$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/DD46BB92EDAB11EDBE91BB82C4F9AE02.roa File: DD46BB92EDAB11EDBE91BB82C4F9AE02.roa (raw, json) Hash identifier: yfP9++wHphW6I2zCDwhSS31v1ciC2Y7ImO9fEhB5HxE= Subject key identifier: 8B:0F:4D:D2:94:F3:72:69:EC:9A:E0:99:5A:90:F7:B8:43:1A:11:6E Certificate issuer: /CN=A91BE146/serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Certificate serial: 04B1 Authority key identifier: 43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/DD46BB92EDAB11EDBE91BB82C4F9AE02.roa Signing time: Fri 13 Oct 2023 00:32:35 +0000 ROA not before: Fri 13 Oct 2023 00:32:35 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 11158 IP address blocks: 117.103.120.0/24 maxlen: 24 117.103.121.0/24 maxlen: 24 117.103.122.0/24 maxlen: 24 117.103.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE146/serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Validity Not Before: Oct 13 00:32:35 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65289023-fe95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a2:ac:85:36:95:ca:3a:69:38:b2:e0:1d:0e: ef:48:2e:43:b0:2e:4f:46:00:3d:56:1b:96:0f:3b: aa:8e:d4:0e:4b:ef:44:da:20:4e:65:2b:0c:c4:14: 3a:53:2d:13:e5:fc:c8:22:fd:72:a0:da:d6:18:a0: ef:cd:92:63:0f:44:62:01:39:ee:8a:05:77:78:63: 73:da:80:4d:29:73:f7:dc:97:e5:e5:75:95:51:d4: 32:10:bf:03:fa:36:df:77:66:b7:6a:af:77:37:68: c5:b6:90:1e:4f:c9:6f:bd:e7:3f:e2:ee:ef:e9:5e: 14:2b:c5:92:b7:10:de:f5:0b:56:a4:65:2d:b1:46: ff:7a:2e:4c:27:f0:1c:18:a8:43:6d:95:b0:d3:f0: f7:16:99:f2:47:fa:81:53:48:38:f5:53:26:b4:25: 01:65:78:4f:18:8c:2e:68:74:a6:ce:8d:90:2a:b3: 17:6f:f2:b2:93:a0:b5:92:51:6b:77:70:53:49:ec: 51:73:5d:97:90:f3:cc:e0:fa:b5:4b:12:4a:aa:67: eb:d3:17:b2:d8:3e:43:00:0c:47:f6:6a:76:40:a0: ef:ce:98:8a:96:13:53:32:44:79:35:e5:aa:75:e8: 5a:31:54:dd:78:2b:28:02:e8:a7:76:f6:eb:fb:4f: 77:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0F:4D:D2:94:F3:72:69:EC:9A:E0:99:5A:90:F7:B8:43:1A:11:6E X509v3 Authority Key Identifier: keyid:43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/DD46BB92EDAB11EDBE91BB82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.103.120.0/22 Signature Algorithm: sha256WithRSAEncryption 57:20:f7:59:c4:28:db:fe:36:2a:27:d7:8a:c6:c7:66:35:aa: 02:9a:1c:7b:c4:5d:70:ab:03:ed:12:36:c0:8b:a9:9a:df:8e: 72:ec:c1:80:d1:ea:60:1f:c8:de:4e:ac:35:18:7f:f3:79:bd: c4:d7:58:3a:00:0a:eb:8d:26:65:94:9e:58:e0:eb:2a:7d:83: d1:64:3d:06:90:9e:70:1f:94:6e:df:5f:ca:0e:03:ae:f7:1d: e8:00:5c:9c:de:ff:fe:dc:56:e2:23:12:18:2e:27:4b:59:bd: a1:e5:0e:7b:86:fd:e7:ef:8b:52:2f:4b:58:7d:d4:6c:e6:1a: 78:7b:73:71:cd:de:07:2c:19:38:94:da:3d:ae:ad:29:ae:8e: f4:fc:52:3b:be:ba:e2:b9:a3:01:0e:f9:58:ef:1f:7f:89:e9: 5c:c1:89:0d:6b:9d:c2:46:9a:c3:ea:3b:62:da:a9:2a:56:51: a0:d5:82:43:27:b0:f8:eb:1d:60:75:c8:11:52:80:49:c6:7f: 47:60:08:dc:5c:78:04:05:af:13:dc:3b:6a:25:4f:d1:3c:f9: 58:36:65:49:9e:6b:87:9c:0e:58:e9:26:66:f4:c9:e8:d6:82: 7a:90:dc:c4:11:01:7c:93:81:fc:24:1d:e8:42:d9:ed:82:ca: ff:87:2a:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxNDYxMTAvBgNVBAUTKDQzRUEzQTJEQzA4QzVFMUYyQ0Q2ODQxMTY0NEEwNUMw NzZFODhDMDgwHhcNMjMxMDEzMDAzMjM1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4OTAyMy1mZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6KshTaVyjppOLLgHQ7vSC5DsC5PRgA9VhuWDzuqjtQOS+9E2iBOZSsMxBQ6 Uy0T5fzIIv1yoNrWGKDvzZJjD0RiATnuigV3eGNz2oBNKXP33Jfl5XWVUdQyEL8D +jbfd2a3aq93N2jFtpAeT8lvvec/4u7v6V4UK8WStxDe9QtWpGUtsUb/ei5MJ/Ac GKhDbZWw0/D3FpnyR/qBU0g49VMmtCUBZXhPGIwuaHSmzo2QKrMXb/Kyk6C1klFr d3BTSexRc12XkPPM4Pq1SxJKqmfr0xey2D5DAAxH9mp2QKDvzpiKlhNTMkR5NeWq dehaMVTdeCsoAuindvbr+093GQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIsPTdKU 83Jp7JrgmVqQ97hDGhFuMB8GA1UdIwQYMBaAFEPqOi3AjF4fLNaEEWRKBcB26IwI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTE0Ni9FNDFBQjQyQUJE MzExMUVCQkZDM0Y5MjFDNEY5QUUwMi9RLW82TGNDTVhoOHMxb1FSWkVvRndIYm9q QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtbzZMY0NNWGg4czFvUVJaRW9Gd0hib2pBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxNDYvRTQxQUI0MkFCRDMxMTFFQkJGQzNGOTIxQzRGOUFFMDIvREQ0NkJCOTJF REFCMTFFREJFOTFCQjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ1Z3gwDQYJKoZIhvcNAQELBQADggEBAFcg91nEKNv+Nion 14rGx2Y1qgKaHHvEXXCrA+0SNsCLqZrfjnLswYDR6mAfyN5OrDUYf/N5vcTXWDoA CuuNJmWUnljg6yp9g9FkPQaQnnAflG7fX8oOA673HegAXJze//7cVuIjEhguJ0tZ vaHlDnuG/efvi1IvS1h91GzmGnh7c3HN3gcsGTiU2j2urSmujvT8Uju+uuK5owEO +VjvH3+J6VzBiQ1rncJGmsPqO2LaqSpWUaDVgkMnsPjrHWB1yBFSgEnGf0dgCNxc eAQFrxPcO2olT9E8+Vg2ZUmea4ecDljpJmb0yejWgnqQ3MQRAXyTgfwkHehC2e2C yv+HKng= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:31 2024 by rpki-client on console-ams.rpki-client.org