$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/CA888654D0E011EC9E5ACC1CC4F9AE02.roa File: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (raw, json) Hash identifier: betDDbeXOnYNscx7FdIZNi0kV6efDf1qXna22XtHg74= Subject key identifier: C5:4D:8D:5C:E9:4F:90:2C:6C:FC:7B:1C:49:F8:20:39:B5:5A:76:56 Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0344 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/CA888654D0E011EC9E5ACC1CC4F9AE02.roa Signing time: Tue 05 Sep 2023 01:32:10 +0000 ROA not before: Tue 05 Sep 2023 01:32:10 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58511 IP address blocks: 103.73.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 836 (0x344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Sep 5 01:32:10 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f6851a-0e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:39:2a:b7:3c:ba:9f:82:4b:b5:fc:ce:ea:b4: 73:d0:b1:eb:92:ed:8c:2d:09:3a:7d:86:30:7d:e1: ae:c4:35:71:29:1a:4d:ec:d6:93:8d:91:15:26:2e: 1d:c7:98:97:0a:9b:f2:73:39:61:03:6a:5c:77:0b: 37:da:80:0c:ea:14:27:f6:05:d3:c5:f1:de:3c:14: f4:ce:fc:61:61:0e:f4:f9:d0:df:c2:45:2e:f7:23: c3:0a:d4:ed:d8:5c:aa:1e:ab:b5:64:93:17:91:7a: 0d:66:b7:41:72:64:1c:58:de:a7:0d:65:e2:7b:47: a9:44:35:ab:e8:a2:90:26:2b:0f:7b:27:f8:cb:d4: 8f:f2:40:21:2e:48:49:72:0d:68:52:c4:91:71:cb: 4e:22:e7:9e:fd:6d:25:2b:36:83:2e:d3:b7:51:06: 2a:90:98:f2:bd:79:37:bf:34:45:31:ef:68:66:2a: a8:e6:6d:88:b9:61:a4:62:14:12:fd:93:c3:23:a2: 46:98:7c:8d:32:83:32:e9:22:4a:30:91:f9:72:bd: 68:77:13:4c:74:a6:17:ee:9a:5a:0e:c5:62:76:6a: 32:05:58:2d:8b:7e:57:6a:5f:63:f6:f3:c2:fa:15: ad:ae:44:fb:6b:f8:d1:e2:31:49:e1:e1:c6:fc:9a: 22:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:4D:8D:5C:E9:4F:90:2C:6C:FC:7B:1C:49:F8:20:39:B5:5A:76:56 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/CA888654D0E011EC9E5ACC1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.84.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:06:1d:b8:a0:6d:9a:6c:80:60:d7:68:41:11:ec:03:1d:50: e6:86:39:ac:ba:79:d9:25:32:15:78:41:4a:c2:31:19:a4:d6: aa:27:c0:06:83:33:a3:70:3a:45:f3:d1:02:9d:aa:08:6e:45: 71:3c:99:5b:a3:51:43:d5:4f:85:57:a3:9c:a7:09:f8:69:99: dc:64:4e:26:d1:dc:c8:24:37:23:56:ed:01:7a:df:e3:f0:4f: e1:3d:c0:69:17:83:73:e8:a5:16:9e:a7:cf:db:73:09:4f:b2: d4:46:0e:f7:a2:c7:bc:6b:2b:7e:fc:67:46:32:aa:5a:ae:8e: 2f:6c:26:d6:9f:87:7e:1b:3d:d5:01:69:4d:5e:34:7b:3b:cf: c9:1e:2d:e2:3a:6e:80:b0:26:8b:5f:fb:8a:bd:22:56:81:aa: d2:92:2e:f7:b3:ee:45:c1:75:3a:a6:4f:77:11:f2:fd:bb:51: 20:8a:e5:d4:fe:80:1e:f4:4d:30:1d:df:99:d2:b5:03:2b:0c: a3:28:7e:d1:9f:8c:cd:03:9a:d3:80:63:4e:b5:33:4e:eb:3c: 6b:39:7b:8d:c5:17:a7:bb:04:98:91:ce:b7:8e:a2:1b:8b:2a: 81:18:be:68:de:1c:82:5a:21:d2:a7:3c:d3:6f:97:ec:d4:20: 7c:d3:25:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjMwOTA1MDEzMjEwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2ODUxYS0wZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlTkqtzy6n4JLtfzO6rRz0LHrku2MLQk6fYYwfeGuxDVxKRpN7NaTjZEVJi4d x5iXCpvyczlhA2pcdws32oAM6hQn9gXTxfHePBT0zvxhYQ70+dDfwkUu9yPDCtTt 2FyqHqu1ZJMXkXoNZrdBcmQcWN6nDWXie0epRDWr6KKQJisPeyf4y9SP8kAhLkhJ cg1oUsSRcctOIuee/W0lKzaDLtO3UQYqkJjyvXk3vzRFMe9oZiqo5m2IuWGkYhQS /ZPDI6JGmHyNMoMy6SJKMJH5cr1odxNMdKYX7ppaDsVidmoyBVgti35Xal9j9vPC +hWtrkT7a/jR4jFJ4eHG/JoiVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMVNjVzp T5AsbPx7HEn4IDm1WnZWMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzNTcvQjg0QjEwRUM0NUE4MTFFQzhCMTQwNTU4QzRGOUFFMDIvQ0E4ODg2NTRE MEUwMTFFQzlFNUFDQzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnSVQwDQYJKoZIhvcNAQELBQADggEBAGwGHbigbZpsgGDX aEER7AMdUOaGOay6edklMhV4QUrCMRmk1qonwAaDM6NwOkXz0QKdqghuRXE8mVuj UUPVT4VXo5ynCfhpmdxkTibR3MgkNyNW7QF63+PwT+E9wGkXg3PopRaep8/bcwlP stRGDveix7xrK378Z0Yyqlquji9sJtafh34bPdUBaU1eNHs7z8keLeI6boCwJotf +4q9IlaBqtKSLvez7kXBdTqmT3cR8v27USCK5dT+gB70TTAd35nStQMrDKMoftGf jM0DmtOAY061M07rPGs5e43FF6e7BJiRzreOohuLKoEYvmjeHIJaIdKnPNNvl+zU IHzTJQQ= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:25 2024 by rpki-client on console-ams.rpki-client.org