$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa File: E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa (raw, json) Hash identifier: CVJKmajOEqiUUSBkudExAdBPL7vUeTji19yjsLM2lHk= Subject key identifier: C4:48:42:C5:6E:03:6E:11:34:71:73:E4:E5:9F:BF:F9:0E:C9:74:23 Certificate issuer: /CN=A91ABD25/serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Certificate serial: D2 Authority key identifier: 7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa Signing time: Sun 29 Oct 2023 04:15:37 +0000 ROA not before: Sun 29 Oct 2023 04:15:37 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136522 IP address blocks: 103.91.193.0/24 maxlen: 24 202.124.202.0/24 maxlen: 24 203.22.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABD25/serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Validity Not Before: Oct 29 04:15:37 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653ddc69-513c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:03:54:80:c1:32:97:51:49:1f:3f:cd:a3:47: 30:8e:b6:dd:3e:2d:c1:aa:64:53:4e:05:f8:b9:a8: 10:e5:6f:1f:32:f9:04:c5:c1:84:36:a2:ab:8f:0e: 1e:28:9a:e3:1a:f3:5d:55:cf:d9:cc:9b:96:62:30: 77:ad:dc:7a:38:89:9d:82:ea:3c:e5:ca:4f:fd:30: 5c:a6:d4:a8:f5:f1:33:ae:08:42:af:0a:c8:d7:a0: 5c:aa:b0:5f:3b:dc:44:20:19:bb:c1:41:4b:47:22: 07:49:c8:83:a9:84:14:41:ef:56:2c:91:be:00:43: d1:dc:3e:0e:6d:a0:64:ac:aa:7f:a7:b2:30:27:12: e1:02:00:a4:2f:c4:9e:98:77:17:44:41:55:3a:84: 80:45:8e:d0:e8:39:9b:45:06:3c:7d:10:6d:e0:58: 63:16:3f:2c:8a:61:ef:d5:67:1d:73:d8:ec:b9:35: f7:62:61:72:47:ad:03:04:e5:e8:3e:24:a4:84:72: b8:e5:d8:b1:3a:57:8b:01:c3:17:24:cb:45:16:e0: 00:7f:72:cd:f8:4e:2a:b4:e1:09:be:e3:8d:08:ae: 55:86:30:24:e1:d3:e0:c7:4a:19:6b:8a:0d:fd:e9: a1:f8:dc:93:23:fc:65:90:ae:ea:32:c3:48:48:5a: 96:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:48:42:C5:6E:03:6E:11:34:71:73:E4:E5:9F:BF:F9:0E:C9:74:23 X509v3 Authority Key Identifier: keyid:7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/E7FC6A1A4EAE11EDBF0D8256C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.193.0/24 202.124.202.0/24 203.22.208.0/22 Signature Algorithm: sha256WithRSAEncryption 41:4d:78:eb:b7:fc:a5:0f:96:f1:7f:c3:77:f9:88:1c:0f:32: d5:ad:d6:a3:3a:9b:d9:3f:e9:ff:ba:4a:72:b6:e1:e8:e8:4c: ed:4f:91:25:6e:08:4a:b1:53:be:d5:e6:33:2f:b9:18:b9:fd: db:b0:3a:e7:f6:40:b0:70:16:16:e2:d4:29:2a:83:15:20:d9: 6f:d1:c8:e8:83:b9:cb:a2:8b:bb:b4:18:46:bb:11:52:aa:1d: fb:1e:ab:55:55:0d:e7:ae:b1:8a:d2:ca:64:50:89:b5:da:bf: 44:31:b3:c3:0e:c9:aa:bb:61:54:f1:9a:0a:2d:1f:ae:e4:ec: b1:89:a7:72:ba:47:f0:2f:94:c9:c7:23:61:3f:10:2d:15:87: df:0e:a5:60:b5:30:12:a9:e4:b0:8f:8f:9c:e9:cb:4c:0d:c0: 7a:0b:97:4a:7e:8e:60:8d:02:39:c1:c6:95:4a:12:24:bf:53: f7:a2:2a:51:8f:bc:a2:23:45:0c:23:38:af:d2:d1:02:bf:3e: a1:06:ea:1e:dd:c7:dc:40:f1:0c:43:10:c3:a2:85:f0:36:b3: 98:d5:b9:49:ac:bb:a2:41:a5:d1:af:a5:9c:4b:1f:eb:e2:a0: 15:22:fe:3c:25:b8:cd:68:1d:29:34:1d:a8:bf:2c:bf:d0:58: 81:ac:11:ad -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJEMjUxMTAvBgNVBAUTKDdGRkM3QzU1Q0E0ODVDMzc2QTYxRUZFQzBFNTM3NzY1 M0EwNEMzQkQwHhcNMjMxMDI5MDQxNTM3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkZGM2OS01MTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvANUgMEyl1FJHz/No0cwjrbdPi3BqmRTTgX4uagQ5W8fMvkExcGENqKrjw4e KJrjGvNdVc/ZzJuWYjB3rdx6OImdguo85cpP/TBcptSo9fEzrghCrwrI16BcqrBf O9xEIBm7wUFLRyIHSciDqYQUQe9WLJG+AEPR3D4ObaBkrKp/p7IwJxLhAgCkL8Se mHcXREFVOoSARY7Q6DmbRQY8fRBt4FhjFj8simHv1Wcdc9jsuTX3YmFyR60DBOXo PiSkhHK45dixOleLAcMXJMtFFuAAf3LN+E4qtOEJvuONCK5VhjAk4dPgx0oZa4oN /emh+NyTI/xlkK7qMsNISFqWZQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMRIQsVu A24RNHFz5OWfv/kOyXQjMB8GA1UdIwQYMBaAFH/8fFXKSFw3amHv7A5Td2U6BMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkQyNS81MjdERDI1QTRF QUMxMUVEQjRGNzFFMzhDNEY5QUUwMi9mX3g4VmNwSVhEZHFZZV9zRGxOM1pUb0V3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeDhWY3BJWERkcVllX3NEbE4zWlRvRXc3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJEMjUvNTI3REQyNUE0RUFDMTFFREI0RjcxRTM4QzRGOUFFMDIvRTdGQzZBMUE0 RUFFMTFFREJGMEQ4MjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnW8EDBADKfMoDBALLFtAwDQYJKoZIhvcNAQELBQADggEB AEFNeOu3/KUPlvF/w3f5iBwPMtWt1qM6m9k/6f+6SnK24ejoTO1PkSVuCEqxU77V 5jMvuRi5/duwOuf2QLBwFhbi1CkqgxUg2W/RyOiDucuii7u0GEa7EVKqHfseq1VV DeeusYrSymRQibXav0Qxs8MOyaq7YVTxmgotH67k7LGJp3K6R/AvlMnHI2E/EC0V h98OpWC1MBKp5LCPj5zpy0wNwHoLl0p+jmCNAjnBxpVKEiS/U/eiKlGPvKIjRQwj OK/S0QK/PqEG6h7dx9xA8QxDEMOihfA2s5jVuUmsu6JBpdGvpZxLH+vioBUi/jwl uM1oHSk0Hai/LL/QWIGsEa0= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:24 2024 by rpki-client on console-ams.rpki-client.org