$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/EA66A39C222A11EE9FF85B26C4F9AE02.roa File: EA66A39C222A11EE9FF85B26C4F9AE02.roa (raw, json) Hash identifier: rYvd0Abeo976MkDa0FRvq8mujTQue9gFVMYSeGaIWk4= Subject key identifier: 3F:6E:F6:0C:C0:F4:73:BC:5C:E3:84:80:91:4F:95:83:22:BB:8D:07 Certificate issuer: /CN=A91A1ABC/serialNumber=21D7B872105481ED82A9E6223B25406BB7522F23 Certificate serial: 1D Authority key identifier: 21:D7:B8:72:10:54:81:ED:82:A9:E6:22:3B:25:40:6B:B7:52:2F:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ide4chBUge2CqeYiOyVAa7dSLyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/EA66A39C222A11EE9FF85B26C4F9AE02.roa Signing time: Wed 23 Aug 2023 05:24:44 +0000 ROA not before: Wed 23 Aug 2023 05:24:44 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 134428 IP address blocks: 103.97.156.0/24 maxlen: 24 103.97.157.0/24 maxlen: 24 103.97.158.0/24 maxlen: 24 103.97.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/Ide4chBUge2CqeYiOyVAa7dSLyM.crl rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/Ide4chBUge2CqeYiOyVAa7dSLyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ide4chBUge2CqeYiOyVAa7dSLyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1ABC/serialNumber=21D7B872105481ED82A9E6223B25406BB7522F23 Validity Not Before: Aug 23 05:24:44 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e5981c-926e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:12:0e:10:d2:f0:d8:9c:9e:06:f0:ee:52:27: c1:ec:d8:54:f5:8f:c9:40:2c:83:ad:fd:9f:60:28: cf:da:43:63:cf:26:70:20:b2:78:1b:9a:73:4f:bd: 91:7b:0a:90:e2:02:95:52:6e:50:af:37:66:38:38: ce:f1:9a:ee:23:fc:df:ca:f0:e7:63:28:56:89:c5: f6:51:40:1c:24:bd:83:e5:4c:3d:ae:3f:b8:e2:2d: 53:02:f8:32:aa:ef:44:41:2f:3c:52:23:84:72:f0: 13:55:56:89:5c:28:8b:80:65:97:b4:26:a1:09:39: aa:dd:e5:ef:7d:2b:94:9e:ff:71:2b:4f:5d:53:0e: 20:a3:51:b8:e2:ba:b3:cf:8a:82:88:a3:60:cf:43: 7e:73:d8:d1:cd:7f:ff:7f:90:82:8e:19:d8:e5:19: 14:d3:38:8c:52:39:ed:b8:a7:0b:d7:ab:4e:92:64: 3f:9d:a9:70:65:f8:3a:85:12:8a:e9:5b:17:9c:8e: ec:fd:d9:4a:6c:e6:c4:04:c7:55:5c:86:0b:43:ee: 8b:ae:f6:1c:8d:61:bd:90:8c:d9:04:e2:20:19:0b: fd:4a:8f:85:09:a2:1c:59:62:eb:11:3c:03:b2:a7: e8:a7:51:c6:7c:dd:0a:f5:20:e0:6d:66:22:4d:36: 34:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6E:F6:0C:C0:F4:73:BC:5C:E3:84:80:91:4F:95:83:22:BB:8D:07 X509v3 Authority Key Identifier: keyid:21:D7:B8:72:10:54:81:ED:82:A9:E6:22:3B:25:40:6B:B7:52:2F:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/Ide4chBUge2CqeYiOyVAa7dSLyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ide4chBUge2CqeYiOyVAa7dSLyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/EA66A39C222A11EE9FF85B26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.156.0/22 