$ rpki-client -vvf rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/2F9887306F0D11EE9B369C60C4F9AE02.roa File: 2F9887306F0D11EE9B369C60C4F9AE02.roa (raw, json) Hash identifier: 9q9oTcb4ioXwSsphGFckf19Bd13gyTER6v0uANu9tWA= Subject key identifier: 8D:2A:1C:6C:CA:E2:72:AC:32:7B:B6:8A:30:57:A4:22:C1:E7:CB:97 Certificate issuer: /CN=A91554E6/serialNumber=C78D1E59591BE0C7524D36BDF85C8AC6EA190F8E Certificate serial: 02 Authority key identifier: C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/2F9887306F0D11EE9B369C60C4F9AE02.roa Signing time: Fri 20 Oct 2023 05:54:52 +0000 ROA not before: Fri 20 Oct 2023 05:54:52 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149866 IP address blocks: 103.189.160.0/23 maxlen: 24 2400:8760::/32 maxlen: 32 2400:8760:5::/48 maxlen: 48 2400:8760:6::/48 maxlen: 48 2400:8760:11::/48 maxlen: 48 2400:8760:12::/48 maxlen: 48 2400:8760:13::/48 maxlen: 48 2400:8760:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.crl rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91554E6/serialNumber=C78D1E59591BE0C7524D36BDF85C8AC6EA190F8E Validity Not Before: Oct 20 05:54:52 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6532162c-1bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dc:92:e3:d5:8b:00:3a:b9:f7:37:43:65:a8: 56:7d:7e:7f:a6:cc:88:bc:72:8d:b6:62:c2:23:dd: 79:c4:8a:62:c2:de:8a:1e:af:41:3d:01:af:51:36: b2:19:25:a9:c0:3f:c8:0a:84:3d:cc:c6:9c:68:ea: 6f:44:f5:b9:b5:5f:2b:ae:58:ad:d3:e5:03:c3:65: fb:28:72:00:0b:18:71:4e:cb:40:ad:c0:06:8b:58: e6:c9:ef:b9:b9:0a:2b:a2:27:a4:f2:3b:45:d2:cd: 47:f8:13:11:39:15:c8:64:23:9c:28:94:a8:e7:8e: 2d:7e:ab:75:c9:13:d7:a7:c2:ed:28:31:0e:2c:e2: d3:14:5d:7f:77:16:6a:04:aa:29:e5:0d:81:d9:37: 27:0c:0f:99:e3:f9:45:f5:fb:79:97:c1:ca:07:2a: 7f:bb:c2:17:b7:bb:7d:83:7f:82:80:c9:79:ee:10: 0f:16:63:10:84:0e:f0:cd:cc:21:68:78:22:b8:03: 8e:b0:64:30:51:80:ca:de:da:f0:cf:42:47:61:15: 2e:28:bd:31:5c:1b:7e:44:6b:48:65:fb:16:d8:55: 4d:ee:2b:7c:d0:9c:f9:63:3f:38:b6:65:d3:da:84: bc:3a:db:ad:8f:e4:eb:ba:14:36:9a:cf:96:19:a1: 82:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2A:1C:6C:CA:E2:72:AC:32:7B:B6:8A:30:57:A4:22:C1:E7:CB:97 X509v3 Authority Key Identifier: keyid:C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/2F9887306F0D11EE9B369C60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.160.0/23 IPv6: 2400:8760::/32 Signature Algorithm: sha256WithRSAEncryption 3c:b8:32:59:27:f2:f2:30:c6:ca:10:fd:c0:14:f7:5d:cc:96: