$ rpki-client -vvf rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/91FC411C836411EE80C08641C4F9AE02.roa File: 91FC411C836411EE80C08641C4F9AE02.roa (raw, json) Hash identifier: ik83fvgssDeRH2qYMpeR0HP1tctQFMkIskJveD+4Vow= Subject key identifier: F2:2D:8C:5A:F3:3D:36:89:34:18:D8:90:FD:4C:9F:BF:93:08:E1:B2 Certificate issuer: /CN=A9121188/serialNumber=1466407758A8D7B935694896D50275280679AF29 Certificate serial: 02 Authority key identifier: 14:66:40:77:58:A8:D7:B9:35:69:48:96:D5:02:75:28:06:79:AF:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FGZAd1io17k1aUiW1QJ1KAZ5ryk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/91FC411C836411EE80C08641C4F9AE02.roa Signing time: Wed 15 Nov 2023 03:10:47 +0000 ROA not before: Wed 15 Nov 2023 03:10:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 151630 IP address blocks: 103.142.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/FGZAd1io17k1aUiW1QJ1KAZ5ryk.crl rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/FGZAd1io17k1aUiW1QJ1KAZ5ryk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FGZAd1io17k1aUiW1QJ1KAZ5ryk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121188/serialNumber=1466407758A8D7B935694896D50275280679AF29 Validity Not Before: Nov 15 03:10:47 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=655436b6-56da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:7c:12:06:35:36:45:06:d8:66:6b:52:30:fa: 08:e1:6e:98:b3:82:d0:78:01:01:37:91:7f:76:0b: e8:98:3f:cd:9b:f7:d5:a1:c3:0c:8b:92:31:aa:28: 72:23:cf:6e:30:0d:44:69:36:67:d9:8b:2c:dd:94: 68:03:aa:00:7e:85:d9:d5:a5:81:b8:10:e1:6a:85: 79:5e:8b:6b:64:69:ca:51:b9:bc:66:c3:b3:55:d6: 17:09:c5:9c:bd:42:16:2b:46:7d:45:1c:73:fe:bb: 59:7a:de:e9:09:22:14:24:52:c9:75:d3:62:9c:3d: 1b:9b:66:01:f1:65:5e:4e:95:de:32:e6:68:df:27: ce:60:9a:ea:66:e8:2f:c9:6f:2f:78:77:54:7c:54: d1:bf:c9:a7:44:33:98:58:b2:ed:0a:f4:88:21:bd: e8:d9:33:70:2b:84:4d:53:89:6b:c0:9e:64:c2:d0: 71:7f:ae:07:50:6b:74:a3:30:3d:ee:28:bd:cc:fc: 21:83:43:f0:77:df:be:f2:ee:9c:29:67:6f:e5:5c: 0a:ad:37:1e:19:b5:0a:55:67:e4:a9:92:7c:44:c5: 4e:94:c2:28:64:1e:72:61:bf:5e:c1:ce:f9:84:6c: da:2c:2f:c0:28:d1:99:eb:a1:e2:57:8e:d0:54:66: d7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:2D:8C:5A:F3:3D:36:89:34:18:D8:90:FD:4C:9F:BF:93:08:E1:B2 X509v3 Authority Key Identifier: keyid:14:66:40:77:58:A8:D7:B9:35:69:48:96:D5:02:75:28:06:79:AF:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/FGZAd1io17k1aUiW1QJ1KAZ5ryk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FGZAd1io17k1aUiW1QJ1KAZ5ryk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/91FC411C836411EE80C08641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.84.0/23 