$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/A6C9934CA74111E88B3EAB2BC4F9AE02.roa File: A6C9934CA74111E88B3EAB2BC4F9AE02.roa (raw, json) Hash identifier: s7VpnTSLDsHZsGNqsZ/Rq45TDSa/M6doyP2DP45iRqE= Subject key identifier: AF:BF:AA:FC:C5:74:AA:AD:DB:11:75:D7:AC:D5:29:D9:94:10:A6:13 Certificate issuer: /CN=A91DF8DB/serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Certificate serial: 1216 Authority key identifier: 97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/A6C9934CA74111E88B3EAB2BC4F9AE02.roa Signing time: Fri 16 Jun 2023 17:46:52 +0000 ROA not before: Fri 16 Jun 2023 17:46:52 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 136397 IP address blocks: 103.98.238.0/24 maxlen: 24 2001:df2:e700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:51:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4630 (0x1216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF8DB/serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Validity Not Before: Jun 16 17:46:52 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=648ca00c-6439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:26:8d:2c:0f:8e:5c:9d:6a:fa:4f:65:ec:9c: 83:d4:95:b3:e4:8d:e5:c4:68:69:ba:e2:87:70:df: 68:db:b5:48:2f:99:d8:ee:24:50:32:2b:1a:e6:1e: 24:f4:65:fb:a7:dd:1a:d9:49:6a:81:7a:ba:dc:0c: ea:3d:e5:f9:b8:c1:b4:d1:1e:f4:fa:d6:a2:ab:72: 2f:1c:93:46:a8:ce:a9:0a:19:d2:5d:ee:a1:f6:6b: a9:39:6c:11:7b:67:96:c2:cd:18:18:dc:9b:de:b5: e9:7b:21:d6:64:46:d5:04:cb:09:4f:92:99:c9:7c: e2:94:8e:39:43:8a:44:49:f4:af:ec:6f:a5:4a:c3: 4b:bc:a4:7e:a5:06:5c:71:1c:74:b6:3e:0e:43:11: c1:90:3c:4e:a7:55:4d:65:38:e5:9e:6f:97:b8:47: b2:68:11:19:45:89:5b:95:98:70:2f:16:0e:cf:35: e0:22:96:9b:d0:c0:a5:96:da:ee:71:bb:fe:8a:68: 13:2b:dc:a4:83:2d:69:c9:4c:9c:50:d7:fc:2e:74: c6:99:f9:ab:cb:b6:2a:25:fc:fb:e7:5c:c7:98:9c: f5:c2:f8:0c:86:88:80:6a:33:0d:12:ee:8b:51:04: a9:5d:e6:71:89:ea:45:aa:41:f3:86:ce:55:19:43: 63:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:BF:AA:FC:C5:74:AA:AD:DB:11:75:D7:AC:D5:29:D9:94:10:A6:13 X509v3 Authority Key Identifier: keyid:97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/A6C9934CA74111E88B3EAB2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.238.0/24 IPv6: 2001:df2:e700::/48 Signature Algorithm: sha256WithRSAEncryption b7:0a:66:52:be:b6:41:19:a0:4f:2a:cb:8a:3a:d2:a9:02:65: b5:6d:31:bb:eb:5e:0e:de:4d:12:90:73:c5:d9:c5:76:9f:a2: 6e:c8:63:8e:93:5c:65:56:c2:cd:64:04:28:88:a5:b4:3e:7a: 33:01:d5:ab:de:91:a1:85:5b:28:70:8e:f8:1c:77:d0:38:c7: 7a:df:45:49:82:bf:36:f1:ad:f6:7f:8c:a6:5e:26:5d:a0:f4: 5c:56:cc:d6:7e:23:d5:ce:ae:92:a2:f2:55:05:02:48:4c:86: 57:f8:ab:e3:91:2f:eb:c0:be:95:e8:2b:ff:cb:8f:dd:69:bb: 9b:88:3c:f6:29:a0:e3:33:b1:99:e7:bb:18:ab:5b:52:ad:fd: b1:95:9a:70:16:43:30:66:c5:a7:f2:5b:b3:a0:74:ad:b2:07: 2f:96:da:c4:9f:94:51:ad:6a:43:e9:bd:b1:f2:a4:8d:4e:c7: 13:47:26:f0:32:66:81:1f:91:b0:9b:12:0f:be:42:95:6b:1d: a3:14:17:97:67:96:96:45:5b:19:50:db:06:f8:60:37:94:1e: f7:69:0e:63:4d:26:1d:a6:bc:41:25:35:b1:c0:c8:d5:6f:83: 72:7d:de:a6:f7:5e:6a:38:10:12:b9:5f:f9:ea:72:b0:0b:31: 63:6e:0f:d6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICEhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4REIxMTAvBgNVBAUTKDk3RDI5QjBEMzI0NTVCQjVDNkYxMjU3ODVGNDBGNUJD MjcwOUY3RDQwHhcNMjMwNjE2MTc0NjUyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhjYTAwYy02NDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiaNLA+OXJ1q+k9l7JyD1JWz5I3lxGhpuuKHcN9o27VIL5nY7iRQMisa5h4k 9GX7p90a2UlqgXq63AzqPeX5uMG00R70+taiq3IvHJNGqM6pChnSXe6h9mupOWwR e2eWws0YGNyb3rXpeyHWZEbVBMsJT5KZyXzilI45Q4pESfSv7G+lSsNLvKR+pQZc cRx0tj4OQxHBkDxOp1VNZTjlnm+XuEeyaBEZRYlblZhwLxYOzzXgIpab0MClltru cbv+imgTK9ykgy1pyUycUNf8LnTGmfmry7YqJfz751zHmJz1wvgMhoiAajMNEu6L UQSpXeZxiepFqkHzhs5VGUNjrwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK+/qvzF dKqt2xF116zVKdmUEKYTMB8GA1UdIwQYMBaAFJfSmw0yRVu1xvEleF9A9bwnCffU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjhEQi82NTc5Mzc4Qzk5 MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3WEc4U1Y0WDBEMXZDY0o5 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5S2JEVEpGVzdYRzhTVjRYMEQxdkNjSjk5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4REIvNjU3OTM3OEM5OTM0MTFFOEEwMzczNzI0QzRGOUFFMDIvQTZDOTkzNENB NzQxMTFFODhCM0VBQjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnYu4wDwQCAAIwCQMHACABDfLnADANBgkqhkiG9w0BAQsF AAOCAQEAtwpmUr62QRmgTyrLijrSqQJltW0xu+teDt5NEpBzxdnFdp+ibshjjpNc ZVbCzWQEKIiltD56MwHVq96RoYVbKHCO+Bx30DjHet9FSYK/NvGt9n+Mpl4mXaD0 XFbM1n4j1c6ukqLyVQUCSEyGV/ir45Ev68C+legr/8uP3Wm7m4g89img4zOxmee7 GKtbUq39sZWacBZDMGbFp/Jbs6B0rbIHL5baxJ+UUa1qQ+m9sfKkjU7HE0cm8DJm gR+RsJsSD75ClWsdoxQXl2eWlkVbGVDbBvhgN5Qe92kOY00mHaa8QSU1scDI1W+D cn3epvdeajgQErlf+epysAsxY24P1g== -----END CERTIFICATE-----Generated at Fri May 31 20:34:18 2024 by rpki-client on console-ams.rpki-client.org