$ rpki-client -vvf rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/58AEC9929C0F11EA9CC4217CC4F9AE02.roa File: 58AEC9929C0F11EA9CC4217CC4F9AE02.roa (raw, json) Hash identifier: Ey8ekaM4J2crEGLxgaKjmK3pxTQIHfbb3eEbz5HXzO4= Subject key identifier: E7:79:40:AD:37:F5:5D:3C:DB:4A:0E:7B:E7:1A:9B:1E:DA:60:E4:72 Certificate issuer: /CN=A91856C4/serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Certificate serial: 0AFE Authority key identifier: 9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/58AEC9929C0F11EA9CC4217CC4F9AE02.roa Signing time: Tue 22 Aug 2023 19:16:49 +0000 ROA not before: Tue 22 Aug 2023 19:16:49 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 24342 IP address blocks: 103.97.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2814 (0xafe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91856C4/serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Validity Not Before: Aug 22 19:16:49 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e509a1-150a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e3:88:ee:f1:1d:18:3d:fb:3e:5a:f7:a9:9b: 31:8c:6c:26:b1:d8:d6:47:7c:a5:7e:85:0c:34:17: 7f:ea:9c:fd:57:c4:70:cb:57:db:18:86:0f:6b:58: d3:d5:7c:00:3c:68:9d:36:30:8b:b4:e5:5d:78:56: bc:28:f5:16:39:68:94:71:11:04:23:9f:3f:43:67: 3e:b6:29:0c:6c:0c:55:c0:ac:ff:63:7e:03:74:16: 55:d9:6c:fb:92:d0:2a:85:f5:4d:16:e1:7a:ea:26: c2:ca:0c:69:6c:2a:e1:51:db:2a:aa:9e:73:97:0f: e2:46:0c:26:e5:25:f7:ad:3c:e4:27:02:3c:ec:1b: d5:5e:e6:73:70:67:e4:86:68:01:62:6e:80:ad:79: d6:7b:e8:08:39:90:7a:41:9a:32:ca:d3:e2:79:67: 88:d1:5b:40:97:e3:6d:c3:a3:6f:f4:d3:42:ea:c9: df:4d:64:67:9d:3d:89:8d:9d:1d:f5:58:79:81:c2: 47:99:a9:da:00:52:9b:f7:b4:49:9d:91:b3:aa:16: 96:44:8f:00:85:77:df:0d:01:90:52:d8:19:25:dc: 68:09:d7:a2:4d:b6:cf:78:51:4e:0b:05:3f:d8:0e: 36:cd:32:ce:fb:b8:a7:d1:84:8c:8b:5f:b7:04:3a: f5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:79:40:AD:37:F5:5D:3C:DB:4A:0E:7B:E7:1A:9B:1E:DA:60:E4:72 X509v3 Authority Key Identifier: keyid:9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/58AEC9929C0F11EA9CC4217CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.120.0/22 Signature Algorithm: sha256WithRSAEncryption 37:cc:26:f9:d7:58:6e:a9:e1:35:64:2a:52:58:d9:d6:2b:39: d9:11:fd:35:e1:be:92:7e:29:d7:9e:8e:35:c9:9a:7b:da:24: 6d:66:df:e0:3d:5e:86:ba:53:bb:7c:7b:58:38:98:3d:3f:a3: 9b:59:a8:d3:f8:40:b5:f8:2a:cb:a8:9e:15:ce:33:aa:67:6a: 6f:7e:f5:9e:be:27:21:e8:0d:b8:85:d3:1a:c2:d7:0c:99:6e: e9:8f:92:9a:ab:3d:ab:c5:13:53:ae:5c:24:23:0b:7d:7a:14: f8:e3:90:a1:96:37:cd:63:53:90:73:e4:39:91:ee:1a:40:cf: 72:1c:df:ab:75:0d:16:a7:2d:57:f5:35:33:73:8f:e2:32:80: 7d:63:93:26:c6:d2:98:45:d1:5a:45:12:31:2e:2e:30:8d:cc: 84:5f:49:74:79:4c:32:f3:1a:e8:70:cf:f4:b3:7a:08:ee:26: 3f:74:1e:ef:30:c7:3e:3b:16:ff:3b:14:a7:43:a3:fc:36:f3: e4:ce:f8:cc:7a:65:a1:3e:99:59:e4:cf:9a:aa:95:30:ba:bf: f8:0f:15:e0:bf:c0:32:84:84:c6:38:8c:d4:c3:a1:c1:78:02: 36:49:1a:fa:47:36:7f:32:ee:98:2d:5e:7a:59:6b:82:7b:33: 23:02:25:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2QzQxMTAvBgNVBAUTKDlBOUMzMUJEODc5NjczODY5QjNDOEYwNTU5NkU4ODE1 NTgyRjExRDAwHhcNMjMwODIyMTkxNjQ5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU1MDlhMS0xNTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquOI7vEdGD37Plr3qZsxjGwmsdjWR3ylfoUMNBd/6pz9V8Rwy1fbGIYPa1jT 1XwAPGidNjCLtOVdeFa8KPUWOWiUcREEI58/Q2c+tikMbAxVwKz/Y34DdBZV2Wz7 ktAqhfVNFuF66ibCygxpbCrhUdsqqp5zlw/iRgwm5SX3rTzkJwI87BvVXuZzcGfk hmgBYm6ArXnWe+gIOZB6QZoyytPieWeI0VtAl+Ntw6Nv9NNC6snfTWRnnT2JjZ0d 9Vh5gcJHmanaAFKb97RJnZGzqhaWRI8AhXffDQGQUtgZJdxoCdeiTbbPeFFOCwU/ 2A42zTLO+7in0YSMi1+3BDr1TQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOd5QK03 9V0820oOe+camx7aYORyMB8GA1UdIwQYMBaAFJqcMb2HlnOGmzyPBVluiBVYLxHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTZDNC9BM0JBRDhFMjA0 RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0YWJQSThGV1c2SUZWZ3ZF ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21wd3h2WWVXYzRhYlBJOEZXVzZJRlZndkVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2QzQvQTNCQUQ4RTIwNEZGMTFFQTkzRUU5QTIzQzRGOUFFMDIvNThBRUM5OTI5 QzBGMTFFQTlDQzQyMTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYXgwDQYJKoZIhvcNAQELBQADggEBADfMJvnXWG6p4TVk KlJY2dYrOdkR/TXhvpJ+KdeejjXJmnvaJG1m3+A9Xoa6U7t8e1g4mD0/o5tZqNP4 QLX4KsuonhXOM6pnam9+9Z6+JyHoDbiF0xrC1wyZbumPkpqrPavFE1OuXCQjC316 FPjjkKGWN81jU5Bz5DmR7hpAz3Ic36t1DRanLVf1NTNzj+IygH1jkybG0phF0VpF EjEuLjCNzIRfSXR5TDLzGuhwz/SzegjuJj90Hu8wxz47Fv87FKdDo/w28+TO+Mx6 ZaE+mVnkz5qqlTC6v/gPFeC/wDKEhMY4jNTDocF4AjZJGvpHNn8y7pgtXnpZa4J7 MyMCJTs= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:21 2024 by rpki-client on console-ams.rpki-client.org