$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/168BE8747EEE11ECAB036C59C4F9AE02.roa File: 168BE8747EEE11ECAB036C59C4F9AE02.roa (raw, json) Hash identifier: No6MBfM7DYrgUUL//Cx6KKRkBWisRYDQfD5tymik/I8= Subject key identifier: 42:1A:B3:09:B1:E6:94:B8:2F:C6:13:A5:38:1A:5A:16:26:E7:6F:97 Certificate issuer: /CN=A91FDAD4/serialNumber=5430A414AA05B6731DC2D64A70C619C669346A0E Certificate serial: 0333 Authority key identifier: 54:30:A4:14:AA:05:B6:73:1D:C2:D6:4A:70:C6:19:C6:69:34:6A:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/168BE8747EEE11ECAB036C59C4F9AE02.roa Signing time: Tue 05 Mar 2024 02:44:42 +0000 ROA not before: Tue 05 Mar 2024 02:44:42 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 149440 IP address blocks: 103.179.142.0/24 maxlen: 24 103.179.143.0/24 maxlen: 24 223.165.6.0/24 maxlen: 24 2400:8d60:1::/48 maxlen: 48 2400:8d60:2::/48 maxlen: 48 2400:8d60:3::/48 maxlen: 48 2400:8d60:4::/48 maxlen: 48 2400:8d60:5::/48 maxlen: 48 2400:8d60:6::/48 maxlen: 48 2400:8d60:7::/48 maxlen: 48 2400:8d60:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4/serialNumber=5430A414AA05B6731DC2D64A70C619C669346A0E Validity Not Before: Mar 5 02:44:42 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e6871a-a248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b0:89:0b:dc:84:e2:e3:e9:b5:c1:50:1a:68: ec:13:95:7a:6e:b0:c8:57:dd:ca:a2:e7:e7:cb:41: 89:8e:f2:3d:3b:6a:d2:ad:23:9b:97:ec:96:09:18: 1f:bb:29:c9:06:e0:0e:39:95:d9:ca:9c:fe:82:53: 52:eb:a1:6d:65:f4:15:a7:85:95:61:e2:29:c4:5f: 66:48:fa:c5:ff:93:e1:35:1b:f9:a9:52:f7:99:e4: 50:f6:f5:01:8e:b8:77:4f:03:a8:17:c7:07:c9:5f: ec:8c:2e:36:1e:05:d4:f4:77:16:a1:a6:bb:00:46: a8:10:5e:13:3d:df:ff:af:28:2c:4f:f0:70:60:6a: bc:2d:30:74:7a:d0:c2:59:cc:4d:fc:9c:26:dd:3d: 61:cc:c7:7b:c2:bd:32:08:57:ed:5f:82:79:71:7f: 52:0f:c6:20:7e:c2:ec:56:d4:44:55:21:1b:3c:e0: 04:3a:16:2b:df:f7:d2:98:c2:d8:91:53:00:43:45: 26:62:a0:45:7b:a1:f5:3e:0c:e1:ec:f7:75:5a:82: 93:37:8a:25:2d:91:db:67:5e:a4:9c:4b:6e:05:91: 4d:0b:76:db:88:4a:8a:a8:b3:61:94:c3:bc:d6:36: 9e:e0:10:32:f3:e1:05:7d:56:14:cb:81:3f:10:88: 24:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:1A:B3:09:B1:E6:94:B8:2F:C6:13:A5:38:1A:5A:16:26:E7:6F:97 X509v3 Authority Key Identifier: keyid:54:30:A4:14:AA:05:B6:73:1D:C2:D6:4A:70:C6:19:C6:69:34:6A:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/168BE8747EEE11ECAB036C59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.142.0/23 223.165.6.0/24 IPv6: 