$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/89707206960D11ED942B5D62C4F9AE02.roa File: 89707206960D11ED942B5D62C4F9AE02.roa (raw, json) Hash identifier: DJMGS4AtkqxIjOOjN++owRLxGBjnQ2dIqmuDZtGgVYU= Subject key identifier: D5:E8:03:F5:28:7E:B0:B8:C5:C9:3A:E7:E2:00:D3:96:B0:F0:71:0E Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 3353 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/89707206960D11ED942B5D62C4F9AE02.roa Signing time: Mon 26 Jun 2023 15:10:54 +0000 ROA not before: Mon 26 Jun 2023 15:10:54 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 174 IP address blocks: 103.112.36.0/22 maxlen: 22 180.189.160.0/20 maxlen: 20 2405:1f00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 14:49:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13139 (0x3353) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Jun 26 15:10:54 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6499aa7e-b7ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:03:aa:81:71:23:d3:3d:d1:36:1a:35:1d:b2: d9:58:95:0c:bf:82:68:3b:c6:84:45:ee:ab:eb:c2: 6d:6c:8f:a5:e3:6b:a1:22:9d:36:4b:5c:d7:42:9e: 96:b5:97:51:63:d7:a7:20:46:3b:0c:b5:e3:44:56: 68:a3:34:a0:a0:75:c3:8a:4b:04:e9:54:64:81:2e: b4:15:5f:bd:d0:8a:71:2b:9d:76:6a:e6:ae:ad:89: 8d:af:da:35:a4:91:0e:00:65:43:70:ef:05:5d:c3: 19:22:64:45:45:8a:48:9b:44:3e:19:a3:aa:83:1a: e0:62:80:cb:b0:25:b4:82:a8:e2:07:53:4e:7b:cd: 8c:10:f3:8e:6b:dc:10:04:b8:35:12:7e:31:29:27: 42:f2:cb:4e:5a:13:1b:61:59:b6:98:dd:d6:5f:53: 4f:59:05:b2:be:d8:31:d4:60:ba:4c:9b:d6:b7:12: 63:3e:b8:06:89:c1:83:6b:df:5c:51:8d:22:c7:14: 53:6c:fe:cc:34:6a:5f:ad:1e:1e:08:47:6a:7b:77: 85:e0:38:23:51:61:d5:d0:9b:75:1c:ee:c1:e2:d4: fa:81:03:fe:a0:7f:2b:a6:01:11:7d:cb:03:38:a2: 8c:70:3a:56:08:b0:a9:cd:d6:d5:e7:4a:29:3e:8a: f2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E8:03:F5:28:7E:B0:B8:C5:C9:3A:E7:E2:00:D3:96:B0:F0:71:0E X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/89707206960D11ED942B5D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.36.0/22 180.189.160.0/20 IPv6: 2405:1f00::/32 Signature Algorithm: sha256WithRSAEncryption 9b:8b:b9:90:60:eb:b6:91:9e:6b:d4:24:f3:4d:74:65:09:62: 05:b8:58:1b:a4:19:17:84:6c:e5:84:a3:40:15:65:d8:0c:94: 07:df:f0:4a:19:bc:a2:c4:c3:64:e1:d6:d1:c5:c0:33:9e:a6: 82:0e:4e:15:46:ed:32:15:d4:07:6f:36:eb:a5:ee:17:0a:ae: ff:c5:ec:d3:ca:50:3e:76:24:b5:f7:11:d0:3f:3a:17:79:e7: 74:b0:33:59:23:70:15:77:a5:fe:59:0e:99:da:40:70:ff:64: 88:80:63:7f:79:eb:86:7f:7d:55:22:0f:2d:5c:21:66:90:c7: 85:7a:53:3a:4d:a3:ad:39:23:b4:42:c0:58:75:76:0b:15:a7: f6:20:3c:3a:c3:92:4e:13:1a:6f:9d:0a:69:83:26:1d:fd:21: c9:1d:53:a7:6c:a1:98:57:80:89:ad:02:11:10:6d:ec:13:be: 03:24:aa:68:3e:2f:55:a0:65:39:e3:30:d5:be:53:53:d8:c7: b8:64:e9:03:f8:ea:63:6f:6d:ee:d4:17:db:3f:ea:4e:16:30: c8:13:5a:a7:d9:d8:99:c7:6a:46:9e:71:0d:ce:99:10:1d:1b: e2:6a:a3:2f:10:c8:5d:04:18:82:05:a9:f9:42:8f:72:7c:1f: a6:5c:1c:9b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICM1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjMwNjI2MTUxMDU0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk5YWE3ZS1iN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgOqgXEj0z3RNho1HbLZWJUMv4JoO8aERe6r68JtbI+l42uhIp02S1zXQp6W tZdRY9enIEY7DLXjRFZoozSgoHXDiksE6VRkgS60FV+90IpxK512auaurYmNr9o1 pJEOAGVDcO8FXcMZImRFRYpIm0Q+GaOqgxrgYoDLsCW0gqjiB1NOe82MEPOOa9wQ BLg1En4xKSdC8stOWhMbYVm2mN3WX1NPWQWyvtgx1GC6TJvWtxJjPrgGicGDa99c UY0ixxRTbP7MNGpfrR4eCEdqe3eF4DgjUWHV0Jt1HO7B4tT6gQP+oH8rpgERfcsD OKKMcDpWCLCpzdbV50opPoryTQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNXoA/Uo frC4xck65+IA05aw8HEOMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThEMjIvMjUyNjk3OTgxRDkyMTFFMkI2MThDQUY0MDhCMDJDRDIvODk3MDcyMDY5 NjBEMTFFRDk0MkI1RDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJncCQDBAS0vaAwDQQCAAIwBwMFACQFHwAwDQYJKoZIhvcN AQELBQADggEBAJuLuZBg67aRnmvUJPNNdGUJYgW4WBukGReEbOWEo0AVZdgMlAff 8EoZvKLEw2Th1tHFwDOepoIOThVG7TIV1AdvNuul7hcKrv/F7NPKUD52JLX3EdA/ Ohd553SwM1kjcBV3pf5ZDpnaQHD/ZIiAY39564Z/fVUiDy1cIWaQx4V6UzpNo605 I7RCwFh1dgsVp/YgPDrDkk4TGm+dCmmDJh39IckdU6dsoZhXgImtAhEQbewTvgMk qmg+L1WgZTnjMNW+U1PYx7hk6QP46mNvbe7UF9s/6k4WMMgTWqfZ2JnHakaecQ3O mRAdG+Jqoy8QyF0EGIIFqflCj3J8H6ZcHJs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:08 2024 by rpki-client on console-ams.rpki-client.org