$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/A0A6A84EB5B911EC8AADD413C4F9AE02.roa File: A0A6A84EB5B911EC8AADD413C4F9AE02.roa (raw, json) Hash identifier: 9VdVacRJQLtq5j1DkxLPoc6FzbuyBAK4nXY3LxZMU2A= Subject key identifier: 41:9B:59:AB:27:40:2E:0A:32:10:65:DB:4A:F0:5A:F1:00:25:93:9A Certificate issuer: /CN=A91EC9AE/serialNumber=A7DFD4C91332BD1E41CF26DB18221D1D7058FDD5 Certificate serial: 024B Authority key identifier: A7:DF:D4:C9:13:32:BD:1E:41:CF:26:DB:18:22:1D:1D:70:58:FD:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p9_UyRMyvR5BzybbGCIdHXBY_dU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/A0A6A84EB5B911EC8AADD413C4F9AE02.roa Signing time: Fri 17 Nov 2023 03:03:38 +0000 ROA not before: Fri 17 Nov 2023 03:03:38 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139743 IP address blocks: 103.131.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/p9_UyRMyvR5BzybbGCIdHXBY_dU.crl rsync://rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/p9_UyRMyvR5BzybbGCIdHXBY_dU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p9_UyRMyvR5BzybbGCIdHXBY_dU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC9AE/serialNumber=A7DFD4C91332BD1E41CF26DB18221D1D7058FDD5 Validity Not Before: Nov 17 03:03:38 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6556d80a-0a94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:96:d3:a3:74:49:33:17:89:dc:a2:2c:92:44: db:bf:8c:88:27:4b:f7:c2:5f:18:18:1e:13:f3:70: 6e:74:c1:70:2d:4b:6a:49:2c:32:48:0b:3f:ea:bc: 56:fa:17:65:7e:b0:67:cf:1c:e6:06:e3:80:b9:4d: 47:04:74:d6:31:92:13:2f:87:df:f1:43:d2:c9:6b: db:b4:da:3f:f0:27:a3:a7:b5:3f:cb:5d:01:26:28: 97:31:af:6d:ee:27:8a:99:08:af:b7:6a:9c:ba:27: fb:99:d9:4e:20:7f:a1:75:05:b5:4b:80:a0:1f:bb: 47:96:71:b2:02:ba:3b:ca:3a:5c:69:5e:5f:2e:f0: a2:fe:38:ed:f7:8e:b0:f4:01:f2:cc:6a:5b:f2:34: d5:3b:33:0a:db:f5:19:e0:a0:02:a0:ed:55:b2:d6: a0:09:ef:aa:04:30:8c:e8:99:20:93:3b:10:4e:6f: 12:38:9a:5b:37:ef:92:42:b9:7d:b7:e8:c1:bf:83: 06:42:78:f7:0a:93:76:06:97:b7:31:19:17:17:0b: 15:63:03:5a:a8:a9:14:64:db:04:2b:84:cd:04:f2: 68:99:15:7b:ad:b8:86:98:27:ac:5c:5f:92:a5:2b: 14:5a:bb:f7:aa:18:29:ca:91:f7:a4:4c:bb:01:74: f3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:9B:59:AB:27:40:2E:0A:32:10:65:DB:4A:F0:5A:F1:00:25:93:9A X509v3 Authority Key Identifier: keyid:A7:DF:D4:C9:13:32:BD:1E:41:CF:26:DB:18:22:1D:1D:70:58:FD:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/p9_UyRMyvR5BzybbGCIdHXBY_dU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p9_UyRMyvR5BzybbGCIdHXBY_dU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC9AE/F7E4A2AEB2F411EC9BED3753C4F9AE02/A0A6A84EB5B911EC8AADD413C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.176.