$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/6804606CF00E11EE974DF92AC4F9AE02.roa File: 6804606CF00E11EE974DF92AC4F9AE02.roa (raw, json) Hash identifier: 9xqP/kIAA2eRAvHEDJ/QmUB4PlLWr5iqM4l5LuloYIU= Subject key identifier: 02:51:E1:80:80:14:2E:5E:87:4C:0C:B1:27:B7:E3:06:9F:D3:0E:3D Certificate issuer: /CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496 Certificate serial: 04 Authority key identifier: 0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/6804606CF00E11EE974DF92AC4F9AE02.roa Signing time: Mon 01 Apr 2024 09:58:36 +0000 ROA not before: Mon 01 Apr 2024 09:58:36 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137185 IP address blocks: 103.230.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.crl rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 09:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496 Validity Not Before: Apr 1 09:58:36 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=660a854c-aa68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a6:50:8c:12:a6:a5:3f:e0:b5:a8:44:b5:46: 87:85:e4:99:20:49:ec:e9:96:14:55:9c:b6:84:e7: 65:16:35:aa:c8:40:df:ea:47:89:c3:5d:c9:ae:d0: 91:58:dd:85:db:3a:0e:e7:4d:4d:95:60:45:7f:88: 50:a7:6d:f6:e9:20:98:b6:2d:2c:73:34:4b:2c:d3: 43:d9:01:41:db:43:35:dd:98:e0:cd:97:b1:30:99: 22:55:6f:f8:3b:99:8e:e1:5a:94:ba:4b:0c:b3:1d: ef:1f:65:05:00:ca:1c:96:6b:2a:58:d2:19:72:db: fe:27:8a:5c:43:c0:c3:18:d7:18:8d:42:f5:7d:f4: 4a:21:c1:47:0e:28:a5:05:0f:d7:6d:5b:62:85:db: f8:8b:e8:0e:e2:a7:4b:71:3e:6f:67:e5:c5:a3:c9: b1:db:0b:bf:df:37:d0:09:49:1d:18:3e:58:4a:46: 0d:10:3a:ab:fe:98:86:16:98:c4:c1:7c:ac:3a:a4: ac:5e:86:29:b8:86:d0:0d:97:9e:52:fa:87:1f:ec: b4:05:df:e0:bd:d6:f5:12:47:ff:ad:b0:96:25:de: 1b:4d:da:69:f7:fa:7f:a9:29:98:6b:81:35:10:d9: 86:91:cf:6b:67:eb:f4:77:cd:0d:d4:9b:67:a3:6e: c5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:51:E1:80:80:14:2E:5E:87:4C:0C:B1:27:B7:E3:06:9F:D3:0E:3D X509v3 Authority Key Identifier: keyid:0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/6804606CF00E11EE974DF92AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.92.0/23 Signature Algorithm: sha256WithRSAEncryption 61:5c:e6:b5:99:86:f1:f1:3a:64:c0:44:55:b7:63:bf:46:85: 7a:98:10:1e:37:04:1c:5a:b4:6e:39:35:ff:52:1a:4e:52:0d: 51:b1:49:25:b2:fc:33:64:76:59:4e:7d:1c:d2:ba:0c:0b:92: f8:c3:c9:58:11:47:ab:f5:c5:e2:d6:a0:d3:fb:ec:9a:c0:a9: ca:96:49:43:a8:e7:03:ce:e6:39:cf:b4:21:a1:0f:b5:92:9e: f3:b5:94:0f:fc:dd:0b:1b:af:e0:ea:19:c0:e2:11:53:c4:7e: 64:59:da:18:e7:51:a2:8c:d0:27:a9:66:c4:10:b7:11:9c:73: de:47:b9:f3:98:e8:06:88:b2:ff:73:e3:b9:87:80:44:03:d8: d5:a5:fc:62:be:f7:97:46:d9:c8:ab:9b:d8:d1:10:ca:0f:87: 21:80:2f:1d:75:87:1f:ef:41:4f:76:8f:09:23:28:7a:28:88: 01:b3:aa:89:8e:4e:a7:85:88:2b:fc:e5:52:09:ee:e7:e2:01: 32:55:fe:5d:da:66:26:52:45:f3:ba:02:20:54:73:41:b3:61: b1:3b:1f:53:90:29:13:96:eb:4f:6d:76:bc:33:93:3e:d6:cb: a6:83:8b:3a:bf:6c:3c:dc:4b:8f:41:9a:d3:51:fc:6d:58:ff: e2:25:b5:1b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RTlEQzExMC8GA1UEBRMoMEY5RjcxNThEQkRGRkEyQTU3QUUwMjQ4N0M5ODIwNkI3 ODM4MDQ5NjAeFw0yNDA0MDEwOTU4MzZaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGE4NTRjLWFhNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3plCMEqalP+C1qES1RoeF5JkgSezplhRVnLaE52UWNarIQN/qR4nDXcmu0JFY 3YXbOg7nTU2VYEV/iFCnbfbpIJi2LSxzNEss00PZAUHbQzXdmODNl7EwmSJVb/g7 mY7hWpS6SwyzHe8fZQUAyhyWaypY0hly2/4nilxDwMMY1xiNQvV99EohwUcOKKUF D9dtW2KF2/iL6A7ip0txPm9n5cWjybHbC7/fN9AJSR0YPlhKRg0QOqv+mIYWmMTB fKw6pKxehim4htANl55S+ocf7LQF3+C91vUSR/+tsJYl3htN2mn3+n+pKZhrgTUQ 2YaRz2tn6/R3zQ3Um2ejbsVlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUAlHhgIAU Ll6HTAyxJ7fjBp/TDj0wHwYDVR0jBBgwFoAUD59xWNvf+ipXrgJIfJgga3g4BJYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFOURDLzZFRUMxRjVDRUZG RDExRUU5MDI4OEE3MkM0RjlBRTAyL0Q1OXhXTnZmLWlwWHJnSklmSmdnYTNnNEJK WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRDU5eFdOdmYtaXBYcmdKSWZKZ2dhM2c0QkpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlEQy82RUVDMUY1Q0VGRkQxMUVFOTAyODhBNzJDNEY5QUUwMi82ODA0NjA2Q0Yw MEUxMUVFOTc0REY5MkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfmXDANBgkqhkiG9w0BAQsFAAOCAQEAYVzmtZmG8fE6ZMBE Vbdjv0aFepgQHjcEHFq0bjk1/1IaTlINUbFJJbL8M2R2WU59HNK6DAuS+MPJWBFH q/XF4tag0/vsmsCpypZJQ6jnA87mOc+0IaEPtZKe87WUD/zdCxuv4OoZwOIRU8R+ ZFnaGOdRoozQJ6lmxBC3EZxz3ke585joBoiy/3PjuYeARAPY1aX8Yr73l0bZyKub 2NEQyg+HIYAvHXWHH+9BT3aPCSMoeiiIAbOqiY5Op4WIK/zlUgnu5+IBMlX+Xdpm JlJF87oCIFRzQbNhsTsfU5ApE5brT212vDOTPtbLpoOLOr9sPNxLj0Ga01H8bVj/ 4iW1Gw== -----END CERTIFICATE-----Generated at Wed May 29 11:18:35 2024 by rpki-client on console-fra.rpki-client.org