$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/395AFD84135811EB942A3E15C4F9AE02.roa File: 395AFD84135811EB942A3E15C4F9AE02.roa (raw, json) Hash identifier: Op+wHLNP+3hZhlTAjyxkdIspzV4PgbJvuSbOJX6FnFY= Subject key identifier: 44:13:3E:0A:C2:AC:D4:CE:8A:30:24:17:F3:9A:BD:B7:92:4C:79:0C Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0658 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/395AFD84135811EB942A3E15C4F9AE02.roa Signing time: Sat 28 Oct 2023 22:50:40 +0000 ROA not before: Sat 28 Oct 2023 22:50:40 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 138214 IP address blocks: 103.122.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Oct 28 22:50:40 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653d9040-6fcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d2:34:1f:3f:14:a5:7b:26:65:8f:f2:a7:69: 65:13:b4:da:63:e2:f7:3c:b3:30:ee:88:e7:40:49: 1e:dc:f1:eb:9a:df:2e:e5:11:06:92:08:1a:1b:d9: eb:73:80:dd:86:cb:2c:bd:a7:b4:17:da:64:fa:4e: 48:89:db:2b:e3:e1:cd:4e:ea:9d:c2:b4:9c:3e:68: 2f:b8:80:a2:58:a1:10:51:d4:4f:42:5a:33:31:7b: 8b:1f:75:24:6a:42:70:a7:af:77:49:a6:4f:41:83: a0:dc:7d:58:f1:f2:0d:81:c8:1c:db:d7:fb:40:b5: 5e:1c:c1:87:ad:6c:15:99:c6:d9:54:ce:42:92:e2: a9:93:b2:71:56:de:aa:09:34:c8:89:ae:d7:65:9e: 28:1f:b2:66:bf:02:60:c1:d6:11:2a:bf:61:69:86: c1:03:7c:6e:59:43:51:d0:c7:56:d9:85:2b:d3:6f: 16:61:43:bc:7e:b1:cf:0f:2c:cd:ea:04:1b:bb:34: 1d:c2:2a:c1:ff:57:39:40:28:fd:b4:89:7c:32:d0: b8:b9:92:0c:67:fd:d5:e1:7e:dd:eb:35:4f:e6:68: 8b:6e:a6:cc:79:a9:f0:14:18:24:e6:bf:6a:da:54: 18:06:86:60:59:13:02:86:8b:c5:89:07:0d:57:91: 6e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:13:3E:0A:C2:AC:D4:CE:8A:30:24:17:F3:9A:BD:B7:92:4C:79:0C X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/395AFD84135811EB942A3E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.88.0/23 Signature Algorithm: sha256WithRSAEncryption 10:a3:6b:23:0d:d5:e6:7d:5a:8d:ec:2c:a7:09:c8:0a:3c:49: fc:c4:e4:7d:d9:7f:63:3f:33:8e:bb:a1:1a:b3:5f:9a:7b:79: 78:06:58:17:96:b2:01:1a:8b:3f:cc:e4:54:da:23:12:d3:dd: 1b:55:3f:75:82:5e:36:04:f6:d1:13:b3:b5:ef:fc:71:db:e9: 35:ca:74:93:94:88:bf:f9:16:76:52:11:0f:0c:b5:13:b3:21: 44:4b:c6:ba:a3:e4:1d:b5:7a:fc:a2:96:82:ae:2c:a1:03:2e: 1d:93:d9:4c:be:3c:03:4c:a2:c2:e5:22:0c:21:4d:c6:cf:10: d2:98:62:f1:f1:71:c4:01:3e:76:e7:02:fd:c8:53:25:51:b4: 8a:b6:1b:e7:b6:cb:b0:3f:18:b5:b2:b3:94:94:02:a4:1b:fb: f8:71:36:fd:df:bc:69:fc:95:70:f8:30:68:26:3f:dc:27:1c: 06:33:7b:72:6d:41:6f:2a:45:b1:b2:9a:57:b4:28:68:7f:84: d3:e9:f3:3e:11:32:b1:c1:b5:e1:15:50:58:ac:12:02:82:d8: 5a:d9:6e:d2:20:e0:34:8d:a9:88:23:6a:f5:21:4f:40:6f:25: a6:b3:dc:88:56:75:3f:28:1e:b2:46:ef:f2:7d:6f:f2:a3:86: 06:8d:0a:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjMxMDI4MjI1MDQwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkOTA0MC02ZmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tI0Hz8UpXsmZY/yp2llE7TaY+L3PLMw7ojnQEke3PHrmt8u5REGkggaG9nr c4Ddhsssvae0F9pk+k5Iidsr4+HNTuqdwrScPmgvuICiWKEQUdRPQlozMXuLH3Uk akJwp693SaZPQYOg3H1Y8fINgcgc29f7QLVeHMGHrWwVmcbZVM5CkuKpk7JxVt6q CTTIia7XZZ4oH7JmvwJgwdYRKr9haYbBA3xuWUNR0MdW2YUr028WYUO8frHPDyzN 6gQbuzQdwirB/1c5QCj9tIl8MtC4uZIMZ/3V4X7d6zVP5miLbqbMeanwFBgk5r9q 2lQYBoZgWRMChovFiQcNV5FuwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEQTPgrC rNTOijAkF/OavbeSTHkMMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRGMDAvM0RBNjkwMTYxMzU3MTFFQkEyM0RBNzE0QzRGOUFFMDIvMzk1QUZEODQx MzU4MTFFQjk0MkEzRTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnelgwDQYJKoZIhvcNAQELBQADggEBABCjayMN1eZ9Wo3s LKcJyAo8SfzE5H3Zf2M/M467oRqzX5p7eXgGWBeWsgEaiz/M5FTaIxLT3RtVP3WC XjYE9tETs7Xv/HHb6TXKdJOUiL/5FnZSEQ8MtROzIURLxrqj5B21evyiloKuLKED Lh2T2Uy+PANMosLlIgwhTcbPENKYYvHxccQBPnbnAv3IUyVRtIq2G+e2y7A/GLWy s5SUAqQb+/hxNv3fvGn8lXD4MGgmP9wnHAYze3JtQW8qRbGymle0KGh/hNPp8z4R MrHBteEVUFisEgKC2FrZbtIg4DSNqYgjavUhT0BvJaaz3IhWdT8oHrJG7/J9b/Kj hgaNCpE= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:25 2024 by rpki-client on console-ams.rpki-client.org