$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/4E17ACCEF02511EE94BE6C37C4F9AE02.roa File: 4E17ACCEF02511EE94BE6C37C4F9AE02.roa (raw, json) Hash identifier: GmDLur4NSe492mXNcpGr7hV3TmJjYO1NSU0FXDjofS0= Subject key identifier: 7B:9A:2A:9E:F0:17:F8:0C:66:EE:ED:79:B0:A8:2F:56:2B:B9:88:B2 Certificate issuer: /CN=A91FF3B6/serialNumber=660EDDBB35D53756C306BD8CD917DACFF7896CBD Certificate serial: 050B Authority key identifier: 66:0E:DD:BB:35:D5:37:56:C3:06:BD:8C:D9:17:DA:CF:F7:89:6C:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/4E17ACCEF02511EE94BE6C37C4F9AE02.roa Signing time: Mon 01 Apr 2024 12:42:31 +0000 ROA not before: Mon 01 Apr 2024 12:42:31 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 132220 IP address blocks: 103.216.164.0/22 maxlen: 22 103.216.165.0/24 maxlen: 24 103.216.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.crl rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1291 (0x50b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF3B6/serialNumber=660EDDBB35D53756C306BD8CD917DACFF7896CBD Validity Not Before: Apr 1 12:42:31 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=660aabb7-4e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a0:14:92:19:0b:ec:ea:e2:78:c1:74:11:ce: c3:d8:3a:a2:2c:c1:25:c0:d5:f8:ac:c0:76:18:5d: 82:47:56:b6:86:3e:3d:4a:2d:3a:1d:d8:e9:e8:bb: ae:b4:83:0b:42:f4:a2:f6:0e:4b:00:a4:34:29:e3: be:64:6f:20:8f:a2:f3:9f:c6:f7:eb:c4:ab:4c:85: e9:ae:f5:41:86:3e:4e:62:d4:b6:3d:2c:6d:cb:b2: 9b:24:2a:9c:34:6d:b7:e0:7a:82:d4:7c:d8:1f:f7: 3c:ca:27:6b:d3:93:68:99:b1:3b:da:a4:7f:8b:46: 59:4c:10:fd:69:53:0c:b9:06:00:89:d5:bd:3c:9d: d9:66:84:aa:5e:b6:f0:69:ad:82:6f:92:f4:c9:83: 36:96:3e:5d:14:8c:49:b0:c6:bb:d7:c5:00:f1:ed: f8:ab:da:03:d8:35:42:07:94:49:56:5a:a0:fb:ad: 4e:f3:a3:cf:61:ad:d3:ba:90:03:f0:51:2c:2f:73: 82:7a:1a:38:e7:35:1a:79:b6:ae:ba:f2:f0:b9:3e: 55:d6:ae:bc:dc:f0:e9:7e:67:80:f6:56:da:ed:cd: f2:02:56:97:22:8f:e5:b9:39:a0:14:84:a2:67:e6: 33:87:5b:c1:27:54:fa:9b:96:2a:17:77:07:0e:da: 82:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9A:2A:9E:F0:17:F8:0C:66:EE:ED:79:B0:A8:2F:56:2B:B9:88:B2 X509v3 Authority Key Identifier: keyid:66:0E:DD:BB:35:D5:37:56:C3:06:BD:8C:D9:17:DA:CF:F7:89:6C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/4E17ACCEF02511EE94BE6C37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.216.164.0/22 Signature Algorithm: sha256WithRSAEncryption 