$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa File: CFDF8B8A5B5D11EE967F161DC4F9AE02.roa (raw, json) Hash identifier: gmPw0/XxS6by0eGadVEva2pNqJ0sYAzIpNRugtlXu4s= Subject key identifier: B7:CB:36:9F:3D:F8:8C:14:CE:0F:DA:AB:BD:FC:4F:91:37:14:BB:23 Certificate issuer: /CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Certificate serial: 0890 Authority key identifier: A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa Signing time: Mon 25 Sep 2023 04:41:37 +0000 ROA not before: Mon 25 Sep 2023 04:41:37 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 9370 IP address blocks: 103.26.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Validity Not Before: Sep 25 04:41:37 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65110f81-79d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:69:30:82:61:5e:e4:64:4b:aa:56:cf:96:4d: 69:e3:0c:f3:73:6e:97:d8:43:e4:5f:d9:d6:b7:ad: a6:2b:5a:03:f0:9f:e4:ef:5c:42:fb:64:d6:c8:e9: 11:14:4f:d9:2f:18:df:07:d4:b1:e8:f1:e9:ae:64: 84:4a:48:5a:66:50:ac:e0:cc:62:20:2f:71:22:f4: 41:70:19:b8:f4:ea:10:18:f2:49:ce:cb:4d:5e:18: ae:99:ce:29:72:76:37:45:d8:1a:3c:aa:66:c6:87: 5e:d2:3a:6b:2d:b2:d1:1d:2a:12:0e:bc:83:a8:1f: ea:59:fc:06:39:f6:d8:67:a5:88:1e:7e:91:52:42: 85:cb:1a:64:29:df:11:11:3d:95:e8:0b:5d:8d:02: 40:9a:be:87:b8:fe:c5:dd:e2:75:04:89:eb:8a:20: 10:d1:fb:86:c4:63:2c:16:7b:a1:96:58:2c:d2:02: b6:7a:bb:70:eb:ff:1d:62:ae:4a:fc:5b:c6:95:fd: 36:ef:74:b7:c3:74:25:8b:86:27:d8:0a:0a:c7:e9: 53:04:aa:76:42:d5:26:2e:94:a9:ee:52:c6:08:cb: ef:5c:31:67:c8:74:78:2e:84:1b:8d:59:cf:22:ef: bc:3e:fb:05:95:b1:54:28:23:54:ee:42:ae:64:b7: aa:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CB:36:9F:3D:F8:8C:14:CE:0F:DA:AB:BD:FC:4F:91:37:14:BB:23 X509v3 Authority Key Identifier: keyid:A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.32.0/24 Signature Algorithm: sha256WithRSAEncryption 23:ee:48:3b:fe:fa:1d:f5:5c:4b:91:1f:69:36:1b:b6:28:59: ef:89:4d:e1:e2:7a:f7:96:3e:fa:ad:ca:f0:19:44:3c:82:4a: fa:91:ea:c3:d6:70:21:c9:1e:31:cb:43:56:cd:0c:12:74:05: 29:2c:80:a5:1e:f8:c8:27:72:e6:5c:4e:25:b6:a5:30:e3:55: bc:08:73:f7:d3:52:fe:a3:d5:58:1a:e5:9e:91:da:85:6d:d4: 2b:01:c2:5a:80:12:7b:b2:b3:0d:8c:6f:a6:6d:3c:61:99:87: e5:5b:63:67:07:3a:34:6f:04:c1:ef:a1:42:84:5f:33:5e:e7: 05:b9:c9:b3:fb:23:8c:83:ed:c5:4e:07:04:bf:9d:ab:82:93: 29:e0:ff:17:00:a8:1e:95:e0:4d:63:2f:3a:2d:25:ed:9d:cc: 3c:9d:24:19:a2:33:02:0b:59:89:93:fc:42:64:b2:d4:40:6f: 33:c2:e4:aa:55:06:e8:e9:1f:40:1b:f2:21:9f:b1:b0:89:66: d5:57:f9:af:fa:73:32:9a:61:3d:4a:d0:f2:3b:6b:69:da:46: 4f:24:29:71:de:c8:45:4f:1c:c1:e0:5b:51:aa:df:f0:a7:00: 28:5e:91:e6:8b:7b:21:20:22:a2:cc:3d:12:47:6f:15:a1:87: 07:86:c6:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBBNkMxMTAvBgNVBAUTKEE3ODdBNjNFNDlFRThFQzZGOTc1MTE2MDdGMUI3QzVC MERGMTE2NEUwHhcNMjMwOTI1MDQ0MTM3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTExMGY4MS03OWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmkwgmFe5GRLqlbPlk1p4wzzc26X2EPkX9nWt62mK1oD8J/k71xC+2TWyOkR FE/ZLxjfB9Sx6PHprmSESkhaZlCs4MxiIC9xIvRBcBm49OoQGPJJzstNXhiumc4p cnY3RdgaPKpmxode0jprLbLRHSoSDryDqB/qWfwGOfbYZ6WIHn6RUkKFyxpkKd8R ET2V6AtdjQJAmr6HuP7F3eJ1BInriiAQ0fuGxGMsFnuhllgs0gK2ertw6/8dYq5K /FvGlf0273S3w3Qli4Yn2AoKx+lTBKp2QtUmLpSp7lLGCMvvXDFnyHR4LoQbjVnP Iu+8PvsFlbFUKCNU7kKuZLeqawIDAQABo4IClTCCApEwHQYDVR0OBBYEFLfLNp89 +IwUzg/aq738T5E3FLsjMB8GA1UdIwQYMBaAFKeHpj5J7o7G+XURYH8bfFsN8RZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEE2Qy9COTE2RjM4ODgy QzIxMUVBOUE1MTQ2MzlDNEY5QUUwMi9wNGVtUGtudWpzYjVkUkZnZnh0OFd3M3hG azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A0ZW1Qa251anNiNWRSRmdmeHQ4V3czeEZrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBBNkMvQjkxNkYzODg4MkMyMTFFQTlBNTE0NjM5QzRGOUFFMDIvQ0ZERjhCOEE1 QjVEMTFFRTk2N0YxNjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGiAwDQYJKoZIhvcNAQELBQADggEBACPuSDv++h31XEuR H2k2G7YoWe+JTeHieveWPvqtyvAZRDyCSvqR6sPWcCHJHjHLQ1bNDBJ0BSksgKUe +MgncuZcTiW2pTDjVbwIc/fTUv6j1Vga5Z6R2oVt1CsBwlqAEnuysw2Mb6ZtPGGZ h+VbY2cHOjRvBMHvoUKEXzNe5wW5ybP7I4yD7cVOBwS/nauCkyng/xcAqB6V4E1j LzotJe2dzDydJBmiMwILWYmT/EJkstRAbzPC5KpVBujpH0Ab8iGfsbCJZtVX+a/6 czKaYT1K0PI7a2naRk8kKXHeyEVPHMHgW1Gq3/CnAChekeaLeyEgIqLMPRJHbxWh hweGxtE= -----END CERTIFICATE-----Generated at Sat May 18 22:27:56 2024 by rpki-client on console-ams.rpki-client.org