$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3430/86AC89D0E87B11E9A1ED5B47C4F9AE02/7B3163F0072A11EA9E314D4CC4F9AE02.roa File: 7B3163F0072A11EA9E314D4CC4F9AE02.roa (raw, json) Hash identifier: gRtbtx7+NLh7HmTzJrXeicr/pJospSjUi6ir5lypouc= Subject key identifier: 12:9F:5D:65:82:C5:F5:3D:D7:6A:C0:55:1B:DD:9C:3C:C7:9B:8D:66 Certificate issuer: /CN=A91A3430/serialNumber=7D292E86423B53C0B373B7996588219134A9E610 Certificate serial: 0B9E Authority key identifier: 7D:29:2E:86:42:3B:53:C0:B3:73:B7:99:65:88:21:91:34:A9:E6:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSkuhkI7U8Czc7eZZYghkTSp5hA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3430/86AC89D0E87B11E9A1ED5B47C4F9AE02/7B3163F0072A11EA9E314D4CC4F9AE02.roa Signing time: Tue 12 Sep 2023 18:56:44 +0000 ROA not before: Tue 12 Sep 2023 18:56:44 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 4764 IP address blocks: 103.115.208.0/22 maxlen: 24 117.20.64.0/21 maxlen: 24 119.17.128.0/19 maxlen: 24 202.153.208.0/20 maxlen: 24 2403:640::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3430/86AC89D0E87B11E9A1ED5B47C4F9AE02/fSkuhkI7U8Czc7eZZYghkTSp5hA.crl rsync://rpki.apnic.net/member_repository/A91A3430/86AC89D0E87B11E9A1ED5B47C4F9AE02/fSkuhkI7U8Czc7eZZYghkTSp5hA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSkuhkI7U8Czc7eZZYghkTSp5hA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2974 (0xb9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3430/serialNumber=7D292E86423B53C0B373B7996588219134A9E610 Validity Not Before: Sep 12 18:56:44 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6500b46c-84c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:31:29:d0:c5:81:9b:3c:df:bc:74:4e:13:6a: 76:fd:cf:76:29:4c:02:b9:3d:22:97:e2:c9:3e:bb: 7a:f7:ac:71:fd:a7:2b:60:44:76:13:c8:8b:2f:17: ed:0a:f7:be:dd:d6:09:8e:ec:aa:80:1a:36:fb:c8: 65:0b:a7:af:68:ac:ce:ea:ea:96:85:26:fc:ea:9c: 13:86:e2:01:b8:6c:a7:cb:8a:bf:d2:c1:f1:50:92: 16:44:51:8e:38:37:a8:d5:81:5a:8f:97:17:95:dc: 77:69:3c:56:14:fe:ff:31:aa:cb:3a:3a:21:8d:21: 55:a9:80:69:8a:25:04:b9:d4:ab:3a:06:88:29:ec: ef:1b:7f:2d:c6:9f:53:d6:99:e6:9a:09:09:b9:3b: 3d:1b:e5:37:0f:dc:b7:d4:15:6b:c9:52:04:69:b5: a5:ca:a6:76:9f:63:e2:25:41:ac:bf:34:dd:a7:07: 12:42:34:bc:2f:32:e9:09:e3:f4:e6:bf:4f:bb:56: 1e:12:ee:b8:d5:cc:44:11:29:f7:99:0d:dd:8f:ad: 50:23:e4:8f:16:71:bc:cb:70:0e:bd:a2:b6:55:c2: 16:1c:52:88:8e:03:eb:a9:45:fb:ba:c9:0c:7c:69: 50:81:8b:25:51:d5:c3:39:78:00:bb:4a:a3:12:de: 60:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:9F:5D:65:82:C5:F5:3D:D7:6A:C0:55:1B:DD:9C:3C:C7:9B:8D:66 X509v3 Authority Key Identifier: keyid:7D:29:2E:86:42:3B:53:C0:B3:73:B7:99:65:88:21:91:34:A9:E6:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3430/86AC89D0E87B11E9A1ED5B47C4F9AE02/fSkuhkI7U8Czc7eZZYghkTSp5hA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSkuhkI7U8Czc7eZZYghkTSp5hA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3430/86AC89D0E87B11E9A1ED5B47C4F9AE02/7B3163F0072A11EA9E314D4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.208.0/22 