$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D07/505560B66E7B11EEB7E97D5FC4F9AE02/F1E9B236718E11EEAF67DB48C4F9AE02.roa File: F1E9B236718E11EEAF67DB48C4F9AE02.roa (raw, json) Hash identifier: vgChqGywZiKFJbe8nMHH+eDKGq5txXITkZSr/n1RaEs= Subject key identifier: C4:02:55:E4:FF:11:A1:10:A5:DD:4C:5C:47:04:9D:AB:20:51:03:0B Certificate issuer: /CN=A91E8D07/serialNumber=7384DC667B4D49A5ACD50A58B48916A15AC2616B Certificate serial: 05 Authority key identifier: 73:84:DC:66:7B:4D:49:A5:AC:D5:0A:58:B4:89:16:A1:5A:C2:61:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c4TcZntNSaWs1QpYtIkWoVrCYWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D07/505560B66E7B11EEB7E97D5FC4F9AE02/F1E9B236718E11EEAF67DB48C4F9AE02.roa Signing time: Mon 23 Oct 2023 10:28:45 +0000 ROA not before: Mon 23 Oct 2023 10:28:45 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 151981 IP address blocks: 103.67.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D07/505560B66E7B11EEB7E97D5FC4F9AE02/c4TcZntNSaWs1QpYtIkWoVrCYWs.crl rsync://rpki.apnic.net/member_repository/A91E8D07/505560B66E7B11EEB7E97D5FC4F9AE02/c4TcZntNSaWs1QpYtIkWoVrCYWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c4TcZntNSaWs1QpYtIkWoVrCYWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D07/serialNumber=7384DC667B4D49A5ACD50A58B48916A15AC2616B Validity Not Before: Oct 23 10:28:45 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65364add-da56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ac:c2:41:55:a0:12:f3:23:de:03:97:0d:4d: 07:dd:c7:99:22:7d:6c:04:1f:c4:75:28:d4:a8:e1: 46:fc:31:22:e3:65:0a:f8:15:eb:62:ad:4d:ea:d5: 77:27:fe:fc:20:e2:a4:10:64:b9:d9:ed:28:3d:e3: 00:c0:74:1d:f6:a7:40:72:44:39:0e:86:df:b3:ff: 56:5b:51:84:b3:39:6c:cf:cf:46:46:e0:45:1e:02: f4:07:8c:bd:db:13:de:13:f0:c8:c2:31:20:e0:9c: cd:30:0a:7f:1d:cc:09:c5:9a:fa:16:f4:4b:fa:18: 6d:08:21:0d:8a:9b:21:54:9f:1b:b9:fc:9d:b2:d6: 1c:5e:2c:05:0c:d7:1e:91:8a:dc:da:99:d5:b4:23: 48:fc:f1:e8:04:08:90:34:37:36:e3:be:cd:25:53: e8:e7:59:34:56:c1:36:f5:5c:19:82:25:d2:9b:d7: 77:9e:fa:63:19:1e:02:41:b2:a5:6e:4d:2a:44:4e: 8a:bb:1c:1b:ef:a2:d7:61:2b:f2:86:b9:23:56:40: 18:ae:27:be:b9:f6:c1:73:84:f7:70:1b:3f:b7:57: 78:17:03:11:4b:6c:fc:0c:af:8e:40:91:06:89:56: 4d:8d:33:ba:e0:b1:15:a6:df:b6:f1:49:3f:80:09: 40:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:02:55:E4:FF:11:A1:10:A5:DD:4C:5C:47:04:9D:AB:20:51:03:0B X509v3 Authority Key Identifier: keyid:73:84:DC:66:7B:4D:49:A5:AC:D5:0A:58:B4:89:16:A1:5A:C2:61:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D07/505560B66E7B11EEB7E97D5FC4F9AE02/c4TcZntNSaWs1QpYtIkWoVrCYWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c4TcZntNSaWs1QpYtIkWoVrCYWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D07/505560B66E7B11EEB7E97D5FC4F9AE02/F1E9B236718E11EEAF67DB48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.66.