$ rpki-client -vvf rpki.apnic.net/member_repository/A91A423B/AF756B94079B11EBA4828031C4F9AE02/ABD5003E079C11EBA7C04832C4F9AE02.roa File: ABD5003E079C11EBA7C04832C4F9AE02.roa (raw, json) Hash identifier: +ifaTsLxKBTHmEnNluCvXUUzWdG6mQYjtDnx4Y/cKzs= Subject key identifier: E5:06:C2:8E:7F:86:09:CA:9E:6F:25:B0:8A:9B:D3:BF:62:0C:BA:76 Certificate issuer: /CN=A91A423B/serialNumber=BF1A1BC8C02C20362D0FD9F92BC006A2895E8C80 Certificate serial: 0668 Authority key identifier: BF:1A:1B:C8:C0:2C:20:36:2D:0F:D9:F9:2B:C0:06:A2:89:5E:8C:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vxobyMAsIDYtD9n5K8AGoolejIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A423B/AF756B94079B11EBA4828031C4F9AE02/ABD5003E079C11EBA7C04832C4F9AE02.roa Signing time: Fri 06 Oct 2023 22:19:47 +0000 ROA not before: Fri 06 Oct 2023 22:19:47 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 38880 IP address blocks: 103.195.207.0/24 maxlen: 24 2001:df6:2400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A423B/AF756B94079B11EBA4828031C4F9AE02/vxobyMAsIDYtD9n5K8AGoolejIA.crl rsync://rpki.apnic.net/member_repository/A91A423B/AF756B94079B11EBA4828031C4F9AE02/vxobyMAsIDYtD9n5K8AGoolejIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vxobyMAsIDYtD9n5K8AGoolejIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A423B/serialNumber=BF1A1BC8C02C20362D0FD9F92BC006A2895E8C80 Validity Not Before: Oct 6 22:19:47 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65208802-4188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:54:10:29:28:02:06:b8:be:2f:75:4a:1a:5f: 40:88:72:dd:a0:cc:5c:5d:62:dd:5d:f5:4f:5d:ee: f0:cf:76:57:2b:2a:5a:88:e5:28:70:9d:fa:a6:47: 5a:7c:a0:c6:ca:ce:28:ea:c9:2a:bf:81:d7:4f:5f: f6:97:1c:b4:57:55:e7:ea:90:6d:06:92:84:29:db: 2e:e4:7a:ce:5b:52:86:fc:a9:5d:86:58:2e:74:35: e2:2a:af:c1:1d:af:26:80:38:24:6e:35:83:bc:77: 5f:64:6b:57:96:0d:ab:b2:d3:e2:71:06:fc:74:28: 5b:7d:fe:da:fd:63:5b:ac:66:4d:04:17:d3:a6:71: c6:4d:1e:c8:ec:27:a0:cc:e9:20:a0:ad:3b:af:dd: 24:cc:9d:98:51:29:1d:cb:49:5e:18:6b:39:6a:d5: ee:9c:e0:b5:b2:06:c9:a5:b6:16:7e:45:d8:d0:d7: 1f:02:80:f1:49:52:db:38:1e:a9:32:4a:d6:cb:78: 3a:4c:88:cc:dc:dc:28:e8:ca:fa:78:e5:57:31:84: ed:1d:f4:37:0c:1f:88:24:8e:1a:19:21:1f:7a:75: 61:10:93:85:f1:4f:43:30:2d:4c:ca:31:ce:31:b2: bd:c2:08:cf:16:09:5b:30:14:5a:27:50:17:2e:28: e9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:06:C2:8E:7F:86:09:CA:9E:6F:25:B0:8A:9B:D3:BF:62:0C:BA:76 X509v3 Authority Key Identifier: keyid:BF:1A:1B:C8:C0:2C:20:36:2D:0F:D9:F9:2B:C0:06:A2:89:5E:8C:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A423B/AF756B94079B11EBA4828031C4F9AE02/vxobyMAsIDYtD9n5K8AGoolejIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vxobyMAsIDYtD9n5K8AGoolejIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A423B/AF756B94079B11EBA4828031C4F9AE02/ABD5003E079C11EBA7C04832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.207.0/24 