$ rpki-client -vvf rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/5A020E1229E011EB80A2FF13C4F9AE02.roa File: 5A020E1229E011EB80A2FF13C4F9AE02.roa (raw, json) Hash identifier: 6atRgfy+MvzDDZxN+CdZX0XfwrTdVcUQbjPiMea5nOw= Subject key identifier: 85:AC:2F:0E:56:19:46:21:CB:49:6E:20:21:F5:C2:00:2D:17:BE:10 Certificate issuer: /CN=A91C91A6/serialNumber=CC5D5CE0DC1821090CBC7538D7BB7123719082E7 Certificate serial: 06C6 Authority key identifier: CC:5D:5C:E0:DC:18:21:09:0C:BC:75:38:D7:BB:71:23:71:90:82:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zF1c4NwYIQkMvHU417txI3GQguc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/5A020E1229E011EB80A2FF13C4F9AE02.roa Signing time: Wed 02 Aug 2023 21:58:42 +0000 ROA not before: Wed 02 Aug 2023 21:58:42 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 138505 IP address blocks: 103.154.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/zF1c4NwYIQkMvHU417txI3GQguc.crl rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/zF1c4NwYIQkMvHU417txI3GQguc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zF1c4NwYIQkMvHU417txI3GQguc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C91A6/serialNumber=CC5D5CE0DC1821090CBC7538D7BB7123719082E7 Validity Not Before: Aug 2 21:58:42 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cad192-9493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:de:9b:6e:3a:b3:66:fe:17:ae:56:fc:87:3f: 94:4e:9a:b7:3e:2b:15:6a:01:8f:24:42:66:12:3a: 77:a3:f6:6f:7f:41:ae:a1:e0:46:a5:0b:96:7d:ce: 3d:6b:1b:c7:6c:46:91:e3:55:00:52:85:51:74:11: bb:eb:c8:78:6a:b6:f5:b7:1e:5f:3e:1d:ff:e3:14: ae:dd:73:3b:25:cd:8b:9d:90:94:cb:a9:56:02:48: 55:80:5d:88:1a:2d:dd:e7:ef:92:59:ee:e9:55:6a: 0a:78:75:3a:46:90:09:58:da:0d:4d:3d:2b:92:c5: 99:5d:b4:0d:6e:80:63:d9:74:48:4a:4d:2c:a7:49: 0c:47:46:a2:82:d1:a2:04:2d:28:07:b6:c0:35:3e: 57:b8:24:83:3a:9f:9c:2c:36:d2:b1:6c:6c:a7:16: 58:44:5b:72:d1:68:87:39:c0:0b:e1:d0:30:3f:cb: d1:f8:76:0c:d2:64:d3:57:ee:3a:74:91:52:24:c2: 8c:fc:f4:d1:a2:56:b6:e9:4f:02:9a:81:a5:7a:72: fa:e4:1b:07:f0:06:29:eb:4b:c0:43:9d:76:35:49: ad:d0:dc:98:f4:f7:0c:34:3f:3e:c7:08:d1:ea:dd: da:78:0c:30:6a:45:a2:d3:c5:c6:2f:33:39:20:bb: 1c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:AC:2F:0E:56:19:46:21:CB:49:6E:20:21:F5:C2:00:2D:17:BE:10 X509v3 Authority Key Identifier: keyid:CC:5D:5C:E0:DC:18:21:09:0C:BC:75:38:D7:BB:71:23:71:90:82:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/zF1c4NwYIQkMvHU417txI3GQguc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zF1c4NwYIQkMvHU417txI3GQguc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/5A020E1229E011EB80A2FF13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.17.0/24 