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:ac:29:d0:a1:0c:89:cc:8f:ad:55:18:2d:50:f6:d3:75:47: 46:c7:19:36:ea:1a:1d:f2:42:33:2f:94:3b:a4:bd:91:c0:fc: 30:46:6e:8f:8b:16:17:ef:9e:5d:d2:de:ea:74:6a:1f:36:a1: 52:fe:83:fc:a7:cb:2a:bd:65:2a:e5:fe:dd:83:fe:69:1b:f0: 93:67:41:98:00:4b:f9:b3:eb:32:9a:c1:e3:9a:a5:71:66:0b: cc:1b:7d:52:97:c9:4c:3c:60:da:d1:94:50:4b:1c:f4:8b:82: 5d:2f:c4:2b:b1:e0:5c:24:38:01:21:72:82:c1:9e:14:a5:a2: d1:ea:0b:97:dd:25:ae:62:63:89:bc:0a:2a:ab:c5:59:ca:71: 07:02:21:67:38:2c:9b:e3:5b:8d:e5:18:74:85:69:0e:36:38: 61:f9:0d:4b:dc:34:7c:08:e7:69:67:79:3c:e5:6a:67:c7:a9: 47:d7:81:52:0d:fd:be:c4:ef:48:8b:ec:11:13:d0:75:ae:56: 95:dd:bf:f3:0f:02:fe:8e:41:1e:3a:3d:a0:16:8e:ba:8e:1f: d4:85:fe:9f:a2:8f:11:b6:e7:b0:e7:c8:f6:4d:1e:88:0e:e2: 88:ad:5b:f0:4f:43:5f:58:e1:ab:61:50:18:cb:b8:33:ca:ff: a5:df:ca:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEQwNzExMC8GA1UEBRMoNzM4NERDNjY3QjRENDlBNUFDRDUwQTU4QjQ4OTE2QTE1 QUMyNjE2QjAeFw0yMzEwMjMxMDI4NDVaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzY0YWRkLWRhNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQrMJBVaAS8yPeA5cNTQfdx5kifWwEH8R1KNSo4Ub8MSLjZQr4FetirU3q1Xcn /vwg4qQQZLnZ7Sg94wDAdB32p0ByRDkOht+z/1ZbUYSzOWzPz0ZG4EUeAvQHjL3b E94T8MjCMSDgnM0wCn8dzAnFmvoW9Ev6GG0IIQ2KmyFUnxu5/J2y1hxeLAUM1x6R itzamdW0I0j88egECJA0Nzbjvs0lU+jnWTRWwTb1XBmCJdKb13ee+mMZHgJBsqVu TSpEToq7HBvvotdhK/KGuSNWQBiuJ7659sFzhPdwGz+3V3gXAxFLbPwMr45AkQaJ Vk2NM7rgsRWm37bxST+ACUCBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUxAJV5P8R oRCl3UxcRwSdqyBRAwswHwYDVR0jBBgwFoAUc4TcZntNSaWs1QpYtIkWoVrCYWsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4RDA3LzUwNTU2MEI2NkU3 QjExRUVCN0U5N0Q1RkM0RjlBRTAyL2M0VGNabnROU2FXczFRcFl0SWtXb1ZyQ1lX cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYzRUY1pudE5TYVdzMVFwWXRJa1dvVnJDWVdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQwNy81MDU1NjBCNjZFN0IxMUVFQjdFOTdENUZDNEY5QUUwMi9GMUU5QjIzNjcx OEUxMUVFQUY2N0RCNDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdDQjANBgkqhkiG9w0BAQsFAAOCAQEAT6wp0KEMicyPrVUY LVD203VHRscZNuoaHfJCMy+UO6S9kcD8MEZuj4sWF++eXdLe6nRqHzahUv6D/KfL Kr1lKuX+3YP+aRvwk2dBmABL+bPrMprB45qlcWYLzBt9UpfJTDxg2tGUUEsc9IuC XS/EK7HgXCQ4ASFygsGeFKWi0eoLl90lrmJjibwKKqvFWcpxBwIhZzgsm+NbjeUY dIVpDjY4YfkNS9w0fAjnaWd5POVqZ8epR9eBUg39vsTvSIvsERPQda5Wld2/8w8C /o5BHjo9oBaOuo4f1IX+n6KPEbbnsOfI9k0eiA7iiK1b8E9DX1jhq2FQGMu4M8r/ pd/Ktg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:35 2024 by rpki-client on console-ams.rpki-client.org