$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/D875D57EF30611EEAFFC0C66C4F9AE02.roa File: D875D57EF30611EEAFFC0C66C4F9AE02.roa (raw, json) Hash identifier: Iz3zUvxtHSNWZfpL5BCeiQjySJjNZ9tgs9jYAv22K5k= Subject key identifier: 15:11:54:79:7C:D5:9F:57:CB:E8:07:18:29:28:1A:9A:5B:00:E8:F8 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 6D Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/D875D57EF30611EEAFFC0C66C4F9AE02.roa Signing time: Fri 05 Apr 2024 04:42:02 +0000 ROA not before: Fri 05 Apr 2024 04:42:02 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138311 IP address blocks: 103.6.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Apr 5 04:42:02 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=660f811a-2f0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c2:fb:89:3b:f7:a4:f8:e1:ed:33:25:6b:6f: 65:84:78:77:44:3f:b1:99:d2:51:ea:14:6d:94:ed: 43:55:ca:6a:44:df:91:32:58:4c:94:37:28:14:d3: 95:6d:fb:c5:65:4f:14:1d:60:65:d0:6a:53:94:43: 9a:4a:d6:70:79:10:0c:60:d6:9c:5f:b5:60:25:44: b0:96:31:e2:9b:c1:0b:42:a5:85:69:23:a0:cd:57: 6d:d6:96:c9:09:d7:b3:94:87:38:9f:ae:88:47:a8: a8:50:9c:51:38:44:fe:8a:72:39:34:02:0a:44:f4: 89:bf:f4:32:68:12:40:11:8c:29:28:c0:81:24:b2: 4a:9a:33:8c:78:08:9e:3e:45:e3:50:cf:c1:67:80: e2:98:be:13:d8:bd:6f:ea:9a:51:01:d5:74:a6:66: 08:50:02:f0:fb:5d:c0:bc:5e:90:3e:ea:11:ec:f5: 73:5e:87:16:82:ec:67:ee:a4:bf:45:1a:8f:3c:82: eb:79:04:f8:b2:31:0a:68:b3:ee:48:a8:c1:ca:67: b6:e6:9d:7d:96:27:a8:da:dc:56:64:58:ed:d3:4b: 14:11:86:17:74:ce:79:53:88:53:0a:2f:16:07:21: 7d:55:64:42:c0:c2:f9:80:a7:6a:e9:f3:f6:49:d4: 54:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:11:54:79:7C:D5:9F:57:CB:E8:07:18:29:28:1A:9A:5B:00:E8:F8 X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/D875D57EF30611EEAFFC0C66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.120.0/23 Signature Algorithm: sha256WithRSAEncryption 84:6f:38:d3:1c:0a:42:f9:64:c6:1f:a7:d7:db:f4:10:09:f1: 0b:f0:ac:36:db:f3:0c:dd:00:9e:1b:b8:e2:d8:0f:e6:0c:25: c8:30:b6:f3:81:45:43:9d:d2:b9:c5:d3:ae:02:09:f8:f0:30: 36:1a:54:20:91:0f:8e:d4:9b:d7:f9:01:a7:b3:aa:43:12:72: af:29:58:31:16:24:24:16:49:c1:85:70:41:76:fa:9f:f8:8b: b0:82:3b:dd:00:86:de:ad:94:1a:f3:e7:7a:a0:7e:31:ca:6b: 17:48:39:88:43:f7:0c:53:e2:9d:0b:57:88:70:16:86:73:b4: 7b:d9:36:97:08:0b:d9:82:0a:5f:5e:1c:63:b1:65:55:76:44: 21:2b:91:0f:74:26:21:b1:da:fa:41:0a:c0:e9:9d:de:37:32: d4:36:93:6b:18:d9:9d:11:40:9f:c4:17:6f:59:c0:bc:1c:b6: 3e:e8:fa:c5:33:fb:cb:e3:45:ac:23:5a:f3:a3:f7:3d:1f:e5: f7:46:bf:53:d2:f0:0e:9d:b5:37:9a:2e:10:a1:e9:fe:78:9d: d9:17:ab:b9:65:b5:40:4d:d4:6f:00:99:99:85:e2:e9:4b:f8: 94:a1:48:03:67:78:8d:36:58:88:26:15:c1:c1:5c:2c:ae:59: 33:6f:57:d9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NEIzRjExMC8GA1UEBRMoNEU3NTRGN0IwOEM4MDAwNjdDRTA3MTA5N0FEMzk0Njg5 MERBQTM2NTAeFw0yNDA0MDUwNDQyMDJaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGY4MTFhLTJmMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChwvuJO/ek+OHtMyVrb2WEeHdEP7GZ0lHqFG2U7UNVympE35EyWEyUNygU05Vt +8VlTxQdYGXQalOUQ5pK1nB5EAxg1pxftWAlRLCWMeKbwQtCpYVpI6DNV23WlskJ 17OUhzifrohHqKhQnFE4RP6Kcjk0AgpE9Im/9DJoEkARjCkowIEkskqaM4x4CJ4+ ReNQz8FngOKYvhPYvW/qmlEB1XSmZghQAvD7XcC8XpA+6hHs9XNehxaC7GfupL9F Go88gut5BPiyMQpos+5IqMHKZ7bmnX2WJ6ja3FZkWO3TSxQRhhd0znlTiFMKLxYH IX1VZELAwvmAp2rp8/ZJ1FRhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFRFUeXzV n1fL6AcYKSgamlsA6PgwHwYDVR0jBBgwFoAUTnVPewjIAAZ84HEJetOUaJDao2Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0QjNGLzFDREY4N0U0NTE2 MDExRUVCMEE1ODI2QUM0RjlBRTAyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8y VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVG5WUGV3aklBQVo4NEhFSmV0T1VhSkRhbzJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9EODc1RDU3RUYz MDYxMUVFQUZGQzBDNjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcGeDANBgkqhkiG9w0BAQsFAAOCAQEAhG840xwKQvlkxh+n 19v0EAnxC/CsNtvzDN0Anhu44tgP5gwlyDC284FFQ53SucXTrgIJ+PAwNhpUIJEP jtSb1/kBp7OqQxJyrylYMRYkJBZJwYVwQXb6n/iLsII73QCG3q2UGvPneqB+Mcpr F0g5iEP3DFPinQtXiHAWhnO0e9k2lwgL2YIKX14cY7FlVXZEISuRD3QmIbHa+kEK wOmd3jcy1DaTaxjZnRFAn8QXb1nAvBy2Puj6xTP7y+NFrCNa86P3PR/l90a/U9Lw Dp21N5ouEKHp/nid2ReruWW1QE3UbwCZmYXi6Uv4lKFIA2d4jTZYiCYVwcFcLK5Z M29X2Q== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:36 2024 by rpki-client on console-ams.rpki-client.org