$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/460AA4AE03CF11ECA480B07CC4F9AE02.roa File: 460AA4AE03CF11ECA480B07CC4F9AE02.roa (raw, json) Hash identifier: mklNmAZOw0jaBMPiEhT18LXhIbCQK9ShVit8BHBRwNM= Subject key identifier: 3C:E5:25:EE:27:1D:48:60:9C:C1:6A:35:6C:07:35:24:60:A8:75:32 Certificate issuer: /CN=A91AB85A/serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Certificate serial: 03D1 Authority key identifier: 9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/460AA4AE03CF11ECA480B07CC4F9AE02.roa Signing time: Fri 25 Aug 2023 01:02:06 +0000 ROA not before: Fri 25 Aug 2023 01:02:06 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137967 IP address blocks: 103.172.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 977 (0x3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB85A/serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Validity Not Before: Aug 25 01:02:06 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e7fd8e-dc11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:f4:66:ac:08:af:72:56:84:3e:11:a7:07:5c: 44:ad:03:a2:0b:ce:a4:6b:5e:8a:50:34:93:df:79: 51:22:c2:c8:28:d1:f2:12:c7:1a:39:18:c3:8b:54: fb:1e:61:3b:a9:8b:34:d7:8d:0d:d3:d0:72:bb:46: 76:f4:c9:90:54:58:d4:22:22:66:06:1b:3b:6c:1d: 9e:54:6d:8f:50:7c:b7:f5:86:98:df:c1:37:1a:ed: 5d:d4:f4:48:7d:eb:3e:49:93:46:89:65:d3:30:85: ff:17:af:08:ca:ea:35:64:1a:1c:38:1a:32:ba:d2: 8b:f8:f8:cf:5a:b5:85:91:d1:3f:87:ab:0a:07:0c: 4f:b1:2b:78:0f:2c:9b:97:ff:13:ca:7b:65:8f:90: 1c:92:54:73:1c:2b:18:ba:1f:19:3c:b6:dd:4c:fe: 67:7d:c1:67:34:0f:71:73:37:45:3c:a2:9d:5d:b7: a4:ec:14:bb:b6:e5:d5:47:2b:30:75:d4:5c:b2:60: 13:28:aa:e1:a0:78:1d:90:8c:92:57:23:99:a9:01: c5:2b:b0:74:89:21:4b:1c:ec:27:cd:53:d2:3e:cf: 8e:45:32:38:82:3b:0e:81:25:47:af:93:c1:f9:3e: 03:94:f9:44:3e:b8:ee:b9:47:da:0d:a4:5a:a6:b0: f1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E5:25:EE:27:1D:48:60:9C:C1:6A:35:6C:07:35:24:60:A8:75:32 X509v3 Authority Key Identifier: keyid:9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/460AA4AE03CF11ECA480B07CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.29.0/24 Signature Algorithm: sha256WithRSAEncryption 57:ad:89:7e:4d:21:c3:95:53:5d:aa:2d:b6:37:b4:cd:50:77: c8:ec:e8:2e:37:6b:6e:db:f7:08:23:91:64:86:f1:71:aa:4e: c8:e8:5b:96:48:53:a4:b5:94:4c:43:62:a7:99:f1:61:a7:60: 8e:f4:d3:96:d2:8d:82:ca:80:4d:30:86:29:c5:91:78:e2:c4: 92:ca:55:dc:f8:86:a5:1b:de:8b:3c:8a:fe:e5:83:ea:12:50: 64:ea:bf:87:52:11:cb:03:81:60:c8:86:c5:ce:82:5e:87:2f: 99:08:79:93:00:eb:62:e7:f4:c0:5c:14:c3:03:bd:8c:15:64: 81:df:ba:d1:2e:ce:b8:4e:0b:7e:4b:4d:ed:c0:9f:43:87:12: 6b:2b:29:ca:94:e8:2d:59:d8:a1:d3:4f:1f:b9:71:08:82:74: c9:8c:1e:dd:c0:ce:9e:a6:6c:07:2f:ef:2a:24:6e:cf:88:b2: 63:07:b1:32:56:b0:22:ad:ac:1e:59:7c:f2:5d:24:37:15:55: d4:2d:bb:f7:bb:56:74:d0:8b:77:68:91:9e:a2:a8:8d:10:9a: 2c:2f:1e:66:2e:71:01:9a:51:ed:19:bd:e5:26:2f:8e:80:3c: 86:9d:81:1d:21:c5:d7:b8:29:8b:c2:cc:2d:f1:1a:13:ce:ba: 01:63:65:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4NUExMTAvBgNVBAUTKDlEOUMwMDhBMTJBMkY3QTYwRkVGRjk2MjI2NkIwNTAy QTFDQTBCQTIwHhcNMjMwODI1MDEwMjA2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU3ZmQ4ZS1kYzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9fRmrAivclaEPhGnB1xErQOiC86ka16KUDST33lRIsLIKNHyEscaORjDi1T7 HmE7qYs0140N09Byu0Z29MmQVFjUIiJmBhs7bB2eVG2PUHy39YaY38E3Gu1d1PRI fes+SZNGiWXTMIX/F68Iyuo1ZBocOBoyutKL+PjPWrWFkdE/h6sKBwxPsSt4Dyyb l/8Tyntlj5AcklRzHCsYuh8ZPLbdTP5nfcFnNA9xczdFPKKdXbek7BS7tuXVRysw ddRcsmATKKrhoHgdkIySVyOZqQHFK7B0iSFLHOwnzVPSPs+ORTI4gjsOgSVHr5PB +T4DlPlEPrjuuUfaDaRaprDxGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDzlJe4n HUhgnMFqNWwHNSRgqHUyMB8GA1UdIwQYMBaAFJ2cAIoSovemD+/5YiZrBQKhygui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjg1QS8xODVDMzlCNjAz Q0QxMUVDQUJDRTY5N0JDNEY5QUUwMi9uWndBaWhLaTk2WVA3X2xpSm1zRkFxSEtD NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25ad0FpaEtpOTZZUDdfbGlKbXNGQXFIS0M2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI4NUEvMTg1QzM5QjYwM0NEMTFFQ0FCQ0U2OTdCQzRGOUFFMDIvNDYwQUE0QUUw M0NGMTFFQ0E0ODBCMDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrB0wDQYJKoZIhvcNAQELBQADggEBAFetiX5NIcOVU12q LbY3tM1Qd8js6C43a27b9wgjkWSG8XGqTsjoW5ZIU6S1lExDYqeZ8WGnYI7005bS jYLKgE0whinFkXjixJLKVdz4hqUb3os8iv7lg+oSUGTqv4dSEcsDgWDIhsXOgl6H L5kIeZMA62Ln9MBcFMMDvYwVZIHfutEuzrhOC35LTe3An0OHEmsrKcqU6C1Z2KHT Tx+5cQiCdMmMHt3Azp6mbAcv7yokbs+IsmMHsTJWsCKtrB5ZfPJdJDcVVdQtu/e7 VnTQi3dokZ6iqI0QmiwvHmYucQGaUe0ZveUmL46APIadgR0hxde4KYvCzC3xGhPO ugFjZTE= -----END CERTIFICATE-----Generated at Fri May 17 02:38:40 2024 by rpki-client on console-fra.rpki-client.org