$ rpki-client -vvf rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa File: 4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa (raw, json) Hash identifier: jLuoO4jztXMtmwVyxaQwn3jD87jKwwbWVckT3n58bSw= Subject key identifier: 54:04:7C:F1:B2:AC:33:8E:3A:B9:4B:21:74:39:D7:30:C2:44:38:62 Certificate issuer: /CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Certificate serial: 02 Authority key identifier: 90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa Signing time: Fri 20 Oct 2023 02:28:03 +0000 ROA not before: Fri 20 Oct 2023 02:28:03 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 141167 IP address blocks: 103.255.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 07:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Validity Not Before: Oct 20 02:28:03 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6531e5b3-0686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ce:15:e3:94:e7:3e:d3:6f:df:22:df:23:73: b9:76:c2:a8:4b:75:34:29:37:c4:c3:9c:b4:09:c4: 85:36:2c:47:9b:1f:88:79:d3:5e:cd:b5:81:17:54: a1:3e:d5:e0:84:bf:33:81:2d:f8:f0:56:e4:e3:be: 88:0a:a6:64:10:e1:41:5f:09:24:47:8a:5f:bc:c8: cd:0e:57:2e:8a:eb:ef:b8:7a:48:6e:6f:6a:c8:74: 42:bb:ad:0e:5a:68:70:f4:51:c3:d2:f9:9c:20:7d: 52:64:35:c3:aa:2a:87:08:af:45:69:fd:90:25:75: a2:06:76:47:21:bf:13:94:15:9e:5b:6d:a5:40:e1: 9e:21:72:14:8a:c5:14:bc:d1:02:05:76:af:30:18: 3e:86:95:3f:39:f8:06:f5:1d:88:1b:19:10:41:67: 40:c6:0e:e7:a2:be:f9:db:5a:75:58:bb:fb:54:f9: e9:53:14:36:0d:16:b1:71:98:b6:6d:bf:66:95:b4: d7:76:d7:08:e1:1c:10:17:97:ba:61:49:af:42:45: a1:35:8c:2e:15:42:1a:5b:35:1d:ea:cd:80:c3:e1: 96:43:39:1d:62:08:65:e2:78:79:89:54:c5:83:20: d7:30:02:4d:f9:80:1a:5e:3f:6d:28:99:68:16:93: 4d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:04:7C:F1:B2:AC:33:8E:3A:B9:4B:21:74:39:D7:30:C2:44:38:62 X509v3 Authority Key Identifier: keyid:90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.0.0/23 Signature Algorithm: sha256WithRSAEncryption 93:a8:f8:e5:a8:37:26:5d:5d:3d:9f:bf:ff:b4:6a:90:ea:5a: fb:32:82:d0:7a:e9:2e:ae:91:aa:59:f3:4f:4f:2f:88:5c:49: eb:6b:7e:32:81:0d:25:f5:a2:60:a8:3b:35:57:06:2c:a8:0c: 90:f3:92:42:7f:07:7a:2a:49:10:88:ae:ef:a4:37:19:15:79: 02:e0:1d:e9:a3:05:e1:39:f9:a3:57:9c:9f:9e:46:d1:d1:56: 54:39:a0:8a:e8:da:e3:32:fb:4e:e1:89:e1:fc:66:57:93:87: 5a:60:b6:2b:80:e3:b7:8f:89:09:45:2a:99:1d:3a:f6:ed:b7: 8c:da:9b:25:dd:81:8e:b4:02:36:6f:84:c3:48:ba:f3:06:47: 43:3c:f4:04:c0:f7:e3:5e:de:b9:dc:7f:0c:cf:ac:14:a3:12: 71:f4:aa:30:8f:6b:77:45:7e:da:a8:96:a6:e8:94:4a:3a:49: ca:bf:44:5a:cf:df:f0:e9:89:c3:15:9a:76:ef:ed:64:d9:03: c1:4e:2a:9f:e7:87:c6:6b:b2:dc:2a:48:bb:04:e3:0f:24:7d: b6:a2:61:31:6f:a2:e0:01:19:bb:be:8d:67:b6:88:21:1f:ef: 89:29:43:93:36:3e:7d:4a:0a:0f:dc:78:8c:a0:15:3b:21:08: f0:fa:39:62 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDhDOTExMC8GA1UEBRMoOTBGNjgwRkNBN0M5MzBGRDFGREM1MzM2NzUzODVBRTkw RkI0MTY3MjAeFw0yMzEwMjAwMjI4MDNaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzFlNWIzLTA2ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDzhXjlOc+02/fIt8jc7l2wqhLdTQpN8TDnLQJxIU2LEebH4h5017NtYEXVKE+ 1eCEvzOBLfjwVuTjvogKpmQQ4UFfCSRHil+8yM0OVy6K6++4ekhub2rIdEK7rQ5a aHD0UcPS+ZwgfVJkNcOqKocIr0Vp/ZAldaIGdkchvxOUFZ5bbaVA4Z4hchSKxRS8 0QIFdq8wGD6GlT85+Ab1HYgbGRBBZ0DGDueivvnbWnVYu/tU+elTFDYNFrFxmLZt v2aVtNd21wjhHBAXl7phSa9CRaE1jC4VQhpbNR3qzYDD4ZZDOR1iCGXieHmJVMWD INcwAk35gBpeP20omWgWk01VAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVAR88bKs M446uUshdDnXMMJEOGIwHwYDVR0jBBgwFoAUkPaA/KfJMP0f3FM2dTha6Q+0FnIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0OEM5L0EwNTVCNUIyNkVF RDExRUVCQzFBQUI1M0M0RjlBRTAyL2tQYUFfS2ZKTVAwZjNGTTJkVGhhNlEtMEZu SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1BhQV9LZkpNUDBmM0ZNMmRUaGE2US0wRm5JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDhDOS9BMDU1QjVCMjZFRUQxMUVFQkMxQUFCNTNDNEY5QUUwMi80QjNDNDNFQTZF RjAxMUVFODREQzlCMEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWf/ADANBgkqhkiG9w0BAQsFAAOCAQEAk6j45ag3Jl1dPZ+/ /7RqkOpa+zKC0HrpLq6RqlnzT08viFxJ62t+MoENJfWiYKg7NVcGLKgMkPOSQn8H eipJEIiu76Q3GRV5AuAd6aMF4Tn5o1ecn55G0dFWVDmgiuja4zL7TuGJ4fxmV5OH WmC2K4Djt4+JCUUqmR069u23jNqbJd2BjrQCNm+Ew0i68wZHQzz0BMD3417eudx/ DM+sFKMScfSqMI9rd0V+2qiWpuiUSjpJyr9EWs/f8OmJwxWadu/tZNkDwU4qn+eH xmuy3CpIuwTjDyR9tqJhMW+i4AEZu76NZ7aIIR/viSlDkzY+fUoKD9x4jKAVOyEI 8Po5Yg== -----END CERTIFICATE-----Generated at Tue May 7 09:19:43 2024 by rpki-client on console-ams.rpki-client.org