$ rpki-client -vvf rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8EEDD62405C111EDA8DAD745C4F9AE02.roa File: 8EEDD62405C111EDA8DAD745C4F9AE02.roa (raw, json) Hash identifier: Ekc4Qkr8sRMuE7F4MCGjZBhWAK93Pw2VXMRlgWQHI+4= Subject key identifier: A0:DB:1C:2F:A6:16:55:FF:90:47:AA:92:AC:5D:57:5D:1E:17:E6:70 Certificate issuer: /CN=A91329C1/serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717 Certificate serial: 014B Authority key identifier: F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8EEDD62405C111EDA8DAD745C4F9AE02.roa Signing time: Thu 07 Sep 2023 03:13:52 +0000 ROA not before: Thu 07 Sep 2023 03:13:52 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132730 IP address blocks: 103.141.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91329C1/serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717 Validity Not Before: Sep 7 03:13:52 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f93ff0-9db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:fc:40:78:70:8f:8c:20:0d:fd:69:b4:36:ff: 66:27:85:d2:2a:c0:ba:73:ea:b7:b9:51:2a:cb:43: a1:8a:12:e3:d7:64:7f:27:2b:f2:53:02:a5:b2:33: 7f:3b:d1:70:53:e5:38:f8:13:85:5e:da:7a:33:0b: a0:02:d8:9a:e9:94:62:3a:6e:91:a1:08:b5:7e:59: 39:b0:d2:f4:35:09:17:ef:75:39:c2:61:6f:a5:90: 67:21:5b:6f:f2:07:ce:16:60:e3:a8:e5:f3:02:df: 15:f1:1a:8a:f2:dc:00:e0:33:58:41:ea:64:85:20: 08:28:80:98:a5:56:86:48:e6:50:85:86:ee:9f:be: ef:a0:11:34:d5:15:37:cd:be:4e:0f:7d:fc:d2:40: 71:cd:54:34:9e:89:4e:9d:db:07:a5:36:df:22:c1: 32:b5:41:f1:8a:ff:2c:27:68:9f:a4:75:1c:51:08: a7:5b:6e:d6:40:b3:20:4c:dc:62:2f:2b:83:61:0e: 1b:05:ca:c9:09:bd:4f:35:43:c6:b2:27:96:2c:b5: 1f:00:9a:d4:87:d7:b8:b6:17:62:09:4d:dc:2b:80: c3:1d:0d:c4:49:e0:c6:c6:d0:f4:fe:b1:90:58:05: de:5c:a3:03:98:73:09:9c:be:cb:56:4f:7e:bb:66: b1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:DB:1C:2F:A6:16:55:FF:90:47:AA:92:AC:5D:57:5D:1E:17:E6:70 X509v3 Authority Key Identifier: keyid:F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8EEDD62405C111EDA8DAD745C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.164.0/23 Signature Algorithm: sha256WithRSAEncryption b2:02:93:5e:86:63:ac:77:c7:66:cd:87:c6:86:0a:ba:51:c1: 24:c6:16:af:07:ee:40:13:85:34:fd:16:aa:67:86:ed:da:d2: 76:5d:8a:34:0d:18:5a:0d:d7:b1:4b:e5:c2:e9:7b:d5:65:a2: cd:63:d4:71:67:ad:e7:fa:30:bd:96:ea:a1:f8:5e:29:ae:0d: 76:33:80:42:22:78:bf:77:c9:5f:b1:90:f2:46:e4:50:2a:fc: 40:a4:ad:ba:69:f1:88:fe:86:4e:cd:27:4a:f7:1a:60:bd:99: 21:23:57:cf:3b:77:97:01:a1:9a:30:c2:95:12:03:fd:de:0c: 7f:e6:32:4f:ba:16:a0:a3:c3:f4:80:2d:a0:eb:49:d2:31:0f: 10:b2:36:f4:66:68:a6:1a:3f:c5:39:dd:7e:aa:f9:ea:6d:46: 31:4f:b9:e9:34:73:19:04:c5:80:ec:18:ca:c8:cd:63:9a:1b: 19:d2:b5:43:73:d9:49:6a:e2:53:e0:c7:10:50:b4:4f:63:c6: 75:0a:d5:40:37:d8:12:ab:2c:1e:ff:62:ec:20:b8:ad:a5:4c: 73:7e:fe:6a:fd:a0:9f:a2:45:bc:5f:8f:7f:b8:68:e4:f0:97: e9:8c:12:2b:a2:0b:cd:22:df:47:bf:c3:76:8d:10:52:8b:24: 16:a0:e1:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI5QzExMTAvBgNVBAUTKEYyNTlCOEFDOUNGNDNCRDdDNTk0NTRFNUM4M0VDRjQ4 RjlGQjg3MTcwHhcNMjMwOTA3MDMxMzUyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY5M2ZmMC05ZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7vxAeHCPjCAN/Wm0Nv9mJ4XSKsC6c+q3uVEqy0OhihLj12R/JyvyUwKlsjN/ O9FwU+U4+BOFXtp6MwugAtia6ZRiOm6RoQi1flk5sNL0NQkX73U5wmFvpZBnIVtv 8gfOFmDjqOXzAt8V8RqK8twA4DNYQepkhSAIKICYpVaGSOZQhYbun77voBE01RU3 zb5OD3380kBxzVQ0nolOndsHpTbfIsEytUHxiv8sJ2ifpHUcUQinW27WQLMgTNxi LyuDYQ4bBcrJCb1PNUPGsieWLLUfAJrUh9e4thdiCU3cK4DDHQ3ESeDGxtD0/rGQ WAXeXKMDmHMJnL7LVk9+u2axFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKDbHC+m FlX/kEeqkqxdV10eF+ZwMB8GA1UdIwQYMBaAFPJZuKyc9DvXxZRU5cg+z0j5+4cX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjlDMS80NDIzNkYwNDA1 QkQxMUVEQTAwQTVGM0RDNEY5QUUwMi84bG00ckp6ME85ZkZsRlRseUQ3UFNQbjdo eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhsbTRySnowTzlmRmxGVGx5RDdQU1BuN2h4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzI5QzEvNDQyMzZGMDQwNUJEMTFFREEwMEE1RjNEQzRGOUFFMDIvOEVFREQ2MjQw NUMxMTFFREE4REFENzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjaQwDQYJKoZIhvcNAQELBQADggEBALICk16GY6x3x2bN h8aGCrpRwSTGFq8H7kAThTT9Fqpnhu3a0nZdijQNGFoN17FL5cLpe9Vlos1j1HFn ref6ML2W6qH4XimuDXYzgEIieL93yV+xkPJG5FAq/ECkrbpp8Yj+hk7NJ0r3GmC9 mSEjV887d5cBoZowwpUSA/3eDH/mMk+6FqCjw/SALaDrSdIxDxCyNvRmaKYaP8U5 3X6q+eptRjFPuek0cxkExYDsGMrIzWOaGxnStUNz2Ulq4lPgxxBQtE9jxnUK1UA3 2BKrLB7/YuwguK2lTHN+/mr9oJ+iRbxfj3+4aOTwl+mMEiuiC80i30e/w3aNEFKL JBag4aU= -----END CERTIFICATE-----Generated at Fri May 17 06:18:05 2024 by rpki-client on console-fra.rpki-client.org