$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa File: 8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa (raw, json) Hash identifier: 5O8G6LYJ0rhT94mzd+lsnn2I9NpxEhVRUg7KIJfOtS8= Subject key identifier: 4E:2F:B3:26:E4:65:8C:5A:37:9F:37:B9:6C:6F:00:50:AC:23:DC:E9 Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0A88 Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa Signing time: Thu 31 Aug 2023 19:46:41 +0000 ROA not before: Thu 31 Aug 2023 19:46:41 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38835 IP address blocks: 45.123.104.0/22 maxlen: 24 103.63.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2696 (0xa88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: Aug 31 19:46:41 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0ee21-dbe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:83:3d:9b:a7:50:43:d4:2e:65:96:fe:e9:f3: f9:9f:89:91:29:0d:a6:0d:88:09:d8:fa:7e:f5:b1: 39:74:7b:de:06:48:56:3a:a3:82:1c:b1:89:a6:7a: 6d:d2:f8:87:21:39:57:e8:35:c2:6e:e8:38:ee:11: 57:64:e2:03:3f:7a:b8:4e:84:c4:55:1b:12:2b:7b: a2:21:8c:27:b4:9a:13:e3:f2:a0:48:6e:17:5e:06: 4f:0a:8d:4d:ec:c2:c7:d0:89:91:ad:37:ec:56:a2: b2:50:f8:e3:1c:42:b0:7e:52:54:87:44:e8:42:9f: 21:13:4d:9f:67:65:0c:4c:ab:6b:12:00:79:d0:c6: eb:a7:6e:98:28:c4:56:f7:53:11:2e:25:86:7c:72: 8c:08:1b:f3:a7:40:b7:ad:f9:3b:65:57:5f:f5:f5: d3:b6:d4:87:bf:d6:65:d3:b7:6d:ff:af:2d:54:74: ab:28:23:29:27:47:12:7b:a0:89:a0:5d:32:94:32: 8d:d3:8d:a4:a1:f8:ed:1d:9d:90:c4:07:30:be:47: 93:e6:d6:d3:dd:02:f7:52:b7:14:9b:b6:18:24:d9: ef:fd:0e:07:d2:f1:3c:91:32:e7:7f:ee:df:53:53: 50:f5:42:3e:0c:44:e6:48:d5:f6:ed:94:72:da:9b: da:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2F:B3:26:E4:65:8C:5A:37:9F:37:B9:6C:6F:00:50:AC:23:DC:E9 X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.123.104.0/22 103.63.228.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:9b:e1:b1:56:36:30:26:59:0a:60:aa:ce:0c:99:45:fe:f1: 30:48:81:29:67:48:c8:17:e4:9d:c9:09:50:94:11:2e:0b:62: 42:d3:75:fe:af:61:27:e2:ab:f1:ac:3d:a3:35:87:b4:9d:3b: 0c:c3:62:93:5d:d4:ff:98:aa:fd:96:f5:72:bb:8d:2e:9e:e8: a1:a3:42:61:c2:b2:27:b2:b9:67:d7:04:71:db:de:a1:57:ae: 31:14:21:10:e8:54:9b:c0:48:ed:ec:c2:c7:46:6b:68:73:14: 06:98:20:6f:77:77:9e:6a:f1:e9:36:a7:c6:6f:f8:8e:bf:ed: 5c:39:62:eb:1e:ef:01:bd:f6:b0:08:f2:69:48:07:78:45:9e: be:e0:65:30:bd:94:12:ea:96:0b:ca:53:79:86:79:67:7f:09: d5:36:8b:89:57:68:68:8d:60:d5:58:c1:5e:5a:d9:42:82:56: 70:f8:dd:ce:14:48:9f:31:29:44:a9:6d:a2:29:8b:dc:d2:fa: b8:19:07:e3:49:e7:fc:8d:4e:dd:45:fb:47:5d:8e:e4:63:20: 76:23:a0:99:af:35:ce:0f:4d:96:64:1c:2f:d4:c0:cd:f9:4d: 8a:7c:a9:ce:77:9e:f7:24:ad:cc:68:45:fd:fc:b1:07:6d:3e: e1:0b:49:81 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjMwODMxMTk0NjQxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwZWUyMS1kYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4M9m6dQQ9QuZZb+6fP5n4mRKQ2mDYgJ2Pp+9bE5dHveBkhWOqOCHLGJpnpt 0viHITlX6DXCbug47hFXZOIDP3q4ToTEVRsSK3uiIYwntJoT4/KgSG4XXgZPCo1N 7MLH0ImRrTfsVqKyUPjjHEKwflJUh0ToQp8hE02fZ2UMTKtrEgB50Mbrp26YKMRW 91MRLiWGfHKMCBvzp0C3rfk7ZVdf9fXTttSHv9Zl07dt/68tVHSrKCMpJ0cSe6CJ oF0ylDKN042kofjtHZ2QxAcwvkeT5tbT3QL3UrcUm7YYJNnv/Q4H0vE8kTLnf+7f U1NQ9UI+DETmSNX27ZRy2pvauwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFE4vsybk ZYxaN583uWxvAFCsI9zpMB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2NUYvQkY5NjZFNEExQzg5MTFFQUE5Qjk1NzYxQzRGOUFFMDIvOEJCMUVCOUUx QzhBMTFFQUJBQTczQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIte2gDBAJnP+QwDQYJKoZIhvcNAQELBQADggEBAI+b4bFW NjAmWQpgqs4MmUX+8TBIgSlnSMgX5J3JCVCUES4LYkLTdf6vYSfiq/GsPaM1h7Sd OwzDYpNd1P+Yqv2W9XK7jS6e6KGjQmHCsieyuWfXBHHb3qFXrjEUIRDoVJvASO3s wsdGa2hzFAaYIG93d55q8ek2p8Zv+I6/7Vw5Yuse7wG99rAI8mlIB3hFnr7gZTC9 lBLqlgvKU3mGeWd/CdU2i4lXaGiNYNVYwV5a2UKCVnD43c4USJ8xKUSpbaIpi9zS +rgZB+NJ5/yNTt1F+0ddjuRjIHYjoJmvNc4PTZZkHC/UwM35TYp8qc53nvckrcxo Rf38sQdtPuELSYE= -----END CERTIFICATE-----Generated at Fri May 10 23:04:10 2024 by rpki-client on console-ams.rpki-client.org