$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/0B1C46B26C8E11EDA1402673C4F9AE02.roa File: 0B1C46B26C8E11EDA1402673C4F9AE02.roa (raw, json) Hash identifier: Ocs9fY1y4Dml47WlHW8ZQXXWYhVC6xPKMA75wdQOmZ4= Subject key identifier: 2D:63:35:CB:15:CD:44:0F:3D:59:DD:C8:25:86:FE:DF:28:E7:CB:54 Certificate issuer: /CN=A91AC4FA/serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7 Certificate serial: 7D Authority key identifier: 8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/0B1C46B26C8E11EDA1402673C4F9AE02.roa Signing time: Sat 01 Jul 2023 04:13:00 +0000 ROA not before: Sat 01 Jul 2023 04:13:00 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 396982 IP address blocks: 203.4.188.0/23 maxlen: 24 203.4.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.crl rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC4FA/serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7 Validity Not Before: Jul 1 04:13:00 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649fa7cc-7cdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c7:d6:03:6b:8c:18:ed:37:1d:bd:c0:0b:53: 32:22:ad:47:65:b8:cf:02:ec:5e:21:9e:11:56:6b: b5:36:d0:03:54:de:eb:02:ed:1b:66:68:94:10:a6: cb:ee:f3:b4:3e:60:55:7b:e5:54:ab:40:b0:bb:c8: e7:a2:56:f1:94:50:27:fb:68:1a:b5:fb:41:9a:6f: b8:65:3e:72:1e:1c:6d:f9:ff:3c:ea:56:75:d6:5a: dd:16:9d:eb:2b:8e:07:f0:35:10:6a:e1:61:f2:ba: 6c:52:e5:f2:b1:42:14:56:55:b9:7e:59:36:7c:7d: 28:f3:bb:77:76:9d:8d:51:b1:79:10:16:a8:42:1a: e6:d2:ec:0e:5f:9a:99:ef:bb:df:a8:a8:3d:0f:f2: c5:0b:90:7b:f1:eb:10:ca:2b:8a:14:fd:01:64:fe: 89:a4:3e:89:df:93:04:64:8f:5c:fd:40:3b:33:9e: 47:0b:c2:05:12:16:8d:4e:07:86:13:80:9e:57:aa: b7:24:e5:a1:d7:59:66:a1:b9:1c:12:2e:af:d0:7a: b5:35:db:d2:91:f8:25:52:af:6d:52:db:85:6f:5a: 57:51:d2:9d:8e:b2:b5:e0:1c:14:9e:70:d9:62:88: 0c:bf:c4:a2:e4:90:6c:ac:4b:e5:76:7e:cc:48:3c: 36:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:63:35:CB:15:CD:44:0F:3D:59:DD:C8:25:86:FE:DF:28:E7:CB:54 X509v3 Authority Key Identifier: keyid:8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/0B1C46B26C8E11EDA1402673C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.188.0/22 Signature Algorithm: sha256WithRSAEncryption b6:b7:d4:5c:53:a4:18:64:87:6a:ac:58:f9:a8:a3:cb:04:4d: 19:9a:15:58:2d:f8:13:0c:c8:71:64:96:fd:a8:b5:0c:f4:3c: e0:4c:ac:a2:b2:5e:ee:a3:b1:bd:26:76:c7:20:d4:6a:6b:e2: dd:7f:b3:17:16:17:65:02:be:51:ba:9b:af:ca:dd:48:b2:5f: 32:30:92:b9:5f:68:78:61:e7:1b:9b:a6:1c:69:da:e1:ab:82: 47:d3:ab:8f:d0:20:fe:7c:b6:cf:cd:1e:a4:05:75:f1:fd:f6: f8:6b:2e:64:f0:e0:35:64:d3:14:4e:19:4f:45:37:51:e0:d1: 21:00:7f:53:ed:14:34:44:87:53:88:91:6b:e3:5e:1a:0b:ff: 53:07:52:37:7c:e7:c3:1c:41:ba:93:bb:ec:59:fb:66:32:ee: 7b:3b:4e:bc:61:ef:f1:b5:5e:e0:03:15:a3:f5:54:1d:85:9d: 39:40:5d:7b:0c:e7:91:f9:51:b2:64:90:ce:4f:6b:9c:46:b4: 7b:b6:64:e2:7d:2d:9e:6e:af:1e:35:62:e0:5c:1e:45:1a:41: 91:55:03:36:77:3b:dd:9f:f7:e8:9c:05:5a:57:5d:4c:9b:35: b5:aa:9c:71:8f:fa:c8:d0:8f:e9:52:b8:bc:7d:4a:48:d2:06: 12:81:77:6b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzRGQTExMC8GA1UEBRMoOEFGN0Q4Qjg2NEZEOTA0NTJGRkQ2REU5M0I1MTQ1NkM3 OUVGQjNDNzAeFw0yMzA3MDEwNDEzMDBaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0OWZhN2NjLTdjZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5x9YDa4wY7TcdvcALUzIirUdluM8C7F4hnhFWa7U20ANU3usC7RtmaJQQpsvu 87Q+YFV75VSrQLC7yOeiVvGUUCf7aBq1+0Gab7hlPnIeHG35/zzqVnXWWt0Wnesr jgfwNRBq4WHyumxS5fKxQhRWVbl+WTZ8fSjzu3d2nY1RsXkQFqhCGubS7A5fmpnv u9+oqD0P8sULkHvx6xDKK4oU/QFk/omkPonfkwRkj1z9QDsznkcLwgUSFo1OB4YT gJ5Xqrck5aHXWWahuRwSLq/QerU129KR+CVSr21S24VvWldR0p2OsrXgHBSecNli iAy/xKLkkGysS+V2fsxIPDbpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULWM1yxXN RA89Wd3IJYb+3yjny1QwHwYDVR0jBBgwFoAUivfYuGT9kEUv/W3pO1FFbHnvs8cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDNEZBLzM3Q0I4Nzk4NkM4 QjExRUQ4N0FGRjU3MUM0RjlBRTAyL2l2Zll1R1Q5a0VVdl9XM3BPMUZGYkhudnM4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXZmWXVHVDlrRVV2X1czcE8xRkZiSG52czhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzRGQS8zN0NCODc5ODZDOEIxMUVEODdBRkY1NzFDNEY5QUUwMi8wQjFDNDZCMjZD OEUxMUVEQTE0MDI2NzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAssEvDANBgkqhkiG9w0BAQsFAAOCAQEAtrfUXFOkGGSHaqxY +aijywRNGZoVWC34EwzIcWSW/ai1DPQ84EysorJe7qOxvSZ2xyDUamvi3X+zFxYX ZQK+Ubqbr8rdSLJfMjCSuV9oeGHnG5umHGna4auCR9Orj9Ag/ny2z80epAV18f32 +GsuZPDgNWTTFE4ZT0U3UeDRIQB/U+0UNESHU4iRa+NeGgv/UwdSN3znwxxBupO7 7Fn7ZjLueztOvGHv8bVe4AMVo/VUHYWdOUBdewznkflRsmSQzk9rnEa0e7Zk4n0t nm6vHjVi4FweRRpBkVUDNnc73Z/36JwFWlddTJs1taqccY/6yNCP6VK4vH1KSNIG EoF3aw== -----END CERTIFICATE-----Generated at Sun May 5 06:13:36 2024 by rpki-client on console-ams.rpki-client.org