Signature Algorithm: sha256WithRSAEncryption 24:3a:33:2f:95:05:12:85:45:f2:2c:e9:c9:d8:25:a9:08:92: fc:ce:5d:73:cf:bc:97:49:6d:5a:dc:56:82:01:7c:6a:13:4e: e7:7b:b4:26:cf:7f:3d:2c:08:60:8b:7f:98:67:34:a2:28:57: 89:1e:55:3a:8a:4a:43:25:2f:ae:48:81:36:7f:20:01:59:a7: 50:e8:b9:3b:85:0b:50:84:32:cf:4e:90:85:c9:cc:13:d1:99: 92:b3:ef:af:2f:e5:04:13:77:76:1d:3d:a0:1d:63:61:22:9c: d2:03:f3:3b:9c:db:4d:60:d1:60:20:ab:2a:34:48:33:0e:b0: 9e:d2:10:56:05:ec:ac:83:5a:b1:f1:43:7c:cd:3f:33:46:eb: c6:f0:24:f6:7e:14:60:17:39:42:a8:84:5a:6c:40:26:ea:fd: 5c:b8:1c:3e:c9:99:af:53:e2:74:57:b6:58:c3:56:54:7a:c5: c6:f2:1e:ea:44:5e:28:de:47:2d:c5:b8:75:f9:97:06:65:b1: b8:00:1c:c8:a8:e0:19:e7:13:a4:f3:74:d9:58:c6:79:0f:83: f1:79:c5:b3:45:b9:5e:a8:b4:8c:55:84:e3:cf:9d:a6:77:67: ed:a2:8b:91:29:28:9f:25:68:0a:84:37:dd:9a:ed:15:aa:e7: f1:bd:b4:ac -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MTE4ODExMC8GA1UEBRMoMTQ2NjQwNzc1OEE4RDdCOTM1Njk0ODk2RDUwMjc1Mjgw Njc5QUYyOTAeFw0yMzExMTUwMzEwNDdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NTQzNmI2LTU2ZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1fBIGNTZFBthma1Iw+gjhbpizgtB4AQE3kX92C+iYP82b99WhwwyLkjGqKHIj z24wDURpNmfZiyzdlGgDqgB+hdnVpYG4EOFqhXlei2tkacpRubxmw7NV1hcJxZy9 QhYrRn1FHHP+u1l63ukJIhQkUsl102KcPRubZgHxZV5Old4y5mjfJ85gmupm6C/J by94d1R8VNG/yadEM5hYsu0K9IghvejZM3ArhE1TiWvAnmTC0HF/rgdQa3SjMD3u KL3M/CGDQ/B3377y7pwpZ2/lXAqtNx4ZtQpVZ+SpknxExU6UwihkHnJhv17BzvmE bNosL8Ao0ZnroeJXjtBUZtc5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8i2MWvM9 Nok0GNiQ/Uyfv5MI4bIwHwYDVR0jBBgwFoAUFGZAd1io17k1aUiW1QJ1KAZ5rykw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxMTg4Lzg0QkFBMDZDODM2 MzExRUVCQzE5MUIxRUM0RjlBRTAyL0ZHWkFkMWlvMTdrMWFVaVcxUUoxS0FaNXJ5 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRkdaQWQxaW8xN2sxYVVpVzFRSjFLQVo1cnlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTE4OC84NEJBQTA2QzgzNjMxMUVFQkMxOTFCMUVDNEY5QUUwMi85MUZDNDExQzgz NjQxMUVFODBDMDg2NDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeOVDANBgkqhkiG9w0BAQsFAAOCAQEAJDozL5UFEoVF8izp ydglqQiS/M5dc8+8l0ltWtxWggF8ahNO53u0Js9/PSwIYIt/mGc0oihXiR5VOopK QyUvrkiBNn8gAVmnUOi5O4ULUIQyz06QhcnME9GZkrPvry/lBBN3dh09oB1jYSKc 0gPzO5zbTWDRYCCrKjRIMw6wntIQVgXsrINasfFDfM0/M0brxvAk9n4UYBc5QqiE WmxAJur9XLgcPsmZr1PidFe2WMNWVHrFxvIe6kReKN5HLcW4dfmXBmWxuAAcyKjg GecTpPN02VjGeQ+D8XnFs0W5Xqi0jFWE48+dpndn7aKLkSkonyVoCoQ33ZrtFarn 8b20rA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org