$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/7F64C44645A511ED93E3C45BC4F9AE02.roa File: 7F64C44645A511ED93E3C45BC4F9AE02.roa (raw, json) Hash identifier: jgmJA/Q4HePnHB1tUDrrt29C9GKJ1/meaw2KgH9ecfU= Subject key identifier: 06:6E:AB:3D:60:D7:E9:1C:98:D6:5F:82:14:F5:32:6D:EB:3B:0F:D4 Certificate issuer: /CN=A91ABEAC/serialNumber=8F5D5E5879A75158F2CFFB32ADD94471F974183F Certificate serial: 01B9 Authority key identifier: 8F:5D:5E:58:79:A7:51:58:F2:CF:FB:32:AD:D9:44:71:F9:74:18:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j11eWHmnUVjyz_syrdlEcfl0GD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/7F64C44645A511ED93E3C45BC4F9AE02.roa Signing time: Tue 27 Feb 2024 12:30:31 +0000 ROA not before: Tue 27 Feb 2024 12:30:31 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58704 IP address blocks: 103.20.140.0/22 maxlen: 24 2405:2f00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/j11eWHmnUVjyz_syrdlEcfl0GD8.crl rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/j11eWHmnUVjyz_syrdlEcfl0GD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j11eWHmnUVjyz_syrdlEcfl0GD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABEAC/serialNumber=8F5D5E5879A75158F2CFFB32ADD94471F974183F Validity Not Before: Feb 27 12:30:31 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65ddd5e7-356f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e4:ae:9e:c7:f5:0e:01:aa:37:84:d6:36:e1: f5:89:08:c4:21:fe:d0:9a:5b:13:3c:56:8e:bd:0b: f6:d6:90:7a:bd:2b:ad:fb:49:24:35:e3:c4:d9:02: ae:85:71:99:2f:91:e2:30:93:90:a4:ef:93:22:e9: d4:f7:53:b2:2f:4b:65:af:d1:e8:6c:4d:dd:40:a0: 52:61:50:37:16:77:b3:6e:27:76:c5:d3:c3:93:6d: 40:41:1c:43:a3:e3:fb:36:82:28:60:56:ba:aa:49: 58:c6:25:53:d0:ad:95:aa:91:1d:6e:87:bf:77:e9: 23:2b:60:af:ba:03:0f:2f:c7:4a:0b:64:33:e4:f1: f7:90:32:4d:52:5d:33:47:2f:8e:09:26:eb:f2:47: c7:ed:55:94:62:6b:f0:e1:38:df:b0:5c:09:a7:d6: 34:cf:62:8c:d8:6a:da:9a:f0:94:8b:49:1a:fb:c5: 32:2a:cb:19:ef:c5:aa:e9:52:77:1b:24:96:52:62: 02:47:fd:59:92:09:25:6b:3c:d9:4b:07:c9:2d:1a: 04:be:0c:d9:6b:62:32:a2:69:27:91:b0:04:c5:cb: 7a:63:d1:6f:97:5a:99:f6:3c:3e:b4:74:2f:9f:56: ae:fe:2a:d5:b5:3a:5e:2e:6c:b0:22:2d:47:8f:d8: ad:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6E:AB:3D:60:D7:E9:1C:98:D6:5F:82:14:F5:32:6D:EB:3B:0F:D4 X509v3 Authority Key Identifier: keyid:8F:5D:5E:58:79:A7:51:58:F2:CF:FB:32:AD:D9:44:71:F9:74:18:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/j11eWHmnUVjyz_syrdlEcfl0GD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j11eWHmnUVjyz_syrdlEcfl0GD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/7F64C44645A511ED93E3C45BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.140.0/22 