$ rpki-client -vvf rpki.apnic.net/member_repository/A91C113B/7BE7C09062F011EC952B2965C4F9AE02/30E0A83C62F511ECA1FC5A6CC4F9AE02.roa File: 30E0A83C62F511ECA1FC5A6CC4F9AE02.roa (raw, json) Hash identifier: Nhy318877Pj8nUb8j9i7KCSdGvMUGkfqcZTP4yRq+ZU= Subject key identifier: 35:02:FF:79:67:9D:68:23:F9:67:02:70:D6:65:C7:D0:93:9E:88:06 Certificate issuer: /CN=A91C113B/serialNumber=1F11A616D732E4163B44FEB6285EFEEE587C6DD2 Certificate serial: 02D8 Authority key identifier: 1F:11:A6:16:D7:32:E4:16:3B:44:FE:B6:28:5E:FE:EE:58:7C:6D:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxGmFtcy5BY7RP62KF7-7lh8bdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C113B/7BE7C09062F011EC952B2965C4F9AE02/30E0A83C62F511ECA1FC5A6CC4F9AE02.roa Signing time: Sat 29 Jul 2023 02:02:58 +0000 ROA not before: Sat 29 Jul 2023 02:02:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45532 IP address blocks: 103.142.142.0/23 maxlen: 24 2001:df1:4680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C113B/7BE7C09062F011EC952B2965C4F9AE02/HxGmFtcy5BY7RP62KF7-7lh8bdI.crl rsync://rpki.apnic.net/member_repository/A91C113B/7BE7C09062F011EC952B2965C4F9AE02/HxGmFtcy5BY7RP62KF7-7lh8bdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxGmFtcy5BY7RP62KF7-7lh8bdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 728 (0x2d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C113B/serialNumber=1F11A616D732E4163B44FEB6285EFEEE587C6DD2 Validity Not Before: Jul 29 02:02:58 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c47351-e16d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c4:5b:06:12:0f:f5:27:dc:36:f2:fe:a2:5c: e4:27:73:de:e4:dd:48:ba:00:fd:ea:12:d4:97:21: 8d:22:9f:63:39:c0:ab:01:68:54:87:10:a8:c0:21: 76:f9:e2:c5:da:81:03:90:93:c3:9a:88:f8:5a:d0: 22:b2:7b:9c:f7:d5:2e:15:7e:bc:28:81:ad:ed:ca: c2:f5:73:2d:74:f9:93:74:40:47:b9:e0:3f:ed:fd: 12:2e:99:e0:49:59:9f:a3:19:76:1a:c9:7d:7d:2f: 1a:20:5a:04:e2:e5:0b:b0:c0:3c:3c:bd:d9:ec:e0: 98:72:02:f4:9e:26:5c:80:cc:d0:8a:7b:d0:61:6e: 6a:0f:db:5a:20:3a:19:64:0b:94:4e:75:5f:5e:02: 4e:8e:6d:d8:fd:98:08:58:09:42:31:47:41:9c:62: 1d:a1:04:07:cc:b6:f7:e4:2c:c0:d2:44:38:89:60: 5b:46:6e:85:77:d3:00:c2:86:78:90:49:14:19:ec: bc:8c:c4:77:4d:6c:6d:73:75:6f:4d:c6:28:4d:33: ff:65:90:39:66:48:7e:d4:bf:3f:72:65:ae:48:3b: 25:60:10:8f:d0:15:63:e0:47:a5:3f:c5:ec:a6:25: f2:be:bc:43:ec:4e:da:a2:47:fa:11:f9:53:e8:0a: a1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:02:FF:79:67:9D:68:23:F9:67:02:70:D6:65:C7:D0:93:9E:88:06 X509v3 Authority Key Identifier: keyid:1F:11:A6:16:D7:32:E4:16:3B:44:FE:B6:28:5E:FE:EE:58:7C:6D:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C113B/7BE7C09062F011EC952B2965C4F9AE02/HxGmFtcy5BY7RP62KF7-7lh8bdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxGmFtcy5BY7RP62KF7-7lh8bdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C113B/7BE7C09062F011EC952B2965C4F9AE02/30E0A83C62F511ECA1FC5A6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.142.0/23 