$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/308C5012BE4C11ED9598AC4EC4F9AE02.roa File: 308C5012BE4C11ED9598AC4EC4F9AE02.roa (raw, json) Hash identifier: XKXS8w3cSzbb8tW18USwkV2T+Gxd51woMUZHsaxXpcw= Subject key identifier: 38:94:1C:56:31:03:5A:F8:86:B1:47:08:5E:DB:D3:0E:96:1C:22:FE Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 065D Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/308C5012BE4C11ED9598AC4EC4F9AE02.roa Signing time: Wed 02 Aug 2023 22:19:38 +0000 ROA not before: Wed 02 Aug 2023 22:19:38 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9311 IP address blocks: 103.154.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1629 (0x65d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Aug 2 22:19:38 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cad67a-2f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:42:5b:c0:2b:61:cd:de:29:f0:e5:eb:34:c3: 13:cb:e8:1a:98:22:5a:16:e0:bf:0a:21:99:5b:bf: b6:7b:04:86:af:1b:8c:79:7b:be:3c:c4:23:b9:90: 48:7e:9a:19:7b:0f:69:64:78:90:5e:f9:50:89:a0: 29:ed:65:ba:89:0e:a8:a1:77:cd:81:c6:36:93:2a: d8:31:a1:70:6e:2c:01:63:6e:c7:9c:e5:9a:0e:d0: bc:ca:5a:bb:c9:d9:74:1d:b3:36:57:6b:fa:0d:e9: e0:49:dd:db:8a:c2:63:6e:81:74:48:38:63:bc:e7: 2e:99:24:de:dc:74:dd:7e:1f:3b:ce:0c:84:5b:ce: 00:19:40:a1:3c:2e:bf:c3:de:9d:c3:7a:09:bc:3a: c9:61:8e:e0:7d:5f:78:70:18:7b:0c:e7:11:c2:9b: 39:63:4b:b6:0b:8f:31:1e:60:c6:ad:a9:59:17:13: 99:08:a2:9a:9d:98:31:e2:42:44:17:5c:fe:8d:23: a9:33:0d:a2:1b:31:00:e7:55:90:59:c7:0b:62:85: 3c:bd:51:55:b6:b9:04:96:35:ac:68:63:22:6d:08: 08:cd:8e:f6:34:49:da:16:b2:b6:1d:96:67:86:2f: 9b:0f:93:c2:78:68:c5:17:5f:38:19:13:ad:42:7d: 49:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:94:1C:56:31:03:5A:F8:86:B1:47:08:5E:DB:D3:0E:96:1C:22:FE X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/308C5012BE4C11ED9598AC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.20.0/24 Signature Algorithm: sha256WithRSAEncryption 34:63:63:25:d3:ff:bc:bc:a2:92:22:ce:ab:c7:a5:55:12:2a: a3:43:bf:3c:a3:85:d4:ac:56:4e:6a:50:ee:24:9b:06:8a:4e: 0d:3d:27:18:b9:04:c7:f4:84:d2:83:31:57:dc:29:6b:da:d5: 21:93:47:f6:65:d4:46:50:b8:79:d0:f7:73:22:f5:b5:bf:c7: 17:1f:c5:25:10:92:a9:8c:08:ec:23:de:f1:92:95:e9:ad:0c: 06:05:23:84:f5:36:c1:db:0b:90:34:e1:b4:8f:b1:76:c0:a2: 64:82:cc:88:a7:83:52:5d:9a:4a:c8:d4:88:cd:f9:8d:2b:6c: af:d0:21:56:4a:b1:94:e2:85:46:55:da:e5:e8:af:d0:87:a6: 47:60:bb:7c:eb:25:15:ab:73:0a:4b:16:50:81:74:aa:1d:21: c9:a3:04:76:f4:51:23:6e:44:c3:3f:67:10:2e:5e:4f:44:39: da:01:34:d7:c3:5e:ba:3c:f0:51:5f:28:09:50:65:6f:0e:6d: 1c:36:f4:cd:0f:3d:16:8d:c4:b5:2b:bb:d3:80:20:eb:9a:e0: cc:63:5d:f8:ea:d1:77:70:d5:2a:b3:6b:4f:6b:3b:7d:af:0d: 71:f5:2f:81:7b:94:da:1d:0f:b8:5b:2d:eb:11:f2:b0:d4:de: c9:b8:ba:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjMwODAyMjIxOTM4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZDY3YS0yZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskJbwCthzd4p8OXrNMMTy+gamCJaFuC/CiGZW7+2ewSGrxuMeXu+PMQjuZBI fpoZew9pZHiQXvlQiaAp7WW6iQ6ooXfNgcY2kyrYMaFwbiwBY27HnOWaDtC8ylq7 ydl0HbM2V2v6DengSd3bisJjboF0SDhjvOcumSTe3HTdfh87zgyEW84AGUChPC6/ w96dw3oJvDrJYY7gfV94cBh7DOcRwps5Y0u2C48xHmDGralZFxOZCKKanZgx4kJE F1z+jSOpMw2iGzEA51WQWccLYoU8vVFVtrkEljWsaGMibQgIzY72NEnaFrK2HZZn hi+bD5PCeGjFF184GROtQn1JtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDiUHFYx A1r4hrFHCF7b0w6WHCL+MB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQxRTkvREFEOEZCODAwNzkwMTFFQkJCOThDMDc2QzRGOUFFMDIvMzA4QzUwMTJC RTRDMTFFRDk1OThBQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmhQwDQYJKoZIhvcNAQELBQADggEBADRjYyXT/7y8opIi zqvHpVUSKqNDvzyjhdSsVk5qUO4kmwaKTg09Jxi5BMf0hNKDMVfcKWva1SGTR/Zl 1EZQuHnQ93Mi9bW/xxcfxSUQkqmMCOwj3vGSlemtDAYFI4T1NsHbC5A04bSPsXbA omSCzIing1JdmkrI1IjN+Y0rbK/QIVZKsZTihUZV2uXor9CHpkdgu3zrJRWrcwpL FlCBdKodIcmjBHb0USNuRMM/ZxAuXk9EOdoBNNfDXro88FFfKAlQZW8ObRw29M0P PRaNxLUru9OAIOua4MxjXfjq0Xdw1Sqza09rO32vDXH1L4F7lNodD7hbLesR8rDU 3sm4unU= -----END CERTIFICATE-----Generated at Tue May 7 01:58:24 2024 by rpki-client on console-fra.rpki-client.org