$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0329/45D6EFFCD39D11EDBBCB280FC4F9AE02/1DA961ACEE8911EDBFAE4177C4F9AE02.roa File: 1DA961ACEE8911EDBFAE4177C4F9AE02.roa (raw, json) Hash identifier: b8b3zBFdossJdNoDe8iJ1aUk1wPVkAHi3ul5wMxUGiw= Subject key identifier: CE:E5:3E:47:70:AF:42:F2:C5:4C:E7:78:79:5A:65:BA:DC:47:55:9C Certificate issuer: /CN=A91E0329/serialNumber=F74E96CA9EE936074564292960FBC1F9CF34854D Certificate serial: 17 Authority key identifier: F7:4E:96:CA:9E:E9:36:07:45:64:29:29:60:FB:C1:F9:CF:34:85:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/906Wyp7pNgdFZCkpYPvB-c80hU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0329/45D6EFFCD39D11EDBBCB280FC4F9AE02/1DA961ACEE8911EDBFAE4177C4F9AE02.roa Signing time: Tue 09 May 2023 16:46:59 +0000 ROA not before: Tue 09 May 2023 16:46:59 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 59239 IP address blocks: 103.130.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0329/45D6EFFCD39D11EDBBCB280FC4F9AE02/906Wyp7pNgdFZCkpYPvB-c80hU0.crl rsync://rpki.apnic.net/member_repository/A91E0329/45D6EFFCD39D11EDBBCB280FC4F9AE02/906Wyp7pNgdFZCkpYPvB-c80hU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/906Wyp7pNgdFZCkpYPvB-c80hU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0329/serialNumber=F74E96CA9EE936074564292960FBC1F9CF34854D Validity Not Before: May 9 16:46:59 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=645a7903-b9e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:94:0f:11:7a:ec:5f:79:a5:c9:43:fa:fb:55: ce:49:70:c3:26:f8:21:56:3d:26:ca:81:66:4f:33: 37:ca:46:2b:fb:0a:41:df:bf:42:74:03:f8:74:14: 22:52:c8:f4:b1:a8:19:5c:8d:2d:b0:b6:63:c0:04: bd:20:58:7f:60:03:84:d4:42:e1:ca:c9:ec:a6:87: 0f:c8:a6:fa:01:37:46:09:75:aa:f0:c4:48:de:b9: 64:35:8d:77:aa:b5:3e:2a:7b:a6:1f:3d:17:bf:b9: c8:24:39:0d:f6:47:36:1a:59:ca:81:85:f6:18:6b: 66:83:c2:8a:d0:c0:70:f3:a9:fb:40:c8:7b:a5:59: 6b:25:8c:d1:26:b9:36:1e:dd:a5:ab:a7:fd:4d:4a: cf:ab:bb:8b:12:a2:b7:35:4c:2e:19:bd:1f:a8:35: 50:bb:65:2e:ab:9d:66:d8:df:ac:02:03:44:79:53: 8f:94:6c:b7:b0:ba:f2:70:8d:88:e4:01:0a:aa:6f: b1:30:2c:d9:5f:7a:a3:89:1f:ef:a8:f2:ca:4e:d3: ef:63:34:c1:4e:aa:96:7a:a2:f5:4e:cc:f9:52:ef: 4b:b6:2f:c4:74:e0:ba:ba:4d:56:a8:52:27:7a:3b: 13:24:50:0a:b2:bf:2f:7f:99:95:77:7a:a1:5a:ea: 91:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E5:3E:47:70:AF:42:F2:C5:4C:E7:78:79:5A:65:BA:DC:47:55:9C X509v3 Authority Key Identifier: keyid:F7:4E:96:CA:9E:E9:36:07:45:64:29:29:60:FB:C1:F9:CF:34:85:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0329/45D6EFFCD39D11EDBBCB280FC4F9AE02/906Wyp7pNgdFZCkpYPvB-c80hU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/906Wyp7pNgdFZCkpYPvB-c80hU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0329/45D6EFFCD39D11EDBBCB280FC4F9AE02/1DA961ACEE8911EDBFAE4177C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.118.