$ rpki-client -vvf rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/9017F7B806EC11EF8B407A22C4F9AE02.roa File: 9017F7B806EC11EF8B407A22C4F9AE02.roa (raw, json) Hash identifier: fjO5oGSV6ymTqlEsjpGS5r7v9tWqSzy+GhUqr4kG2+Q= Subject key identifier: 6C:F2:0A:7C:33:0C:3E:35:2A:F8:2A:3F:AE:81:11:61:1E:02:32:29 Certificate issuer: /CN=A91228BC/serialNumber=98B5C6147618FCB64C214DCCC0777413087E9770 Certificate serial: 04D5 Authority key identifier: 98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/9017F7B806EC11EF8B407A22C4F9AE02.roa Signing time: Mon 03 Jun 2024 08:23:09 +0000 ROA not before: Mon 03 Jun 2024 08:23:09 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142559 IP address blocks: 103.169.99.0/24 maxlen: 24 2001:df6:f580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.crl rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 22:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1237 (0x4d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228BC/serialNumber=98B5C6147618FCB64C214DCCC0777413087E9770 Validity Not Before: Jun 3 08:23:09 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=665d7d6c-6091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:35:62:46:0e:e7:c0:01:b7:11:d2:2f:23:08: df:b9:8c:8e:54:9e:0b:88:12:10:d8:6b:7e:9a:5e: 92:55:76:ed:43:44:bc:0a:5c:ba:9e:57:01:32:25: 2b:8f:ce:2c:b7:93:79:b8:af:34:2c:31:93:1a:dd: 1d:33:0e:39:42:96:cb:50:fa:c7:1e:22:b7:70:35: d1:43:67:dc:61:1a:b9:78:3d:42:d7:7b:a8:d7:cc: f9:fa:95:70:89:5c:c6:d0:50:75:0a:7a:8c:97:d1: 81:ca:11:77:02:2f:08:d9:9e:f4:ea:10:13:66:2e: b9:ce:2e:e1:5c:2a:93:02:b3:ad:15:e6:74:7f:31: 4f:fa:54:ec:25:0a:c1:98:6c:95:f2:35:fd:8a:1f: 4f:7f:4a:f3:d8:2b:37:5c:24:1e:08:0b:ab:23:08: 38:22:fc:cd:92:85:47:58:e9:9e:90:b1:db:c2:ae: 8d:a7:2b:da:1a:dd:08:8d:a9:21:82:df:22:2a:30: 70:e9:e4:f7:8f:1d:2b:97:c4:0c:d4:17:74:de:64: 19:16:79:cb:c7:72:dc:31:df:44:12:50:6b:ed:54: 34:04:ae:b7:4d:2d:e3:60:55:3c:86:29:78:1f:70: 41:dc:bb:25:ec:b6:a3:30:16:5f:c0:e4:a9:07:3f: 87:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F2:0A:7C:33:0C:3E:35:2A:F8:2A:3F:AE:81:11:61:1E:02:32:29 X509v3 Authority Key Identifier: keyid:98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/9017F7B806EC11EF8B407A22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.99.0/24 IPv6: 2001:df6:f580::/48 Signature Algorithm: sha256WithRSAEncryption a7:f1:f0:90:c6:fc:fd:53:aa:38:6e:1d:5e:30:12:6c:aa:1d: d5:82:3f:13:c9:df:d3:64:1e:df:01:4d:5a:4c:af:c7:03:06: 4f:c5:93:a6:78:56:e2:df:91:14:6f:03:c5:7d:97:ba:7a:c4: 22:04:d3:af:6c:85:50:b4:87:97:76:34:cc:a6:75:e0:a6:89: 48:5f:d5:1c:4b:5c:20:15:37:b8:f1:7a:e3:4c:41:74:81:44: c9:c1:7b:81:b1:6a:f3:81:65:51:80:14:18:0d:ad:d8:20:9b: 73:a9:d9:f2:56:be:21:06:34:57:7e:6a:27:d3:f4:0c:11:9a: 52:33:79:3d:52:1d:8e:51:20:8e:06:90:88:fa:70:58:b0:fd: d8:e3:d3:39:2c:3e:92:d1:79:d6:21:1c:96:1e:64:c1:06:df: 8f:b2:fb:e1:85:28:e7:65:3a:6e:85:6c:2b:c1:9f:e7:cc:35: bc:e7:e2:8c:e3:39:af:d0:31:e4:0e:cf:2a:6a:35:13:9d:1f: 39:02:4d:c1:8b:e4:95:93:43:ab:8e:30:c5:53:f7:ef:22:83: 04:2f:37:b0:85:a4:65:2f:90:3f:e3:a7:bf:e1:e3:32:34:cc: 2d:21:b6:c9:fb:77:07:6c:c7:2b:37:44:f5:63:8d:90:e7:3e: 2d:8f:e5:21 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4QkMxMTAvBgNVBAUTKDk4QjVDNjE0NzYxOEZDQjY0QzIxNERDQ0MwNzc3NDEz MDg3RTk3NzAwHhcNMjQwNjAzMDgyMzA5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkN2Q2Yy02MDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjViRg7nwAG3EdIvIwjfuYyOVJ4LiBIQ2Gt+ml6SVXbtQ0S8Cly6nlcBMiUr j84st5N5uK80LDGTGt0dMw45QpbLUPrHHiK3cDXRQ2fcYRq5eD1C13uo18z5+pVw iVzG0FB1CnqMl9GByhF3Ai8I2Z706hATZi65zi7hXCqTArOtFeZ0fzFP+lTsJQrB mGyV8jX9ih9Pf0rz2Cs3XCQeCAurIwg4IvzNkoVHWOmekLHbwq6NpyvaGt0Ijakh gt8iKjBw6eT3jx0rl8QM1Bd03mQZFnnLx3LcMd9EElBr7VQ0BK63TS3jYFU8hil4 H3BB3Lsl7LajMBZfwOSpBz+H2QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGzyCnwz DD41KvgqP66BEWEeAjIpMB8GA1UdIwQYMBaAFJi1xhR2GPy2TCFNzMB3dBMIfpdw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhCQy8wRTdENjRENkRG MEQxMUVCQjExMzBEODFDNEY5QUUwMi9tTFhHRkhZWV9MWk1JVTNNd0hkMEV3aC1s M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21MWEdGSFlZX0xaTUlVM013SGQwRXdoLWwzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjI4QkMvMEU3RDY0RDZERjBEMTFFQkIxMTMwRDgxQzRGOUFFMDIvOTAxN0Y3Qjgw NkVDMTFFRjhCNDA3QTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnqWMwDwQCAAIwCQMHACABDfb1gDANBgkqhkiG9w0BAQsF AAOCAQEAp/HwkMb8/VOqOG4dXjASbKod1YI/E8nf02Qe3wFNWkyvxwMGT8WTpnhW 4t+RFG8DxX2XunrEIgTTr2yFULSHl3Y0zKZ14KaJSF/VHEtcIBU3uPF640xBdIFE ycF7gbFq84FlUYAUGA2t2CCbc6nZ8la+IQY0V35qJ9P0DBGaUjN5PVIdjlEgjgaQ iPpwWLD92OPTOSw+ktF51iEclh5kwQbfj7L74YUo52U6boVsK8Gf58w1vOfijOM5 r9Ax5A7PKmo1E50fOQJNwYvklZNDq44wxVP37yKDBC83sIWkZS+QP+Onv+HjMjTM LSG2yft3B2zHKzdE9WONkOc+LY/lIQ== -----END CERTIFICATE-----Generated at Thu Jun 13 03:15:41 2024 by rpki-client on console-ams.rpki-client.org