$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/6E3B1338F41211E9AAF5924EC4F9AE02.roa File: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (raw, json) Hash identifier: dvW5i8N2INXx7QZmuWSeJFM3NElLJpDFetMG6KPtyVo= Subject key identifier: 34:83:58:30:B1:D8:E9:E5:69:8E:BE:79:10:3E:5D:BB:E8:E9:D3:48 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0B6A Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/6E3B1338F41211E9AAF5924EC4F9AE02.roa Signing time: Wed 04 Oct 2023 18:56:38 +0000 ROA not before: Wed 04 Oct 2023 18:56:38 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 63526 IP address blocks: 103.101.197.0/24 maxlen: 24 103.101.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 18:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2922 (0xb6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Oct 4 18:56:38 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651db566-10f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ad:3a:24:d3:fe:71:21:1b:a3:e0:8a:e9:9a: e8:15:95:16:51:69:5d:8e:69:51:17:79:9e:a9:bc: d3:fd:0a:a6:71:38:b8:fc:9f:b6:ae:0f:52:20:8a: 08:02:2c:6c:78:71:d5:5f:bc:3b:b2:e7:12:ac:c0: e0:1e:45:d6:cd:af:8e:2a:8b:f6:5f:7d:d7:7a:af: 9e:c2:e8:d7:8d:68:08:25:f3:f8:21:90:04:ea:2a: e6:7a:1a:d9:68:56:cd:fe:18:20:45:21:5d:84:8d: 40:3a:70:0d:32:aa:50:04:3d:7f:c3:40:ec:56:83: 63:f1:6a:f5:5a:de:cf:2e:2c:22:12:84:c6:fc:42: a9:9a:37:96:50:d5:7f:57:4b:11:69:d2:1a:0e:8e: a9:24:84:7b:fe:00:b1:64:d6:93:5b:d4:11:96:16: 96:c5:7f:e6:83:cf:9f:7a:14:26:3e:80:5d:46:55: f0:35:ed:c0:88:a0:85:2e:c4:d3:84:44:24:a6:6d: b8:5c:7a:63:28:ad:cc:a1:8b:13:fd:28:a2:c4:4a: a0:8b:3f:12:23:2a:30:4e:f0:c6:72:69:44:13:5d: 33:f4:bd:3a:0d:8f:d2:b8:5e:0b:20:87:d2:dd:57: f5:50:3e:59:36:a9:04:39:3d:eb:0e:91:0c:48:0f: c8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:83:58:30:B1:D8:E9:E5:69:8E:BE:79:10:3E:5D:BB:E8:E9:D3:48 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/6E3B1338F41211E9AAF5924EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.197.0/24 103.101.199.0/24 Signature Algorithm: sha256WithRSAEncryption 33:d7:04:68:60:da:1d:7a:ea:41:94:71:02:c7:41:a9:55:0b: 52:f9:99:fb:25:6a:c4:aa:cb:eb:76:e7:07:33:32:1e:ca:e5: 92:96:86:14:44:5f:23:ed:97:b7:74:07:42:53:0b:ae:bf:0e: 09:74:9a:c1:a9:ab:1f:88:3e:a8:ae:c0:81:07:05:54:bf:2c: 88:87:00:47:f8:a8:4b:96:a3:c7:6a:a2:e8:00:fc:ea:cf:1f: 95:5a:b9:89:85:89:70:34:ae:93:97:e5:38:46:77:02:76:cc: c1:ac:90:13:fd:72:9d:cf:44:05:b3:5e:02:1d:2c:cf:14:57: 4f:e0:a9:5a:57:01:e6:83:9e:7c:5e:d9:58:c4:e6:d9:e7:67: 67:5e:62:64:14:78:44:b8:65:b6:d6:0e:10:7c:08:35:08:47: 93:17:23:6a:47:95:de:48:33:fa:cd:5d:95:cc:bf:4f:4f:91: ab:1e:41:84:88:9c:b2:65:02:6f:23:c7:d0:7d:57:3f:c4:be: 87:f1:b9:21:3d:79:93:bb:7e:2a:cc:65:29:bc:4f:0d:db:de: 38:5c:33:3f:b0:8e:ee:4e:92:e6:db:87:8c:37:64:e9:cd:bd: 75:5d:26:bc:52:10:4a:1c:cb:bb:8d:02:15:c5:18:2d:6b:31: 3a:7f:e6:3a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjMxMDA0MTg1NjM4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkYjU2Ni0xMGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2a06JNP+cSEbo+CK6ZroFZUWUWldjmlRF3meqbzT/QqmcTi4/J+2rg9SIIoI AixseHHVX7w7sucSrMDgHkXWza+OKov2X33Xeq+ewujXjWgIJfP4IZAE6irmehrZ aFbN/hggRSFdhI1AOnANMqpQBD1/w0DsVoNj8Wr1Wt7PLiwiEoTG/EKpmjeWUNV/ V0sRadIaDo6pJIR7/gCxZNaTW9QRlhaWxX/mg8+fehQmPoBdRlXwNe3AiKCFLsTT hEQkpm24XHpjKK3MoYsT/SiixEqgiz8SIyowTvDGcmlEE10z9L06DY/SuF4LIIfS 3Vf1UD5ZNqkEOT3rDpEMSA/IEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDSDWDCx 2OnlaY6+eRA+Xbvo6dNIMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFCMUEvNTFGRkM0RTRGNDExMTFFOUE0MzVCMDRDQzRGOUFFMDIvNkUzQjEzMzhG NDEyMTFFOUFBRjU5MjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZcUDBABnZccwDQYJKoZIhvcNAQELBQADggEBADPXBGhg 2h166kGUcQLHQalVC1L5mfslasSqy+t25wczMh7K5ZKWhhREXyPtl7d0B0JTC66/ Dgl0msGpqx+IPqiuwIEHBVS/LIiHAEf4qEuWo8dqougA/OrPH5VauYmFiXA0rpOX 5ThGdwJ2zMGskBP9cp3PRAWzXgIdLM8UV0/gqVpXAeaDnnxe2VjE5tnnZ2deYmQU eES4ZbbWDhB8CDUIR5MXI2pHld5IM/rNXZXMv09PkaseQYSInLJlAm8jx9B9Vz/E vofxuSE9eZO7firMZSm8Tw3b3jhcMz+wju5Okubbh4w3ZOnNvXVdJrxSEEocy7uN AhXFGC1rMTp/5jo= -----END CERTIFICATE-----Generated at Mon Jun 24 21:23:46 2024 by rpki-client on console-ams.rpki-client.org