IPv6: 2001:df6:2400::/48 Signature Algorithm: sha256WithRSAEncryption 86:cd:80:a0:0f:22:0c:25:86:bf:bc:25:b2:d0:83:3d:94:73: ac:c0:0a:2a:01:7e:9f:c1:39:be:44:30:04:04:3e:fb:7a:56: d2:25:70:bf:07:18:3f:05:2d:ae:61:74:98:ad:5f:21:f9:50: 34:66:54:c8:e3:d9:0e:aa:c0:67:30:17:20:ca:b0:8a:8e:82: 03:ec:21:8a:3c:ed:f2:ac:56:17:d5:45:41:c7:56:dc:29:16: fa:de:e1:7c:73:c1:4c:4e:0d:de:78:3d:44:cd:50:29:f7:8e: bd:9d:e8:c9:f1:b6:98:24:10:5f:cc:ce:97:90:c7:bc:b2:d0: a3:4a:c3:cd:37:a8:c6:91:f5:db:d4:90:bb:01:e7:1e:5a:50: 4c:2a:d2:cb:3b:da:ee:c9:c1:53:7f:88:c0:bc:55:a2:3b:db: ea:0c:73:cb:10:87:64:d9:e2:ea:18:ac:44:73:c9:bb:dc:94: bc:9c:d2:0e:ea:99:ec:3f:35:c0:52:97:e6:f1:1d:da:e1:b8: a6:4f:63:a7:a6:51:14:cc:46:eb:12:2b:7e:e9:c0:b9:72:92: 9d:f9:55:e5:b3:cb:1b:74:62:a9:8e:5c:89:8a:cf:ec:cb:55: 1d:c0:59:c6:06:c1:15:7e:aa:af:06:32:33:70:26:d9:64:f1: 11:8b:70:73 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyM0IxMTAvBgNVBAUTKEJGMUExQkM4QzAyQzIwMzYyRDBGRDlGOTJCQzAwNkEy ODk1RThDODAwHhcNMjMxMDA2MjIxOTQ3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwODgwMi00MTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFQQKSgCBri+L3VKGl9AiHLdoMxcXWLdXfVPXe7wz3ZXKypaiOUocJ36pkda fKDGys4o6skqv4HXT1/2lxy0V1Xn6pBtBpKEKdsu5HrOW1KG/KldhlgudDXiKq/B Ha8mgDgkbjWDvHdfZGtXlg2rstPicQb8dChbff7a/WNbrGZNBBfTpnHGTR7I7Ceg zOkgoK07r90kzJ2YUSkdy0leGGs5atXunOC1sgbJpbYWfkXY0NcfAoDxSVLbOB6p MkrWy3g6TIjM3Nwo6Mr6eOVXMYTtHfQ3DB+IJI4aGSEfenVhEJOF8U9DMC1MyjHO MbK9wgjPFglbMBRaJ1AXLijpXQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOUGwo5/ hgnKnm8lsIqb079iDLp2MB8GA1UdIwQYMBaAFL8aG8jALCA2LQ/Z+SvABqKJXoyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDIzQi9BRjc1NkI5NDA3 OUIxMUVCQTQ4MjgwMzFDNEY5QUUwMi92eG9ieU1Bc0lEWXREOW41SzhBR29vbGVq SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z4b2J5TUFzSURZdEQ5bjVLOEFHb29sZWpJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQyM0IvQUY3NTZCOTQwNzlCMTFFQkE0ODI4MDMxQzRGOUFFMDIvQUJENTAwM0Uw NzlDMTFFQkE3QzA0ODMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnw88wDwQCAAIwCQMHACABDfYkADANBgkqhkiG9w0BAQsF AAOCAQEAhs2AoA8iDCWGv7wlstCDPZRzrMAKKgF+n8E5vkQwBAQ++3pW0iVwvwcY PwUtrmF0mK1fIflQNGZUyOPZDqrAZzAXIMqwio6CA+whijzt8qxWF9VFQcdW3CkW +t7hfHPBTE4N3ng9RM1QKfeOvZ3oyfG2mCQQX8zOl5DHvLLQo0rDzTeoxpH129SQ uwHnHlpQTCrSyzva7snBU3+IwLxVojvb6gxzyxCHZNni6hisRHPJu9yUvJzSDuqZ 7D81wFKX5vEd2uG4pk9jp6ZRFMxG6xIrfunAuXKSnflV5bPLG3RiqY5ciYrP7MtV HcBZxgbBFX6qrwYyM3Am2WTxEYtwcw== -----END CERTIFICATE-----Generated at Sun May 19 00:30:20 2024 by rpki-client on console-ams.rpki-client.org