$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa File: B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa (raw, json) Hash identifier: BuhJgDsyCsja/6NR2KvBldmlI45GwmmzEaspPRYxwho= Subject key identifier: 89:4A:CB:F2:B1:15:0D:6C:6A:47:9A:FD:16:9F:9C:39:B9:E1:55:96 Certificate issuer: /CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Certificate serial: 088E Authority key identifier: A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa Signing time: Mon 25 Sep 2023 04:40:46 +0000 ROA not before: Mon 25 Sep 2023 04:40:46 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 17941 IP address blocks: 103.26.32.0/22 maxlen: 22 103.26.33.0/24 maxlen: 24 103.26.34.0/24 maxlen: 24 103.26.35.0/24 maxlen: 24 2404:5480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2190 (0x88e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Validity Not Before: Sep 25 04:40:46 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65110f4e-d40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:af:0a:73:e7:53:45:2f:ee:de:e6:8d:51:f0: 6b:70:06:36:8e:f0:51:4c:45:7a:1f:93:f6:9b:e9: d4:68:e1:02:09:6c:90:90:35:d2:86:ac:e8:9d:36: 56:23:8d:4d:0e:3e:53:f5:ba:c0:a0:8c:2e:c9:48: 0c:42:88:d0:ea:86:02:5e:75:9e:b7:02:e9:ae:6e: 6a:db:1f:b1:4a:3c:ec:4a:b2:1c:46:41:fa:0d:32: b4:d8:67:98:bd:b6:90:11:5c:7a:06:43:40:9c:84: 39:a9:11:d0:a7:46:38:ab:d6:39:44:11:1a:71:03: bb:62:c4:65:30:07:74:1c:a8:e9:99:59:ff:b1:a0: cd:7b:f1:70:ec:d5:8d:37:5f:79:46:23:fb:73:3e: d3:3c:3d:5d:1e:b4:84:1d:f6:36:df:b5:dc:0d:a0: 25:7d:ce:e4:74:e1:ad:1f:0d:0b:d0:e7:db:e2:f2: 69:3c:dd:a3:62:26:ad:a8:c5:0a:d6:cd:3e:20:73: 0c:a7:0d:4c:1c:a9:45:80:4d:9b:f6:9a:97:df:07: 21:a5:26:76:44:d2:42:55:70:7f:17:82:4a:74:3d: c0:bb:b7:18:f6:94:a3:19:5f:3a:25:69:26:04:e5: ed:45:da:97:6a:21:55:24:c5:f8:83:0a:16:b0:5a: 32:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4A:CB:F2:B1:15:0D:6C:6A:47:9A:FD:16:9F:9C:39:B9:E1:55:96 X509v3 Authority Key Identifier: keyid:A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/B13B2E5A5B5D11EEADF5C61CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.32.0/22 IPv6: 2404:5480::/32 Signature Algorithm: sha256WithRSAEncryption a3:7c:a6:1c:13:6c:31:1c:0b:e6:07:90:f5:a9:5a:7c:be:9e: 2b:71:f7:6e:e0:c0:f2:43:4e:41:91:1f:38:f0:23:b7:50:66: 26:44:12:07:06:08:ef:05:1a:05:b9:22:6a:78:4d:32:27:11: 1b:08:a2:bc:a4:64:58:f3:ec:d6:10:16:4a:cf:23:a7:65:fc: 71:36:a1:ad:a6:78:ab:dc:94:56:d5:fd:ab:a4:8b:a4:63:97: f2:6a:9e:21:22:4e:4a:6c:5f:8c:cf:0d:d7:e7:91:e7:b0:00: 8c:d4:22:0a:60:d2:d9:a2:05:13:e6:95:25:19:d1:03:14:26: 91:22:95:6c:02:70:c2:d6:d8:6c:19:36:be:df:7b:f5:31:69: 3d:a1:3e:32:df:94:ef:85:0c:68:d1:4e:e9:e0:16:1d:d2:a2: 01:9e:42:57:a9:c0:a6:80:cd:5e:14:94:9c:79:2b:e5:c3:b4: e0:bf:85:f0:09:1a:2d:e6:d5:e9:bd:a6:22:20:76:a2:d5:8a: 66:ea:db:b2:fd:fb:94:bc:df:75:b9:4d:52:42:64:65:a7:17: a4:fd:ae:d6:9d:02:79:46:27:a7:20:1f:3f:b3:bb:7a:63:48: a7:f9:ab:d3:f8:8c:61:16:41:d3:fd:86:02:6b:f1:20:ff:c5: 09:a5:19:2f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBBNkMxMTAvBgNVBAUTKEE3ODdBNjNFNDlFRThFQzZGOTc1MTE2MDdGMUI3QzVC MERGMTE2NEUwHhcNMjMwOTI1MDQ0MDQ2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTExMGY0ZS1kNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0a8Kc+dTRS/u3uaNUfBrcAY2jvBRTEV6H5P2m+nUaOECCWyQkDXShqzonTZW I41NDj5T9brAoIwuyUgMQojQ6oYCXnWetwLprm5q2x+xSjzsSrIcRkH6DTK02GeY vbaQEVx6BkNAnIQ5qRHQp0Y4q9Y5RBEacQO7YsRlMAd0HKjpmVn/saDNe/Fw7NWN N195RiP7cz7TPD1dHrSEHfY237XcDaAlfc7kdOGtHw0L0Ofb4vJpPN2jYiatqMUK 1s0+IHMMpw1MHKlFgE2b9pqX3wchpSZ2RNJCVXB/F4JKdD3Au7cY9pSjGV86JWkm BOXtRdqXaiFVJMX4gwoWsFoy/wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIlKy/Kx FQ1sakea/RafnDm54VWWMB8GA1UdIwQYMBaAFKeHpj5J7o7G+XURYH8bfFsN8RZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEE2Qy9COTE2RjM4ODgy QzIxMUVBOUE1MTQ2MzlDNEY5QUUwMi9wNGVtUGtudWpzYjVkUkZnZnh0OFd3M3hG azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A0ZW1Qa251anNiNWRSRmdmeHQ4V3czeEZrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBBNkMvQjkxNkYzODg4MkMyMTFFQTlBNTE0NjM5QzRGOUFFMDIvQjEzQjJFNUE1 QjVEMTFFRUFERjVDNjFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnGiAwDQQCAAIwBwMFACQEVIAwDQYJKoZIhvcNAQELBQAD ggEBAKN8phwTbDEcC+YHkPWpWny+nitx927gwPJDTkGRHzjwI7dQZiZEEgcGCO8F GgW5Imp4TTInERsIorykZFjz7NYQFkrPI6dl/HE2oa2meKvclFbV/auki6Rjl/Jq niEiTkpsX4zPDdfnkeewAIzUIgpg0tmiBRPmlSUZ0QMUJpEilWwCcMLW2GwZNr7f e/UxaT2hPjLflO+FDGjRTungFh3SogGeQlepwKaAzV4UlJx5K+XDtOC/hfAJGi3m 1em9piIgdqLVimbq27L9+5S833W5TVJCZGWnF6T9rtadAnlGJ6cgHz+zu3pjSKf5 q9P4jGEWQdP9hgJr8SD/xQmlGS8= -----END CERTIFICATE-----Generated at Sat May 18 22:27:56 2024 by rpki-client on console-ams.rpki-client.org