$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/274B6ADCF15B11ED950C456FC4F9AE02.roa File: 274B6ADCF15B11ED950C456FC4F9AE02.roa (raw, json) Hash identifier: jJogCRMjISggxPfm+XCTKi+i+q2mP+yQj3hipVBkE+I= Subject key identifier: E0:46:90:07:E3:48:CD:FC:0E:7E:14:54:FF:86:B2:A1:FD:D2:62:D0 Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 0118 Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/274B6ADCF15B11ED950C456FC4F9AE02.roa Signing time: Wed 13 Sep 2023 03:44:47 +0000 ROA not before: Wed 13 Sep 2023 03:44:47 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 51847 IP address blocks: 103.20.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Sep 13 03:44:47 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6501302e-ed1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:48:d3:ba:48:65:cd:de:85:9b:c7:6a:e7:06: b4:53:26:d9:df:93:20:11:80:df:9c:dc:86:91:b1: 54:0c:58:08:e2:61:73:26:73:13:6a:e5:f0:7b:b2: f6:b6:7d:f4:39:06:13:92:4a:33:6b:ed:84:01:39: 31:66:cf:ab:be:7e:8c:98:73:d2:95:33:48:80:18: c9:e7:df:e8:05:04:82:39:e9:d1:ad:fa:73:d8:3d: c0:d7:53:83:9f:54:2c:0c:33:47:c5:84:fe:82:50: 32:e1:f6:0e:3a:6d:50:37:75:56:53:84:58:77:42: 99:cd:da:df:94:c5:3a:46:2c:58:53:b9:30:e7:ad: bf:a9:d5:2c:94:c4:88:38:82:0f:74:8a:1c:e1:b5: fd:ac:57:ad:da:87:f0:f6:fd:4e:06:b4:2b:7a:0b: 93:d2:6b:a7:7b:c4:91:a3:d0:0e:6e:d6:cf:bb:21: 7d:38:dd:d8:5a:64:8d:97:3a:0d:3b:e6:d2:92:a8: 8c:a3:24:ff:ad:4e:9c:b5:b5:94:f6:31:b0:62:70: ee:de:d9:da:0e:7f:ac:3f:5a:7f:84:a0:a8:90:fd: 69:1b:2e:49:3d:dc:f4:ab:b1:6e:05:b7:e5:ef:06: 35:ac:cf:ef:4b:52:94:40:93:bc:d1:c0:5c:6b:99: 51:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:46:90:07:E3:48:CD:FC:0E:7E:14:54:FF:86:B2:A1:FD:D2:62:D0 X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/274B6ADCF15B11ED950C456FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.198.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:8c:c5:03:2e:48:e2:35:a8:82:03:d0:85:67:6c:85:15:98: 9d:69:8c:52:60:fd:0c:71:81:b3:54:bd:a0:7e:e2:e8:24:27: 87:f7:84:30:01:25:77:ec:4d:13:cd:eb:a6:20:50:82:5b:4f: 04:a4:5d:76:a3:77:7f:ab:68:8f:58:d1:b2:0f:79:b8:84:22: b4:b3:ef:ae:ba:51:7c:4c:cd:c1:df:04:44:95:fa:ed:bf:e5: 08:eb:83:2d:d3:ae:fd:5a:d9:61:65:30:5f:1d:5f:da:54:67: 61:dc:35:73:06:af:ed:6b:95:57:93:32:8a:38:13:db:b3:0f: cd:e5:94:cf:ce:00:80:ab:0e:f7:81:7c:20:6a:a9:a2:bb:d6: 71:de:3f:7c:64:2a:3d:fc:7b:1a:c4:b1:4f:bc:db:53:dc:84: 40:e1:37:bb:24:58:41:53:c5:b0:1e:13:c6:d1:48:8c:28:3c: 0a:5c:fe:4d:6b:15:b5:42:68:02:29:9d:d7:cf:35:26:a5:09: b9:62:62:f7:c6:98:69:c0:15:ea:d5:4f:22:87:4d:f5:40:d8: 6e:2f:01:9b:a4:a9:86:4a:81:fc:ef:09:82:8e:7e:59:36:ec: e9:a7:58:1e:28:36:f0:f9:fb:24:22:53:e3:eb:7c:d5:d1:af: 6b:3b:16:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjMwOTEzMDM0NDQ3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAxMzAyZS1lZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4EjTukhlzd6Fm8dq5wa0UybZ35MgEYDfnNyGkbFUDFgI4mFzJnMTauXwe7L2 tn30OQYTkkoza+2EATkxZs+rvn6MmHPSlTNIgBjJ59/oBQSCOenRrfpz2D3A11OD n1QsDDNHxYT+glAy4fYOOm1QN3VWU4RYd0KZzdrflMU6RixYU7kw562/qdUslMSI OIIPdIoc4bX9rFet2ofw9v1OBrQreguT0mune8SRo9AObtbPuyF9ON3YWmSNlzoN O+bSkqiMoyT/rU6ctbWU9jGwYnDu3tnaDn+sP1p/hKCokP1pGy5JPdz0q7FuBbfl 7wY1rM/vS1KUQJO80cBca5lR4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOBGkAfj SM38Dn4UVP+GsqH90mLQMB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQzRUUvMDFFNEU2OTYyM0NCMTFFREE4RTM1ODNFQzRGOUFFMDIvMjc0QjZBRENG MTVCMTFFRDk1MEM0NTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnFMYwDQYJKoZIhvcNAQELBQADggEBAA+MxQMuSOI1qIID 0IVnbIUVmJ1pjFJg/QxxgbNUvaB+4ugkJ4f3hDABJXfsTRPN66YgUIJbTwSkXXaj d3+raI9Y0bIPebiEIrSz7666UXxMzcHfBESV+u2/5Qjrgy3Trv1a2WFlMF8dX9pU Z2HcNXMGr+1rlVeTMoo4E9uzD83llM/OAICrDveBfCBqqaK71nHeP3xkKj38exrE sU+821PchEDhN7skWEFTxbAeE8bRSIwoPApc/k1rFbVCaAIpndfPNSalCbliYvfG mGnAFerVTyKHTfVA2G4vAZukqYZKgfzvCYKOflk27OmnWB4oNvD5+yQiU+PrfNXR r2s7FoU= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:23 2024 by rpki-client on console-ams.rpki-client.org