IPv6: 2405:2f00::/32 Signature Algorithm: sha256WithRSAEncryption 09:da:9a:1a:8d:cc:b2:34:0e:26:cd:18:f6:75:16:05:eb:08: 15:9a:0d:26:55:2f:dc:87:4a:d0:fd:9c:17:03:f5:32:33:0e: 31:68:82:c6:9d:bb:5a:e1:f7:0a:1b:7a:11:07:c4:5a:00:89: 60:a5:8a:9f:0c:a9:2b:0b:b3:e8:ae:90:68:94:80:0b:4f:7d: c6:b9:8d:ed:92:63:aa:78:e6:c6:00:a2:a3:ae:de:38:f5:5b: d8:45:42:91:65:6a:57:40:75:7d:ab:f4:04:5d:94:08:d2:98: fc:6d:98:56:5f:07:3c:7d:1b:34:45:e2:93:34:52:e1:e1:9a: cc:ff:59:59:65:3c:a5:b9:12:a9:01:14:bb:6c:33:3e:1a:87: a9:29:b0:99:ee:26:d3:57:22:34:b6:64:cd:d9:05:a0:b8:2a: ae:35:fe:8f:45:81:23:2b:93:22:27:57:ec:0b:b3:23:e8:a7: 58:05:dc:6e:55:0f:0a:08:01:95:3d:7b:6b:51:80:b1:5f:bd: c3:9f:0b:f7:66:48:51:43:75:35:a7:fa:25:85:8e:9c:e0:08: 1b:07:75:c9:3f:fa:1b:cb:67:f1:d9:70:da:81:6d:d7:65:65: 6a:30:52:07:8b:22:1a:9f:97:7e:9e:b2:e2:39:ba:ff:61:88: e4:aa:d5:d3 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJFQUMxMTAvBgNVBAUTKDhGNUQ1RTU4NzlBNzUxNThGMkNGRkIzMkFERDk0NDcx Rjk3NDE4M0YwHhcNMjQwMjI3MTIzMDMxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRkZDVlNy0zNTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouSunsf1DgGqN4TWNuH1iQjEIf7QmlsTPFaOvQv21pB6vSut+0kkNePE2QKu hXGZL5HiMJOQpO+TIunU91OyL0tlr9HobE3dQKBSYVA3Fnezbid2xdPDk21AQRxD o+P7NoIoYFa6qklYxiVT0K2VqpEdboe/d+kjK2CvugMPL8dKC2Qz5PH3kDJNUl0z Ry+OCSbr8kfH7VWUYmvw4TjfsFwJp9Y0z2KM2GramvCUi0ka+8UyKssZ78Wq6VJ3 GySWUmICR/1ZkgklazzZSwfJLRoEvgzZa2IyomknkbAExct6Y9Fvl1qZ9jw+tHQv n1au/irVtTpeLmywIi1Hj9itkwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAZuqz1g 1+kcmNZfghT1Mm3rOw/UMB8GA1UdIwQYMBaAFI9dXlh5p1FY8s/7Mq3ZRHH5dBg/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkVBQy8xQ0QxNDZCMEZE MTExMUVDQUQ4QjUyMjhDNEY5QUUwMi9qMTFlV0htblVWanl6X3N5cmRsRWNmbDBH RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2oxMWVXSG1uVVZqeXpfc3lyZGxFY2ZsMEdEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJFQUMvMUNEMTQ2QjBGRDExMTFFQ0FEOEI1MjI4QzRGOUFFMDIvN0Y2NEM0NDY0 NUE1MTFFRDkzRTNDNDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnFIwwDQQCAAIwBwMFACQFLwAwDQYJKoZIhvcNAQELBQAD ggEBAAnamhqNzLI0DibNGPZ1FgXrCBWaDSZVL9yHStD9nBcD9TIzDjFogsadu1rh 9wobehEHxFoAiWClip8MqSsLs+iukGiUgAtPfca5je2SY6p45sYAoqOu3jj1W9hF QpFlaldAdX2r9ARdlAjSmPxtmFZfBzx9GzRF4pM0UuHhmsz/WVllPKW5EqkBFLts Mz4ah6kpsJnuJtNXIjS2ZM3ZBaC4Kq41/o9FgSMrkyInV+wLsyPop1gF3G5VDwoI AZU9e2tRgLFfvcOfC/dmSFFDdTWn+iWFjpzgCBsHdck/+hvLZ/HZcNqBbddlZWow UgeLIhqfl36esuI5uv9hiOSq1dM= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:24 2024 by rpki-client on console-ams.rpki-client.org