$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/82C54A1E3BD311EE84056461C4F9AE02.roa File: 82C54A1E3BD311EE84056461C4F9AE02.roa (raw, json) Hash identifier: H1ge2MPSBncXeUxZjwux7oLKDAw5t7dscZ/naMsDL0w= Subject key identifier: 79:BA:05:C3:74:39:BF:DD:85:9A:CB:FB:6F:6D:AD:F3:0A:E3:6F:25 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 32 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/82C54A1E3BD311EE84056461C4F9AE02.roa Signing time: Thu 19 Oct 2023 05:58:35 +0000 ROA not before: Thu 19 Oct 2023 05:58:35 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132405 IP address blocks: 103.126.80.0/24 maxlen: 24 103.126.81.0/24 maxlen: 24 103.243.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 06:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Oct 19 05:58:35 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6530c58b-59c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c6:c9:5b:8c:d4:4f:c6:e3:6a:58:ac:25:15: 73:3c:44:26:72:db:43:e0:30:59:88:99:5b:6f:c0: 23:0e:be:6d:85:83:a5:a5:21:a7:d2:ba:f6:96:7f: 11:25:0d:0b:1b:e8:4e:20:f9:7d:80:3e:a3:69:4d: d1:2e:40:f0:cf:5b:98:73:cf:41:6d:2c:2c:3a:db: 02:98:09:a4:89:99:0b:b1:cc:24:09:3d:0c:3e:0d: a3:5a:70:21:c2:d5:47:5d:6b:35:76:ea:c6:97:0f: 30:fb:75:9d:5d:a0:a5:fd:b0:5f:17:9c:88:7a:97: 2b:a6:df:b8:93:25:68:7a:3d:11:a7:68:21:54:bf: 64:f3:db:55:83:69:b5:9c:dc:c0:75:86:dc:4d:7a: 32:21:49:f2:1f:b5:20:93:0e:1c:11:6d:62:8c:68: 1e:1a:74:b2:81:ed:0c:3e:e8:14:8b:2f:38:48:0c: 22:0d:5a:63:87:48:44:0f:18:32:d5:c6:e5:4e:58: 2b:32:07:dd:85:bd:b8:dc:1e:46:7e:19:d4:a9:48: b1:ea:8f:52:6b:6a:3b:71:7f:93:29:10:d1:66:89: 7b:6c:1e:b6:e8:1b:87:55:c6:cf:77:15:a3:49:7c: 2a:73:98:05:15:5e:0a:e9:f2:e2:83:51:59:ba:7a: 16:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BA:05:C3:74:39:BF:DD:85:9A:CB:FB:6F:6D:AD:F3:0A:E3:6F:25 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/82C54A1E3BD311EE84056461C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.80.0/23 103.243.17.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:16:5f:8d:5a:40:e4:c7:c8:ac:04:01:f7:74:36:40:c6:a3: e9:48:8d:20:e9:25:2a:99:06:77:09:66:9c:24:ab:3b:7b:9d: 12:a7:32:6f:f5:c5:21:da:2a:75:0e:5d:a4:46:7f:89:1a:41: 86:a2:84:ea:5d:dd:67:8b:a4:c0:d0:b4:83:83:38:ca:1f:c4: 84:a6:19:9b:62:30:9d:d0:32:14:03:85:c0:45:5d:17:d3:74: 12:b7:64:6b:c3:8d:01:32:be:7a:79:4b:2b:9d:c1:b1:da:d2: d9:8e:77:c0:69:4b:c4:9e:f4:ae:bf:10:b6:52:94:60:f7:67: 44:a6:4f:11:b4:9e:05:b0:6e:68:a0:e8:00:cf:c0:40:fa:87: 62:c7:66:74:25:97:52:20:8e:8e:e2:e3:a5:18:63:d9:b2:8e: 42:db:49:8a:60:cf:db:c4:6a:0e:93:e1:91:51:b0:c7:66:f2: 9d:9a:86:1e:f9:97:f8:53:a3:3a:bb:b1:4a:86:a3:0b:c8:8d: 39:86:e2:19:77:4d:db:c2:c8:4e:5c:0a:6d:41:fb:99:bc:dc: 2f:81:59:00:ba:96:6b:de:fe:4a:fb:5e:45:10:cd:c0:fe:40: 11:74:ad:be:04:cc:28:98:21:9a:42:85:41:c6:57:66:00:ac: dd:78:36:0f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REREMTExMC8GA1UEBRMoMjE2QUQxRDc1QTkzRTAzN0FFOTRGNkM5MTg5NkQyRDU4 MkQ4RkY1NDAeFw0yMzEwMTkwNTU4MzVaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzBjNThiLTU5YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVxslbjNRPxuNqWKwlFXM8RCZy20PgMFmImVtvwCMOvm2Fg6WlIafSuvaWfxEl DQsb6E4g+X2APqNpTdEuQPDPW5hzz0FtLCw62wKYCaSJmQuxzCQJPQw+DaNacCHC 1UddazV26saXDzD7dZ1doKX9sF8XnIh6lyum37iTJWh6PRGnaCFUv2Tz21WDabWc 3MB1htxNejIhSfIftSCTDhwRbWKMaB4adLKB7Qw+6BSLLzhIDCINWmOHSEQPGDLV xuVOWCsyB92FvbjcHkZ+GdSpSLHqj1Jrajtxf5MpENFmiXtsHrboG4dVxs93FaNJ fCpzmAUVXgrp8uKDUVm6ehYfAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUeboFw3Q5 v92Fmsv7b22t8wrjbyUwHwYDVR0jBBgwFoAUIWrR11qT4DeulPbJGJbS1YLY/1Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZEREQxLzY4QzFENDk2M0JE MDExRUU4QkFDMzUxQUM0RjlBRTAyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8x US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVdyUjExcVQ0RGV1bFBiSkdKYlMxWUxZXzFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi84MkM1NEExRTNC RDMxMUVFODQwNTY0NjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAWd+UAMEAGfzETANBgkqhkiG9w0BAQsFAAOCAQEAOhZfjVpA 5MfIrAQB93Q2QMaj6UiNIOklKpkGdwlmnCSrO3udEqcyb/XFIdoqdQ5dpEZ/iRpB hqKE6l3dZ4ukwNC0g4M4yh/EhKYZm2IwndAyFAOFwEVdF9N0Erdka8ONATK+enlL K53BsdrS2Y53wGlLxJ70rr8QtlKUYPdnRKZPEbSeBbBuaKDoAM/AQPqHYsdmdCWX UiCOjuLjpRhj2bKOQttJimDP28RqDpPhkVGwx2bynZqGHvmX+FOjOruxSoajC8iN OYbiGXdN28LITlwKbUH7mbzcL4FZALqWa97+SvteRRDNwP5AEXStvgTMKJghmkKF QcZXZgCs3Xg2Dw== -----END CERTIFICATE-----Generated at Thu Jun 13 07:43:07 2024 by rpki-client on console-fra.rpki-client.org