$ rpki-client -vvf rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/6229E2DC5C7911EC8C7BD812C4F9AE02.roa File: 6229E2DC5C7911EC8C7BD812C4F9AE02.roa (raw, json) Hash identifier: Q2iy243agdSDjEa884LDfciYzMpoalViChCS9O74Bsg= Subject key identifier: 90:E9:B5:9E:B5:B3:DF:D1:0F:15:D6:6B:57:79:59:53:5E:B8:05:AC Certificate issuer: /CN=A91F95E2/serialNumber=410597D5B00043E20AA2409E3271ED4F41E131C7 Certificate serial: 0318 Authority key identifier: 41:05:97:D5:B0:00:43:E2:0A:A2:40:9E:32:71:ED:4F:41:E1:31:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQWX1bAAQ-IKokCeMnHtT0HhMcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/6229E2DC5C7911EC8C7BD812C4F9AE02.roa Signing time: Wed 01 Nov 2023 02:54:08 +0000 ROA not before: Wed 01 Nov 2023 02:54:08 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 147000 IP address blocks: 103.172.174.0/23 maxlen: 24 2001:df7:7580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/QQWX1bAAQ-IKokCeMnHtT0HhMcc.crl rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/QQWX1bAAQ-IKokCeMnHtT0HhMcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQWX1bAAQ-IKokCeMnHtT0HhMcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 22:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 792 (0x318) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F95E2/serialNumber=410597D5B00043E20AA2409E3271ED4F41E131C7 Validity Not Before: Nov 1 02:54:08 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6541bdd0-8578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b5:db:cc:97:48:8b:c6:ed:6c:c2:d2:2e:30: 22:c7:b3:fc:b7:70:c9:ec:ff:8a:0a:0f:37:05:72: e9:a0:12:5f:9e:5e:96:99:e6:cb:4f:e6:d3:d9:6c: c0:ce:8e:f4:f1:47:87:21:b0:e2:87:92:b8:32:97: 7b:68:a4:dc:35:67:45:2f:d1:ef:22:06:98:81:65: 75:2f:99:1d:fd:1f:1c:75:93:4c:32:fe:46:49:70: 55:c3:a5:29:32:55:07:58:9e:cc:69:87:5d:b6:67: 3a:66:84:bf:38:ff:b2:a4:61:2f:33:1b:b2:4d:e4: 94:70:da:89:1b:fb:96:b9:4b:0f:0e:04:ea:0a:66: 00:7f:44:70:8c:08:28:7d:3d:31:7a:ae:8c:a0:b4: 77:38:f9:51:bc:b9:08:b5:66:93:2d:4d:f1:31:a4: 1b:db:74:af:51:80:b4:34:ea:37:94:5f:63:21:cd: d9:0a:ee:93:4c:8d:26:52:db:15:e6:57:a8:32:f3: 09:5c:3b:6b:7f:ef:5e:91:50:0b:77:b7:c9:93:67: 98:69:f1:b3:d1:cb:23:8a:6c:26:ce:08:6a:2e:7c: 49:c4:0e:b5:bf:96:7f:fa:77:2f:df:ed:89:8c:96: e4:06:bb:c3:e3:c9:0f:b6:d8:f5:ec:65:e1:92:09: 0a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E9:B5:9E:B5:B3:DF:D1:0F:15:D6:6B:57:79:59:53:5E:B8:05:AC X509v3 Authority Key Identifier: keyid:41:05:97:D5:B0:00:43:E2:0A:A2:40:9E:32:71:ED:4F:41:E1:31:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/QQWX1bAAQ-IKokCeMnHtT0HhMcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQWX1bAAQ-IKokCeMnHtT0HhMcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F95E2/118545FA5C7511EC89ABFA0BC4F9AE02/6229E2DC5C7911EC8C7BD812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.174.0/23 