$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/0CAF01A6C6C811E8AECD6165C4F9AE02.roa File: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (raw, json) Hash identifier: U5orWrmpKJgxXY35oZM7izfy/QA51Cr/03RTHm+0ZYA= Subject key identifier: 99:09:47:B3:34:79:11:22:9B:18:23:7C:D8:CC:67:C6:74:2C:89:EE Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 1145 Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/0CAF01A6C6C811E8AECD6165C4F9AE02.roa Signing time: Thu 10 Aug 2023 17:34:55 +0000 ROA not before: Thu 10 Aug 2023 17:34:55 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45766 IP address blocks: 103.121.8.0/22 maxlen: 22 103.121.8.0/23 maxlen: 23 103.121.8.0/24 maxlen: 24 103.121.9.0/24 maxlen: 24 103.121.10.0/23 maxlen: 23 103.121.10.0/24 maxlen: 24 103.121.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 17:49:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4421 (0x1145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Aug 10 17:34:55 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d51fbe-6113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:50:50:e0:11:53:4a:e1:d7:db:99:ab:63:93: 37:cf:bf:43:f7:ec:df:3b:71:ab:90:69:e4:fb:f8: 20:31:32:ee:33:f4:73:b6:7e:eb:f6:92:00:45:28: 6e:26:e9:93:b0:17:4c:b7:11:4e:c3:69:79:77:ac: 1c:55:be:d7:a8:b9:22:10:3f:66:85:e6:50:54:c0: b2:65:c7:9b:8d:19:b0:86:d5:b7:c4:b3:6c:ff:e7: f3:ea:94:62:90:e1:6d:dd:db:5d:e0:d8:3a:89:a4: 67:38:aa:1e:bf:76:7b:bd:cb:ee:02:76:6d:a8:68: 3d:a8:5b:d2:61:c8:cb:18:3b:58:b8:75:3c:fa:81: 96:b2:6b:a8:01:3a:8a:ab:b9:c8:e0:68:89:1c:58: 8b:71:0d:fe:d7:77:21:42:18:c5:2e:3e:5d:a3:01: 7e:77:27:0f:3d:1e:6e:cf:ed:e3:42:a5:f4:31:b9: 74:76:d2:0c:2a:1d:dd:a2:fb:64:53:0d:67:75:ea: c0:e7:6b:76:69:03:39:cd:10:3d:b4:08:00:75:c2: de:3c:e7:79:fe:34:f6:b7:98:b2:bd:ad:6a:36:f0: df:29:1b:42:a1:a0:64:d3:5e:2f:7f:90:70:a9:00: dc:6c:3f:8a:9a:77:31:fd:d4:18:c9:ab:ee:b2:75: 6f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:09:47:B3:34:79:11:22:9B:18:23:7C:D8:CC:67:C6:74:2C:89:EE X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/0CAF01A6C6C811E8AECD6165C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.8.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:62:e8:f1:5e:57:e2:bb:b5:37:40:bc:a4:ce:38:11:84:d9: be:d8:04:b5:d0:90:ad:fd:08:0f:24:d3:24:a6:3c:b6:64:27: 68:2d:57:6b:61:2d:94:38:72:48:9b:85:9f:cb:dd:fe:07:4d: 6b:b7:f0:2e:9c:e6:33:3b:53:8c:b7:ed:8f:0f:3e:d3:ac:45: b1:c4:1c:88:ab:11:e1:b6:dd:df:67:63:78:9d:b1:94:89:76: 92:c8:d9:27:ad:73:ce:b5:64:1e:c2:41:ed:71:5f:b6:ff:7c: 00:1a:07:0b:f1:e5:1a:f4:a6:d9:2e:d9:32:7e:08:6b:f4:d7: 06:86:ad:43:5f:0d:24:75:d0:5f:ee:a8:32:b5:30:f4:07:29: 11:84:fd:2a:3c:23:4b:23:40:01:62:01:58:0a:a0:f3:18:83: 6b:1c:b2:a2:56:4a:2b:f0:15:75:c2:38:d6:48:ec:9f:ba:23: b5:9f:73:f0:29:5e:aa:01:95:6b:d2:a9:98:99:23:26:c9:ea: ea:8d:81:f2:e8:81:59:94:b4:50:b1:b1:75:c7:fe:9a:90:e1: 60:6d:ed:48:36:db:39:ab:e5:cd:c4:e6:a4:e5:6d:fb:53:f3: eb:94:7b:69:25:ec:4b:a1:dc:8b:6b:9a:b2:63:a6:c5:27:a8: 9c:4a:2a:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjMwODEwMTczNDU1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ1MWZiZS02MTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFBQ4BFTSuHX25mrY5M3z79D9+zfO3GrkGnk+/ggMTLuM/Rztn7r9pIARShu JumTsBdMtxFOw2l5d6wcVb7XqLkiED9mheZQVMCyZcebjRmwhtW3xLNs/+fz6pRi kOFt3dtd4Ng6iaRnOKoev3Z7vcvuAnZtqGg9qFvSYcjLGDtYuHU8+oGWsmuoATqK q7nI4GiJHFiLcQ3+13chQhjFLj5dowF+dycPPR5uz+3jQqX0Mbl0dtIMKh3dovtk Uw1nderA52t2aQM5zRA9tAgAdcLePOd5/jT2t5iyva1qNvDfKRtCoaBk014vf5Bw qQDcbD+Kmncx/dQYyavusnVvkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJkJR7M0 eREimxgjfNjMZ8Z0LInuMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTE2QzcvQzg1NkQ2QzRDNkM2MTFFODgyQTQxMjYwQzRGOUFFMDIvMENBRjAxQTZD NkM4MTFFOEFFQ0Q2MTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneQgwDQYJKoZIhvcNAQELBQADggEBAHxi6PFeV+K7tTdA vKTOOBGE2b7YBLXQkK39CA8k0ySmPLZkJ2gtV2thLZQ4ckibhZ/L3f4HTWu38C6c 5jM7U4y37Y8PPtOsRbHEHIirEeG23d9nY3idsZSJdpLI2Setc861ZB7CQe1xX7b/ fAAaBwvx5Rr0ptku2TJ+CGv01waGrUNfDSR10F/uqDK1MPQHKRGE/So8I0sjQAFi AVgKoPMYg2scsqJWSivwFXXCONZI7J+6I7Wfc/ApXqoBlWvSqZiZIybJ6uqNgfLo gVmUtFCxsXXH/pqQ4WBt7Ug22zmr5c3E5qTlbftT8+uUe2kl7Euh3ItrmrJjpsUn qJxKKhI= -----END CERTIFICATE-----Generated at Fri May 24 21:42:57 2024 by rpki-client on console-ams.rpki-client.org