$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/9B94AFC4B29511EE82B22D12C4F9AE02.roa File: 9B94AFC4B29511EE82B22D12C4F9AE02.roa (raw, json) Hash identifier: tvJLq0Ed2jn/fRsU7wwMIbul9KvBeYQRC1NaKaLi+2s= Subject key identifier: B0:0A:0F:DA:07:17:0B:F1:8A:61:BC:7E:D8:D2:60:4A:66:B7:F2:CD Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 346C Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/9B94AFC4B29511EE82B22D12C4F9AE02.roa Signing time: Sun 14 Jan 2024 04:30:13 +0000 ROA not before: Sun 14 Jan 2024 04:30:13 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 151373 IP address blocks: 103.68.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13420 (0x346c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Jan 14 04:30:13 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65a36354-d54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:84:f4:57:86:0c:2b:d0:46:a9:64:2a:d5:da: f9:5a:5e:fa:85:b5:ed:c7:06:92:eb:7c:e3:8a:a1: fb:18:44:3a:a0:5d:d7:71:d3:e0:cd:9c:e0:18:1d: 2f:c1:01:4c:a4:c4:c9:7c:c3:d5:63:0b:9b:9f:6d: 7d:68:a2:33:54:bc:95:79:c9:21:1c:77:0f:fa:0a: 00:50:35:4a:75:8d:4c:f3:35:33:0b:7b:46:e5:b2: 87:55:52:5e:20:f2:2b:5d:d3:e1:5b:db:f9:7a:49: 82:16:9d:bd:38:89:ef:4f:83:c0:fa:0f:14:88:dd: 24:f8:b8:9e:f5:13:ac:02:9e:0c:2c:fa:10:0b:6a: d1:38:21:e6:c9:3e:fa:b1:37:57:66:e7:ba:df:42: d6:97:67:20:55:38:55:0e:41:0a:2d:bf:3a:03:ef: 1c:87:b5:1b:52:e0:64:12:d3:44:88:f9:0f:88:d2: c5:d9:98:6b:82:4a:0b:9a:ea:81:73:0b:da:09:02: d3:8c:fd:2a:42:e2:68:fc:4c:04:d9:5f:8b:32:dd: 9e:80:aa:53:61:4c:04:21:c5:36:f9:3e:77:fa:7f: 45:5e:bd:d3:a7:07:2f:72:d4:da:c5:57:d8:c2:32: 1f:40:63:f9:be:22:e7:9f:ef:3a:6f:37:15:53:68: 50:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:0A:0F:DA:07:17:0B:F1:8A:61:BC:7E:D8:D2:60:4A:66:B7:F2:CD X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/9B94AFC4B29511EE82B22D12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.120.0/24 Signature Algorithm: sha256WithRSAEncryption 71:c1:af:b0:da:86:ba:b6:d2:24:64:b6:65:27:24:8e:88:3e: 51:c8:45:b3:c4:53:e0:7c:fe:21:d3:cd:2b:39:9e:61:f6:36: e0:7c:ad:bf:c7:62:27:ce:db:97:e2:50:eb:9d:5a:85:16:86: 2e:99:29:0e:e7:9c:30:ed:da:4e:cd:23:28:11:aa:23:bc:2e: 68:6e:ea:0a:d0:05:c3:13:fe:8b:87:55:9a:9b:bf:ba:50:e7: 8d:a1:d4:78:3c:c8:93:ef:b1:90:7a:b3:66:b4:9a:f7:12:44: b2:fa:3d:41:04:5a:b4:12:b6:9e:71:61:cd:b8:fc:3c:8f:c3: c2:b6:7b:e6:a6:5e:c2:87:1a:97:d1:ca:e0:59:d3:f5:9f:ea: 88:94:41:68:5a:44:ab:81:6f:a1:4e:71:6d:38:20:48:17:8b: b3:a1:3f:40:5d:be:32:29:fe:ff:56:20:cd:af:7e:1d:42:28: 72:5f:26:62:5a:48:01:ec:af:0e:fa:44:6b:40:69:75:ff:d1: a7:21:7e:52:54:2d:5d:f8:85:00:0c:a5:75:66:d3:3b:de:79: 0c:1e:98:a6:78:b8:8f:29:8b:ab:65:fa:f6:6d:20:ac:58:5a: c2:f7:bd:88:f2:ce:ad:dc:c5:89:0c:59:8d:c1:24:c6:98:be: 57:fe:3b:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjQwMTE0MDQzMDEzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWEzNjM1NC1kNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4T0V4YMK9BGqWQq1dr5Wl76hbXtxwaS63zjiqH7GEQ6oF3XcdPgzZzgGB0v wQFMpMTJfMPVYwubn219aKIzVLyVeckhHHcP+goAUDVKdY1M8zUzC3tG5bKHVVJe IPIrXdPhW9v5ekmCFp29OInvT4PA+g8UiN0k+Lie9ROsAp4MLPoQC2rROCHmyT76 sTdXZue630LWl2cgVThVDkEKLb86A+8ch7UbUuBkEtNEiPkPiNLF2ZhrgkoLmuqB cwvaCQLTjP0qQuJo/EwE2V+LMt2egKpTYUwEIcU2+T53+n9FXr3TpwcvctTaxVfY wjIfQGP5viLnn+86bzcVU2hQOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLAKD9oH FwvximG8ftjSYEpmt/LNMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvOUI5NEFGQzRC Mjk1MTFFRTgyQjIyRDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRHgwDQYJKoZIhvcNAQELBQADggEBAHHBr7Dahrq20iRk tmUnJI6IPlHIRbPEU+B8/iHTzSs5nmH2NuB8rb/HYifO25fiUOudWoUWhi6ZKQ7n nDDt2k7NIygRqiO8Lmhu6grQBcMT/ouHVZqbv7pQ542h1Hg8yJPvsZB6s2a0mvcS RLL6PUEEWrQStp5xYc24/DyPw8K2e+amXsKHGpfRyuBZ0/Wf6oiUQWhaRKuBb6FO cW04IEgXi7OhP0BdvjIp/v9WIM2vfh1CKHJfJmJaSAHsrw76RGtAaXX/0achflJU LV34hQAMpXVm0zveeQwemKZ4uI8pi6tl+vZtIKxYWsL3vYjyzq3cxYkMWY3BJMaY vlf+O6o= -----END CERTIFICATE-----Generated at Thu May 16 17:51:53 2024 by rpki-client on console-ams.rpki-client.org