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:ed:91:90:7e:ff:dd:a4:a8:2f:f8:c9:dd:ae:28:b6:8e:81: 24:4f:63:b2:7a:11:93:71:da:ec:fe:29:0f:e7:65:41:14:5e: 88:a4:23:7e:5c:32:76:72:0c:49:e1:53:80:bc:4d:0a:0e:8e: b1:c9:9f:25:58:59:d1:4d:e6:58:b8:62:06:30:df:bb:3f:4a: eb:5c:a0:d8:1d:9b:f4:9e:60:5d:b9:8d:06:84:0f:d6:b4:88: 49:ef:6c:0f:c7:02:9b:bf:e4:0c:9e:5f:f4:d2:fe:89:c1:cc: 6e:85:0b:00:9b:87:4a:33:89:2c:39:59:1a:ae:09:f9:02:81: 8f:71:6e:3c:1c:2a:05:1f:f0:0c:91:a6:ad:60:5f:3b:38:f6: d6:91:c0:42:0f:db:48:d1:5f:86:77:1f:29:97:fc:29:1e:f0: 9f:2c:fb:6c:5a:45:dd:05:02:35:88:c6:f2:4d:1c:54:6a:cb: 37:4c:72:a5:88:ee:61:77:03:94:5a:85:18:19:18:4c:20:42: 77:32:63:8c:60:eb:b4:c0:85:3a:95:43:66:7f:9b:5a:d3:a5: a0:28:3b:25:5c:6b:14:f1:0f:34:e4:32:d2:03:70:fd:14:7f: 52:b5:ec:b4:5a:d9:26:03:63:8d:54:35:49:09:23:eb:f7:89: 15:c2:78:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5QUUxMTAvBgNVBAUTKEE3REZENEM5MTMzMkJEMUU0MUNGMjZEQjE4MjIxRDFE NzA1OEZERDUwHhcNMjMxMTE3MDMwMzM4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2ZDgwYS0wYTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5bTo3RJMxeJ3KIskkTbv4yIJ0v3wl8YGB4T83BudMFwLUtqSSwySAs/6rxW +hdlfrBnzxzmBuOAuU1HBHTWMZITL4ff8UPSyWvbtNo/8Cejp7U/y10BJiiXMa9t 7ieKmQivt2qcuif7mdlOIH+hdQW1S4CgH7tHlnGyAro7yjpcaV5fLvCi/jjt946w 9AHyzGpb8jTVOzMK2/UZ4KACoO1VstagCe+qBDCM6JkgkzsQTm8SOJpbN++SQrl9 t+jBv4MGQnj3CpN2Bpe3MRkXFwsVYwNaqKkUZNsEK4TNBPJomRV7rbiGmCesXF+S pSsUWrv3qhgpypH3pEy7AXTzGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEGbWasn QC4KMhBl20rwWvEAJZOaMB8GA1UdIwQYMBaAFKff1MkTMr0eQc8m2xgiHR1wWP3V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzlBRS9GN0U0QTJBRUIy RjQxMUVDOUJFRDM3NTNDNEY5QUUwMi9wOV9VeVJNeXZSNUJ6eWJiR0NJZEhYQllf ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A5X1V5Uk15dlI1Qnp5YmJHQ0lkSFhCWV9kVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM5QUUvRjdFNEEyQUVCMkY0MTFFQzlCRUQzNzUzQzRGOUFFMDIvQTBBNkE4NEVC NUI5MTFFQzhBQURENDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJng7AwDQYJKoZIhvcNAQELBQADggEBABrtkZB+/92kqC/4 yd2uKLaOgSRPY7J6EZNx2uz+KQ/nZUEUXoikI35cMnZyDEnhU4C8TQoOjrHJnyVY WdFN5li4YgYw37s/SutcoNgdm/SeYF25jQaED9a0iEnvbA/HApu/5AyeX/TS/onB zG6FCwCbh0oziSw5WRquCfkCgY9xbjwcKgUf8AyRpq1gXzs49taRwEIP20jRX4Z3 HymX/Cke8J8s+2xaRd0FAjWIxvJNHFRqyzdMcqWI7mF3A5RahRgZGEwgQncyY4xg 67TAhTqVQ2Z/m1rTpaAoOyVcaxTxDzTkMtIDcP0Uf1K17LRa2SYDY41UNUkJI+v3 iRXCeME= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:30 2024 by rpki-client on console-ams.rpki-client.org