$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/970894AE3C0F11EEB8F0554FC4F9AE02.roa File: 970894AE3C0F11EEB8F0554FC4F9AE02.roa (raw, json) Hash identifier: qfAhC6J7myV2selEjORwwGTZ2O/8YS9lSbYFvGjhngk= Subject key identifier: 42:88:51:95:02:44:0C:DA:87:F0:D3:14:D9:BD:D2:3D:EA:59:55:FD Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3EEB Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/970894AE3C0F11EEB8F0554FC4F9AE02.roa Signing time: Tue 12 Sep 2023 02:43:16 +0000 ROA not before: Tue 12 Sep 2023 02:43:16 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 150866 IP address blocks: 103.243.168.0/24 maxlen: 24 103.243.169.0/24 maxlen: 24 2401:1d60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16107 (0x3eeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:43:16 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffd044-a370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:56:1f:f9:66:62:43:20:9d:79:59:8c:9d:89: 44:99:79:dc:3e:9a:7f:4e:7f:d7:5f:4b:b0:a1:a5: 77:04:d5:c2:af:f3:e8:f7:ea:41:de:20:3a:d7:b5: 5c:b2:0c:19:1e:37:5b:18:0c:80:1e:a4:a0:0c:36: cb:7d:cc:fa:5e:1d:bc:cb:de:25:6b:36:da:11:42: 86:ae:79:cf:c1:12:a4:8e:8c:8d:07:f3:f5:07:d6: 57:f2:2a:87:17:f4:65:1b:e0:81:9f:32:e5:d7:79: 4c:fa:ef:39:5c:4e:8b:3e:2c:a2:28:8a:70:c6:20: e8:01:1e:51:6d:eb:5d:97:6e:8c:53:08:47:38:9b: 9f:58:3b:83:43:8d:7d:0f:f0:5d:99:45:bc:a7:bc: a3:87:1b:a2:63:7b:1d:6f:03:3a:61:fa:6f:8c:b6: 0a:c7:af:9f:56:10:4c:2a:a8:4e:ba:d4:71:97:b5: 67:5a:43:95:59:7c:42:b8:da:56:a2:b0:aa:80:fb: af:85:81:04:59:67:41:89:0a:60:09:1e:7b:ab:59: 13:80:4e:d5:b3:c5:23:98:21:bf:96:6d:4f:1e:ec: 4e:9a:ff:79:da:e6:0d:36:8c:db:45:78:f6:dc:1c: 38:e6:73:04:08:87:7a:c4:93:f8:80:c9:de:a9:c3: 8c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:88:51:95:02:44:0C:DA:87:F0:D3:14:D9:BD:D2:3D:EA:59:55:FD X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/970894AE3C0F11EEB8F0554FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.168.0/23 IPv6: 2401:1d60::/48 Signature Algorithm: sha256WithRSAEncryption 73:e6:83:66:76:cc:4e:ab:e3:be:d1:2c:f8:c6:63:79:5f:d0: 5e:cb:af:33:d3:c7:ac:0b:74:54:10:05:ad:dd:c8:84:e5:fd: 3d:a4:40:72:2e:28:2b:60:22:eb:1d:dd:79:a9:c8:32:5a:ef: 68:cc:1f:05:a9:77:35:df:df:3f:ca:37:47:0f:8f:04:e5:9e: 50:6d:fc:b3:66:17:3f:21:32:8d:f7:b3:ad:fb:0f:bb:c5:74: e0:82:20:a0:98:54:34:2e:a8:a4:2a:8f:82:f0:05:6c:db:7d: be:aa:8e:3c:5e:3a:c3:a7:11:d7:14:2d:06:a1:36:7a:45:db: 41:50:f8:6f:44:3c:f5:50:3e:85:37:30:14:48:d3:1e:ba:c8: 55:9d:d1:9a:1f:c3:6a:55:04:fd:83:47:3a:b0:76:85:62:93: a6:12:99:32:f1:82:a2:47:c8:59:b0:f9:f1:36:00:a3:ef:f2: 3e:e7:96:32:46:db:6d:39:31:3d:ed:a8:99:9b:15:7b:a3:a4: 0e:3c:b8:5d:a4:3f:05:22:ae:5c:1c:b8:fa:7a:b1:12:7b:31: d8:90:64:51:3d:a5:c1:17:1c:5d:47:6b:1a:fc:68:ff:65:81: 21:bf:34:eb:7d:57:3d:b0:9f:bf:c9:93:dd:ae:06:10:26:40: b3:42:fc:dc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICPuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MzE2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmZDA0NC1hMzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VYf+WZiQyCdeVmMnYlEmXncPpp/Tn/XX0uwoaV3BNXCr/Po9+pB3iA617Vc sgwZHjdbGAyAHqSgDDbLfcz6Xh28y94lazbaEUKGrnnPwRKkjoyNB/P1B9ZX8iqH F/RlG+CBnzLl13lM+u85XE6LPiyiKIpwxiDoAR5Rbetdl26MUwhHOJufWDuDQ419 D/BdmUW8p7yjhxuiY3sdbwM6YfpvjLYKx6+fVhBMKqhOutRxl7VnWkOVWXxCuNpW orCqgPuvhYEEWWdBiQpgCR57q1kTgE7Vs8UjmCG/lm1PHuxOmv952uYNNozbRXj2 3Bw45nMECId6xJP4gMneqcOMdQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEKIUZUC RAzah/DTFNm90j3qWVX9MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTcwODk0QUUz QzBGMTFFRUI4RjA1NTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn86gwDwQCAAIwCQMHACQBHWAAADANBgkqhkiG9w0BAQsF AAOCAQEAc+aDZnbMTqvjvtEs+MZjeV/QXsuvM9PHrAt0VBAFrd3IhOX9PaRAci4o K2Ai6x3deanIMlrvaMwfBal3Nd/fP8o3Rw+PBOWeUG38s2YXPyEyjfezrfsPu8V0 4IIgoJhUNC6opCqPgvAFbNt9vqqOPF46w6cR1xQtBqE2ekXbQVD4b0Q89VA+hTcw FEjTHrrIVZ3Rmh/DalUE/YNHOrB2hWKTphKZMvGCokfIWbD58TYAo+/yPueWMkbb bTkxPe2omZsVe6OkDjy4XaQ/BSKuXBy4+nqxEnsx2JBkUT2lwRccXUdrGvxo/2WB Ib80631XPbCfv8mT3a4GECZAs0L83A== -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org