$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD9BD/27D3FCAA97CC11EDBDBA1212C4F9AE02/B9E2643697CE11EDB7D5B312C4F9AE02.roa File: B9E2643697CE11EDB7D5B312C4F9AE02.roa (raw, json) Hash identifier: 7UWfHlBuZH2ZC1u5Wy8vFthG0v1TkAWBI951bKF55mM= Subject key identifier: 67:C1:AA:2F:94:71:2D:8A:D3:0C:13:20:99:E3:7D:C2:73:E3:FB:CA Certificate issuer: /CN=A91AD9BD/serialNumber=56B76801D50A4E63C85E0645770654B7F936C994 Certificate serial: 77 Authority key identifier: 56:B7:68:01:D5:0A:4E:63:C8:5E:06:45:77:06:54:B7:F9:36:C9:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrdoAdUKTmPIXgZFdwZUt_k2yZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD9BD/27D3FCAA97CC11EDBDBA1212C4F9AE02/B9E2643697CE11EDB7D5B312C4F9AE02.roa Signing time: Fri 01 Sep 2023 04:20:44 +0000 ROA not before: Fri 01 Sep 2023 04:20:44 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137503 IP address blocks: 103.189.186.0/23 maxlen: 24 103.241.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD9BD/27D3FCAA97CC11EDBDBA1212C4F9AE02/VrdoAdUKTmPIXgZFdwZUt_k2yZQ.crl rsync://rpki.apnic.net/member_repository/A91AD9BD/27D3FCAA97CC11EDBDBA1212C4F9AE02/VrdoAdUKTmPIXgZFdwZUt_k2yZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrdoAdUKTmPIXgZFdwZUt_k2yZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD9BD/serialNumber=56B76801D50A4E63C85E0645770654B7F936C994 Validity Not Before: Sep 1 04:20:44 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64f1669c-6480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4a:cc:90:5b:f9:99:81:88:92:1c:8f:fa:dc: 37:ef:e5:6f:bd:d1:fc:1b:fc:1b:15:95:07:e6:21: bc:bd:57:9d:43:d6:1e:55:76:65:b0:59:22:51:64: 63:93:5a:79:7a:d4:ea:b8:54:6c:e8:ad:d2:97:ad: 6e:80:57:c7:9a:5b:29:84:db:92:b8:fd:7b:9e:1c: e4:57:85:d3:48:3d:ff:8e:3b:0b:0b:fe:8f:10:7b: a0:1e:7b:56:23:44:1b:33:bc:3f:cc:a9:92:1e:83: 04:59:cb:df:04:f4:20:44:a5:d7:44:aa:bb:ba:ae: 68:d3:3b:6f:9d:d6:82:a5:e2:b6:bc:24:51:9a:fb: 25:86:3d:30:67:1e:ff:e1:8a:d3:0f:f1:a6:f6:05: a9:21:e3:b2:b4:5f:1f:2b:3b:f1:e4:37:32:72:08: d8:5f:3d:21:c1:42:cf:ad:ea:ef:c5:68:f2:a8:7c: cb:29:07:a2:ed:11:7a:2e:c3:40:af:f9:d2:fa:46: 73:a1:e5:e6:1c:f0:76:a7:5c:12:68:17:dd:13:31: 7d:e7:48:a4:d2:07:cf:00:19:a7:c3:0d:31:5a:4e: dc:db:f8:4d:77:04:fb:5a:fd:66:5f:30:b8:4a:7e: 34:dc:6a:eb:00:58:25:40:49:81:95:a2:b4:d9:3b: e3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C1:AA:2F:94:71:2D:8A:D3:0C:13:20:99:E3:7D:C2:73:E3:FB:CA X509v3 Authority Key Identifier: keyid:56:B7:68:01:D5:0A:4E:63:C8:5E:06:45:77:06:54:B7:F9:36:C9:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD9BD/27D3FCAA97CC11EDBDBA1212C4F9AE02/VrdoAdUKTmPIXgZFdwZUt_k2yZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrdoAdUKTmPIXgZFdwZUt_k2yZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD9BD/27D3FCAA97CC11EDBDBA1212C4F9AE02/B9E2643697CE11EDB7D5B312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.186.0/23 