$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/804B8FA6E91511EE8B622417C4F9AE02.roa File: 804B8FA6E91511EE8B622417C4F9AE02.roa (raw, json) Hash identifier: TB0ahidYQ0xA6hV80HfI0pKz2Rs6lS2yc9sRvFWm5fM= Subject key identifier: 3A:E2:7D:4A:CE:AD:7E:41:2A:EB:97:DC:49:87:62:C6:CF:09:F3:65 Certificate issuer: /CN=A91862F9/serialNumber=BE6341A7CC0CA0F6C1A15E0466EC7155B8283C9D Certificate serial: 7D Authority key identifier: BE:63:41:A7:CC:0C:A0:F6:C1:A1:5E:04:66:EC:71:55:B8:28:3C:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/804B8FA6E91511EE8B622417C4F9AE02.roa Signing time: Sat 23 Mar 2024 13:01:45 +0000 ROA not before: Sat 23 Mar 2024 13:01:45 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137883 IP address blocks: 103.253.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.crl rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F9/serialNumber=BE6341A7CC0CA0F6C1A15E0466EC7155B8283C9D Validity Not Before: Mar 23 13:01:45 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65fed2b9-225e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7d:22:97:2c:6d:c0:37:68:6d:cb:90:9d:86: b8:67:f6:72:9d:b2:d3:75:c6:cf:f5:d0:f0:1a:2e: 51:e6:f7:3b:f9:e2:27:e6:b5:33:a5:33:71:5e:7d: 0f:a9:6c:fc:71:a0:14:6e:c9:6b:12:ad:77:b7:01: 1a:76:80:3e:a5:e5:d4:93:58:8e:f5:04:56:bd:89: 8e:d8:19:ca:2d:05:f5:67:9a:fd:b8:cf:67:e5:a9: af:57:1e:48:9f:d0:1d:62:d5:10:48:f1:19:b3:e3: cb:85:37:3c:20:26:05:4a:60:a5:13:15:b4:eb:e6: 79:05:36:ac:c4:cf:55:0c:e3:f5:07:49:be:57:26: 2d:67:77:db:fa:45:85:38:7f:ba:6c:39:c9:d0:cf: b8:4f:14:70:53:56:f9:44:61:68:3a:e2:6a:c4:76: c2:f5:1b:c4:21:9c:07:af:02:fe:a8:44:a2:50:94: 15:67:35:db:32:2e:fb:63:52:fc:7e:2d:e0:5f:dd: 38:60:67:a3:95:8e:d3:a2:c8:c8:0d:89:8c:44:4c: cc:b4:32:34:26:c7:1a:f6:4f:98:40:88:43:6b:6c: a0:24:02:cb:65:b3:8c:ef:26:54:34:e4:68:a3:c8: f6:f7:98:00:2e:3c:72:6f:1e:9b:f2:5c:14:d2:30: af:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E2:7D:4A:CE:AD:7E:41:2A:EB:97:DC:49:87:62:C6:CF:09:F3:65 X509v3 Authority Key Identifier: keyid:BE:63:41:A7:CC:0C:A0:F6:C1:A1:5E:04:66:EC:71:55:B8:28:3C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmNBp8wMoPbBoV4EZuxxVbgoPJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F9/4E609A723B7D11EE9656FC64C4F9AE02/804B8FA6E91511EE8B622417C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.177.0/24 Signature Algorithm: sha256WithRSAEncryption ad:d4:c4:9d:b3:d1:eb:4e:fd:4e:26:87:af:86:f7:de:e6:80: b5:ae:91:de:a5:47:43:74:03:9a:9a:8b:1e:ca:5e:00:39:95: c3:ff:93:25:e7:27:5d:f9:b6:c2:19:1f:6e:f3:a1:98:dd:c8: d7:fe:8e:f4:75:e4:5f:76:98:ef:46:83:54:15:c8:e2:ba:4a: 02:0f:d7:d8:c3:13:1b:bc:e7:92:37:57:af:5d:a4:0d:4e:d0: 2f:55:6d:68:51:82:5c:b4:5d:c0:d6:0e:b3:11:c5:f9:2a:cb: 85:42:0f:ad:5e:d8:1b:5a:65:23:1f:c4:15:98:51:17:90:bb: f7:83:9e:3c:8f:26:88:f0:b6:15:94:3d:47:90:34:a1:07:83: 51:39:86:72:c4:5b:87:45:69:b9:b9:8d:71:f5:91:ed:76:37: 02:4f:6f:da:19:47:19:46:0e:28:06:c4:1f:5d:88:6a:22:57: ed:37:78:2a:2d:a1:b4:fc:23:1a:47:dc:3a:fd:57:47:f2:2c: b7:f9:9f:4e:99:45:1b:c6:d8:c9:dd:66:25:0f:c6:c6:90:e0: f1:bf:d9:5b:84:df:02:29:54:52:4d:c1:bc:dd:ae:82:bd:eb: 7c:98:70:d8:f8:28:d5:ae:26:62:14:05:41:f6:05:09:38:0f: 74:38:d9:87 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NjJGOTExMC8GA1UEBRMoQkU2MzQxQTdDQzBDQTBGNkMxQTE1RTA0NjZFQzcxNTVC ODI4M0M5RDAeFw0yNDAzMjMxMzAxNDVaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZmVkMmI5LTIyNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAfSKXLG3AN2hty5Cdhrhn9nKdstN1xs/10PAaLlHm9zv54ifmtTOlM3FefQ+p bPxxoBRuyWsSrXe3ARp2gD6l5dSTWI71BFa9iY7YGcotBfVnmv24z2flqa9XHkif 0B1i1RBI8Rmz48uFNzwgJgVKYKUTFbTr5nkFNqzEz1UM4/UHSb5XJi1nd9v6RYU4 f7psOcnQz7hPFHBTVvlEYWg64mrEdsL1G8QhnAevAv6oRKJQlBVnNdsyLvtjUvx+ LeBf3ThgZ6OVjtOiyMgNiYxETMy0MjQmxxr2T5hAiENrbKAkAstls4zvJlQ05Gij yPb3mAAuPHJvHpvyXBTSMK+HAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOuJ9Ss6t fkEq65fcSYdixs8J82UwHwYDVR0jBBgwFoAUvmNBp8wMoPbBoV4EZuxxVbgoPJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg2MkY5LzRFNjA5QTcyM0I3 RDExRUU5NjU2RkM2NEM0RjlBRTAyL3ZtTkJwOHdNb1BiQm9WNEVadXh4VmJnb1BK MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdm1OQnA4d01vUGJCb1Y0RVp1eHhWYmdvUEowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjJGOS80RTYwOUE3MjNCN0QxMUVFOTY1NkZDNjRDNEY5QUUwMi84MDRCOEZBNkU5 MTUxMUVFOEI2MjI0MTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf9sTANBgkqhkiG9w0BAQsFAAOCAQEArdTEnbPR6079TiaH r4b33uaAta6R3qVHQ3QDmpqLHspeADmVw/+TJecnXfm2whkfbvOhmN3I1/6O9HXk X3aY70aDVBXI4rpKAg/X2MMTG7znkjdXr12kDU7QL1VtaFGCXLRdwNYOsxHF+SrL hUIPrV7YG1plIx/EFZhRF5C794OePI8miPC2FZQ9R5A0oQeDUTmGcsRbh0VpubmN cfWR7XY3Ak9v2hlHGUYOKAbEH12IaiJX7Td4Ki2htPwjGkfcOv1XR/Ist/mfTplF G8bYyd1mJQ/GxpDg8b/ZW4TfAilUUk3BvN2ugr3rfJhw2Pgo1a4mYhQFQfYFCTgP dDjZhw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:19 2024 by rpki-client on console-ams.rpki-client.org