$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa File: B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa (raw, json) Hash identifier: ST0iPX17o3HzOd2lcPrqr273J5d+c3FlkTdXZ9EzJFU= Subject key identifier: FD:48:FC:3E:69:6B:82:35:1E:1B:B2:59:EF:BD:EE:83:11:5F:C1:54 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0D4A Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa Signing time: Wed 14 Feb 2024 03:39:53 +0000 ROA not before: Wed 14 Feb 2024 03:39:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 60024 IP address blocks: 103.142.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3402 (0xd4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Feb 14 03:39:53 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65cc3609-a2d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:31:bb:b1:d5:3e:5d:f4:72:f3:cb:5b:e6:ce: 43:38:00:50:1a:f6:f1:ab:e3:76:13:8d:a8:bf:d1: 71:2f:98:e7:4b:b6:68:86:5d:0a:d3:38:92:7a:89: aa:92:5b:08:1a:51:2e:af:69:df:a7:36:68:47:be: 7d:bd:a3:ed:51:a9:37:33:7a:35:89:cb:ab:7e:df: 7b:43:1d:0c:ca:1b:1b:f1:9a:01:04:22:1e:a3:4b: 2f:ad:3b:0b:55:26:7d:1c:8a:44:75:f0:d2:ca:db: 77:23:86:28:50:64:db:bc:e2:a9:ae:c0:9a:16:fa: 69:92:c5:ac:39:5e:d8:34:a1:ef:a1:c6:65:13:72: 24:42:15:d6:aa:d6:88:db:9b:99:53:a8:04:32:bb: e0:69:a1:87:05:c5:c2:ca:bd:05:e8:5b:0f:ed:1d: be:48:cd:8d:2a:83:51:8a:cf:6e:0b:b7:d9:2f:ab: 31:2e:65:ac:c1:fa:dd:b0:53:8d:e8:50:95:3d:da: 6b:bb:6f:4a:08:2f:ff:38:5e:b9:0a:35:01:a9:79: 23:23:5d:a8:51:3f:4a:c5:8c:37:1c:b8:4c:6e:ca: 80:18:f8:71:2c:59:9d:74:84:b8:d0:19:29:5f:ce: 87:5f:84:2c:c9:89:1e:f3:61:a1:bb:d2:ac:73:99: 69:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:48:FC:3E:69:6B:82:35:1E:1B:B2:59:EF:BD:EE:83:11:5F:C1:54 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B6A7D6FCCAEA11EE8E1B2D36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.140.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:41:eb:4b:2f:15:7b:00:de:da:b3:45:51:41:a7:68:2f:1c: 96:0a:9c:85:50:79:3b:62:c7:a0:92:0a:46:83:1f:81:62:3a: 91:b2:61:ee:2d:f5:73:02:22:a4:09:3e:c1:37:c1:c4:c9:5b: 38:f1:da:a1:0f:4a:75:b1:4d:44:fc:43:60:cc:e0:c5:1c:2a: 2d:e5:76:68:1f:e7:db:3b:ae:cf:83:02:62:47:dd:dd:12:f6: f0:bd:cc:41:bf:6c:f0:42:f2:48:47:97:aa:2f:84:67:e0:8a: 3e:51:90:0b:7a:fb:59:52:90:83:52:6e:60:05:79:0b:20:90: 29:cb:79:72:b2:18:cc:17:d0:4e:fe:ec:0e:b7:50:dd:67:0f: 78:41:9d:b3:94:34:78:3d:cf:bc:03:6d:bb:6d:43:87:fa:0a: 36:f3:eb:4d:37:c5:ef:22:40:d2:14:7f:90:ee:8e:9b:18:22: 0a:fb:85:ef:3d:4c:27:73:78:65:40:56:e4:c4:89:ce:79:39: 9f:c8:ef:d1:f8:5f:7b:3a:ab:d1:98:ca:a8:d3:e9:f9:02:8f: 5e:60:e3:7c:2b:d1:b3:91:36:ef:b4:04:ec:c8:a0:e0:0d:e3: 1a:47:2a:d0:60:00:2c:c2:03:2b:20:71:50:7e:bc:55:2c:cd: a3:4b:fb:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwMjE0MDMzOTUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNjMzYwOS1hMmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzG7sdU+XfRy88tb5s5DOABQGvbxq+N2E42ov9FxL5jnS7Zohl0K0ziSeomq klsIGlEur2nfpzZoR759vaPtUak3M3o1icurft97Qx0Myhsb8ZoBBCIeo0svrTsL VSZ9HIpEdfDSytt3I4YoUGTbvOKprsCaFvppksWsOV7YNKHvocZlE3IkQhXWqtaI 25uZU6gEMrvgaaGHBcXCyr0F6FsP7R2+SM2NKoNRis9uC7fZL6sxLmWswfrdsFON 6FCVPdpru29KCC//OF65CjUBqXkjI12oUT9KxYw3HLhMbsqAGPhxLFmddIS40Bkp X86HX4QsyYke82Ghu9Ksc5lpnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP1I/D5p a4I1HhuyWe+97oMRX8FUMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvQjZBN0Q2RkND QUVBMTFFRThFMUIyRDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjowwDQYJKoZIhvcNAQELBQADggEBAC1B60svFXsA3tqz RVFBp2gvHJYKnIVQeTtix6CSCkaDH4FiOpGyYe4t9XMCIqQJPsE3wcTJWzjx2qEP SnWxTUT8Q2DM4MUcKi3ldmgf59s7rs+DAmJH3d0S9vC9zEG/bPBC8khHl6ovhGfg ij5RkAt6+1lSkINSbmAFeQsgkCnLeXKyGMwX0E7+7A63UN1nD3hBnbOUNHg9z7wD bbttQ4f6Cjbz6003xe8iQNIUf5DujpsYIgr7he89TCdzeGVAVuTEic55OZ/I79H4 X3s6q9GYyqjT6fkCj15g43wr0bORNu+0BOzIoOAN4xpHKtBgACzCAysgcVB+vFUs zaNL+/E= -----END CERTIFICATE-----Generated at Thu May 16 20:25:49 2024 by rpki-client on console-ams.rpki-client.org