$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/C4856A540B7E11EE87CBB764C4F9AE02.roa File: C4856A540B7E11EE87CBB764C4F9AE02.roa (raw, json) Hash identifier: AQsQndyL9SyaN/Xdjk7tDPUJhOwVEfNs6NuzUatF1Po= Subject key identifier: A4:65:C2:AE:C2:82:00:0D:6A:38:08:25:08:42:DC:1F:B1:E4:C4:E8 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 02 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/C4856A540B7E11EE87CBB764C4F9AE02.roa Signing time: Thu 15 Jun 2023 13:15:59 +0000 ROA not before: Thu 15 Jun 2023 13:15:59 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151352 IP address blocks: 103.224.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 06:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Jun 15 13:15:59 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=648b0f0e-68f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:05:9c:c3:56:70:18:eb:02:ef:a8:f6:a5:ad: e4:11:61:48:6a:a2:6e:c2:f9:23:7a:1e:f5:a6:f8: 9a:3e:44:74:ec:7e:94:89:64:a3:12:4f:bf:77:7e: a9:a9:4d:df:08:9d:99:25:23:1d:73:2f:30:38:d7: 68:60:f8:00:83:f1:38:c8:20:4f:7e:f3:1d:01:41: 54:00:64:9f:9b:e0:6f:a8:17:89:44:52:72:dc:12: 84:c3:9a:be:ec:c0:74:51:2f:26:a2:e4:4f:3e:ed: f5:4a:a4:78:f2:72:2d:86:b5:73:df:ba:8d:60:f1: 07:bd:3e:0b:70:df:3a:e4:ba:8b:a7:0c:06:d6:27: 5c:45:50:45:74:3f:96:48:90:5a:cc:fa:5b:fc:bb: 1f:9f:3b:e5:22:c3:38:8f:fe:39:db:0f:5f:32:5b: 4d:2f:69:83:c0:b5:db:73:b0:1e:fd:d1:be:0c:b7: de:62:85:39:f3:ea:db:de:67:86:76:09:e6:8b:e6: e8:d4:4d:12:1c:7c:b4:89:04:75:6d:45:54:9f:73: 87:f9:74:54:3f:97:ea:0a:e5:03:70:3a:2a:91:b5: 98:0c:88:f6:22:af:65:dd:bd:e5:0e:31:b3:d7:99: fa:3f:d9:a4:0f:53:56:1f:5b:a5:17:5b:60:6f:22: c0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:65:C2:AE:C2:82:00:0D:6A:38:08:25:08:42:DC:1F:B1:E4:C4:E8 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/C4856A540B7E11EE87CBB764C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.172.0/23 Signature Algorithm: sha256WithRSAEncryption 28:63:48:04:b4:81:7d:9b:ef:8c:8a:8a:8c:48:69:a6:5d:ed: 97:22:19:77:38:15:51:92:a8:80:ce:28:fa:cf:6c:95:77:83: 2e:68:f1:de:b8:c1:6c:ef:ba:a1:19:13:5d:16:68:0b:08:ea: 0f:eb:07:22:61:ec:f5:c3:25:7c:ae:0a:63:d7:4e:6b:db:0c: d1:66:3e:5d:cc:c9:7a:37:99:13:35:fa:0f:16:63:c7:b9:7d: 49:b8:ac:a3:e1:9f:1e:43:3e:57:67:9c:91:9c:1c:16:4d:72: 12:f3:e7:c6:4b:7d:53:5a:79:34:d3:04:96:bd:b5:8d:f6:cf: 3b:59:a9:70:ba:83:a8:b2:cf:8e:7c:da:72:03:51:97:68:00: bb:e2:08:d4:49:6e:52:a4:b2:09:4e:ce:5f:18:fd:df:5b:10: 3b:16:81:b2:ec:7d:db:b7:51:73:0e:23:ea:b8:99:73:8f:24: 65:08:4b:aa:f0:c9:5a:cd:5c:66:79:78:b9:c4:cd:93:a3:bc: d6:95:de:d7:9e:08:92:25:f0:ae:a9:58:c5:8d:98:66:05:f0: 92:eb:d4:6c:41:f4:75:8a:dc:b0:2e:52:67:2c:0e:93:bc:bd: 9c:71:67:af:8b:3f:d1:44:78:15:04:26:99:0d:08:27:ee:0b: 56:1f:6b:38 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTAzQjExMC8GA1UEBRMoQjlFNjBDRjE3OUY0RUFDQkRCOTQ5MkJBNUY3Q0FDRjQ1 MjM5Q0NGNDAeFw0yMzA2MTUxMzE1NTlaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0OGIwZjBlLTY4ZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbBZzDVnAY6wLvqPalreQRYUhqom7C+SN6HvWm+Jo+RHTsfpSJZKMST793fqmp Td8InZklIx1zLzA412hg+ACD8TjIIE9+8x0BQVQAZJ+b4G+oF4lEUnLcEoTDmr7s wHRRLyai5E8+7fVKpHjyci2GtXPfuo1g8Qe9Pgtw3zrkuounDAbWJ1xFUEV0P5ZI kFrM+lv8ux+fO+UiwziP/jnbD18yW00vaYPAtdtzsB790b4Mt95ihTnz6tveZ4Z2 CeaL5ujUTRIcfLSJBHVtRVSfc4f5dFQ/l+oK5QNwOiqRtZgMiPYir2XdveUOMbPX mfo/2aQPU1YfW6UXW2BvIsCJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUpGXCrsKC AA1qOAglCELcH7HkxOgwHwYDVR0jBBgwFoAUueYM8Xn06svblJK6X3ys9FI5zPQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFMDNCL0FGOTY3MTY2MEI2 RTExRUVCMjlCQjE3MEM0RjlBRTAyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdWVZTThYbjA2c3ZibEpLNlgzeXM5Rkk1elBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTAzQi9BRjk2NzE2NjBCNkUxMUVFQjI5QkIxNzBDNEY5QUUwMi9DNDg1NkE1NDBC N0UxMUVFODdDQkI3NjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfgrDANBgkqhkiG9w0BAQsFAAOCAQEAKGNIBLSBfZvvjIqK jEhppl3tlyIZdzgVUZKogM4o+s9slXeDLmjx3rjBbO+6oRkTXRZoCwjqD+sHImHs 9cMlfK4KY9dOa9sM0WY+XczJejeZEzX6DxZjx7l9Sbiso+GfHkM+V2eckZwcFk1y EvPnxkt9U1p5NNMElr21jfbPO1mpcLqDqLLPjnzacgNRl2gAu+II1EluUqSyCU7O Xxj931sQOxaBsux927dRcw4j6riZc48kZQhLqvDJWs1cZnl4ucTNk6O81pXe154I kiXwrqlYxY2YZgXwkuvUbEH0dYrcsC5SZywOk7y9nHFnr4s/0UR4FQQmmQ0IJ+4L Vh9rOA== -----END CERTIFICATE-----Generated at Thu Jun 13 08:02:35 2024 by rpki-client on console-ams.rpki-client.org