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:ad:01:6e:52:67:23:cc:bc:01:c7:c6:28:48:b0:04:07:d9: 29:85:c4:44:d3:86:05:2d:4e:56:c1:3f:48:8f:09:05:cc:75: fb:7c:e5:52:a5:d8:cc:51:c5:2d:c7:f8:cc:9a:34:e2:dc:0a: a8:db:9a:15:ea:e8:f1:f6:c7:50:77:fe:65:c8:12:33:44:82: 23:7c:70:2f:52:28:77:b4:60:b9:4e:8a:ca:8c:91:8a:72:5b: d4:d7:aa:ab:10:f6:95:75:6d:c2:9f:40:34:5a:cb:6e:9d:ec: 22:c7:b8:e3:dd:a6:15:85:e4:fd:4c:dc:6c:03:1c:8f:fb:5d: 0e:d3:36:cc:33:5b:7b:ff:ef:8d:fe:c3:ed:28:70:eb:a7:6e: 09:47:9f:e7:7a:28:8c:45:60:ee:76:84:31:4e:62:85:ef:a7: f1:d9:a7:db:a5:0e:2e:9e:ac:86:31:47:de:25:3c:10:40:1a: 51:1f:1e:06:d6:3e:78:34:c0:82:dd:17:9b:a9:6a:6a:1c:a5: ee:05:11:ab:bd:d3:ef:36:bf:c5:29:12:6d:88:c7:31:99:c0: 07:8f:ce:e6:0e:c9:4d:f2:a4:b2:00:52:b2:23:73:8e:c8:72: bc:9f:d2:e2:f1:91:bd:9f:bc:ee:41:62:8f:e8:20:92:67:2b: 21:d3:82:86 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MDMyOTExMC8GA1UEBRMoRjc0RTk2Q0E5RUU5MzYwNzQ1NjQyOTI5NjBGQkMxRjlD RjM0ODU0RDAeFw0yMzA1MDkxNjQ2NTlaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NWE3OTAzLWI5ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvlA8ReuxfeaXJQ/r7Vc5JcMMm+CFWPSbKgWZPMzfKRiv7CkHfv0J0A/h0FCJS yPSxqBlcjS2wtmPABL0gWH9gA4TUQuHKyeymhw/IpvoBN0YJdarwxEjeuWQ1jXeq tT4qe6YfPRe/ucgkOQ32RzYaWcqBhfYYa2aDworQwHDzqftAyHulWWsljNEmuTYe 3aWrp/1NSs+ru4sSorc1TC4ZvR+oNVC7ZS6rnWbY36wCA0R5U4+UbLewuvJwjYjk AQqqb7EwLNlfeqOJH++o8spO0+9jNMFOqpZ6ovVOzPlS70u2L8R04Lq6TVaoUid6 OxMkUAqyvy9/mZV3eqFa6pEZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzuU+R3Cv QvLFTOd4eVplutxHVZwwHwYDVR0jBBgwFoAU906Wyp7pNgdFZCkpYPvB+c80hU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwMzI5LzQ1RDZFRkZDRDM5 RDExRURCQkNCMjgwRkM0RjlBRTAyLzkwNld5cDdwTmdkRlpDa3BZUHZCLWM4MGhV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOTA2V3lwN3BOZ2RGWkNrcFlQdkItYzgwaFUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDMyOS80NUQ2RUZGQ0QzOUQxMUVEQkJDQjI4MEZDNEY5QUUwMi8xREE5NjFBQ0VF ODkxMUVEQkZBRTQxNzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeCdjANBgkqhkiG9w0BAQsFAAOCAQEAnq0BblJnI8y8AcfG KEiwBAfZKYXERNOGBS1OVsE/SI8JBcx1+3zlUqXYzFHFLcf4zJo04twKqNuaFero 8fbHUHf+ZcgSM0SCI3xwL1Iod7RguU6KyoyRinJb1NeqqxD2lXVtwp9ANFrLbp3s Ise4492mFYXk/UzcbAMcj/tdDtM2zDNbe//vjf7D7Shw66duCUef53oojEVg7naE MU5ihe+n8dmn26UOLp6shjFH3iU8EEAaUR8eBtY+eDTAgt0Xm6lqahyl7gURq73T 7za/xSkSbYjHMZnAB4/O5g7JTfKksgBSsiNzjshyvJ/S4vGRvZ+87kFij+ggkmcr IdOChg== -----END CERTIFICATE-----Generated at Sat Jun 1 08:16:04 2024 by rpki-client on console-ams.rpki-client.org