$ rpki-client -vvf rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/FA93793637C011EB97405947C4F9AE02.roa File: FA93793637C011EB97405947C4F9AE02.roa (raw, json) Hash identifier: HPyw2CIiARENlWlLlzg2xoX1ggPmLsICAu3y1BVdcHc= Subject key identifier: 08:E6:05:FD:35:1F:E2:4F:D6:CE:55:D1:BA:9D:B3:FC:51:A1:E1:7A Certificate issuer: /CN=A9190491/serialNumber=5FC3E86DAE43531588EB015D501E3171205F0851 Certificate serial: 05F8 Authority key identifier: 5F:C3:E8:6D:AE:43:53:15:88:EB:01:5D:50:1E:31:71:20:5F:08:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8Poba5DUxWI6wFdUB4xcSBfCFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/FA93793637C011EB97405947C4F9AE02.roa Signing time: Thu 12 Oct 2023 23:11:22 +0000 ROA not before: Thu 12 Oct 2023 23:11:22 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 14413 IP address blocks: 103.20.92.0/22 maxlen: 24 2405:2300::/33 maxlen: 48 2405:2300:8000::/34 maxlen: 48 2405:2300:c000::/35 maxlen: 48 2405:2300:e000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/X8Poba5DUxWI6wFdUB4xcSBfCFE.crl rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/X8Poba5DUxWI6wFdUB4xcSBfCFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8Poba5DUxWI6wFdUB4xcSBfCFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1528 (0x5f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190491/serialNumber=5FC3E86DAE43531588EB015D501E3171205F0851 Validity Not Before: Oct 12 23:11:22 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65287d19-302c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6d:32:f7:04:8b:ee:10:6f:48:f8:0b:0b:31: c2:57:8a:cc:d4:41:24:bb:a3:02:1b:30:94:8f:c4: 1a:94:e2:aa:07:77:0b:00:e6:02:e9:cb:c6:d0:af: ed:0a:20:93:e1:1a:dd:71:61:68:7b:33:dc:a0:92: f9:7e:f9:5d:39:15:c3:6d:22:83:10:07:1c:50:28: a8:57:d7:bd:2c:e7:9e:b7:7d:27:f2:36:06:43:52: 2d:51:c3:38:46:08:99:35:37:dd:bc:d9:72:b7:da: 77:c3:36:5d:75:b2:51:cb:dd:fd:ba:72:0f:fe:9e: 2f:fa:fa:e4:f2:2e:93:78:90:66:cd:a7:72:6d:6f: 32:61:f3:17:5b:e1:8b:f7:6d:51:35:ae:02:e6:94: be:4a:a3:0d:84:52:73:e6:5c:c0:f4:74:68:aa:50: 30:ba:b3:6c:bd:63:95:dc:48:5d:d0:99:7d:6d:63: bb:b5:19:56:d7:55:b9:66:08:55:64:d1:43:48:da: aa:2f:e7:5c:d1:64:b8:5f:ae:6e:13:b2:85:1d:3c: 28:38:a8:a3:27:07:65:41:6d:8b:fc:df:90:95:94: 2f:05:c6:11:1d:a2:b8:33:95:d5:db:a7:5e:91:4e: 2b:d7:b7:97:b9:3e:d6:64:67:a6:73:84:f4:6b:57: c9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E6:05:FD:35:1F:E2:4F:D6:CE:55:D1:BA:9D:B3:FC:51:A1:E1:7A X509v3 Authority Key Identifier: keyid:5F:C3:E8:6D:AE:43:53:15:88:EB:01:5D:50:1E:31:71:20:5F:08:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/X8Poba5DUxWI6wFdUB4xcSBfCFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8Poba5DUxWI6wFdUB4xcSBfCFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190491/929BDBC237BE11EB83AE1844C4F9AE02/FA93793637C011EB97405947C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.92.0/22 