IPv6: 2001:df7:7580::/48 Signature Algorithm: sha256WithRSAEncryption 89:03:e6:82:2f:0b:2d:a3:2b:89:63:61:38:fe:36:94:cd:c8: 18:49:b1:ff:ab:77:4a:90:0b:9f:0e:5d:4d:38:de:4a:c9:f5: 6c:56:57:e4:32:6f:ea:ef:65:09:17:70:e9:d6:07:73:bd:74: 7b:b9:f4:94:65:41:30:b3:09:ac:71:b4:90:fd:bc:00:e7:da: e2:8b:80:3a:b3:32:58:ed:30:0a:1b:b3:26:04:e5:5c:ed:c7: 7d:5a:a7:25:7d:80:84:5a:62:9a:81:15:5a:a2:a8:8e:d7:93: 07:80:fb:d1:84:06:be:b7:a3:9c:1e:64:78:5a:40:cb:49:94: 6d:a3:e3:4f:b7:7d:8b:a8:30:48:8c:d2:ae:35:e6:44:78:12: 31:43:9d:e0:ce:da:37:36:0c:10:07:86:8a:fc:02:8d:58:46: 45:c6:02:74:02:31:2f:05:02:66:5a:ef:86:97:e4:72:1b:5c: 1d:e1:ab:44:01:6c:ae:df:f9:c5:2e:f9:32:0e:69:33:95:bc: ff:75:4a:c7:f6:16:00:95:00:f8:bd:25:cc:af:03:95:2b:5f: 7a:2c:57:f4:fc:1e:32:ee:16:b6:fd:b2:8e:19:7c:0e:16:9b: 35:e3:02:d4:49:99:15:7a:d4:a4:e4:c1:7f:60:5c:19:6f:30: 10:9f:45:56 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjk1RTIxMTAvBgNVBAUTKDQxMDU5N0Q1QjAwMDQzRTIwQUEyNDA5RTMyNzFFRDRG NDFFMTMxQzcwHhcNMjMxMTAxMDI1NDA4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxYmRkMC04NTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrXbzJdIi8btbMLSLjAix7P8t3DJ7P+KCg83BXLpoBJfnl6WmebLT+bT2WzA zo708UeHIbDih5K4Mpd7aKTcNWdFL9HvIgaYgWV1L5kd/R8cdZNMMv5GSXBVw6Up MlUHWJ7MaYddtmc6ZoS/OP+ypGEvMxuyTeSUcNqJG/uWuUsPDgTqCmYAf0RwjAgo fT0xeq6MoLR3OPlRvLkItWaTLU3xMaQb23SvUYC0NOo3lF9jIc3ZCu6TTI0mUtsV 5leoMvMJXDtrf+9ekVALd7fJk2eYafGz0csjimwmzghqLnxJxA61v5Z/+ncv3+2J jJbkBrvD48kPttj17GXhkgkKNwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJDptZ61 s9/RDxXWa1d5WVNeuAWsMB8GA1UdIwQYMBaAFEEFl9WwAEPiCqJAnjJx7U9B4THH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTVFMi8xMTg1NDVGQTVD NzUxMUVDODlBQkZBMEJDNEY5QUUwMi9RUVdYMWJBQVEtSUtva0NlTW5IdFQwSGhN Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FRV1gxYkFBUS1JS29rQ2VNbkh0VDBIaE1jYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjk1RTIvMTE4NTQ1RkE1Qzc1MTFFQzg5QUJGQTBCQzRGOUFFMDIvNjIyOUUyREM1 Qzc5MTFFQzhDN0JEODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrK4wDwQCAAIwCQMHACABDfd1gDANBgkqhkiG9w0BAQsF AAOCAQEAiQPmgi8LLaMriWNhOP42lM3IGEmx/6t3SpALnw5dTTjeSsn1bFZX5DJv 6u9lCRdw6dYHc710e7n0lGVBMLMJrHG0kP28AOfa4ouAOrMyWO0wChuzJgTlXO3H fVqnJX2AhFpimoEVWqKojteTB4D70YQGvrejnB5keFpAy0mUbaPjT7d9i6gwSIzS rjXmRHgSMUOd4M7aNzYMEAeGivwCjVhGRcYCdAIxLwUCZlrvhpfkchtcHeGrRAFs rt/5xS75Mg5pM5W8/3VKx/YWAJUA+L0lzK8DlStfeixX9PweMu4Wtv2yjhl8Dhab NeMC1EmZFXrUpOTBf2BcGW8wEJ9FVg== -----END CERTIFICATE-----Generated at Thu Jun 13 03:15:50 2024 by rpki-client on console-ams.rpki-client.org