$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/26C50D3EF15B11ED950C456FC4F9AE02.roa File: 26C50D3EF15B11ED950C456FC4F9AE02.roa (raw, json) Hash identifier: Tg78hSt1XDLdZyd+n99rvJZe/QpSGynsyS/f3xk7878= Subject key identifier: A9:38:C5:CE:FF:B2:40:1F:AC:8F:8C:F7:EF:76:AC:4E:1F:E0:7A:20 Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 0117 Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/26C50D3EF15B11ED950C456FC4F9AE02.roa Signing time: Wed 13 Sep 2023 03:44:46 +0000 ROA not before: Wed 13 Sep 2023 03:44:46 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 147293 IP address blocks: 103.20.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 04:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Sep 13 03:44:46 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6501302d-2533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b4:d8:1e:9d:6e:29:e0:fd:82:56:13:88:87: 44:76:8f:f0:ba:12:bf:5e:42:f1:4e:f0:9e:e0:dc: 1b:c0:cd:69:72:a5:50:bf:38:54:85:55:bc:6e:0e: aa:c5:d8:b6:be:87:75:96:93:1b:39:2c:92:58:d1: d0:3f:97:6f:be:aa:b9:36:41:f4:c8:ef:5a:a2:96: 5c:7b:e5:f3:21:2d:bf:b7:0b:f1:11:b9:90:28:25: 68:37:75:8c:e5:10:0c:78:b1:43:08:b9:72:04:97: af:c6:ec:15:e5:04:07:6f:e4:30:d1:28:2e:33:b3: 8b:bb:e3:d1:28:7b:37:6b:ea:ca:ee:41:55:bc:a1: 02:e1:ec:ce:a4:9b:0b:42:38:5a:7f:cd:a8:78:15: 42:8a:4a:c2:6d:64:66:01:5e:4f:fd:2a:86:79:bd: 67:81:3d:65:ed:25:f5:5d:31:df:ba:63:82:85:08: 1c:65:da:c9:cc:1e:a3:04:e0:7d:bd:08:27:88:69: 90:ed:45:08:50:ff:1f:75:d4:21:e5:cd:82:bd:37: 4d:40:0e:dd:28:c9:a5:85:57:d3:8b:35:82:02:63: ee:9c:fc:a1:c9:f4:32:a4:43:3d:04:c3:f7:9d:23: 07:d3:84:7a:0d:a2:2e:9b:a5:44:9d:25:6b:71:0f: 11:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:38:C5:CE:FF:B2:40:1F:AC:8F:8C:F7:EF:76:AC:4E:1F:E0:7A:20 X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/26C50D3EF15B11ED950C456FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.198.0/23 Signature Algorithm: sha256WithRSAEncryption 51:37:24:ca:83:d8:f5:0b:4f:20:6f:0a:08:e7:da:58:3d:92: 57:76:1d:5b:c7:b5:25:f5:08:c2:8f:b9:2e:b2:41:4d:d6:44: 23:be:0f:9b:bd:ef:c7:2f:5a:8d:1f:2e:c4:37:2e:7d:ff:6a: 14:3f:ab:41:d4:e2:72:14:ac:b5:a9:d0:b3:c2:70:b4:7a:d2: 46:44:6b:05:41:15:24:75:0c:c5:8c:9d:89:2c:57:e2:38:4d: e5:ed:e6:68:36:e1:ba:c5:23:5f:2b:8f:6e:7a:4f:36:80:7a: 29:3a:3a:a8:83:dc:63:67:c7:b5:5a:75:06:ce:4a:2e:af:c1: 84:1a:dc:7e:f7:9f:2f:f6:1d:fe:fe:a3:a0:ca:c3:8a:f3:75: 67:6f:17:ec:9a:bb:ac:10:ec:a7:de:90:0f:ba:2d:b1:5f:7d: f7:d1:39:05:71:ef:d4:85:15:b7:61:8f:4f:34:22:4b:53:74: 72:58:67:6f:d7:8e:31:87:1e:45:cd:00:2c:0d:61:02:02:fe: 9a:8d:1a:83:19:b9:5d:c9:56:d5:e2:4e:db:08:5c:32:d9:5c: c6:5b:4f:d8:31:47:38:c6:4e:85:7e:6d:22:59:3a:d0:98:e8: e2:ca:07:7a:fe:94:fc:f6:51:14:2b:d6:48:75:c7:62:2a:45: f5:6d:2a:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjMwOTEzMDM0NDQ2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAxMzAyZC0yNTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rTYHp1uKeD9glYTiIdEdo/wuhK/XkLxTvCe4NwbwM1pcqVQvzhUhVW8bg6q xdi2vod1lpMbOSySWNHQP5dvvqq5NkH0yO9aopZce+XzIS2/twvxEbmQKCVoN3WM 5RAMeLFDCLlyBJevxuwV5QQHb+Qw0SguM7OLu+PRKHs3a+rK7kFVvKEC4ezOpJsL Qjhaf82oeBVCikrCbWRmAV5P/SqGeb1ngT1l7SX1XTHfumOChQgcZdrJzB6jBOB9 vQgniGmQ7UUIUP8fddQh5c2CvTdNQA7dKMmlhVfTizWCAmPunPyhyfQypEM9BMP3 nSMH04R6DaIum6VEnSVrcQ8RFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKk4xc7/ skAfrI+M9+92rE4f4HogMB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQzRUUvMDFFNEU2OTYyM0NCMTFFREE4RTM1ODNFQzRGOUFFMDIvMjZDNTBEM0VG MTVCMTFFRDk1MEM0NTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnFMYwDQYJKoZIhvcNAQELBQADggEBAFE3JMqD2PULTyBv Cgjn2lg9kld2HVvHtSX1CMKPuS6yQU3WRCO+D5u978cvWo0fLsQ3Ln3/ahQ/q0HU 4nIUrLWp0LPCcLR60kZEawVBFSR1DMWMnYksV+I4TeXt5mg24brFI18rj256TzaA eik6OqiD3GNnx7VadQbOSi6vwYQa3H73ny/2Hf7+o6DKw4rzdWdvF+yau6wQ7Kfe kA+6LbFffffROQVx79SFFbdhj080IktTdHJYZ2/XjjGHHkXNACwNYQIC/pqNGoMZ uV3JVtXiTtsIXDLZXMZbT9gxRzjGToV+bSJZOtCY6OLKB3r+lPz2URQr1kh1x2Iq RfVtKmU= -----END CERTIFICATE-----Generated at Fri Jun 7 06:10:04 2024 by rpki-client on console-ams.rpki-client.org