IPv6: 2001:df1:4680::/48 Signature Algorithm: sha256WithRSAEncryption 10:b3:fc:fb:42:f9:e0:cd:5b:8f:1b:92:82:96:16:f2:7c:9e: 11:84:1f:33:92:16:9f:c4:39:2d:62:7b:03:a9:ef:86:1b:aa: 8c:d8:fc:f3:f1:70:dc:3f:c4:42:0b:1c:de:9e:ea:f2:e1:53: d3:f6:90:8c:0a:df:3c:9b:c7:68:66:e2:65:b6:03:b6:a4:6d: a4:c6:28:3c:77:c7:79:64:51:35:b3:d1:7a:d7:79:4d:6f:60: 76:74:c3:8e:2f:7d:b7:a8:2c:d3:98:01:e1:6f:8d:ff:96:92: ea:ba:48:4c:5b:9d:78:69:f3:fc:21:77:9b:39:b4:f1:47:09: 95:c2:69:5c:91:b1:8a:d0:9f:50:37:68:9b:0e:cd:30:5d:56: ca:46:bd:96:0f:c0:57:d3:c3:57:7e:d7:96:0f:7d:91:a8:9e: 7d:94:99:c4:88:2b:8f:c8:3d:e1:42:66:f1:ce:fe:4b:43:51: 86:e8:7f:41:db:af:6d:05:e5:08:af:78:cc:df:a5:cc:b8:28: a4:3b:6b:aa:08:d4:7c:2f:cc:5a:1b:fb:14:0b:66:c5:8d:16: fe:8d:46:db:98:3e:dd:66:48:e0:d2:ee:6a:61:71:b5:26:4f: 59:f0:20:5a:b1:87:4b:56:ce:ad:94:99:1a:65:14:9b:a2:6a: 4b:bc:75:9d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzExM0IxMTAvBgNVBAUTKDFGMTFBNjE2RDczMkU0MTYzQjQ0RkVCNjI4NUVGRUVF NTg3QzZERDIwHhcNMjMwNzI5MDIwMjU4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM0NzM1MS1lMTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMRbBhIP9SfcNvL+olzkJ3Pe5N1IugD96hLUlyGNIp9jOcCrAWhUhxCowCF2 +eLF2oEDkJPDmoj4WtAisnuc99UuFX68KIGt7crC9XMtdPmTdEBHueA/7f0SLpng SVmfoxl2Gsl9fS8aIFoE4uULsMA8PL3Z7OCYcgL0niZcgMzQinvQYW5qD9taIDoZ ZAuUTnVfXgJOjm3Y/ZgIWAlCMUdBnGIdoQQHzLb35CzA0kQ4iWBbRm6Fd9MAwoZ4 kEkUGey8jMR3TWxtc3VvTcYoTTP/ZZA5Zkh+1L8/cmWuSDslYBCP0BVj4EelP8Xs piXyvrxD7E7aokf6EflT6Aqh0wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDUC/3ln nWgj+WcCcNZlx9CTnogGMB8GA1UdIwQYMBaAFB8RphbXMuQWO0T+tihe/u5YfG3S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTEzQi83QkU3QzA5MDYy RjAxMUVDOTUyQjI5NjVDNEY5QUUwMi9IeEdtRnRjeTVCWTdSUDYyS0Y3LTdsaDhi ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h4R21GdGN5NUJZN1JQNjJLRjctN2xoOGJkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzExM0IvN0JFN0MwOTA2MkYwMTFFQzk1MkIyOTY1QzRGOUFFMDIvMzBFMEE4M0M2 MkY1MTFFQ0ExRkM1QTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjo4wDwQCAAIwCQMHACABDfFGgDANBgkqhkiG9w0BAQsF AAOCAQEAELP8+0L54M1bjxuSgpYW8nyeEYQfM5IWn8Q5LWJ7A6nvhhuqjNj88/Fw 3D/EQgsc3p7q8uFT0/aQjArfPJvHaGbiZbYDtqRtpMYoPHfHeWRRNbPRetd5TW9g dnTDji99t6gs05gB4W+N/5aS6rpITFudeGnz/CF3mzm08UcJlcJpXJGxitCfUDdo mw7NMF1Wyka9lg/AV9PDV37Xlg99kaiefZSZxIgrj8g94UJm8c7+S0NRhuh/Qduv bQXlCK94zN+lzLgopDtrqgjUfC/MWhv7FAtmxY0W/o1G25g+3WZI4NLuamFxtSZP WfAgWrGHS1bOrZSZGmUUm6JqS7x1nQ== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:26 2024 by rpki-client on console-ams.rpki-client.org