$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa File: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (raw, json) Hash identifier: NlMZe5gqmVPJHi7tBl3pc3oKWd3PWEvyri4lhroQCrA= Subject key identifier: AA:13:A6:8A:DA:47:B1:02:A6:DB:D5:D6:D2:82:C5:6A:47:8C:09:C2 Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 0383 Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa Signing time: Sat 01 Jun 2024 04:10:36 +0000 ROA not before: Sat 01 Jun 2024 04:10:36 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 55933 IP address blocks: 103.231.12.0/22 maxlen: 24 202.181.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 899 (0x383) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: Jun 1 04:10:36 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665a9f3c-b0ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d6:51:b0:64:e3:67:cd:1c:86:a5:9c:d7:27: 87:4b:fd:1f:11:d4:b3:a0:52:2e:01:64:ab:27:1b: 25:bb:9d:88:f3:71:74:51:95:1a:4c:e8:28:1e:24: b5:eb:eb:c9:ae:31:c9:73:1a:ed:39:fb:bc:2e:2f: 93:42:5e:7c:5c:c2:1a:39:f0:5c:cc:47:43:d3:f5: 3f:48:25:c9:26:d9:62:c3:35:4d:1d:0d:44:c0:3c: 0e:b0:8e:d6:7d:fc:28:e7:0c:55:51:55:09:8e:7c: 0e:1f:de:cd:f3:da:62:e0:65:ba:43:c8:30:c7:a4: 79:73:7d:b5:35:f6:c0:56:55:8e:06:c1:d1:99:c0: 8c:65:ab:35:ca:01:15:f6:7a:00:93:0f:73:57:cd: 2b:0f:67:9d:a3:33:3f:02:58:5f:59:b5:f5:b5:d4: f5:89:6e:13:bf:e7:62:1f:06:8c:9f:10:2c:a4:f0: 92:27:a3:dd:e8:4c:6a:e7:2c:5b:23:05:95:21:1c: 6a:87:ec:fe:1e:45:08:9d:fb:d9:24:98:9c:ee:c6: 4d:09:8f:61:aa:6a:ea:66:66:6d:0f:1a:1b:f9:f5: a5:a1:07:a3:ba:5c:1e:6f:bb:61:1d:80:77:d6:32: 48:f6:51:63:c3:d5:0a:fb:0b:a2:d1:a0:65:bf:d3: 89:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:13:A6:8A:DA:47:B1:02:A6:DB:D5:D6:D2:82:C5:6A:47:8C:09:C2 X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.12.0/22 202.181.24.0/22 Signature Algorithm: sha256WithRSAEncryption bc:bc:65:a8:05:2c:db:66:56:9b:00:b7:5d:d2:31:db:59:d0: a5:02:36:0b:13:37:bc:1a:e6:ee:b9:4c:e4:9d:12:e1:fe:77: f8:53:5b:ff:69:c0:a7:1a:f3:33:d0:b7:79:a8:60:12:6c:fb: 1a:53:3f:c2:1c:cb:8c:34:e1:35:ed:30:63:d5:c1:24:37:9b: 84:85:81:af:4a:96:56:be:ff:1d:27:d2:c0:ab:ee:e1:ce:a0: 6b:9f:35:7f:6a:9e:24:a4:a9:a1:ec:08:88:70:26:eb:61:57: f6:ad:79:0b:7f:d3:f6:c9:e6:1f:85:29:cf:4f:4f:83:55:ab: 37:12:08:36:da:fe:11:09:fa:a0:44:7c:6b:7a:b3:66:a6:c4: b9:b4:70:df:ad:e3:8d:03:69:92:a3:93:48:01:08:8f:90:64: 11:be:30:c2:9d:fc:13:02:82:cf:36:4c:2b:55:da:61:be:85: 46:48:8f:d2:0d:69:97:77:52:78:47:a5:bb:70:e9:ee:69:50: 8d:60:12:4f:c3:dd:b0:97:84:56:17:97:8c:5d:6b:1e:62:d0: 11:37:0d:4e:75:8a:14:f3:a5:2d:df:ce:99:19:36:76:eb:08: ea:e1:49:72:43:75:a5:dc:cb:91:97:85:89:79:5d:4d:75:3f: 2e:0e:f4:34 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjQwNjAxMDQxMDM2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhOWYzYy1iMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudZRsGTjZ80chqWc1yeHS/0fEdSzoFIuAWSrJxslu52I83F0UZUaTOgoHiS1 6+vJrjHJcxrtOfu8Li+TQl58XMIaOfBczEdD0/U/SCXJJtliwzVNHQ1EwDwOsI7W ffwo5wxVUVUJjnwOH97N89pi4GW6Q8gwx6R5c321NfbAVlWOBsHRmcCMZas1ygEV 9noAkw9zV80rD2edozM/AlhfWbX1tdT1iW4Tv+diHwaMnxAspPCSJ6Pd6Exq5yxb IwWVIRxqh+z+HkUInfvZJJic7sZNCY9hqmrqZmZtDxob+fWloQejulweb7thHYB3 1jJI9lFjw9UK+wui0aBlv9OJbQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKoTpora R7ECptvV1tKCxWpHjAnCMB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTMwMEYvMUFENUFGNzQ1RDkxMTFFQzlBRkI4RDNEQzRGOUFFMDIvOUMyREUxN0E1 RDkzMTFFQ0IyQUJCNjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn5wwDBALKtRgwDQYJKoZIhvcNAQELBQADggEBALy8ZagF LNtmVpsAt13SMdtZ0KUCNgsTN7wa5u65TOSdEuH+d/hTW/9pwKca8zPQt3moYBJs +xpTP8Icy4w04TXtMGPVwSQ3m4SFga9Klla+/x0n0sCr7uHOoGufNX9qniSkqaHs CIhwJuthV/ateQt/0/bJ5h+FKc9PT4NVqzcSCDba/hEJ+qBEfGt6s2amxLm0cN+t 440DaZKjk0gBCI+QZBG+MMKd/BMCgs82TCtV2mG+hUZIj9INaZd3UnhHpbtw6e5p UI1gEk/D3bCXhFYXl4xdax5i0BE3DU51ihTzpS3fzpkZNnbrCOrhSXJDdaXcy5GX hYl5XU11Py4O9DQ= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:23 2024 by rpki-client on console-ams.rpki-client.org