117.20.64.0/21 119.17.128.0/19 202.153.208.0/20 IPv6: 2403:640::/32 Signature Algorithm: sha256WithRSAEncryption 3e:ba:b1:ed:bc:12:48:34:b1:19:65:a2:4b:14:01:35:de:64: 90:da:55:4d:3b:01:e7:e3:fa:61:21:9a:28:44:81:e3:68:81: d0:67:5e:4c:ca:94:de:74:97:f2:7f:be:8d:7a:d5:4c:37:2b: 56:f5:9b:ea:9f:cb:87:42:b3:7b:59:b2:e1:6c:d4:90:7e:64: 9c:e9:d6:4a:9d:27:b9:64:f3:77:6a:50:ae:c2:cb:a2:e3:c1: 34:d6:01:36:3d:d5:3d:3d:ec:a3:8a:4b:9a:78:f3:1e:74:b1: d5:bc:f3:0a:5d:b3:cf:0f:aa:1d:5b:2a:13:eb:b8:40:cd:db: 45:a2:ec:e0:84:37:d2:e4:e1:14:56:8e:d1:60:60:3f:40:01: 05:33:f4:66:7e:95:01:ea:c1:b7:b4:c0:9a:ef:d6:57:b5:9c: 8d:68:f6:94:a0:87:cd:89:cd:76:ea:54:c6:31:13:4e:86:49: 24:ab:f8:52:87:68:05:bd:11:77:58:e9:0f:b5:74:36:d6:67: 96:98:a1:d8:70:18:66:17:fc:6f:80:ee:40:8d:88:9a:ec:a6: eb:2e:dd:b4:9b:b0:5c:de:bd:4d:9d:3c:47:96:e9:07:f4:ba: 93:22:46:b0:79:d2:1b:b0:67:2e:2d:2e:5e:76:34:87:40:93: 7e:73:74:d9 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICC54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0MzAxMTAvBgNVBAUTKDdEMjkyRTg2NDIzQjUzQzBCMzczQjc5OTY1ODgyMTkx MzRBOUU2MTAwHhcNMjMwOTEyMTg1NjQ0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwYjQ2Yy04NGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDEp0MWBmzzfvHROE2p2/c92KUwCuT0il+LJPrt696xx/acrYER2E8iLLxft Cve+3dYJjuyqgBo2+8hlC6evaKzO6uqWhSb86pwThuIBuGyny4q/0sHxUJIWRFGO ODeo1YFaj5cXldx3aTxWFP7/MarLOjohjSFVqYBpiiUEudSrOgaIKezvG38txp9T 1pnmmgkJuTs9G+U3D9y31BVryVIEabWlyqZ2n2PiJUGsvzTdpwcSQjS8LzLpCeP0 5r9Pu1YeEu641cxEESn3mQ3dj61QI+SPFnG8y3AOvaK2VcIWHFKIjgPrqUX7uskM fGlQgYslUdXDOXgAu0qjEt5g2wIDAQABo4ICtjCCArIwHQYDVR0OBBYEFBKfXWWC xfU912rAVRvdnDzHm41mMB8GA1UdIwQYMBaAFH0pLoZCO1PAs3O3mWWIIZE0qeYQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQzMC84NkFDODlEMEU4 N0IxMUU5QTFFRDVCNDdDNEY5QUUwMi9mU2t1aGtJN1U4Q3pjN2VaWllnaGtUU3A1 aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZTa3Voa0k3VThDemM3ZVpaWWdoa1RTcDVoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM0MzAvODZBQzg5RDBFODdCMTFFOUExRUQ1QjQ3QzRGOUFFMDIvN0IzMTYzRjAw NzJBMTFFQTlFMzE0RDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnc9ADBAN1FEADBAV3EYADBATKmdAwDQQCAAIwBwMFACQD BkAwDQYJKoZIhvcNAQELBQADggEBAD66se28Ekg0sRlloksUATXeZJDaVU07Aefj +mEhmihEgeNogdBnXkzKlN50l/J/vo161Uw3K1b1m+qfy4dCs3tZsuFs1JB+ZJzp 1kqdJ7lk83dqUK7Cy6LjwTTWATY91T097KOKS5p48x50sdW88wpds88Pqh1bKhPr uEDN20Wi7OCEN9Lk4RRWjtFgYD9AAQUz9GZ+lQHqwbe0wJrv1le1nI1o9pSgh82J zXbqVMYxE06GSSSr+FKHaAW9EXdY6Q+1dDbWZ5aYodhwGGYX/G+A7kCNiJrspusu 3bSbsFzevU2dPEeW6Qf0upMiRrB50huwZy4tLl52NIdAk35zdNk= -----END CERTIFICATE-----Generated at Fri May 31 20:34:12 2024 by rpki-client on console-ams.rpki-client.org