$ rpki-client -vvf rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/6EA6EB5A355011EBAAB1E56EC4F9AE02.roa File: 6EA6EB5A355011EBAAB1E56EC4F9AE02.roa (raw, json) Hash identifier: js92WdHTgwYeYUJwq8GTDLtVj0ldWBn8KlPdiu7W0Hk= Subject key identifier: D3:8D:D6:2C:70:D4:52:14:FF:3A:A7:75:6E:6B:3F:F4:BB:55:9A:BE Certificate issuer: /CN=A91100B2/serialNumber=93A7D835E13858BB59951C399A5F9EAB0E2EB931 Certificate serial: 05F4 Authority key identifier: 93:A7:D8:35:E1:38:58:BB:59:95:1C:39:9A:5F:9E:AB:0E:2E:B9:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k6fYNeE4WLtZlRw5ml-eqw4uuTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/6EA6EB5A355011EBAAB1E56EC4F9AE02.roa Signing time: Fri 22 Sep 2023 20:38:15 +0000 ROA not before: Fri 22 Sep 2023 20:38:15 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 137551 IP address blocks: 103.121.188.0/24 maxlen: 24 103.121.189.0/24 maxlen: 24 103.121.190.0/24 maxlen: 24 103.121.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/k6fYNeE4WLtZlRw5ml-eqw4uuTE.crl rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/k6fYNeE4WLtZlRw5ml-eqw4uuTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k6fYNeE4WLtZlRw5ml-eqw4uuTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 20:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1524 (0x5f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91100B2/serialNumber=93A7D835E13858BB59951C399A5F9EAB0E2EB931 Validity Not Before: Sep 22 20:38:15 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650dfb37-2ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:12:0a:d4:74:16:0f:ef:94:33:4f:52:07:2d: 4b:45:f6:33:17:1a:d6:83:b7:e5:37:52:cc:80:86: 02:f5:a9:b8:76:9b:d4:77:be:f4:d2:31:2a:f3:95: 65:c9:56:7d:fc:f8:f7:6c:32:b5:ff:95:99:10:a4: d8:67:aa:c2:e6:3d:d7:27:32:7a:e0:cd:b4:fe:6c: cd:40:6b:50:f3:33:6b:8f:e2:0c:65:1f:59:b9:85: ff:6f:3c:40:5e:8f:8b:1d:58:b4:44:c4:87:72:18: b0:2e:dd:5a:4a:1b:1f:27:77:2a:df:b5:b0:78:b1: ad:cc:fe:96:05:11:18:d0:f7:87:bc:66:82:fd:6b: 30:8e:82:fc:e8:b4:5c:fc:c5:ed:01:57:5c:99:20: 69:f4:ce:93:67:5c:b5:a5:d3:e6:f3:b8:18:f3:a0: c0:c8:b8:8b:2f:96:1d:2b:9f:31:35:81:d7:58:78: fa:19:be:e5:6a:85:3e:25:fe:60:a8:44:05:c0:02: 4e:d1:da:80:64:ef:f4:30:d4:f2:e1:eb:8a:38:b1: 40:a3:4e:49:81:19:d0:b7:bf:c8:f0:b3:a7:55:eb: ea:a8:be:28:53:9f:9f:90:f4:75:6e:cd:b2:ef:aa: fc:cd:96:15:53:61:8a:8c:93:7b:90:56:33:68:06: a9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8D:D6:2C:70:D4:52:14:FF:3A:A7:75:6E:6B:3F:F4:BB:55:9A:BE X509v3 Authority Key Identifier: