$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/8608449A356511EC9715F015C4F9AE02.roa File: 8608449A356511EC9715F015C4F9AE02.roa (raw, json) Hash identifier: ykDmLwlQ9q8+M9ivqFyPSgnnsWFLxmgd6EUKH+JYggc= Subject key identifier: 9E:C6:84:09:FA:54:6F:0C:24:23:FE:2E:C8:62:34:58:26:6C:07:7A Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 03E7 Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/8608449A356511EC9715F015C4F9AE02.roa Signing time: Mon 04 Dec 2023 09:58:44 +0000 ROA not before: Mon 04 Dec 2023 09:58:44 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 147014 IP address blocks: 103.173.4.0/24 maxlen: 24 103.173.5.0/24 maxlen: 24 2407:dc40::/32 maxlen: 32 2407:dc40::/48 maxlen: 48 2407:dc40:1::/48 maxlen: 48 2407:dc40:2::/48 maxlen: 48 2407:dc40:3::/48 maxlen: 48 2407:dc40:4::/48 maxlen: 48 2407:dc40:5::/48 maxlen: 48 2407:dc40:6::/48 maxlen: 48 2407:dc40:7::/48 maxlen: 48 2407:dc40:8::/48 maxlen: 48 2407:dc40:9::/48 maxlen: 48 2407:dc40:a::/48 maxlen: 48 2407:dc40:b::/48 maxlen: 48 2407:dc40:c::/48 maxlen: 48 2407:dc40:d::/48 maxlen: 48 2407:dc40:e::/48 maxlen: 48 2407:dc40:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 999 (0x3e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Dec 4 09:58:44 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=656da2d4-8992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1a:68:72:e3:c9:61:1b:f6:af:46:e6:eb:7e: 36:36:5d:51:17:0b:bd:3b:bc:b7:0d:43:fe:44:1a: e9:aa:8c:b8:73:4c:2a:9e:2a:d7:77:24:ed:5f:6f: fe:72:2a:c4:b8:6e:6e:85:61:9b:f4:8c:cf:67:7d: 9b:b4:b8:e6:83:e9:42:2b:66:31:dc:3a:c1:fa:fa: fa:16:47:57:bc:e0:23:f3:f2:7e:ce:b9:4d:f9:fc: 36:5b:c0:3f:32:e7:59:a7:33:16:da:2b:e4:24:66: 7c:53:6a:7e:25:a5:8b:c6:39:b0:5f:8a:48:79:56: 84:e6:28:e7:8d:41:41:97:50:d8:44:7e:25:ad:c8: 74:b0:ef:df:15:55:10:eb:d8:f9:e4:0f:38:13:f3: 53:f0:68:ba:ff:79:d5:7f:5b:89:81:36:63:f2:ef: 27:51:61:fc:c0:da:69:34:28:42:00:9a:cf:d5:98: fa:83:80:52:5c:19:e2:d4:a7:01:ba:44:1b:ce:f5: 0f:9b:55:67:6b:60:99:a2:a1:c9:fc:2c:52:72:f7: be:01:5d:14:3d:7d:93:63:6c:5a:c1:f8:c8:c0:f3: c0:54:78:59:0c:ed:1e:b8:13:01:22:33:be:39:c7: 65:cd:4c:0d:2a:76:68:6c:7d:2b:68:1e:7d:86:07: 8c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C6:84:09:FA:54:6F:0C:24:23:FE:2E:C8:62:34:58:26:6C:07:7A X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/8608449A356511EC9715F015C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.4.0/23 IPv6: 2407:dc40::/32 Signature Algorithm: sha256WithRSAEncryption a3:c1:f6:78:3c:77:88:ea:2c:61:54:3c:e4:51:1f:d0:5d:b5: 36:64:dc:6a:35:e3:cd:df:1e:8f:cd:73:c3:e8:9e:36:c4:8b: 8c:f2:d5:2b:36:3c:f6:99:fa:9a:4f:34:ed:46:c6:2f:f1:9b: d2:75:dd:8c:f3:1a:ab:9f:c6:6a:f7:23:54:24:65:bf:de:2e: b5:80:06:88:d7:af:c5:a7:85:f0:06:52:e0:33:99:c1:26:63: d1:f1:aa:34:9a:20:17:a3:70:40:6a:3a:67:f4:d6:fb:fc:be: 5d:55:60:b4:09:f9:0e:75:71:30:80:5d:af:d0:5e:0a:74:c0: 0f:2d:c0:9b:1f:ca:ce:5e:11:78:b2:b4:a0:8b:45:e7:5c:07: 42:83:50:36:e4:5f:29:db:2e:5e:f3:65:30:e4:4c:3b:1d:7d: 35:de:d3:a3:34:a8:ca:6e:38:2b:84:09:23:4e:fa:84:a9:ac: 08:50:be:e2:52:f9:ce:0f:68:8c:a1:67:f7:f3:d6:b2:75:55: 48:e5:ee:66:a2:e8:16:83:c0:ed:8f:9e:6e:ce:9e:07:cd:33: d6:e7:fa:23:25:35:c3:65:9c:67:e5:c1:f7:13:09:f9:ca:f3: 80:0d:2d:a6:58:7b:f6:57:a5:d7:82:a7:ea:a9:21:9a:e0:0c: 04:3e:6c:8a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjMxMjA0MDk1ODQ0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZkYTJkNC04OTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBpocuPJYRv2r0bm6342Nl1RFwu9O7y3DUP+RBrpqoy4c0wqnirXdyTtX2/+ cirEuG5uhWGb9IzPZ32btLjmg+lCK2Yx3DrB+vr6FkdXvOAj8/J+zrlN+fw2W8A/ MudZpzMW2ivkJGZ8U2p+JaWLxjmwX4pIeVaE5ijnjUFBl1DYRH4lrch0sO/fFVUQ 69j55A84E/NT8Gi6/3nVf1uJgTZj8u8nUWH8wNppNChCAJrP1Zj6g4BSXBni1KcB ukQbzvUPm1Vna2CZoqHJ/CxScve+AV0UPX2TY2xawfjIwPPAVHhZDO0euBMBIjO+ OcdlzUwNKnZobH0raB59hgeMIwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJ7GhAn6 VG8MJCP+LshiNFgmbAd6MB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU0OTAvMzIxRjU5MUUxNDYyMTFFQzk4NjhDMjQ2QzRGOUFFMDIvODYwODQ0OUEz NTY1MTFFQzk3MTVGMDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrQQwDQQCAAIwBwMFACQH3EAwDQYJKoZIhvcNAQELBQAD ggEBAKPB9ng8d4jqLGFUPORRH9BdtTZk3Go1483fHo/Nc8PonjbEi4zy1Ss2PPaZ +ppPNO1Gxi/xm9J13YzzGqufxmr3I1QkZb/eLrWABojXr8WnhfAGUuAzmcEmY9Hx qjSaIBejcEBqOmf01vv8vl1VYLQJ+Q51cTCAXa/QXgp0wA8twJsfys5eEXiytKCL RedcB0KDUDbkXynbLl7zZTDkTDsdfTXe06M0qMpuOCuECSNO+oSprAhQvuJS+c4P aIyhZ/fz1rJ1VUjl7mai6BaDwO2Pnm7OngfNM9bn+iMlNcNlnGflwfcTCfnK84AN LaZYe/ZXpdeCp+qpIZrgDAQ+bIo= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:32 2024 by rpki-client on console-ams.rpki-client.org