$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AE0007C602D111EFA283724CC4F9AE02.roa File: AE0007C602D111EFA283724CC4F9AE02.roa (raw, json) Hash identifier: xuRblO1Lx8c7VsefUzCV2hkjTrKNwMDkfsRxK5/uFmw= Subject key identifier: FF:29:07:15:32:D5:F2:19:FC:B9:17:7B:CE:46:83:50:D4:F8:71:BF Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4341 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AE0007C602D111EFA283724CC4F9AE02.roa Signing time: Thu 25 Apr 2024 07:01:46 +0000 ROA not before: Thu 25 Apr 2024 07:01:46 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 150869 IP address blocks: 103.94.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17217 (0x4341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Apr 25 07:01:46 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6629ffda-d88d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1f:91:4a:2c:06:d0:a3:3b:a5:8c:e4:50:bc: a5:57:b4:23:65:37:7f:a8:4c:eb:77:c1:39:de:9c: 33:ec:4f:43:88:af:41:3a:ff:7f:37:7b:7c:51:9f: e5:2e:67:70:73:65:bc:0d:8a:15:47:e1:4a:dc:18: 44:7f:38:41:f7:85:d6:00:68:1a:dd:b7:c0:b2:cd: 94:dd:ab:8a:28:53:c7:ae:0b:ff:fa:9a:4c:70:8b: 64:e4:90:e1:9e:1a:59:d0:0f:2a:bd:e9:81:d6:b3: ab:ff:f8:36:54:44:9a:89:82:9f:c8:10:6f:f4:e3: 40:e3:71:c8:f9:44:4e:26:68:31:ec:69:34:18:f2: 05:14:c7:b1:04:00:5f:72:6f:c7:2c:79:6b:af:aa: c2:64:77:6a:aa:7f:3a:cd:22:c5:51:19:aa:10:d2: 79:89:c8:10:62:c0:3a:dc:a3:5e:ad:06:f8:df:35: 8a:e2:5a:eb:f8:c0:ba:64:43:02:a0:ad:67:04:1a: 56:97:a7:ae:72:21:34:b9:3e:95:55:38:57:28:30: 8c:50:12:02:c7:28:6f:06:17:d3:c4:56:e9:95:a8: 09:0e:b5:7a:b6:a5:cb:9e:40:6f:b8:8b:c2:31:51: 01:36:d8:2e:a9:14:2c:ad:3f:7e:6e:b6:f5:4c:dd: bc:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:29:07:15:32:D5:F2:19:FC:B9:17:7B:CE:46:83:50:D4:F8:71:BF X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AE0007C602D111EFA283724CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.176.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:91:ed:d2:cb:b7:f4:cc:95:60:af:7a:bd:20:75:16:47:8c: 16:76:f3:00:10:d8:dd:3d:0c:f0:f3:f4:a4:eb:54:97:f9:20: d2:44:c8:7f:f5:7b:b8:8a:70:66:9e:88:63:86:0a:e5:50:4a: 52:f2:df:74:2e:a7:95:17:02:6c:fc:58:31:b7:fb:72:ff:0b: a0:2a:4e:e6:3d:42:90:c0:97:7b:a0:20:db:dc:9a:19:fa:6b: 31:67:54:96:67:64:f6:39:88:c3:f7:ca:78:32:57:54:09:62: 9e:69:12:38:bb:2a:1d:7b:6c:8a:90:05:36:9b:b3:22:ab:79: 9e:c3:95:71:9a:16:13:04:22:6a:fe:18:61:39:8a:77:2c:ef: 0a:2a:e2:0b:6e:98:ee:00:e1:36:bd:b2:a4:63:86:cf:79:7e: 6c:fb:b9:00:60:06:ac:0c:1a:cf:c9:8b:22:bd:76:b3:17:22: 49:28:91:72:0e:2e:c6:dc:24:9a:ed:59:3a:c1:f7:31:a9:bb: e6:c0:74:6d:c3:93:79:ee:b0:df:fa:52:77:d5:3e:37:21:92: 60:2b:5d:1e:92:a7:54:ca:e1:84:7c:81:5e:8c:fe:62:34:be: d6:aa:66:eb:c9:bb:3d:81:87:75:a9:a6:5e:87:0e:5e:69:45: e1:3d:3f:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICQ0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwNDI1MDcwMTQ2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI5ZmZkYS1kODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoR+RSiwG0KM7pYzkULylV7QjZTd/qEzrd8E53pwz7E9DiK9BOv9/N3t8UZ/l Lmdwc2W8DYoVR+FK3BhEfzhB94XWAGga3bfAss2U3auKKFPHrgv/+ppMcItk5JDh nhpZ0A8qvemB1rOr//g2VESaiYKfyBBv9ONA43HI+UROJmgx7Gk0GPIFFMexBABf cm/HLHlrr6rCZHdqqn86zSLFURmqENJ5icgQYsA63KNerQb43zWK4lrr+MC6ZEMC oK1nBBpWl6euciE0uT6VVThXKDCMUBICxyhvBhfTxFbplagJDrV6tqXLnkBvuIvC MVEBNtguqRQsrT9+brb1TN28zwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP8pBxUy 1fIZ/LkXe85Gg1DU+HG/MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQUUwMDA3QzYw MkQxMTFFRkEyODM3MjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnXrAwDQYJKoZIhvcNAQELBQADggEBAIqR7dLLt/TMlWCv er0gdRZHjBZ28wAQ2N09DPDz9KTrVJf5INJEyH/1e7iKcGaeiGOGCuVQSlLy33Qu p5UXAmz8WDG3+3L/C6AqTuY9QpDAl3ugINvcmhn6azFnVJZnZPY5iMP3yngyV1QJ Yp5pEji7Kh17bIqQBTabsyKreZ7DlXGaFhMEImr+GGE5incs7woq4gtumO4A4Ta9 sqRjhs95fmz7uQBgBqwMGs/JiyK9drMXIkkokXIOLsbcJJrtWTrB9zGpu+bAdG3D k3nusN/6UnfVPjchkmArXR6Sp1TK4YR8gV6M/mI0vtaqZuvJuz2Bh3Wppl6HDl5p ReE9P6U= -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org