$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A8E54F625DB311EE862B5953C4F9AE02.roa File: A8E54F625DB311EE862B5953C4F9AE02.roa (raw, json) Hash identifier: 14N3sNaHruN85dpNbme1Ff85gGAhPpHDO+bxsIqTn2M= Subject key identifier: 6A:64:94:44:52:1D:AF:30:67:50:F5:31:21:5E:AF:59:CF:96:97:C1 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3F81 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A8E54F625DB311EE862B5953C4F9AE02.roa Signing time: Thu 28 Sep 2023 04:01:11 +0000 ROA not before: Thu 28 Sep 2023 04:01:11 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 150900 IP address blocks: 103.77.242.0/23 maxlen: 23 2401:36e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16257 (0x3f81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 28 04:01:11 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6514fa87-e247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b8:e5:b5:8e:a8:16:54:ca:d9:6e:1d:3d:61: 72:55:f2:09:d7:46:13:ad:62:25:1d:0e:1e:4f:dc: 27:b0:04:1e:a4:ac:1d:6f:cb:14:75:ef:fb:d7:ab: b6:a9:25:33:da:81:7d:57:f9:01:29:3f:01:1f:54: 07:db:59:a0:15:e6:b5:1b:71:0a:0a:90:42:e6:16: 57:60:0d:f0:05:25:c6:ac:ad:e5:d5:e0:e4:40:e6: 3d:83:f7:92:aa:d8:69:6a:12:37:a4:50:d5:4a:c4: 47:e8:6b:57:9a:a9:8e:92:04:95:82:16:c7:16:b0: 1c:f1:f0:52:a5:33:c2:ec:7a:6d:02:60:6a:fc:22: 78:fb:d9:85:e4:e9:dd:61:22:93:79:fa:4d:7a:e0: ea:eb:62:12:61:ec:e8:ed:9b:38:cc:12:97:ba:1f: 61:18:41:66:51:7d:6a:95:1b:b7:4c:d8:ab:7b:a5: a5:bc:e9:18:f9:15:db:51:77:29:24:90:5b:9c:c5: f6:92:4b:8a:51:a1:ac:4c:61:dd:66:05:ff:64:f3: aa:d8:cf:8b:f1:65:ce:52:3c:09:67:39:81:cb:61: 26:da:dd:b5:15:3b:20:27:00:61:02:40:50:8c:d1: d9:12:82:f0:f1:a6:07:61:46:f4:fc:c3:a8:29:d1: 2f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:64:94:44:52:1D:AF:30:67:50:F5:31:21:5E:AF:59:CF:96:97:C1 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A8E54F625DB311EE862B5953C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.242.0/23 IPv6: 2401:36e0::/48 Signature Algorithm: sha256WithRSAEncryption 9f:7e:da:06:76:c3:50:88:dc:02:ba:83:37:f1:dd:b7:3c:ee: b5:9a:3d:45:5b:99:cb:00:d7:02:90:41:29:4d:0e:26:1e:a0: 16:53:6b:e4:c8:92:bc:88:32:18:1d:7e:a8:e9:08:3d:6d:e5: 66:ec:63:29:e4:02:a8:bc:3b:41:95:d4:71:1e:c4:a0:0c:e9: 0d:25:d0:c5:27:20:ca:41:8f:c9:0e:12:a6:03:69:90:4c:70: 7b:04:33:3e:6b:14:df:ea:10:68:37:8f:53:5e:4d:5a:9c:cc: dc:30:97:4c:01:ee:cb:2d:dc:15:8f:d5:0f:cf:9e:e2:fe:de: a8:d1:50:da:c4:8c:e2:7d:dd:8b:15:c2:09:4a:fa:17:59:af: d4:c1:80:81:81:b9:40:94:ca:84:b5:43:c1:81:0e:55:c3:d9: 1b:f3:6c:0d:6b:36:1a:fb:ea:74:c2:1a:9f:fc:e2:6b:dc:9e: bc:07:e7:08:47:54:8d:b1:5b:c3:47:9d:77:2c:d0:7c:1a:b1: 8f:89:97:11:77:6b:4e:b7:1f:0a:28:fa:b3:82:c6:23:0f:bf: b6:18:0a:1a:ac:d9:cf:ac:62:08:90:8d:67:9b:ac:b2:ab:a5: 83:dd:43:5f:63:e1:49:7a:0b:e0:85:eb:9c:cc:08:67:72:4d: fb:5d:81:30 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICP4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTI4MDQwMTExWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE0ZmE4Ny1lMjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6bjltY6oFlTK2W4dPWFyVfIJ10YTrWIlHQ4eT9wnsAQepKwdb8sUde/716u2 qSUz2oF9V/kBKT8BH1QH21mgFea1G3EKCpBC5hZXYA3wBSXGrK3l1eDkQOY9g/eS qthpahI3pFDVSsRH6GtXmqmOkgSVghbHFrAc8fBSpTPC7HptAmBq/CJ4+9mF5Ond YSKTefpNeuDq62ISYezo7Zs4zBKXuh9hGEFmUX1qlRu3TNire6WlvOkY+RXbUXcp JJBbnMX2kkuKUaGsTGHdZgX/ZPOq2M+L8WXOUjwJZzmBy2Em2t21FTsgJwBhAkBQ jNHZEoLw8aYHYUb0/MOoKdEv6wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGpklERS Ha8wZ1D1MSFer1nPlpfBMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQThFNTRGNjI1 REIzMTFFRTg2MkI1OTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnTfIwDwQCAAIwCQMHACQBNuAAADANBgkqhkiG9w0BAQsF AAOCAQEAn37aBnbDUIjcArqDN/HdtzzutZo9RVuZywDXApBBKU0OJh6gFlNr5MiS vIgyGB1+qOkIPW3lZuxjKeQCqLw7QZXUcR7EoAzpDSXQxScgykGPyQ4SpgNpkExw ewQzPmsU3+oQaDePU15NWpzM3DCXTAHuyy3cFY/VD8+e4v7eqNFQ2sSM4n3dixXC CUr6F1mv1MGAgYG5QJTKhLVDwYEOVcPZG/NsDWs2GvvqdMIan/zia9yevAfnCEdU jbFbw0eddyzQfBqxj4mXEXdrTrcfCij6s4LGIw+/thgKGqzZz6xiCJCNZ5ussqul g91DX2PhSXoL4IXrnMwIZ3JN+12BMA== -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org