$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/A4E0754863B411EEAADB3A7CC4F9AE02.roa File: A4E0754863B411EEAADB3A7CC4F9AE02.roa (raw, json) Hash identifier: JQhGdtB6l/eaFxKzG8uYhmfWeKa/yx0yatQjsHXju4Q= Subject key identifier: CF:72:44:CB:19:40:8B:E2:46:C2:BB:F5:1F:78:69:A6:18:13:99:31 Certificate issuer: /CN=A91E2042/serialNumber=87CF1D01604551E86C24409E481DAF9C66594BF4 Certificate serial: 02 Authority key identifier: 87:CF:1D:01:60:45:51:E8:6C:24:40:9E:48:1D:AF:9C:66:59:4B:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h88dAWBFUehsJECeSB2vnGZZS_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/A4E0754863B411EEAADB3A7CC4F9AE02.roa Signing time: Thu 05 Oct 2023 19:23:21 +0000 ROA not before: Thu 05 Oct 2023 19:23:21 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151820 IP address blocks: 103.204.42.0/23 maxlen: 23 103.204.42.0/24 maxlen: 24 103.204.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/h88dAWBFUehsJECeSB2vnGZZS_Q.crl rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/h88dAWBFUehsJECeSB2vnGZZS_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h88dAWBFUehsJECeSB2vnGZZS_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2042/serialNumber=87CF1D01604551E86C24409E481DAF9C66594BF4 Validity Not Before: Oct 5 19:23:21 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651f0d28-5cf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:71:d0:ba:97:04:01:fa:03:da:bf:a8:77:7e: 62:8e:aa:dc:3c:1b:1a:83:cc:2a:46:0e:a1:66:68: 32:67:12:0b:47:27:94:ba:9c:3e:2e:b3:9d:44:9d: 3d:6d:b0:9a:87:04:b2:b0:5a:d5:5d:4e:56:80:ca: 01:4f:a5:4d:5e:45:11:30:61:37:8c:bd:96:2a:c9: ad:27:78:1c:e4:8e:11:d1:42:34:c2:a5:15:d2:19: 54:cb:e6:82:27:2c:da:33:cb:37:f6:39:b2:86:4a: a4:d2:ff:c6:da:88:e2:78:82:be:db:f0:7e:f4:d9: 03:10:3e:9e:52:01:3f:57:c4:5c:c2:c5:82:a7:95: 4c:3d:c3:1b:9e:cb:bc:22:a1:e5:c1:1d:ba:c1:ee: b2:60:66:d3:85:23:75:f9:60:f1:6c:34:c1:9c:35: 03:c1:b2:74:7c:5b:0a:8e:88:44:b9:b0:0a:33:0a: b4:f9:4e:38:0f:ae:c2:4a:6c:61:99:7a:be:68:54: 96:43:17:74:4e:7d:12:02:0a:39:34:7b:b9:92:5d: 70:c6:7f:ca:21:9b:56:48:9d:85:69:6f:cc:f4:10: d3:04:73:59:bb:c0:e0:7e:c7:4f:1f:21:89:8d:f8: 9d:54:87:32:f7:77:ff:2c:2d:24:dc:05:a8:d6:ab: dd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:72:44:CB:19:40:8B:E2:46:C2:BB:F5:1F:78:69:A6:18:13:99:31 X509v3 Authority Key Identifier: keyid:87:CF:1D:01:60:45:51:E8:6C:24:40:9E:48:1D:AF:9C:66:59:4B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/h88dAWBFUehsJECeSB2vnGZZS_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h88dAWBFUehsJECeSB2vnGZZS_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/A4E0754863B411EEAADB3A7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.42.0/23 