$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/91FCBAF2C45711ECBDED2D29C4F9AE02.roa File: 91FCBAF2C45711ECBDED2D29C4F9AE02.roa (raw, json) Hash identifier: PuPUDWSJGoWbX/zPoBXv02/XAxj02nAk1J3kuwSAWF8= Subject key identifier: 31:4F:3B:DB:57:2E:B2:06:E4:42:FB:2D:97:31:5D:F9:78:C9:82:82 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A19 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/91FCBAF2C45711ECBDED2D29C4F9AE02.roa Signing time: Wed 10 May 2023 16:13:05 +0000 ROA not before: Wed 10 May 2023 16:13:05 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132781 IP address blocks: 103.250.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27161 (0x6a19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:05 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc290-6cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:48:e5:79:96:d9:a6:07:20:99:7d:d8:f9: f4:03:42:51:7b:5d:13:ac:1e:24:40:4f:af:57:1c: f0:9c:eb:f3:c6:b5:b4:cc:e3:34:8b:e0:17:96:32: ce:c6:e6:e8:61:2b:a5:cc:42:fd:48:59:f3:78:ee: ac:de:a0:97:9c:b1:d8:4e:b0:26:e0:da:69:75:04: 3d:ab:d4:82:01:57:84:79:d7:3b:7a:7d:39:55:12: b1:5d:73:66:b3:20:e7:45:bf:87:9e:cb:fe:0a:6a: 98:fe:4d:33:44:1f:c7:13:44:d0:b8:08:6b:94:3c: 7b:35:0f:a8:f9:2e:f4:03:d7:86:84:e6:06:6a:0c: fb:3e:03:b3:2c:10:46:84:3b:1b:2b:c2:29:bb:07: 2f:e0:25:92:f4:aa:c5:22:be:b4:25:d3:ee:d2:02: 00:53:73:54:2b:31:44:fa:6e:01:84:35:41:37:3c: 87:11:6b:26:44:3e:9f:c7:29:84:67:86:5c:03:14: 11:44:74:d5:6f:7d:68:8e:b1:1b:ac:d9:ff:dd:f5: cd:c0:8b:d5:38:a7:7b:f7:b3:19:40:5d:9c:9b:d8: e7:15:bc:3d:ce:38:e6:44:d3:92:90:84:2a:93:27: 4c:32:a7:ec:d8:34:6b:04:f5:25:00:99:8a:cf:64: fe:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:4F:3B:DB:57:2E:B2:06:E4:42:FB:2D:97:31:5D:F9:78:C9:82:82 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/91FCBAF2C45711ECBDED2D29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.30.0/24 Signature Algorithm: sha256WithRSAEncryption b3:ee:12:a1:f3:32:fe:03:29:bd:20:d7:d7:0f:99:08:4e:fc: 23:75:0a:c9:63:a5:9a:ef:54:87:c1:cc:f4:07:e6:82:0a:c2: ab:3a:dd:66:a1:ff:1d:57:0c:2f:7e:4e:7a:13:f5:34:37:d5: 84:d7:be:b5:f8:68:7f:62:88:12:d5:b3:2b:1c:39:a6:7c:11: 27:0e:51:e0:b7:0b:ad:0c:03:35:83:87:ac:d4:76:98:72:c6: f1:44:1b:9e:f1:f2:14:97:b8:3d:b2:31:79:66:ec:6f:a9:11: 9c:73:0c:1b:04:de:cf:44:bd:ba:56:dd:b9:60:e4:f1:e2:fc: d5:ad:05:3c:58:b7:97:76:5f:8d:6c:79:cc:9f:46:46:28:38: 30:0a:21:b0:03:31:8b:ea:f7:db:ae:b8:62:28:01:8a:de:1e: 6c:63:48:14:80:f2:6f:28:50:67:15:c8:f3:75:97:20:8d:2d: c6:49:66:2f:14:23:28:35:1b:e8:ca:75:27:7b:de:07:82:08: e6:d3:fa:19:d1:8a:d9:e4:fe:13:73:7c:2a:aa:54:c7:4e:2d: fa:b1:98:08:16:fe:c7:c6:5d:8d:cc:8d:d2:71:90:4e:d8:c9: da:5b:af:d1:b1:8c:d4:dd:05:4f:1e:2d:df:ff:7b:0a:9a:c1: ee:6f:7c:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICahkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzA1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI5MC02Y2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOxI5XmW2aYHIJl92Pn0A0JRe10TrB4kQE+vVxzwnOvzxrW0zOM0i+AXljLO xuboYSulzEL9SFnzeO6s3qCXnLHYTrAm4NppdQQ9q9SCAVeEedc7en05VRKxXXNm syDnRb+Hnsv+CmqY/k0zRB/HE0TQuAhrlDx7NQ+o+S70A9eGhOYGagz7PgOzLBBG hDsbK8Ipuwcv4CWS9KrFIr60JdPu0gIAU3NUKzFE+m4BhDVBNzyHEWsmRD6fxymE Z4ZcAxQRRHTVb31ojrEbrNn/3fXNwIvVOKd797MZQF2cm9jnFbw9zjjmRNOSkIQq kydMMqfs2DRrBPUlAJmKz2T+iwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDFPO9tX LrIG5EL7LZcxXfl4yYKCMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvOTFGQ0JBRjJD NDU3MTFFQ0JERUQyRDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn+h4wDQYJKoZIhvcNAQELBQADggEBALPuEqHzMv4DKb0g 19cPmQhO/CN1CsljpZrvVIfBzPQH5oIKwqs63Wah/x1XDC9+TnoT9TQ31YTXvrX4 aH9iiBLVsyscOaZ8EScOUeC3C60MAzWDh6zUdphyxvFEG57x8hSXuD2yMXlm7G+p EZxzDBsE3s9EvbpW3blg5PHi/NWtBTxYt5d2X41secyfRkYoODAKIbADMYvq99uu uGIoAYreHmxjSBSA8m8oUGcVyPN1lyCNLcZJZi8UIyg1G+jKdSd73geCCObT+hnR itnk/hNzfCqqVMdOLfqxmAgW/sfGXY3MjdJxkE7Yydpbr9GxjNTdBU8eLd//ewqa we5vfIk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:39 2024 by rpki-client on console-ams.rpki-client.org