103.241.100.0/22 Signature Algorithm: sha256WithRSAEncryption 90:10:de:11:2f:fe:8f:0d:f2:2b:b4:3d:3f:3d:05:b9:9d:d7: 62:6d:6d:7f:e5:ad:96:e3:2a:63:a3:6f:8b:8e:eb:78:34:37: 22:02:69:f6:41:88:86:11:0a:b8:7b:03:d6:11:d4:35:86:d6: b5:91:0a:51:61:93:e3:9f:c6:75:a5:87:0b:a1:d3:22:7f:6d: 66:57:ae:e3:8f:2c:87:16:1c:15:ba:4b:87:17:9f:a9:4e:7b: eb:bd:62:ed:6c:4a:bf:60:43:70:4d:a9:e6:33:c0:16:20:54: 49:3e:e6:b7:8c:6d:90:29:fc:32:3a:cc:40:a2:60:8f:c3:25: a5:73:cd:52:8a:18:fa:b9:c2:bb:83:a1:88:c9:49:1d:50:3a: 4a:da:18:80:c2:d1:47:c7:c5:1b:22:29:f6:1c:cf:96:6e:ba: 46:d4:d3:e0:ee:d1:14:f9:4d:f6:14:6c:6e:0b:76:17:2f:23: 2e:90:b7:34:ef:73:a4:fb:ef:c9:15:cd:3b:0e:01:d7:d8:91: 91:ca:3d:e4:ec:38:2f:ac:25:24:a2:54:60:ac:6f:e0:10:5d: a5:30:27:7c:f3:e3:ae:99:c3:18:ec:af:0a:8c:37:d1:ea:4e: 1e:a9:98:8d:82:9f:ee:18:1a:d4:c9:f4:2f:83:e4:ba:ce:74: ea:39:34:26 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RDlCRDExMC8GA1UEBRMoNTZCNzY4MDFENTBBNEU2M0M4NUUwNjQ1NzcwNjU0QjdG OTM2Qzk5NDAeFw0yMzA5MDEwNDIwNDRaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZjE2NjljLTY0ODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZSsyQW/mZgYiSHI/63Dfv5W+90fwb/BsVlQfmIby9V51D1h5VdmWwWSJRZGOT Wnl61Oq4VGzordKXrW6AV8eaWymE25K4/XueHORXhdNIPf+OOwsL/o8Qe6Aee1Yj RBszvD/MqZIegwRZy98E9CBEpddEqru6rmjTO2+d1oKl4ra8JFGa+yWGPTBnHv/h itMP8ab2Bakh47K0Xx8rO/HkNzJyCNhfPSHBQs+t6u/FaPKofMspB6LtEXouw0Cv +dL6RnOh5eYc8HanXBJoF90TMX3nSKTSB88AGafDDTFaTtzb+E13BPta/WZfMLhK fjTcausAWCVASYGVorTZO+OdAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUZ8GqL5Rx LYrTDBMgmeN9wnPj+8owHwYDVR0jBBgwFoAUVrdoAdUKTmPIXgZFdwZUt/k2yZQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFEOUJELzI3RDNGQ0FBOTdD QzExRURCREJBMTIxMkM0RjlBRTAyL1ZyZG9BZFVLVG1QSVhnWkZkd1pVdF9rMnla US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVnJkb0FkVUtUbVBJWGdaRmR3WlV0X2syeVpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RDlCRC8yN0QzRkNBQTk3Q0MxMUVEQkRCQTEyMTJDNEY5QUUwMi9COUUyNjQzNjk3 Q0UxMUVEQjdENUIzMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAWe9ugMEAmfxZDANBgkqhkiG9w0BAQsFAAOCAQEAkBDeES/+ jw3yK7Q9Pz0FuZ3XYm1tf+WtluMqY6Nvi47reDQ3IgJp9kGIhhEKuHsD1hHUNYbW tZEKUWGT45/GdaWHC6HTIn9tZleu448shxYcFbpLhxefqU57671i7WxKv2BDcE2p 5jPAFiBUST7mt4xtkCn8MjrMQKJgj8MlpXPNUooY+rnCu4OhiMlJHVA6StoYgMLR R8fFGyIp9hzPlm66RtTT4O7RFPlN9hRsbgt2Fy8jLpC3NO9zpPvvyRXNOw4B19iR kco95Ow4L6wlJKJUYKxv4BBdpTAnfPPjrpnDGOyvCow30epOHqmYjYKf7hga1Mn0 L4Pkus506jk0Jg== -----END CERTIFICATE-----Generated at Fri May 17 06:46:26 2024 by rpki-client on console-ams.rpki-client.org