Signature Algorithm: sha256WithRSAEncryption 29:ed:57:2e:c9:09:c6:1b:83:31:ee:f5:77:ab:ed:85:c6:20: 59:72:17:43:53:bd:45:e1:54:31:42:4e:3b:38:48:8b:ee:2f: cd:26:df:c0:45:6e:0e:86:b5:3e:e1:85:e5:3a:02:f6:ef:56: 91:68:df:ba:aa:69:4d:71:80:dc:34:a5:2a:48:a5:2f:1c:ba: df:aa:36:5a:6c:ce:aa:cd:34:e6:59:dd:24:7d:8e:fb:53:06: 37:dd:a6:00:de:a1:e5:85:77:17:d2:68:92:ef:20:f7:2e:70: a8:35:22:ba:e2:70:5e:43:77:9b:9a:6b:11:0a:23:c9:9d:51: 66:92:a7:de:1f:8b:d2:c3:e1:86:37:cf:0e:84:bc:fc:bf:5f: 86:6b:6a:67:b9:e7:4e:1d:3c:53:2e:17:f9:75:38:b9:29:f7: 52:a3:fd:83:08:3f:dd:2e:04:cb:be:84:95:18:86:3d:52:c0: 2d:de:5a:0e:8c:76:64:60:b1:67:ff:f6:99:a0:c9:f7:cd:af: db:a4:02:c0:0c:01:bd:29:fa:fd:e8:54:99:b4:5b:fa:42:18: 70:81:14:98:4d:0e:0d:43:07:47:0a:f3:f8:92:77:7e:c4:9d: a4:89:92:a7:2a:4b:14:a6:68:ca:7d:99:77:e5:d4:23:18:57: 6d:b7:5a:52 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUFCQzExMC8GA1UEBRMoMjFEN0I4NzIxMDU0ODFFRDgyQTlFNjIyM0IyNTQwNkJC NzUyMkYyMzAeFw0yMzA4MjMwNTI0NDRaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZTU5ODFjLTkyNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrEg4Q0vDYnJ4G8O5SJ8Hs2FT1j8lALIOt/Z9gKM/aQ2PPJnAgsngbmnNPvZF7 CpDiApVSblCvN2Y4OM7xmu4j/N/K8OdjKFaJxfZRQBwkvYPlTD2uP7jiLVMC+DKq 70RBLzxSI4Ry8BNVVolcKIuAZZe0JqEJOard5e99K5Se/3ErT11TDiCjUbjiurPP ioKIo2DPQ35z2NHNf/9/kIKOGdjlGRTTOIxSOe24pwvXq06SZD+dqXBl+DqFEorp Wxecjuz92Ups5sQEx1VchgtD7ouu9hyNYb2QjNkE4iAZC/1Kj4UJohxZYusRPAOy p+inUcZ83Qr1IOBtZiJNNjSBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUP272DMD0 c7xc44SAkU+VgyK7jQcwHwYDVR0jBBgwFoAUIde4chBUge2CqeYiOyVAa7dSLyMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExQUJDL0UzMEJGNURBMjIy OTExRUU4NDQ0QzYyMUM0RjlBRTAyL0lkZTRjaEJVZ2UyQ3FlWWlPeVZBYTdkU0x5 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSWRlNGNoQlVnZTJDcWVZaU95VkFhN2RTTHlNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUFCQy9FMzBCRjVEQTIyMjkxMUVFODQ0NEM2MjFDNEY5QUUwMi9FQTY2QTM5QzIy MkExMUVFOUZGODVCMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmdhnDANBgkqhkiG9w0BAQsFAAOCAQEAKe1XLskJxhuDMe71 d6vthcYgWXIXQ1O9ReFUMUJOOzhIi+4vzSbfwEVuDoa1PuGF5ToC9u9WkWjfuqpp TXGA3DSlKkilLxy636o2WmzOqs005lndJH2O+1MGN92mAN6h5YV3F9Joku8g9y5w qDUiuuJwXkN3m5prEQojyZ1RZpKn3h+L0sPhhjfPDoS8/L9fhmtqZ7nnTh08Uy4X +XU4uSn3UqP9gwg/3S4Ey76ElRiGPVLALd5aDox2ZGCxZ//2maDJ982v26QCwAwB vSn6/ehUmbRb+kIYcIEUmE0ODUMHRwrz+JJ3fsSdpImSpypLFKZoyn2Zd+XUIxhX bbdaUg== -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:00 2024 by rpki-client on console-ams.rpki-client.org