$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/5C6E8A88077011EFAC619280C4F9AE02.roa File: 5C6E8A88077011EFAC619280C4F9AE02.roa (raw, json) Hash identifier: yce4MsSaFBi7mitzw8R0cVX5ZLmXB45vE1MBtpW5pbU= Subject key identifier: 0D:B1:15:CE:DF:86:F0:6A:22:8D:0B:11:87:C5:46:2B:88:5A:A3:FC Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 0292 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/5C6E8A88077011EFAC619280C4F9AE02.roa Signing time: Wed 01 May 2024 04:07:44 +0000 ROA not before: Wed 01 May 2024 04:07:44 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 136520 IP address blocks: 103.91.194.0/24 maxlen: 24 103.123.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: May 1 04:07:44 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6631c010-6628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:3c:72:a4:67:69:46:b8:eb:c1:0a:92:26:ef: 56:d3:f5:3d:7c:7d:3a:9c:df:76:95:14:39:fd:73: a3:d0:5e:40:cb:5b:41:cb:e8:6e:54:1c:de:c4:b4: 58:fc:e9:8e:5c:c0:db:f9:51:81:82:b5:52:26:e0: 7a:4d:18:2e:e1:2c:cb:44:5a:2e:81:27:76:a6:0f: 3e:64:f3:14:b1:8a:b1:d3:71:50:68:5a:ca:39:4b: b4:58:8b:09:28:93:05:61:e6:66:2d:24:20:5d:d2: cc:d2:11:c6:3e:41:c1:27:ad:09:1f:61:63:5a:03: 8d:c3:18:dc:d7:d0:5f:01:28:79:f0:50:d2:08:ba: 47:68:4c:db:30:9c:3d:ae:6a:d7:58:50:d0:cf:49: 68:71:75:ea:d2:70:6c:c4:eb:94:55:d1:d8:6a:ba: dd:b3:68:69:8c:18:0a:08:98:2e:2b:07:03:0a:22: bc:c4:44:3e:41:07:83:f1:0a:b2:e3:8f:d4:8d:7c: ee:47:19:41:7a:22:dc:e0:a6:ac:77:fd:34:98:53: b5:0d:19:91:d4:0a:ea:41:5c:8f:b3:71:52:d5:01: 5a:0f:d0:0e:36:9f:cc:02:76:c4:16:f2:72:70:9d: 21:6f:ed:0d:84:00:ed:0e:41:60:51:8b:d8:b1:03: 44:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B1:15:CE:DF:86:F0:6A:22:8D:0B:11:87:C5:46:2B:88:5A:A3:FC X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/5C6E8A88077011EFAC619280C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.194.0/24 103.123.238.0/23 Signature Algorithm: sha256WithRSAEncryption ae:59:ec:78:69:d2:98:1b:48:4a:0f:3f:67:e9:5d:52:e3:15: eb:0a:17:06:3c:35:69:aa:4f:af:1c:42:f8:3d:0c:d9:67:3e: 22:86:21:8a:89:a2:fc:e0:81:3d:0f:34:af:3c:58:5b:5e:df: 37:04:d9:2c:96:5c:63:e9:b8:3b:5b:bb:1d:8c:14:e0:77:4b: 31:86:0f:e0:3c:74:5d:83:d6:52:d1:63:0c:67:d5:fc:01:21: 82:40:b9:b2:89:ff:4d:27:76:64:88:16:c8:fc:70:92:3c:79: 2c:47:23:b9:15:d2:8b:a8:4d:60:0f:66:ab:b8:e6:92:74:2f: b0:69:51:8d:a7:48:65:40:0e:b8:f9:3b:18:4c:4f:ec:a7:dc: ea:84:b2:27:5c:51:21:c9:74:5c:42:67:28:e2:e8:e8:10:16: 34:5a:d3:c2:c4:c7:45:43:0d:f6:77:2a:cb:4f:23:94:c1:fc: 98:ff:fa:af:86:1a:f7:1b:c3:bf:9a:08:30:7e:c1:2f:d5:ad: d5:80:9a:ba:74:2f:bb:f7:e0:54:e4:40:37:72:be:c2:71:cc: bc:bf:ce:c2:87:c6:cd:64:04:fd:f6:a1:ca:e4:9e:96:cb:1d: e8:11:0a:b5:5d:6d:34:42:44:d7:17:11:de:ab:49:03:c7:b1: 5e:90:0d:f7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjQwNTAxMDQwNzQ0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxYzAxMC02NjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTxypGdpRrjrwQqSJu9W0/U9fH06nN92lRQ5/XOj0F5Ay1tBy+huVBzexLRY /OmOXMDb+VGBgrVSJuB6TRgu4SzLRFougSd2pg8+ZPMUsYqx03FQaFrKOUu0WIsJ KJMFYeZmLSQgXdLM0hHGPkHBJ60JH2FjWgONwxjc19BfASh58FDSCLpHaEzbMJw9 rmrXWFDQz0locXXq0nBsxOuUVdHYarrds2hpjBgKCJguKwcDCiK8xEQ+QQeD8Qqy 44/UjXzuRxlBeiLc4Kasd/00mFO1DRmR1ArqQVyPs3FS1QFaD9AONp/MAnbEFvJy cJ0hb+0NhADtDkFgUYvYsQNEqQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFA2xFc7f hvBqIo0LEYfFRiuIWqP8MB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE5NkEvMjg3ODVGNjBCRkJGMTFFQ0FFRDQ4QzcxQzRGOUFFMDIvNUM2RThBODgw NzcwMTFFRkFDNjE5MjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnW8IDBAFne+4wDQYJKoZIhvcNAQELBQADggEBAK5Z7Hhp 0pgbSEoPP2fpXVLjFesKFwY8NWmqT68cQvg9DNlnPiKGIYqJovzggT0PNK88WFte 3zcE2SyWXGPpuDtbux2MFOB3SzGGD+A8dF2D1lLRYwxn1fwBIYJAubKJ/00ndmSI Fsj8cJI8eSxHI7kV0ouoTWAPZqu45pJ0L7BpUY2nSGVADrj5OxhMT+yn3OqEsidc USHJdFxCZyji6OgQFjRa08LEx0VDDfZ3KstPI5TB/Jj/+q+GGvcbw7+aCDB+wS/V rdWAmrp0L7v34FTkQDdyvsJxzLy/zsKHxs1kBP32ocrknpbLHegRCrVdbTRCRNcX Ed6rSQPHsV6QDfc= -----END CERTIFICATE-----Generated at Fri May 17 04:44:31 2024 by rpki-client on console-ams.rpki-client.org