$ rpki-client -vvf rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/9891A3A4285311ED9DD8324EC4F9AE02.roa File: 9891A3A4285311ED9DD8324EC4F9AE02.roa (raw, json) Hash identifier: G0zFYcxqcXrP43HNeMlopdrCeFzJC73mwfZZ9iL/FCc= Subject key identifier: FE:EF:16:28:05:85:0C:1C:3F:78:FD:A6:08:A4:94:95:D4:8C:ED:24 Certificate issuer: /CN=A91618E1/serialNumber=2D0CB0E98F562E9366D5A995FB26F666A8C0A95A Certificate serial: 0102 Authority key identifier: 2D:0C:B0:E9:8F:56:2E:93:66:D5:A9:95:FB:26:F6:66:A8:C0:A9:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/9891A3A4285311ED9DD8324EC4F9AE02.roa Signing time: Thu 05 Oct 2023 03:24:19 +0000 ROA not before: Thu 05 Oct 2023 03:24:19 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 141731 IP address blocks: 103.204.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.crl rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618E1/serialNumber=2D0CB0E98F562E9366D5A995FB26F666A8C0A95A Validity Not Before: Oct 5 03:24:19 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651e2c63-359c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:61:f8:93:d2:ab:5c:d1:c1:1d:c5:79:74: fe:58:50:36:c5:0c:ff:a9:55:a3:d9:b8:2a:f2:b7: 0c:55:6f:61:d0:1c:71:d0:6b:7c:c2:c3:e2:52:ab: 66:37:b6:26:25:70:ae:fa:69:e8:9a:c8:d2:84:0d: e6:60:a5:44:d7:40:a4:98:17:91:72:96:77:c2:b3: 58:0a:f2:e7:1f:81:ee:ab:6b:c4:83:64:13:8a:9f: 79:43:31:0e:3c:b9:f1:ba:c9:72:68:87:54:8a:c3: b8:f3:a1:0d:af:2a:09:55:92:5a:fb:9a:8f:37:48: 66:4d:b5:ae:60:86:9f:71:6c:d8:46:a5:d3:7f:cd: a2:7b:9d:15:27:84:b1:09:62:98:7f:42:8e:6e:f0: 3a:de:d5:f2:98:6b:d9:f1:0d:16:23:60:be:62:71: 31:82:37:db:f0:8c:de:5e:c2:e0:ed:8f:d8:3a:b5: 6f:a1:71:07:02:0a:c3:fd:18:bd:ce:65:be:c6:39: 11:89:8f:c8:0a:e6:02:3b:5f:bc:ea:de:92:22:cc: 52:0a:af:89:f3:60:de:58:2e:62:b7:49:68:dc:e7: 6b:e2:49:36:c9:b6:22:42:e5:9f:56:ac:46:83:ed: 06:b7:46:e5:92:7a:53:6a:c1:1d:93:6f:41:9f:79: 0a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:EF:16:28:05:85:0C:1C:3F:78:FD:A6:08:A4:94:95:D4:8C:ED:24 X509v3 Authority Key Identifier: keyid:2D:0C:B0:E9:8F:56:2E:93:66:D5:A9:95:FB:26:F6:66:A8:C0:A9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/9891A3A4285311ED9DD8324EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.69.0/24 Signature Algorithm: sha256WithRSAEncryption e1:47:82:07:0f:5e:06:a6:38:4a:4e:ff:ac:1a:db:19:4a:0d: 