keyid:93:A7:D8:35:E1:38:58:BB:59:95:1C:39:9A:5F:9E:AB:0E:2E:B9:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/k6fYNeE4WLtZlRw5ml-eqw4uuTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k6fYNeE4WLtZlRw5ml-eqw4uuTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91100B2/0AF6EB2A73E811EA8851F87CC4F9AE02/6EA6EB5A355011EBAAB1E56EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.188.0/22 Signature Algorithm: sha256WithRSAEncryption aa:a6:35:f7:8f:2b:1f:f2:f0:3e:60:6b:9e:8c:ae:bd:4f:20: bc:58:6e:7a:0f:9b:88:01:de:f5:23:1c:7e:6b:f3:bf:bf:b9: 3b:ee:1e:8e:fe:34:a6:02:b0:de:99:54:19:82:0f:d0:de:ac: c8:b9:4a:9d:99:1e:25:7f:06:9e:af:1f:54:73:19:bd:42:f6: d0:bc:cc:a1:17:9f:3a:5e:f3:3d:49:0d:63:04:10:57:61:b6: 5b:32:c4:7e:4f:3b:12:77:76:7a:5a:a2:cb:13:f0:59:98:7e: 5e:dd:f8:b2:c8:6d:c6:dc:a0:4c:c6:03:e1:9d:ca:49:6f:5e: 98:c5:36:0f:ff:a9:fa:20:6b:16:e5:5d:1c:f2:80:1f:be:9c: 6c:77:fc:5d:e7:44:f1:7c:9a:a7:1b:54:fa:f1:cb:0c:9b:5a: 9a:35:d8:db:fc:c6:88:0c:63:bc:ac:c1:fc:28:2b:7f:be:08: f3:70:24:90:f4:61:12:f8:02:e7:e4:a3:8c:5f:72:a3:c7:f8: 16:00:96:f0:18:0f:a2:b8:c6:9b:cd:72:49:06:92:97:cb:07: 10:3e:d5:84:dc:66:c3:77:50:9f:2c:6e:5f:64:5b:ca:68:59: 8a:e3:bd:30:e0:4b:d3:96:11:c2:51:3f:a9:60:73:66:f0:41: c3:53:4e:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAwQjIxMTAvBgNVBAUTKDkzQTdEODM1RTEzODU4QkI1OTk1MUMzOTlBNUY5RUFC MEUyRUI5MzEwHhcNMjMwOTIyMjAzODE1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBkZmIzNy0yY2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhIK1HQWD++UM09SBy1LRfYzFxrWg7flN1LMgIYC9am4dpvUd7700jEq85Vl yVZ9/Pj3bDK1/5WZEKTYZ6rC5j3XJzJ64M20/mzNQGtQ8zNrj+IMZR9ZuYX/bzxA Xo+LHVi0RMSHchiwLt1aShsfJ3cq37WweLGtzP6WBREY0PeHvGaC/WswjoL86LRc /MXtAVdcmSBp9M6TZ1y1pdPm87gY86DAyLiLL5YdK58xNYHXWHj6Gb7laoU+Jf5g qEQFwAJO0dqAZO/0MNTy4euKOLFAo05JgRnQt7/I8LOnVevqqL4oU5+fkPR1bs2y 76r8zZYVU2GKjJN7kFYzaAapnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNON1ixw 1FIU/zqndW5rP/S7VZq+MB8GA1UdIwQYMBaAFJOn2DXhOFi7WZUcOZpfnqsOLrkx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDBCMi8wQUY2RUIyQTcz RTgxMUVBODg1MUY4N0NDNEY5QUUwMi9rNmZZTmVFNFdMdFpsUnc1bWwtZXF3NHV1 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s2ZllOZUU0V0x0WmxSdzVtbC1lcXc0dXVURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTAwQjIvMEFGNkVCMkE3M0U4MTFFQTg4NTFGODdDQzRGOUFFMDIvNkVBNkVCNUEz NTUwMTFFQkFBQjFFNTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnebwwDQYJKoZIhvcNAQELBQADggEBAKqmNfePKx/y8D5g a56Mrr1PILxYbnoPm4gB3vUjHH5r87+/uTvuHo7+NKYCsN6ZVBmCD9DerMi5Sp2Z HiV/Bp6vH1RzGb1C9tC8zKEXnzpe8z1JDWMEEFdhtlsyxH5POxJ3dnpaossT8FmY fl7d+LLIbcbcoEzGA+GdyklvXpjFNg//qfogaxblXRzygB++nGx3/F3nRPF8mqcb VPrxywybWpo12Nv8xogMY7yswfwoK3++CPNwJJD0YRL4Aufko4xfcqPH+BYAlvAY D6K4xpvNckkGkpfLBxA+1YTcZsN3UJ8sbl9kW8poWYrjvTDgS9OWEcJRP6lgc2bw QcNTTns= -----END CERTIFICATE-----Generated at Sun Jun 16 23:12:57 2024 by rpki-client on console-ams.rpki-client.org