$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/9261E554464611EE84B7C534C4F9AE02.roa File: 9261E554464611EE84B7C534C4F9AE02.roa (raw, json) Hash identifier: 46K/PdxaAiu2tPx+wYWEAj6YWSYgs7IFdJ9KG+ZJop0= Subject key identifier: 62:68:79:49:5C:E8:E7:9F:39:26:FD:0C:C5:A1:14:1F:F4:A3:50:89 Certificate issuer: /CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Certificate serial: 08FF Authority key identifier: 1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/9261E554464611EE84B7C534C4F9AE02.roa Signing time: Tue 29 Aug 2023 08:32:48 +0000 ROA not before: Tue 29 Aug 2023 08:32:48 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 58895 IP address blocks: 103.117.160.0/24 maxlen: 24 103.117.161.0/24 maxlen: 24 103.117.162.0/24 maxlen: 24 103.117.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2303 (0x8ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Validity Not Before: Aug 29 08:32:48 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64edad30-124f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:86:e4:5a:2e:83:f6:fa:12:59:e2:2b:5f: 32:87:98:9b:cf:d4:4e:77:c7:69:f7:01:be:6b:c8: c6:84:c3:4b:12:3c:81:78:52:8d:cd:41:f7:47:40: 68:ee:cb:38:e7:77:fc:50:a1:23:b2:80:de:21:08: e9:c4:42:78:7c:1e:c0:24:ef:1d:bc:b7:d8:b8:78: 02:cd:51:cf:59:c8:1c:ea:fa:e9:5a:59:50:7e:a0: 6b:bc:3a:c9:63:1b:7d:78:bf:06:5c:9f:cb:76:ab: 78:97:0c:b6:1a:5c:bc:4f:45:7e:be:df:46:3a:58: 25:a1:a2:a3:05:2a:01:66:8e:a0:ac:fa:3f:c5:19: 52:25:c2:9b:91:69:b3:5e:ea:fe:da:3d:ab:40:0c: 21:af:5e:26:6a:22:96:0e:cb:f3:10:b0:1c:5b:a7: b0:d7:f0:f4:38:58:fe:ed:55:2e:61:06:5a:89:99: d4:cf:9d:3d:01:cd:2a:26:d9:da:6a:b0:d0:ee:64: 14:29:c6:d8:82:55:7b:9e:42:26:0f:ae:3f:10:54: 60:de:ef:2b:44:47:4c:ed:7a:2d:58:9f:b3:33:a0: 2e:20:4f:16:d6:34:41:ae:1f:eb:f3:42:6f:c8:36: 04:47:46:6d:7f:a0:b4:03:cc:40:14:23:dc:6d:1d: dd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:68:79:49:5C:E8:E7:9F:39:26:FD:0C:C5:A1:14:1F:F4:A3:50:89 X509v3 Authority Key Identifier: keyid:1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/9261E554464611EE84B7C534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.160.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:31:32:7a:6f:59:8c:02:19:08:fb:1c:58:dd:e4:2d:8d:be: bf:e5:3c:fb:1e:b2:6d:43:ee:6c:38:7b:68:14:a3:91:fe:6c: 23:24:8e:8a:76:53:a3:b0:8c:c5:88:55:b1:ad:8d:8e:35:e1: aa:32:63:04:53:b6:32:61:00:ea:71:28:b7:d7:7a:1a:3a:1a: 8c:bf:ac:38:a4:21:69:5f:b6:e0:26:b8:29:c4:0f:21:85:bf: 49:e1:4f:50:ac:3f:4a:6a:6b:f9:4c:55:f7:bd:ab:7f:f7:11: 07:ef:d0:17:2d:ef:83:5f:aa:19:69:1e:15:3f:8d:0b:51:77: eb:62:55:36:7c:68:06:25:6f:bf:92:09:8c:48:d8:25:e4:26: df:9c:cd:b1:73:d7:aa:4a:9a:f4:20:53:fd:8f:32:a8:47:b3: 98:34:be:49:4b:79:fd:1e:4d:8f:db:45:b8:44:99:2e:9a:ac: 66:22:fc:9c:72:63:e2:61:bf:2e:ed:13:ba:73:c4:85:5d:ce: 0e:cf:54:1c:15:24:74:10:96:f0:19:97:f0:17:12:50:29:1a: 3f:94:62:41:88:2b:51:4a:0f:77:9e:73:4a:2b:71:dc:2c:80: c6:bd:08:cf:57:c8:06:b2:73:f5:36:63:7e:30:98:c5:cc:98: 94:91:95:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCQjQxMTAvBgNVBAUTKDFEMTIxN0VGOEZFODRCNTgyNTUxNjcxQkNBMzVFNjg0 NDg2OTI0OTcwHhcNMjMwODI5MDgzMjQ4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkYWQzMC0xMjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNSG5Foug/b6ElniK18yh5ibz9ROd8dp9wG+a8jGhMNLEjyBeFKNzUH3R0Bo 7ss453f8UKEjsoDeIQjpxEJ4fB7AJO8dvLfYuHgCzVHPWcgc6vrpWllQfqBrvDrJ Yxt9eL8GXJ/Ldqt4lwy2Gly8T0V+vt9GOlgloaKjBSoBZo6grPo/xRlSJcKbkWmz Xur+2j2rQAwhr14maiKWDsvzELAcW6ew1/D0OFj+7VUuYQZaiZnUz509Ac0qJtna arDQ7mQUKcbYglV7nkImD64/EFRg3u8rREdM7XotWJ+zM6AuIE8W1jRBrh/r80Jv yDYER0Ztf6C0A8xAFCPcbR3dTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGJoeUlc 6OefOSb9DMWhFB/0o1CJMB8GA1UdIwQYMBaAFB0SF++P6EtYJVFnG8o15oRIaSSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJCNC9EOTU0QkFCRTY5 QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1MxZ2xVV2NieWpYbWhFaHBK SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hSSVg3NF9vUzFnbFVXY2J5alhtaEVocEpKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhCQjQvRDk1NEJBQkU2OUI3MTFFQTg4RTcyRTU5QzRGOUFFMDIvOTI2MUU1NTQ0 NjQ2MTFFRTg0QjdDNTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndaAwDQYJKoZIhvcNAQELBQADggEBAI0xMnpvWYwCGQj7 HFjd5C2Nvr/lPPsesm1D7mw4e2gUo5H+bCMkjop2U6OwjMWIVbGtjY414aoyYwRT tjJhAOpxKLfXeho6Goy/rDikIWlftuAmuCnEDyGFv0nhT1CsP0pqa/lMVfe9q3/3 EQfv0Bct74NfqhlpHhU/jQtRd+tiVTZ8aAYlb7+SCYxI2CXkJt+czbFz16pKmvQg U/2PMqhHs5g0vklLef0eTY/bRbhEmS6arGYi/JxyY+Jhvy7tE7pzxIVdzg7PVBwV JHQQlvAZl/AXElApGj+UYkGIK1FKD3eec0orcdwsgMa9CM9XyAayc/U2Y34wmMXM mJSRlZ0= -----END CERTIFICATE-----Generated at Sun May 5 00:12:30 2024 by rpki-client on console-fra.rpki-client.org