IPv6: 2405:2300::-2405:2300:efff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 9e:fa:e2:00:fd:91:97:a0:43:24:84:d5:a2:c8:79:80:db:66: ae:83:7e:4b:43:8b:a4:04:a7:40:d2:8e:94:60:6e:9c:84:4c: 19:0c:e1:12:c9:f9:df:1e:c7:69:bc:4a:0b:94:b7:5d:b1:6d: fb:ed:30:9c:7f:d3:a0:7f:5d:5f:29:c0:9a:93:94:4d:84:c4: d2:a0:6f:c8:34:b5:6f:e6:96:68:26:c3:3e:ae:fb:39:b4:db: a6:11:51:05:db:33:bc:9e:75:f7:77:0d:f9:be:e0:6e:a0:4b: 51:7d:f6:ca:73:45:b3:24:10:ae:86:16:99:73:39:cb:de:e0: c3:80:77:f8:48:0d:b5:0f:0f:dd:48:4d:70:b3:c6:33:9f:29: cd:ac:d7:e5:83:9d:12:42:4f:44:9f:7f:64:2b:6d:07:05:b7: 9a:2b:23:20:1c:2f:38:aa:d8:31:db:de:a8:99:76:8d:7c:78: d8:a4:27:69:73:f6:00:18:63:03:ba:1b:70:c2:24:82:b0:7d: be:04:ac:c7:13:de:da:7e:b0:4f:38:cb:af:b6:ed:c0:c7:c8: 0e:ae:04:cb:10:fb:0a:42:a6:46:ff:0a:bd:6f:a9:8f:0b:5d: 70:7e:a0:2c:54:8f:3b:1e:6c:58:a9:d7:e4:7f:4e:e9:23:00: 69:ec:4c:f0 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICBfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA0OTExMTAvBgNVBAUTKDVGQzNFODZEQUU0MzUzMTU4OEVCMDE1RDUwMUUzMTcx MjA1RjA4NTEwHhcNMjMxMDEyMjMxMTIyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4N2QxOS0zMDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW0y9wSL7hBvSPgLCzHCV4rM1EEku6MCGzCUj8QalOKqB3cLAOYC6cvG0K/t CiCT4RrdcWFoezPcoJL5fvldORXDbSKDEAccUCioV9e9LOeet30n8jYGQ1ItUcM4 RgiZNTfdvNlyt9p3wzZddbJRy939unIP/p4v+vrk8i6TeJBmzadybW8yYfMXW+GL 921RNa4C5pS+SqMNhFJz5lzA9HRoqlAwurNsvWOV3Ehd0Jl9bWO7tRlW11W5ZghV ZNFDSNqqL+dc0WS4X65uE7KFHTwoOKijJwdlQW2L/N+QlZQvBcYRHaK4M5XV26de kU4r17eXuT7WZGemc4T0a1fJ3QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFAjmBf01 H+JP1s5V0bqds/xRoeF6MB8GA1UdIwQYMBaAFF/D6G2uQ1MViOsBXVAeMXEgXwhR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDQ5MS85MjlCREJDMjM3 QkUxMUVCODNBRTE4NDRDNEY5QUUwMi9YOFBvYmE1RFV4V0k2d0ZkVUI0eGNTQmZD RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4UG9iYTVEVXhXSTZ3RmRVQjR4Y1NCZkNGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTA0OTEvOTI5QkRCQzIzN0JFMTFFQjgzQUUxODQ0QzRGOUFFMDIvRkE5Mzc5MzYz N0MwMTFFQjk3NDA1OTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAJnFFwwFgQCAAIwEDAOAwQAJAUjAwYEJAUjAOAwDQYJKoZI hvcNAQELBQADggEBAJ764gD9kZegQySE1aLIeYDbZq6DfktDi6QEp0DSjpRgbpyE TBkM4RLJ+d8ex2m8SguUt12xbfvtMJx/06B/XV8pwJqTlE2ExNKgb8g0tW/mlmgm wz6u+zm026YRUQXbM7yedfd3Dfm+4G6gS1F99spzRbMkEK6GFplzOcve4MOAd/hI DbUPD91ITXCzxjOfKc2s1+WDnRJCT0Sff2QrbQcFt5orIyAcLziq2DHb3qiZdo18 eNikJ2lz9gAYYwO6G3DCJIKwfb4ErMcT3tp+sE84y6+27cDHyA6uBMsQ+wpCpkb/ Cr1vqY8LXXB+oCxUjzsebFip1+R/TukjAGnsTPA= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:17 2024 by rpki-client on console-ams.rpki-client.org