:74:C7:56:2B:89:8B:59:68:2A:6F Certificate issuer: /CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Certificate serial: 013A Authority key identifier: 8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/CF0AE2F0159411EDB66C5D82C4F9AE02.roa Signing time: Sun 17 Sep 2023 03:23:56 +0000 ROA not before: Sun 17 Sep 2023 03:23:56 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 139043 IP address blocks: 103.154.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 05:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Validity Not Before: Sep 17 03:23:56 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6506714c-906f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0c:8e:bd:71:4b:8e:40:da:d2:8a:97:4b:6b: b2:f9:9a:0f:63:17:ae:e9:52:56:34:01:73:7b:dc: 78:bb:92:e1:76:cc:01:40:32:43:20:d9:0e:84:39: 96:e6:c7:79:8e:3c:35:20:de:22:6b:10:42:c0:7f: 7d:74:88:10:7f:24:d9:41:86:9f:6d:49:9f:e1:dd: 7e:b7:cd:95:9c:f2:c5:74:2f:5e:ab:29:9c:d3:78: 2d:ed:4e:33:58:94:e6:ea:67:5a:34:2b:a6:6f:01: e7:98:a6:5d:49:ab:67:6c:2b:c9:4e:2c:a4:d6:ec: a6:a9:27:0d:82:78:8b:f5:30:eb:e4:12:b1:fb:29: 00:00:29:78:7a:c2:29:5a:f3:89:d8:75:b5:20:4e: ab:fe:9f:b7:8a:05:34:6a:9d:b6:82:d3:39:a2:ec: 68:e5:d9:50:50:ef:37:b7:66:c3:37:07:18:f8:ef: 7b:8e:0a:85:71:7f:e4:b5:c2:ff:b0:09:cd:4c:52: 02:71:e3:16:11:b1:75:bb:c7:35:90:8b:04:1a:28: 0a:ab:f4:8d:26:6b:9c:f8:92:aa:fd:52:ef:d2:86: a0:57:27:75:b3:e5:67:3e:3c:8d:51:49:fe:c8:3e: 42:4a:64:1a:fd:9d:de:82:f8:97:97:37:95:d6:e7: c1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:BC:62:60:0E:49:BC:79:7B:9E:74:C7:56:2B:89:8B:59:68:2A:6F X509v3 Authority Key Identifier: keyid:8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/CF0AE2F0159411EDB66C5D82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.65.0/24 Signature Algorithm: sha256WithRSAEncryption 21:36:4d:82:25:a3:e2:9e:b0:c5:05:97:11:55:9b:22:6d:7a: 2a:88:2f:4b:60:2d:f8:d0:53:d4:40:38:a7:da:1a:f0:75:b3: 0c:f4:05:07:62:d0:0e:e6:90:51:27:d1:6f:40:28:93:6f:cb: 9d:7f:a8:4b:38:a2:3a:c4:da:39:f5:3f:eb:c7:3e:1b:50:ea: 61:13:9a:80:50:c9:c3:a3:0a:04:0e:12:1d:34:19:8f:44:07: 93:b5:32:41:03:be:44:86:9d:ec:ff:e4:fd:0f:a8:a3:1d:56: b5:6f:9b:7d:50:ba:24:e4:82:d8:f9:a6:7c:85:90:12:99:57: 1f:17:90:a4:c2:b5:fe:84:45:39:33:61:e9:bb:f0:54:a4:68: 5b:01:14:d5:c7:b6:b4:28:f6:6a:4a:8b:b5:e9:ef:ee:a2:74: 8e:d5:9d:bf:3c:c4:77:25:8f:40:fe:6d:0d:03:0e:54:e5:58: f5:36:14:60:6f:e7:37:30:17:be:8b:d4:70:41:0a:57:e0:85: d1:21:e5:ad:2e:33:f0:e6:5d:0d:b8:8c:73:c8:d0:2e:bd:35: 18:6d:3a:f8:6f:b7:de:b2:ed:ee:6a:22:2b:91:9c:fe:66:11: d2:82:e2:63:fd:6e:f7:7f:97:0d:41:3e:95:43:3f:af:2c:61: 3a:ba:b0:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE4RTgxMTAvBgNVBAUTKDhEQTE5RkNFMEVGQUUwMjJCQkE4RjhFMEMxMjM3QkVE QkVCRTNFRjMwHhcNMjMwOTE3MDMyMzU2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA2NzE0Yy05MDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wyOvXFLjkDa0oqXS2uy+ZoPYxeu6VJWNAFze9x4u5LhdswBQDJDINkOhDmW 5sd5jjw1IN4iaxBCwH99dIgQfyTZQYafbUmf4d1+t82VnPLFdC9eqymc03gt7U4z WJTm6mdaNCumbwHnmKZdSatnbCvJTiyk1uymqScNgniL9TDr5BKx+ykAACl4esIp WvOJ2HW1IE6r/p+3igU0ap22gtM5ouxo5dlQUO83t2bDNwcY+O97jgqFcX/ktcL/ sAnNTFICceMWEbF1u8c1kIsEGigKq/SNJmuc+JKq/VLv0oagVyd1s+VnPjyNUUn+ yD5CSmQa/Z3egviXlzeV1ufBlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJG8YmAO Sbx5e550x1YriYtZaCpvMB8GA1UdIwQYMBaAFI2hn84O+uAiu6j44MEje+2+vj7z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQThFOC85MDM5NzgzMDEw RDkxMUVEODBCODBEMjlDNEY5QUUwMi9qYUdmemc3NjRDSzdxUGpnd1NONzdiNi1Q dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2phR2Z6Zzc2NENLN3FQamd3U043N2I2LVB2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE4RTgvOTAzOTc4MzAxMEQ5MTFFRDgwQjgwRDI5QzRGOUFFMDIvQ0YwQUUyRjAx NTk0MTFFREI2NkM1RDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmkEwDQYJKoZIhvcNAQELBQADggEBACE2TYIlo+KesMUF lxFVmyJteiqIL0tgLfjQU9RAOKfaGvB1swz0BQdi0A7mkFEn0W9AKJNvy51/qEs4 ojrE2jn1P+vHPhtQ6mETmoBQycOjCgQOEh00GY9EB5O1MkEDvkSGnez/5P0PqKMd VrVvm31QuiTkgtj5pnyFkBKZVx8XkKTCtf6ERTkzYem78FSkaFsBFNXHtrQo9mpK i7Xp7+6idI7Vnb88xHclj0D+bQ0DDlTlWPU2FGBv5zcwF76L1HBBClfghdEh5a0u M/DmXQ24jHPI0C69NRhtOvhvt96y7e5qIiuRnP5mEdKC4mP9bvd/lw1BPpVDP68s YTq6sB8= -----END CERTIFICATE-----Generated at Wed May 29 06:01:37 2024 by rpki-client on console-fra.rpki-client.org