Signature Algorithm: sha256WithRSAEncryption 27:8c:a4:e5:3f:b1:89:ad:90:37:1f:09:e1:1e:b9:0d:9a:f5: 6c:43:9f:a4:39:26:5e:5b:a1:18:87:99:f9:63:63:c9:f4:b3: 8e:02:7a:00:f6:b4:47:e5:d7:dd:cf:e2:d6:4a:ca:8b:ca:be: 51:de:7b:8c:19:42:f8:53:54:4e:34:57:8a:63:e0:fa:8b:6f: 03:bf:a9:03:98:a2:2c:a1:43:63:50:23:e5:5f:29:02:a7:79: 0a:af:d3:15:a2:53:f2:2c:9e:f7:c8:cd:09:54:89:70:a7:1b: 1c:25:b7:fe:01:f7:5b:47:ae:1d:a6:f6:92:82:7b:d8:bf:f6: 1b:fe:3d:57:63:a4:74:17:e8:bd:dd:a8:ad:fb:4a:6a:ab:32: cc:ef:73:45:99:8d:fb:0b:2f:ef:3c:3f:5f:78:fa:c7:af:10: 13:38:1b:ca:9f:ed:83:73:4d:ab:d3:56:fd:99:3f:f9:74:e2: 6e:25:37:a4:ef:27:6a:59:b5:92:57:fe:1e:85:f9:0a:4e:27: e6:87:00:c5:91:0e:d8:c6:b2:01:64:33:ed:4c:31:db:5e:7a: 5c:0d:8a:9d:b6:5d:36:66:3e:97:45:43:79:95:50:6b:8f:8b: ec:23:03:6c:9c:3d:7a:92:ee:f6:42:04:8e:d2:4a:c5:54:11: b3:6d:7c:9a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MjA0MjExMC8GA1UEBRMoODdDRjFEMDE2MDQ1NTFFODZDMjQ0MDlFNDgxREFGOUM2 NjU5NEJGNDAeFw0yMzEwMDUxOTIzMjFaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MWYwZDI4LTVjZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDucdC6lwQB+gPav6h3fmKOqtw8GxqDzCpGDqFmaDJnEgtHJ5S6nD4us51EnT1t sJqHBLKwWtVdTlaAygFPpU1eRREwYTeMvZYqya0neBzkjhHRQjTCpRXSGVTL5oIn LNozyzf2ObKGSqTS/8baiOJ4gr7b8H702QMQPp5SAT9XxFzCxYKnlUw9wxuey7wi oeXBHbrB7rJgZtOFI3X5YPFsNMGcNQPBsnR8WwqOiES5sAozCrT5TjgPrsJKbGGZ er5oVJZDF3ROfRICCjk0e7mSXXDGf8ohm1ZInYVpb8z0ENMEc1m7wOB+x08fIYmN +J1UhzL3d/8sLSTcBajWq913AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUz3JEyxlA i+JGwrv1H3hpphgTmTEwHwYDVR0jBBgwFoAUh88dAWBFUehsJECeSB2vnGZZS/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyMDQyLzBBRUMxRDBDNjNC NDExRUVCNjVEMkI3QkM0RjlBRTAyL2g4OGRBV0JGVWVoc0pFQ2VTQjJ2bkdaWlNf US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDg4ZEFXQkZVZWhzSkVDZVNCMnZuR1paU19RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjA0Mi8wQUVDMUQwQzYzQjQxMUVFQjY1RDJCN0JDNEY5QUUwMi9BNEUwNzU0ODYz QjQxMUVFQUFEQjNBN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfMKjANBgkqhkiG9w0BAQsFAAOCAQEAJ4yk5T+xia2QNx8J 4R65DZr1bEOfpDkmXluhGIeZ+WNjyfSzjgJ6APa0R+XX3c/i1krKi8q+Ud57jBlC +FNUTjRXimPg+otvA7+pA5iiLKFDY1Aj5V8pAqd5Cq/TFaJT8iye98jNCVSJcKcb HCW3/gH3W0euHab2koJ72L/2G/49V2OkdBfovd2orftKaqsyzO9zRZmN+wsv7zw/ X3j6x68QEzgbyp/tg3NNq9NW/Zk/+XTibiU3pO8nalm1klf+HoX5Ck4n5ocAxZEO 2MayAWQz7Uwx2156XA2KnbZdNmY+l0VDeZVQa4+L7CMDbJw9epLu9kIEjtJKxVQR s218mg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:35 2024 by rpki-client on console-ams.rpki-client.org