$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/3300A8B0FBB911EE8D1F0F3AC4F9AE02.roa File: 3300A8B0FBB911EE8D1F0F3AC4F9AE02.roa (raw, json) Hash identifier: 2NDH6WSLRffSE57lRIE3IsFmyH//gcFvd6rSRXgCmgE= Subject key identifier: E8:28:17:F4:C3:56:24:3D:C3:E9:82:B4:B9:26:9C:DD:6E:4D:39:C9 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: C3 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/3300A8B0FBB911EE8D1F0F3AC4F9AE02.roa Signing time: Mon 06 May 2024 11:08:43 +0000 ROA not before: Mon 06 May 2024 11:08:43 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133320 IP address blocks: 45.118.9.0/24 maxlen: 24 103.237.113.0/24 maxlen: 24 2001:df6:a900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:17:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: May 6 11:08:43 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6638ba3b-6984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:93:b5:9f:a4:8d:13:d8:c9:34:93:a0:3d:92: df:26:7a:4f:ff:f6:ee:af:64:53:90:65:db:67:0f: 72:36:6e:72:1e:aa:f1:85:8b:99:30:3b:ae:b9:eb: f9:78:cc:43:68:20:0f:48:a8:cb:d6:2c:32:1e:9f: ac:38:df:e2:32:fe:85:d6:1b:89:64:ad:b7:cf:5c: 22:af:1d:00:69:6a:9f:45:33:cb:fa:53:c5:1d:d9: 20:4a:7b:af:f5:6d:be:c3:13:df:cb:8c:75:03:1e: 97:1b:a9:ad:34:07:97:c7:3d:6b:5a:fe:a2:25:cf: 30:ef:bd:37:6d:a5:8f:18:af:98:f1:9a:eb:cf:44: 81:bf:c2:2b:c4:0c:28:b8:2d:b6:8f:8b:53:75:57: ce:77:42:c9:e5:a9:dd:80:a7:24:9b:d3:85:4c:54: ab:2a:9c:7c:3c:5a:5f:f5:87:4b:cc:74:70:69:db: 05:3a:a3:32:77:01:61:ae:9f:0d:5a:84:ee:17:23: c8:1d:65:33:0e:87:f6:6a:89:7d:51:35:f1:1d:17: 2d:57:98:81:ee:b7:15:07:fb:7c:29:28:7b:fe:2d: cb:e7:a3:6e:46:66:a7:f4:87:08:b6:df:41:42:33: 50:f8:e0:73:80:02:e1:3b:be:d3:1d:43:af:cd:db: 3f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:28:17:F4:C3:56:24:3D:C3:E9:82:B4:B9:26:9C:DD:6E:4D:39:C9 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/3300A8B0FBB911EE8D1F0F3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.118.9.0/24 103.237.113.0/24 IPv6: 2001:df6:a900::/48 Signature Algorithm: sha256WithRSAEncryption 7c:bb:b9:01:14:68:74:39:21:1b:f6:2b:8c:8e:48:ba:7c:37: ab:1b:63:95:b9:12:21:f5:be:15:e6:62:98:29:2f:01:61:6b: d9:e6:2b:35:3b:44:da:54:85:f6:41:e5:f1:d1:66:58:e2:2c: 04:54:8f:e9:9e:55:83:81:ba:0e:b3:e3:85:df:e9:c9:47:87: d5:53:e3:f9:ee:65:18:2a:48:21:32:e0:63:c7:91:32:98:51: 08:f3:12:d1:86:ac:fd:a1:e3:2c:58:27:e7:8c:39:4b:59:41: bf:a6:e1:72:ee:9a:5a:20:db:17:c7:0e:28:76:a5:df:e3:3c: 2b:1a:5a:bd:10:08:92:9e:3f:18:26:3a:b5:26:e6:46:fa:d8: 52:6c:4e:fe:90:6c:9b:a0:82:3e:db:e2:80:d8:a5:3f:2f:ce: 6d:74:bb:5d:63:9e:03:ce:7d:13:a8:82:23:96:c7:a3:b6:c5: 93:2b:24:3c:48:7b:16:ed:f6:ac:4c:14:09:48:e8:6f:61:6f: 3e:49:3a:94:d5:51:53:63:ed:bc:d8:d2:8d:b4:d0:91:b6:8d: 0b:1b:5c:b6:a9:b3:03:c6:26:0a:71:24:a5:6c:70:a1:5a:40: d9:95:c5:2f:26:6f:bc:32:04:0a:22:d1:ec:5f:a6:f3:bf:be: 75:11:8c:d1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjQwNTA2MTEwODQzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM4YmEzYi02OTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopO1n6SNE9jJNJOgPZLfJnpP//bur2RTkGXbZw9yNm5yHqrxhYuZMDuuuev5 eMxDaCAPSKjL1iwyHp+sON/iMv6F1huJZK23z1wirx0AaWqfRTPL+lPFHdkgSnuv 9W2+wxPfy4x1Ax6XG6mtNAeXxz1rWv6iJc8w7703baWPGK+Y8Zrrz0SBv8IrxAwo uC22j4tTdVfOd0LJ5andgKckm9OFTFSrKpx8PFpf9YdLzHRwadsFOqMydwFhrp8N WoTuFyPIHWUzDof2aol9UTXxHRctV5iB7rcVB/t8KSh7/i3L56NuRman9IcItt9B QjNQ+OBzgALhO77THUOvzds/CQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOgoF/TD ViQ9w+mCtLkmnN1uTTnJMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU5RTUvREQ5RjFGN0MzQzAxMTFFRTkxQ0JFMTU3QzRGOUFFMDIvMzMwMEE4QjBG QkI5MTFFRThEMUYwRjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAAtdgkDBABn7XEwDwQCAAIwCQMHACABDfapADANBgkqhkiG 9w0BAQsFAAOCAQEAfLu5ARRodDkhG/YrjI5Iunw3qxtjlbkSIfW+FeZimCkvAWFr 2eYrNTtE2lSF9kHl8dFmWOIsBFSP6Z5Vg4G6DrPjhd/pyUeH1VPj+e5lGCpIITLg Y8eRMphRCPMS0Yas/aHjLFgn54w5S1lBv6bhcu6aWiDbF8cOKHal3+M8KxpavRAI kp4/GCY6tSbmRvrYUmxO/pBsm6CCPtvigNilPy/ObXS7XWOeA859E6iCI5bHo7bF kyskPEh7Fu32rEwUCUjob2FvPkk6lNVRU2PtvNjSjbTQkbaNCxtctqmzA8YmCnEk pWxwoVpA2ZXFLyZvvDIECiLR7F+m87++dRGM0Q== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:30 2024 by rpki-client on console-ams.rpki-client.org