$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/5D98833C77EC11EEA06F373BC4F9AE02.roa File: 5D98833C77EC11EEA06F373BC4F9AE02.roa (raw, json) Hash identifier: mPmCunMSrXDdreriX544bpxYrAwb++Ejhwv2abmXk3A= Subject key identifier: 1B:6F:DF:C6:33:2A:B1:6E:38:76:31:88:3F:F0:A9:16:94:D8:E8:C0 Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 02 Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/5D98833C77EC11EEA06F373BC4F9AE02.roa Signing time: Tue 31 Oct 2023 12:52:36 +0000 ROA not before: Tue 31 Oct 2023 12:52:36 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 55720 IP address blocks: 103.190.124.0/24 maxlen: 24 103.190.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Oct 31 12:52:36 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6540f894-9aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:26:94:74:bf:76:40:49:1a:da:3e:e4:9b:88: 00:6b:a4:57:88:44:bf:0a:cb:7d:35:07:65:89:3e: 19:de:e5:4c:ad:79:62:41:28:73:35:13:26:bd:1b: 9e:76:7b:85:8c:f0:33:fc:8a:ac:29:68:7e:85:54: a6:a4:85:1d:fe:59:38:8b:46:dc:b4:72:93:d8:dd: 7e:df:b6:5c:5c:23:bb:d9:5b:3f:1f:d6:66:46:0b: 47:77:9f:33:4e:93:07:d0:69:06:a2:24:fd:a2:58: 4a:20:66:3a:ce:95:92:ce:3f:1c:84:32:8c:55:e0: a4:15:e3:b1:31:02:82:21:76:0b:70:ef:9b:9f:3e: d8:a5:96:de:06:0c:7b:e7:70:b9:88:38:e0:e6:ed: c7:06:b9:02:10:99:e1:9b:aa:e2:16:e5:60:55:bb: 15:8e:7d:05:de:9f:3a:9d:2f:8e:73:8a:f0:85:28: fa:e7:91:1f:8b:d2:fd:72:ad:3e:05:b8:0a:6e:12: 2e:f8:a4:7f:e5:5f:9b:a4:95:30:46:31:2a:4c:76: 40:23:72:cf:78:42:34:ab:98:23:7f:26:23:5e:e7: 5b:d4:e6:9b:33:41:ce:be:0c:a1:96:18:40:2c:20: 1c:01:83:d7:32:83:e6:99:d9:8d:31:95:2c:1f:63: 1e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6F:DF:C6:33:2A:B1:6E:38:76:31:88:3F:F0:A9:16:94:D8:E8:C0 X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/5D98833C77EC11EEA06F373BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.124.0/23 Signature Algorithm: sha256WithRSAEncryption 87:c7:41:00:8b:9f:a1:03:c1:36:8e:b0:fb:5e:0c:b6:49:a2: a6:45:51:2b:af:a6:75:6f:11:6f:f3:56:8b:26:10:b4:a2:fc: 0a:18:c2:f8:d8:8f:8b:ee:e1:82:cb:b9:0f:98:f3:76:6d:51: 0e:1b:03:72:b4:8e:38:2c:56:38:aa:e5:f2:b3:10:f1:c7:dc: 8c:b1:e7:da:69:cf:61:cb:49:6a:77:3a:1f:97:32:d2:77:16: 74:94:43:c8:31:9f:81:ce:a1:2a:fc:c5:90:d5:b3:ae:e8:93: c6:4f:ac:15:8f:19:2c:21:e1:3d:ba:e0:83:a2:6b:f0:20:48: 1f:6f:d6:aa:17:f1:6b:6d:32:37:41:d0:16:4e:6e:91:83:c8: 78:a2:0c:98:98:b1:7f:e2:42:c8:10:73:fd:ed:1b:0a:92:70: f8:a4:08:2e:81:e5:3b:dd:bf:48:03:d6:7b:ef:20:b0:a2:2f: 06:73:b1:2b:5e:f0:6f:70:0a:7a:c6:9b:c9:26:d1:9a:ed:30: 02:f9:c5:d2:44:35:77:da:10:fa:3a:a6:d0:e5:e9:c0:f1:53: 7d:aa:6f:7a:5b:f5:27:37:ed:84:dd:52:1b:dd:de:60:57:07: ce:bb:df:8f:f6:4b:44:77:cd:9a:72:35:00:94:75:1f:e9:3b: be:b8:e7:e4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MDJBMjExMC8GA1UEBRMoNkZDRDc4MTlBOEY5M0ZBRjQwRDBFMzg3RjIxQjQ2RTg0 REU5RDcwQjAeFw0yMzEwMzExMjUyMzZaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDBmODk0LTlhY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGJpR0v3ZASRraPuSbiABrpFeIRL8Ky301B2WJPhne5UyteWJBKHM1Eya9G552 e4WM8DP8iqwpaH6FVKakhR3+WTiLRty0cpPY3X7ftlxcI7vZWz8f1mZGC0d3nzNO kwfQaQaiJP2iWEogZjrOlZLOPxyEMoxV4KQV47ExAoIhdgtw75ufPtillt4GDHvn cLmIOODm7ccGuQIQmeGbquIW5WBVuxWOfQXenzqdL45zivCFKPrnkR+L0v1yrT4F uApuEi74pH/lX5uklTBGMSpMdkAjcs94QjSrmCN/JiNe51vU5pszQc6+DKGWGEAs IBwBg9cyg+aZ2Y0xlSwfYx4ZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUG2/fxjMq sW44djGIP/CpFpTY6MAwHwYDVR0jBBgwFoAUb814Gaj5P69A0OOH8htG6E3p1wsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwMkEyL0VGRDIxNTg0NzdF QjExRUU5M0I2OEIzQUM0RjlBRTAyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjgxNEdhajVQNjlBME9PSDhodEc2RTNwMXdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi81RDk4ODMzQzc3 RUMxMUVFQTA2RjM3M0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWe+fDANBgkqhkiG9w0BAQsFAAOCAQEAh8dBAIufoQPBNo6w +14MtkmipkVRK6+mdW8Rb/NWiyYQtKL8ChjC+NiPi+7hgsu5D5jzdm1RDhsDcrSO OCxWOKrl8rMQ8cfcjLHn2mnPYctJanc6H5cy0ncWdJRDyDGfgc6hKvzFkNWzruiT xk+sFY8ZLCHhPbrgg6Jr8CBIH2/Wqhfxa20yN0HQFk5ukYPIeKIMmJixf+JCyBBz /e0bCpJw+KQILoHlO92/SAPWe+8gsKIvBnOxK17wb3AKesabySbRmu0wAvnF0kQ1 d9oQ+jqm0OXpwPFTfapvelv1JzfthN1SG93eYFcHzrvfj/ZLRHfNmnI1AJR1H+k7 vrjn5A== -----END CERTIFICATE-----Generated at Wed May 15 09:04:44 2024 by rpki-client on console-ams.rpki-client.org