2400:8d60:1::-2400:8d60:8:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c9:90:55:3d:ba:9a:c2:5f:52:e7:2d:0b:a1:e3:99:e7:a3:ad: 7a:ba:54:aa:2e:ee:07:a5:78:d6:13:e8:18:ba:54:06:50:f4: 89:80:3a:f8:1f:df:8f:f7:1a:cf:94:52:7c:ea:79:e7:4d:b6: 76:42:6e:2f:43:e1:34:78:3f:c8:88:8d:20:1f:96:9f:46:56: 85:cb:56:3a:96:e0:cf:e8:7e:78:72:22:ce:4a:7e:dc:99:4c: 67:1c:7c:d9:ec:42:4a:46:7f:23:ec:a0:29:ca:fd:b0:9d:7e: 6d:6e:25:43:82:e2:cc:0a:b2:c1:26:30:54:e2:c5:01:6b:95: a8:8a:fd:3a:5b:f8:af:28:20:60:3f:aa:6f:67:32:90:2d:50: d8:cb:be:e2:ca:38:df:00:fd:d7:15:f8:0c:2e:fe:88:fe:47: 5d:d1:93:b1:bd:4f:7c:65:86:8d:09:c4:b1:5b:71:2e:80:c9: ea:9c:2b:3c:b4:7f:af:a6:13:e0:d7:bc:13:a7:d3:ba:14:d5: 09:db:37:8d:3f:0c:1c:42:d3:fe:67:1b:ba:6d:08:44:6e:a7: b8:37:33:80:c0:f0:17:14:db:b5:13:a6:70:47:5b:f5:b5:1d: 24:dc:30:af:c9:ef:a1:8d:4c:f1:af:d2:a6:bc:80:b9:54:7b: e7:11:74:45 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKDU0MzBBNDE0QUEwNUI2NzMxREMyRDY0QTcwQzYxOUM2 NjkzNDZBMEUwHhcNMjQwMzA1MDI0NDQyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2ODcxYS1hMjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7CJC9yE4uPptcFQGmjsE5V6brDIV93Koufny0GJjvI9O2rSrSObl+yWCRgf uynJBuAOOZXZypz+glNS66FtZfQVp4WVYeIpxF9mSPrF/5PhNRv5qVL3meRQ9vUB jrh3TwOoF8cHyV/sjC42HgXU9HcWoaa7AEaoEF4TPd//rygsT/BwYGq8LTB0etDC WcxN/Jwm3T1hzMd7wr0yCFftX4J5cX9SD8YgfsLsVtREVSEbPOAEOhYr3/fSmMLY kVMAQ0UmYqBFe6H1Pgzh7Pd1WoKTN4olLZHbZ16knEtuBZFNC3bbiEqKqLNhlMO8 1jae4BAy8+EFfVYUy4E/EIgkbQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFEIaswmx 5pS4L8YTpTgaWhYm52+XMB8GA1UdIwQYMBaAFFQwpBSqBbZzHcLWSnDGGcZpNGoO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DNDIzMTgzMDc3 QjUxMUVDQTVCQ0UwNUZDNEY5QUUwMi9WRENrRktvRnRuTWR3dFpLY01ZWnhtazBh ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZEQ2tGS29GdG5NZHd0WktjTVlaeG1rMGFnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBRDQvQzQyMzE4MzA3N0I1MTFFQ0E1QkNFMDVGQzRGOUFFMDIvMTY4QkU4NzQ3 RUVFMTFFQ0FCMDM2QzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAFns44DBADfpQYwGgQCAAIwFDASAwcAJACNYAABAwcAJACN YAAIMA0GCSqGSIb3DQEBCwUAA4IBAQDJkFU9uprCX1LnLQuh45nno616ulSqLu4H pXjWE+gYulQGUPSJgDr4H9+P9xrPlFJ86nnnTbZ2Qm4vQ+E0eD/IiI0gH5afRlaF y1Y6luDP6H54ciLOSn7cmUxnHHzZ7EJKRn8j7KApyv2wnX5tbiVDguLMCrLBJjBU 4sUBa5Woiv06W/ivKCBgP6pvZzKQLVDYy77iyjjfAP3XFfgMLv6I/kdd0ZOxvU98 ZYaNCcSxW3EugMnqnCs8tH+vphPg17wTp9O6FNUJ2zeNPwwcQtP+Zxu6bQhEbqe4 NzOAwPAXFNu1E6ZwR1v1tR0k3DCvye+hjUzxr9KmvIC5VHvnEXRF -----END CERTIFICATE-----Generated at Tue May 7 03:53:41 2024 by rpki-client on console-fra.rpki-client.org