$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/C4C1BD2257DE11EE8DBFD830C4F9AE02.roa File: C4C1BD2257DE11EE8DBFD830C4F9AE02.roa (raw, json) Hash identifier: rxphAS5sErcKtr+cbxJjNV2OEWe6Y/sev3Jnubk4d+E= Subject key identifier: 6E:6B:9E:5E:03:D4:22:13:28:F6:0C:D6:0D:D6:2B:9D:2F:08:E9:0E Certificate issuer: /CN=A91C0E6A/serialNumber=F5459CBA31F933F9073B514C9CBBEC34F6ED2E4A Certificate serial: 9D Authority key identifier: F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/C4C1BD2257DE11EE8DBFD830C4F9AE02.roa Signing time: Mon 25 Mar 2024 06:29:00 +0000 ROA not before: Mon 25 Mar 2024 06:29:00 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9009 IP address blocks: 103.130.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.crl rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E6A/serialNumber=F5459CBA31F933F9073B514C9CBBEC34F6ED2E4A Validity Not Before: Mar 25 06:29:00 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660119ac-6b3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a7:cd:ee:0f:6c:e2:22:32:8f:5c:1a:b6:d6: c1:39:16:e9:0f:bd:84:6a:3a:a5:32:77:2f:fc:e7: 25:15:8f:b2:98:23:cb:79:00:dd:b0:b3:2b:ac:49: 41:19:2b:c4:92:19:80:da:e2:34:72:98:51:59:2b: e6:ff:cf:e5:60:7d:58:2d:2b:b7:eb:a9:6a:8b:38: 77:36:d2:97:a4:c9:30:81:54:e5:14:29:98:3e:22: 85:10:95:d7:69:56:eb:d9:87:68:28:f0:23:87:af: 99:75:cc:aa:93:54:1e:d6:e2:95:32:23:8f:a4:c1: 96:8d:b2:9f:85:2c:8f:6f:78:d5:ce:21:28:0b:ac: e3:71:27:92:48:0d:08:5d:6b:ad:82:1d:1c:7a:ed: 34:cb:fb:da:1f:45:84:64:d3:d2:cd:cf:0a:cf:6a: 72:ef:f4:45:ca:d7:45:92:03:14:48:83:8d:5b:1f: 6b:ff:80:b9:d1:52:dc:75:82:dc:bf:d6:d2:de:24: 1d:a1:06:a3:cb:9a:c8:69:be:90:2b:85:20:ee:86: ea:a6:90:f4:e9:95:b8:94:7a:c2:e9:15:78:ab:0c: e0:87:8a:0d:d3:83:20:dd:56:ff:af:59:01:dd:90: 51:6c:34:7e:fe:1e:10:02:83:7a:fa:23:dc:31:82: e7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6B:9E:5E:03:D4:22:13:28:F6:0C:D6:0D:D6:2B:9D:2F:08:E9:0E X509v3 Authority Key Identifier: keyid:F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/C4C1BD2257DE11EE8DBFD830C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.238.0/24 Signature Algorithm: sha256WithRSAEncryption a3:2a:df:05:4f:55:b7:4b:5d:b4:67:23:fd:54:6f:d8:fd:47: 6e:1e:0f:a8:e3:8a:15:d2:69:77:ce:b6:32:42:12:a6:5a:58: f8:84:c1:ea:80:52:73:27:e9:e3:78:1b:7e:51:bf:1e:99:43: 2a:26:0e:13:22:c2:a1:c6:b8:4e:90:b1:66:7f:43:cc:4e:db: 94:53:1c:32:96:0b:75:ad:52:98:e1:a4:da:56:25:dd:a4:9d: 2a:99:2e:80:f8:4e:2e:fd:3f:e9:d2:67:d8:37:45:1a:bc:ef: 89:8b:4a:5a:a3:2a:12:62:e2:60:fa:7e:55:bd:ba:de:98:85: ec:71:f4:0d:12:28:6a:7d:db:cb:a2:41:8a:1f:1c:7c:f9:44: 34:d5:b7:de:75:cc:22:18:ea:e4:bc:fc:85:45:43:bf:a2:c0: c0:84:11:bd:7b:aa:96:90:e2:ec:df:c3:be:41:ab:2e:56:d7: 84:04:ad:d3:a3:9f:5e:a1:04:fb:80:3a:09:b3:a6:af:c9:79: cf:49:fc:b6:5f:b4:ae:a5:16:1e:22:46:32:7e:a5:fb:77:9d: ee:72:24:25:90:43:ef:ad:19:ad:e9:2d:06:0c:1e:8f:d5:9b: cc:24:ec:b1:a1:71:53:c2:88:6b:0d:8f:da:0d:95:d0:ae:96: b6:25:9a:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNkExMTAvBgNVBAUTKEY1NDU5Q0JBMzFGOTMzRjkwNzNCNTE0QzlDQkJFQzM0 RjZFRDJFNEEwHhcNMjQwMzI1MDYyOTAwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAxMTlhYy02YjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKfN7g9s4iIyj1wattbBORbpD72EajqlMncv/OclFY+ymCPLeQDdsLMrrElB GSvEkhmA2uI0cphRWSvm/8/lYH1YLSu366lqizh3NtKXpMkwgVTlFCmYPiKFEJXX aVbr2YdoKPAjh6+Zdcyqk1Qe1uKVMiOPpMGWjbKfhSyPb3jVziEoC6zjcSeSSA0I XWutgh0ceu00y/vaH0WEZNPSzc8Kz2py7/RFytdFkgMUSIONWx9r/4C50VLcdYLc v9bS3iQdoQajy5rIab6QK4Ug7obqppD06ZW4lHrC6RV4qwzgh4oN04Mg3Vb/r1kB 3ZBRbDR+/h4QAoN6+iPcMYLn4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFG5rnl4D 1CITKPYM1g3WK50vCOkOMB8GA1UdIwQYMBaAFPVFnLox+TP5BztRTJy77DT27S5K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU2QS80QzI4MUJCRTEx QTYxMUVFQjMzNDY5MjZDNEY5QUUwMi85VVdjdWpINU1fa0hPMUZNbkx2c05QYnRM a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVV2N1akg1TV9rSE8xRk1uTHZzTlBidExrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBFNkEvNEMyODFCQkUxMUE2MTFFRUIzMzQ2OTI2QzRGOUFFMDIvQzRDMUJEMjI1 N0RFMTFFRThEQkZEODMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngu4wDQYJKoZIhvcNAQELBQADggEBAKMq3wVPVbdLXbRn I/1Ub9j9R24eD6jjihXSaXfOtjJCEqZaWPiEweqAUnMn6eN4G35Rvx6ZQyomDhMi wqHGuE6QsWZ/Q8xO25RTHDKWC3WtUpjhpNpWJd2knSqZLoD4Ti79P+nSZ9g3RRq8 74mLSlqjKhJi4mD6flW9ut6Yhexx9A0SKGp928uiQYofHHz5RDTVt951zCIY6uS8 /IVFQ7+iwMCEEb17qpaQ4uzfw75Bqy5W14QErdOjn16hBPuAOgmzpq/Jec9J/LZf tK6lFh4iRjJ+pft3ne5yJCWQQ++tGa3pLQYMHo/Vm8wk7LGhcVPCiGsNj9oNldCu lrYlmvY= -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:22 2024 by rpki-client on console-ams.rpki-client.org