1e:38:cc:6c:31:7b:6a:f7:a7:60:1c:ad:bb:90:fb:f1:02:bf: 44:bb:a1:b5:bf:b5:1b:03:12:68:53:fb:e8:58:08:d9:35:fc: 28:b6:30:c3:bc:e1:ba:f0:e8:15:ff:f0:05:e5:f2:37:64:a0: 4d:9c:32:57:4c:c2:00:01:cb:e4:6a:fc:71:a1:23:46:1d:4f: 8a:6a:76:d2:cf:8c:5d:f8:9c:12:3e:57:cd:d9:2f:be:99:53: 2c:23:7a:28:ee:c1:c9:b3:d4:8a:ea:9c:32:2b:fe:f0:0a:2e: 51:92:04:b5:5f:d6:7d:36:95:09:bd:45:8b:16:56:0b:f2:bb: 86:a2:01:00:57:ee:23:6a:ef:4f:5f:44:fb:39:40:d4:32:4a: d0:a0:0e:c0:38:a0:7c:e2:77:d4:4e:43:58:c5:5d:fe:24:e8: 9c:0a:51:2d:0a:da:e2:e7:4d:97:12:fb:5c:7b:28:6c:c0:a5: 71:fe:37:c3:83:39:6a:7c:71:59:21:a2:a1:01:6d:f0:3d:f9: 5d:a9:f3:df:1d:c5:7b:24:0e:95:df:0b:b9:e4:00:bf:fc:65: 02:03:3b:14:50:75:dc:39:41:34:92:d9:46:38:ad:8e:97:76: 45:03:a6:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4RTExMTAvBgNVBAUTKDJEMENCMEU5OEY1NjJFOTM2NkQ1QTk5NUZCMjZGNjY2 QThDMEE5NUEwHhcNMjMxMDA1MDMyNDE5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFlMmM2My0zNTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJxh+JPSq1zRwR3FeXT+WFA2xQz/qVWj2bgq8rcMVW9h0Bxx0Gt8wsPiUqtm N7YmJXCu+mnomsjShA3mYKVE10CkmBeRcpZ3wrNYCvLnH4Huq2vEg2QTip95QzEO PLnxuslyaIdUisO486ENryoJVZJa+5qPN0hmTbWuYIafcWzYRqXTf82ie50VJ4Sx CWKYf0KObvA63tXymGvZ8Q0WI2C+YnExgjfb8IzeXsLg7Y/YOrVvoXEHAgrD/Ri9 zmW+xjkRiY/ICuYCO1+86t6SIsxSCq+J82DeWC5it0lo3Odr4kk2ybYiQuWfVqxG g+0Gt0blknpTasEdk29Bn3kKRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP7vFigF hQwcP3j9pgiklJXUjO0kMB8GA1UdIwQYMBaAFC0MsOmPVi6TZtWplfsm9maowKla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThFMS8xMTMxNjYyQzI4 NTAxMUVEOEM4OTc5NEFDNEY5QUUwMi9MUXl3Nlk5V0xwTm0xYW1WLXliMlpxakFx Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xReXc2WTlXTHBObTFhbVYteWIyWnFqQXFWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4RTEvMTEzMTY2MkMyODUwMTFFRDhDODk3OTRBQzRGOUFFMDIvOTg5MUEzQTQy ODUzMTFFRDlERDgzMjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzEUwDQYJKoZIhvcNAQELBQADggEBAOFHggcPXgamOEpO /6wa2xlKDR44zGwxe2r3p2AcrbuQ+/ECv0S7obW/tRsDEmhT++hYCNk1/Ci2MMO8 4brw6BX/8AXl8jdkoE2cMldMwgABy+Rq/HGhI0YdT4pqdtLPjF34nBI+V83ZL76Z Uywjeijuwcmz1IrqnDIr/vAKLlGSBLVf1n02lQm9RYsWVgvyu4aiAQBX7iNq709f RPs5QNQyStCgDsA4oHzid9ROQ1jFXf4k6JwKUS0K2uLnTZcS+1x7KGzApXH+N8OD OWp8cVkhoqEBbfA9+V2p898dxXskDpXfC7nkAL/8ZQIDOxRQddw5QTSS2UY4rY6X dkUDpjo= -----END CERTIFICATE-----Generated at Fri May 17 06:46:23 2024 by rpki-client on console-ams.rpki-client.org