d0:65:dd:59:10:c8:44:c5:ff:ea:0d:0b:08:69:93:ea:fd:50: 1c:c6:5a:01:c8:80:1f:f5:ac:a0:ec:b3:16:af:0b:56:f1:40: c1:8c:71:bf:79:be:97:b5:34:e0:48:b6:c5:58:f7:9a:ac:83: f0:21:d6:84:dd:e7:5d:9c:83:7a:46:d8:4e:25:3b:2c:13:ec: c8:23:3d:19:1c:62:71:7a:6e:31:9e:20:ce:88:9c:97:3e:64: cf:dc:4c:fd:02:b8:9d:78:0a:cd:c9:b7:8e:be:fa:09:0e:6d: d5:7b:cd:f3:3f:20:58:ea:ec:f8:10:8d:e7:ad:ae:ce:64:39: 8f:d1:ca:04:f5:e5:f9:aa:73:de:07:80:b2:93:de:e7:eb:ae: 4b:32:35:36:b0:02:91:5b:ec:a6:37:8d:04:d2:8b:af:b8:48: 88:ce:ed:f3:b7:dd:48:ab:ff:7a:7c:ba:8b:a8:ff:f2:f0:18: 19:58:54:18:58:70:12:ae:51:eb:a7:5b:d5:ee:0f:24:df:34: 9a:14:51:24:c2:dc:13:63:84:89:a9:1d:87:d5:e3:02:2d:6f: d8:08:22:ae:0e:1c:20:dd:88:ff:00:3a:db:ee:7b:cc:27:b9: 57:86:35:62 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTRFNjExMC8GA1UEBRMoQzc4RDFFNTk1OTFCRTBDNzUyNEQzNkJERjg1QzhBQzZF QTE5MEY4RTAeFw0yMzEwMjAwNTU0NTJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzIxNjJjLTFiZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR3JLj1YsAOrn3N0NlqFZ9fn+mzIi8co22YsIj3XnEimLC3ooer0E9Aa9RNrIZ JanAP8gKhD3Mxpxo6m9E9bm1XyuuWK3T5QPDZfsocgALGHFOy0CtwAaLWObJ77m5 CiuiJ6TyO0XSzUf4ExE5FchkI5wolKjnji1+q3XJE9enwu0oMQ4s4tMUXX93FmoE qinlDYHZNycMD5nj+UX1+3mXwcoHKn+7whe3u32Df4KAyXnuEA8WYxCEDvDNzCFo eCK4A46wZDBRgMre2vDPQkdhFS4ovTFcG35Ea0hl+xbYVU3uK3zQnPljPzi2ZdPa hLw6262P5Ou6FDaaz5YZoYIxAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUjSocbMri cqwye7aKMFekIsHny5cwHwYDVR0jBBgwFoAUx40eWVkb4MdSTTa9+FyKxuoZD44w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NEU2LzlGMDY3NzQ4RUQ0 QjExRUNBQjhGQUE3N0M0RjlBRTAyL3g0MGVXVmtiNE1kU1RUYTktRnlLeHVvWkQ0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveDQwZVdWa2I0TWRTVFRhOS1GeUt4dW9aRDQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTRFNi85RjA2Nzc0OEVENEIxMUVDQUI4RkFBNzdDNEY5QUUwMi8yRjk4ODczMDZG MEQxMUVFOUIzNjlDNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWe9oDANBAIAAjAHAwUAJACHYDANBgkqhkiG9w0BAQsFAAOC AQEAPLgyWSfy8jDGyhD9wBT3XcyW0GXdWRDIRMX/6g0LCGmT6v1QHMZaAciAH/Ws oOyzFq8LVvFAwYxxv3m+l7U04Ei2xVj3mqyD8CHWhN3nXZyDekbYTiU7LBPsyCM9 GRxicXpuMZ4gzoiclz5kz9xM/QK4nXgKzcm3jr76CQ5t1XvN8z8gWOrs+BCN562u zmQ5j9HKBPXl+apz3geAspPe5+uuSzI1NrACkVvspjeNBNKLr7hIiM7t87fdSKv/ eny6i6j/8vAYGVhUGFhwEq5R66db1e4PJN80mhRRJMLcE2OEiakdh9XjAi1v2Agi rg4cIN2I/wA62+57zCe5V4Y1Yg== -----END CERTIFICATE-----Generated at Fri May 17 06:46:22 2024 by rpki-client on console-ams.rpki-client.org