$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/D29109C4EC6E11EEAEF9610BC4F9AE02.roa File: D29109C4EC6E11EEAEF9610BC4F9AE02.roa (raw, json) Hash identifier: Oj41RURSpGJXQ5nqhJ8c+Iycw6Ovr5EgTSpyp5KCPE0= Subject key identifier: 45:4B:ED:82:50:C3:D7:8C:86:07:2D:66:B1:6A:E1:3F:35:30:A8:83 Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: 84 Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/D29109C4EC6E11EEAEF9610BC4F9AE02.roa Signing time: Wed 27 Mar 2024 19:18:42 +0000 ROA not before: Wed 27 Mar 2024 19:18:42 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140224 IP address blocks: 103.112.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 07:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: Mar 27 19:18:42 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=66047112-db51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:46:d1:69:e9:a0:20:b2:65:c6:17:04:16:36: 36:7f:ac:27:f6:16:b7:8c:ed:da:53:32:9c:4c:67: d6:0b:e8:d2:0b:e7:7a:0d:cd:2e:f6:0c:b6:ef:dc: 57:90:b8:a5:5d:3d:1f:e7:e7:fc:dd:02:cb:30:67: d8:e0:63:36:ea:ce:40:46:4a:8c:33:19:73:e5:e3: 17:34:fa:c7:57:bc:12:2d:5e:de:78:ff:60:b8:3c: 02:12:67:77:b0:cf:3d:3a:f1:61:40:a8:58:fe:e5: df:93:5e:26:73:4a:50:c1:d6:fb:8b:e9:e2:92:f6: 18:18:82:a2:6c:47:49:d5:4f:de:2b:e2:59:b5:c4: da:a9:ee:c1:1b:ea:8e:d6:24:19:76:58:fa:a1:79: 9a:9d:27:e0:c4:a6:9b:9c:9c:b5:20:32:b8:5f:f4: 9f:10:58:1a:51:a2:ab:22:6b:79:6d:3b:09:ad:b4: 01:db:52:8e:d9:05:f3:4b:cb:3f:bc:2e:89:80:23: cf:10:5b:44:a5:0e:56:e1:7c:04:fb:92:a4:0c:97: 02:69:cb:5c:fb:ea:ba:ff:c2:31:a4:e2:a1:25:5a: 6b:95:3c:7d:dc:69:5b:65:41:13:6d:05:00:ec:55: 63:bc:ab:eb:61:ad:12:fa:36:3f:f3:2a:10:f7:fb: f1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:4B:ED:82:50:C3:D7:8C:86:07:2D:66:B1:6A:E1:3F:35:30:A8:83 X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/D29109C4EC6E11EEAEF9610BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.96.0/22 Signature Algorithm: sha256WithRSAEncryption 68:54:3a:6e:cc:d8:d2:33:78:88:28:ea:c9:19:09:56:14:de: 86:19:c1:6d:2c:18:f7:41:e3:6e:e1:a1:d6:b5:8a:3d:f1:0e: 27:f2:96:ff:f6:df:b8:81:13:f6:bd:ea:94:f0:3f:50:1e:c3: d9:b6:82:b4:f9:09:92:ab:8c:ac:a6:40:6e:c2:5d:f9:b9:d6: 88:46:4a:04:74:d6:fb:b6:4b:7a:bd:7d:26:61:29:97:7f:a0: bb:7a:41:71:08:de:25:47:61:48:df:12:5c:a7:e8:b7:31:e4: 74:e5:1e:5a:6c:29:43:df:63:0b:92:d8:27:cb:b1:11:0c:d3: de:be:20:42:9e:3c:ff:53:d5:ca:d9:74:1c:28:b4:f3:48:b9: 20:c5:a8:4e:f2:f8:8b:af:a4:5c:b9:4e:c4:ea:03:41:5b:03: 1b:28:d2:0b:4d:b6:e6:5e:f0:c3:f5:99:ac:cd:98:4a:83:ca: 9f:28:f3:2e:c5:5a:6b:d4:8c:f1:7b:e5:f1:cb:6e:cc:42:4a: 5e:fb:54:e2:91:b8:46:26:a1:30:f0:74:35:d1:e4:04:f9:be: b2:31:8d:0e:95:4c:e7:01:28:e7:e1:7a:29:ae:74:4e:37:3a: 32:53:f3:47:be:63:ad:ee:2c:86:94:96:33:b7:2f:35:32:d7: 38:9a:7e:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjQwMzI3MTkxODQyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA0NzExMi1kYjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUbRaemgILJlxhcEFjY2f6wn9ha3jO3aUzKcTGfWC+jSC+d6Dc0u9gy279xX kLilXT0f5+f83QLLMGfY4GM26s5ARkqMMxlz5eMXNPrHV7wSLV7eeP9guDwCEmd3 sM89OvFhQKhY/uXfk14mc0pQwdb7i+nikvYYGIKibEdJ1U/eK+JZtcTaqe7BG+qO 1iQZdlj6oXmanSfgxKabnJy1IDK4X/SfEFgaUaKrImt5bTsJrbQB21KO2QXzS8s/ vC6JgCPPEFtEpQ5W4XwE+5KkDJcCactc++q6/8IxpOKhJVprlTx93GlbZUETbQUA 7FVjvKvrYa0S+jY/8yoQ9/vxvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEVL7YJQ w9eMhgctZrFq4T81MKiDMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdCOTQvQ0M3NDFCQjYzNzcwMTFFRThEQzhCQjM0QzRGOUFFMDIvRDI5MTA5QzRF QzZFMTFFRUFFRjk2MTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncGAwDQYJKoZIhvcNAQELBQADggEBAGhUOm7M2NIzeIgo 6skZCVYU3oYZwW0sGPdB427hoda1ij3xDifylv/237iBE/a96pTwP1Aew9m2grT5 CZKrjKymQG7CXfm51ohGSgR01vu2S3q9fSZhKZd/oLt6QXEI3iVHYUjfElyn6Lcx 5HTlHlpsKUPfYwuS2CfLsREM096+IEKePP9T1crZdBwotPNIuSDFqE7y+IuvpFy5 TsTqA0FbAxso0gtNtuZe8MP1mazNmEqDyp8o8y7FWmvUjPF75fHLbsxCSl77VOKR uEYmoTDwdDXR5AT5vrIxjQ6VTOcBKOfheimudE43OjJT80e+Y63uLIaUljO3LzUy 1ziafnk= -----END CERTIFICATE-----Generated at Fri May 3 08:21:38 2024 by rpki-client on console-ams.rpki-client.org