Signature Algorithm: sha256WithRSAEncryption 86:30:85:70:80:27:3a:2b:b5:1b:31:08:c2:0c:bc:24:71:68: de:b8:f1:72:6f:04:de:e1:b1:ca:61:7f:f7:0c:68:90:bf:97: 79:00:65:be:f4:5d:1a:b5:0c:27:d2:d2:4d:f4:d0:a1:0e:c8: 0b:40:1b:a8:cd:33:00:e8:8d:a0:16:42:90:08:5b:3b:32:25: 46:30:5f:cc:bb:63:74:19:5c:d6:2f:57:68:27:25:9b:6d:cb: cb:19:5e:bc:4f:ca:41:d6:98:6a:07:b7:04:a7:d1:d4:f8:1b: 90:2e:91:44:e6:3f:b6:d3:6a:7e:9a:cb:09:6d:74:95:0d:be: 28:9e:93:47:e0:b5:74:6a:32:e1:18:9d:93:29:30:4a:5c:b2: 84:cf:ec:4b:5b:5a:ad:a2:54:c5:ce:0b:c9:ea:24:be:fb:b9: cc:bb:a1:02:09:64:d3:9c:fc:a6:66:a7:97:6c:30:a1:2e:48: 8f:52:3e:a3:b7:19:3f:4b:59:9b:9d:d8:25:e8:fb:1b:a8:e1: a5:b6:9b:f4:dd:d6:23:30:d7:5e:17:67:40:f1:3b:1f:76:fa: b8:86:6e:29:f7:16:ce:0e:3b:ff:35:aa:70:93:5e:e5:16:85: 4b:ec:d9:62:10:56:9d:ad:f1:5f:f5:5c:f3:7c:cc:66:06:b6: 89:bf:0c:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkxQTYxMTAvBgNVBAUTKENDNUQ1Q0UwREMxODIxMDkwQ0JDNzUzOEQ3QkI3MTIz NzE5MDgyRTcwHhcNMjMwODAyMjE1ODQyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZDE5Mi05NDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs96bbjqzZv4Xrlb8hz+UTpq3PisVagGPJEJmEjp3o/Zvf0GuoeBGpQuWfc49 axvHbEaR41UAUoVRdBG768h4arb1tx5fPh3/4xSu3XM7Jc2LnZCUy6lWAkhVgF2I Gi3d5++SWe7pVWoKeHU6RpAJWNoNTT0rksWZXbQNboBj2XRISk0sp0kMR0aigtGi BC0oB7bANT5XuCSDOp+cLDbSsWxspxZYRFty0WiHOcAL4dAwP8vR+HYM0mTTV+46 dJFSJMKM/PTRola26U8CmoGlenL65BsH8AYp60vAQ512NUmt0NyY9PcMND8+xwjR 6t3aeAwwakWi08XGLzM5ILsc3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIWsLw5W GUYhy0luICH1wgAtF74QMB8GA1UdIwQYMBaAFMxdXODcGCEJDLx1ONe7cSNxkILn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTFBNi9CQTRDQ0UwRUQ3 MkIxMUVBOEMxQkJENERDNEY5QUUwMi96RjFjNE53WUlRa012SFU0MTd0eEkzR1Fn dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGMWM0TndZSVFrTXZIVTQxN3R4STNHUWd1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkxQTYvQkE0Q0NFMEVENzJCMTFFQThDMUJCRDREQzRGOUFFMDIvNUEwMjBFMTIy OUUwMTFFQjgwQTJGRjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmhEwDQYJKoZIhvcNAQELBQADggEBAIYwhXCAJzortRsx CMIMvCRxaN648XJvBN7hscphf/cMaJC/l3kAZb70XRq1DCfS0k300KEOyAtAG6jN MwDojaAWQpAIWzsyJUYwX8y7Y3QZXNYvV2gnJZtty8sZXrxPykHWmGoHtwSn0dT4 G5AukUTmP7bTan6aywltdJUNviiek0fgtXRqMuEYnZMpMEpcsoTP7EtbWq2iVMXO C8nqJL77ucy7oQIJZNOc/KZmp5dsMKEuSI9SPqO3GT9LWZud2CXo+xuo4aW2m/Td 1iMw114XZ0DxOx92+riGbin3Fs4OO/81qnCTXuUWhUvs2WIQVp2t8V/1XPN8zGYG tom/DCE= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:28 2024 by rpki-client on console-ams.rpki-client.org