23:35:e9:2c:ae:2d:c9:01:6d:2d:8e:39:0e:3e:6e:ec:3f:80: bf:7c:00:18:cf:89:82:60:24:fd:3e:bd:ae:9e:47:35:7c:35: da:09:b0:a4:d1:1d:16:b1:33:4b:05:a2:12:5b:6b:2f:ff:a0: 36:42:f0:df:9d:f5:fd:ca:63:a4:5f:26:9f:ff:14:c4:03:c2: f0:92:f5:d8:69:d4:9f:bd:ef:47:16:26:ca:e2:f5:16:f9:e0: ec:95:d1:7c:06:15:3b:06:e1:b9:a7:1c:9e:67:66:de:87:95: dd:14:73:99:98:2f:da:f0:b3:ce:7d:a8:8b:9a:84:21:a0:e8: 6f:04:e5:97:25:2c:46:07:11:af:6f:f5:f8:74:6c:06:6b:43: d8:e3:e0:79:f8:22:0f:69:50:0f:18:c2:83:f3:6a:66:36:9d: e2:69:7b:b9:7d:9c:9f:b3:06:92:20:d6:64:e2:15:32:61:4a: 66:06:c7:d7:19:d9:82:54:d3:28:c5:b3:ff:c7:8b:e1:02:a3: 95:1c:e1:39:de:23:3b:fb:74:b8:ad:bb:b0:06:38:e6:ac:da: 25:31:57:db:b2:43:bd:50:1b:4e:89:c9:a5:42:21:3b:40:4c: 6b:d1:61:95:fa:88:7c:d8:28:b2:3d:9d:40:79:c4:4a:d2:3b: 37:a5:7c:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYzQjYxMTAvBgNVBAUTKDY2MEVEREJCMzVENTM3NTZDMzA2QkQ4Q0Q5MTdEQUNG Rjc4OTZDQkQwHhcNMjQwNDAxMTI0MjMxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBhYWJiNy00ZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8aAUkhkL7OrieMF0Ec7D2DqiLMElwNX4rMB2GF2CR1a2hj49Si06Hdjp6Luu tIMLQvSi9g5LAKQ0KeO+ZG8gj6Lzn8b368SrTIXprvVBhj5OYtS2PSxty7KbJCqc NG234HqC1HzYH/c8yidr05NombE72qR/i0ZZTBD9aVMMuQYAidW9PJ3ZZoSqXrbw aa2Cb5L0yYM2lj5dFIxJsMa718UA8e34q9oD2DVCB5RJVlqg+61O86PPYa3TupAD 8FEsL3OCeho45zUaebauuvLwuT5V1q683PDpfmeA9lba7c3yAlaXIo/luTmgFISi Z+Yzh1vBJ1T6m5YqF3cHDtqCFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHuaKp7w F/gMZu7tebCoL1YruYiyMB8GA1UdIwQYMBaAFGYO3bs11TdWwwa9jNkX2s/3iWy9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjNCNi81MDhBQ0QyOEJD OTkxMUVCQTFBQjU2NEJDNEY5QUUwMi9aZzdkdXpYVk4xYkRCcjJNMlJmYXpfZUpi TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnN2R1elhWTjFiREJyMk0yUmZhel9lSmJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkYzQjYvNTA4QUNEMjhCQzk5MTFFQkExQUI1NjRCQzRGOUFFMDIvNEUxN0FDQ0VG MDI1MTFFRTk0QkU2QzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn2KQwDQYJKoZIhvcNAQELBQADggEBACM16SyuLckBbS2O OQ4+buw/gL98ABjPiYJgJP0+va6eRzV8NdoJsKTRHRaxM0sFohJbay//oDZC8N+d 9f3KY6RfJp//FMQDwvCS9dhp1J+970cWJsri9Rb54OyV0XwGFTsG4bmnHJ5nZt6H ld0Uc5mYL9rws859qIuahCGg6G8E5ZclLEYHEa9v9fh0bAZrQ9jj4Hn4Ig9pUA8Y woPzamY2neJpe7l9nJ+zBpIg1mTiFTJhSmYGx9cZ2YJU0yjFs//Hi+ECo5Uc4Tne Izv7dLitu7AGOOas2iUxV9uyQ71QG06JyaVCITtATGvRYZX6iHzYKLI9nUB5xErS OzelfIk= -----END CERTIFICATE-----Generated at Fri May 17 01:47:19 2024 by rpki-client on console-fra.rpki-client.org