$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/D1054582A0C111EEA54E2F0BC4F9AE02.roa File: D1054582A0C111EEA54E2F0BC4F9AE02.roa (raw, json) Hash identifier: ufLJRRdUpzCQBelxO6pq55mnDbpwZDlR7ckrZNKver4= Subject key identifier: C8:25:36:A6:D9:69:4A:BD:72:63:35:02:85:AB:BA:C2:7F:60:9E:10 Certificate issuer: /CN=A91F0695/serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Certificate serial: 02 Authority key identifier: D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/D1054582A0C111EEA54E2F0BC4F9AE02.roa Signing time: Fri 22 Dec 2023 12:01:19 +0000 ROA not before: Fri 22 Dec 2023 12:01:19 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151828 IP address blocks: 103.173.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0695/serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Validity Not Before: Dec 22 12:01:19 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65857a8f-074a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:64:bc:73:68:c7:2e:f4:9a:2f:87:38:c5:56: 83:ed:6c:f8:5c:9d:aa:8d:d7:d7:5e:8b:d8:c1:6b: 67:18:a0:fc:12:58:34:b9:b4:a7:0e:11:d2:ae:a2: 6f:2d:12:14:53:66:a1:10:68:c7:58:36:27:b3:88: d8:96:15:be:70:38:bc:3d:f9:a2:54:4b:b3:a0:19: 91:ef:4e:0a:ea:c9:a2:43:e9:9f:82:6e:61:03:2a: 78:de:80:de:4d:1b:3f:fa:97:b2:4b:2e:9a:ca:6f: 9e:fc:c6:dc:23:a0:41:98:db:26:01:33:ed:4d:79: 57:de:e3:46:55:d8:d9:85:b0:0c:85:40:a4:6c:ed: 90:44:09:5d:be:42:63:04:f4:e9:4c:c9:b7:52:e8: 61:23:0f:59:1e:f5:ef:7f:f6:fc:d3:0b:b7:7b:34: 07:2a:87:50:ee:60:1d:4d:09:bb:f2:53:72:c5:6c: b7:63:66:6e:bb:4a:7a:f1:80:0e:19:0c:82:d3:a9: 37:e9:33:c2:bb:6d:eb:e5:0a:24:1e:14:29:fa:b3: fd:43:ce:a2:ed:db:29:c9:bb:4b:54:f3:7b:db:27: ed:2a:7c:16:97:e8:f3:33:51:d8:8d:b5:04:cb:b4: 57:5b:02:d0:b8:53:a7:f6:b6:3a:60:7d:25:56:27: e2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:25:36:A6:D9:69:4A:BD:72:63:35:02:85:AB:BA:C2:7F:60:9E:10 X509v3 Authority Key Identifier: keyid:D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/D1054582A0C111EEA54E2F0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.145.0/24 Signature Algorithm: sha256WithRSAEncryption 88:7f:6c:b1:3e:45:0a:a2:c3:43:3a:e7:43:2a:51:ab:73:18: 36:75:0f:c1:de:49:8a:b8:90:17:be:30:89:77:48:aa:2c:b0: ca:b6:d7:ef:7d:67:21:81:76:d9:6a:fb:7f:5e:2f:f6:08:09: aa:a8:db:43:40:d2:b3:06:ad:3f:d2:44:f4:a1:6c:23:7f:f7: 91:a0:4b:f6:b3:93:d6:1e:64:b0:09:bd:45:45:6f:00:83:24: 0a:1e:ce:5b:67:a4:3f:71:e5:41:35:64:63:d3:90:dd:1c:6b: e6:c8:56:fc:ef:5e:8f:89:9a:db:04:65:9a:bd:e1:1a:2c:01: cc:66:a4:1c:26:5a:fc:48:9e:80:86:e5:41:ff:d6:9e:ff:51: dd:d4:23:c7:ce:c8:dd:02:b1:6d:87:ff:30:f3:e5:5e:03:56: 2c:65:39:3b:57:b6:0d:07:52:8b:0f:89:d1:de:75:3d:1b:fe: 43:d9:c7:bc:71:05:95:4b:ee:18:4b:d1:af:e7:72:df:33:78: 70:2e:1c:00:2a:18:06:88:d3:68:64:35:28:30:16:3d:46:86: b4:32:48:9b:eb:a7:7f:d1:52:b7:cc:81:3f:76:3e:53:9a:57: b9:17:6f:0a:8b:ee:b8:a7:03:45:07:88:38:cc:cc:d9:b4:57: a5:e7:52:fa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDY5NTExMC8GA1UEBRMoRDY5Rjg2NTBEOTdBNTI0QzI5OTQ1M0NDQjQ4RDc3QjRF NjVGREYyMjAeFw0yMzEyMjIxMjAxMTlaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ODU3YThmLTA3NGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEZLxzaMcu9JovhzjFVoPtbPhcnaqN19dei9jBa2cYoPwSWDS5tKcOEdKuom8t EhRTZqEQaMdYNieziNiWFb5wOLw9+aJUS7OgGZHvTgrqyaJD6Z+CbmEDKnjegN5N Gz/6l7JLLprKb578xtwjoEGY2yYBM+1NeVfe40ZV2NmFsAyFQKRs7ZBECV2+QmME 9OlMybdS6GEjD1ke9e9/9vzTC7d7NAcqh1DuYB1NCbvyU3LFbLdjZm67SnrxgA4Z DILTqTfpM8K7bevlCiQeFCn6s/1DzqLt2ynJu0tU83vbJ+0qfBaX6PMzUdiNtQTL tFdbAtC4U6f2tjpgfSVWJ+KdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUyCU2ptlp Sr1yYzUChau6wn9gnhAwHwYDVR0jBBgwFoAU1p+GUNl6UkwplFPMtI13tOZf3yIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwNjk1LzdDNjc4MTQ4QTBD MTExRUVCMjIzMjk0QUM0RjlBRTAyLzFwLUdVTmw2VWt3cGxGUE10STEzdE9aZjN5 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXAtR1VObDZVa3dwbEZQTXRJMTN0T1pmM3lJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDY5NS83QzY3ODE0OEEwQzExMUVFQjIyMzI5NEFDNEY5QUUwMi9EMTA1NDU4MkEw QzExMUVFQTU0RTJGMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGetkTANBgkqhkiG9w0BAQsFAAOCAQEAiH9ssT5FCqLDQzrn QypRq3MYNnUPwd5JiriQF74wiXdIqiywyrbX731nIYF22Wr7f14v9ggJqqjbQ0DS swatP9JE9KFsI3/3kaBL9rOT1h5ksAm9RUVvAIMkCh7OW2ekP3HlQTVkY9OQ3Rxr 5shW/O9ej4ma2wRlmr3hGiwBzGakHCZa/EiegIblQf/Wnv9R3dQjx87I3QKxbYf/ MPPlXgNWLGU5O1e2DQdSiw+J0d51PRv+Q9nHvHEFlUvuGEvRr+dy3zN4cC4cACoY BojTaGQ1KDAWPUaGtDJIm+unf9FSt8yBP3Y+U5pXuRdvCovuuKcDRQeIOMzM2bRX pedS+g== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:36 2024 by rpki-client on console-ams.rpki-client.org