$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/9056CDF6A6D211EDA1D2862BC4F9AE02.roa File: 9056CDF6A6D211EDA1D2862BC4F9AE02.roa (raw, json) Hash identifier: uA9tlBnptzVVUG52OWmsPth+4LeAm/e2CWXfQnsdyqE= Subject key identifier: 1C:57:AC:E5:6B:49:AA:A6:0E:81:0D:C4:C8:CD:AA:3F:BC:8F:9F:92 Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Certificate serial: 052D Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/9056CDF6A6D211EDA1D2862BC4F9AE02.roa Signing time: Fri 22 Sep 2023 23:40:42 +0000 ROA not before: Fri 22 Sep 2023 23:40:42 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139471 IP address blocks: 103.99.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1325 (0x52d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Validity Not Before: Sep 22 23:40:42 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650e25fa-cb03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6a:40:ee:61:12:5c:c9:28:ae:19:71:64:84: 95:47:a3:8c:20:29:8b:1c:05:0f:1c:83:55:d4:74: 05:21:29:18:17:47:36:67:1c:61:e2:0f:9a:9f:5a: d5:73:76:fa:95:e1:74:3c:8b:54:7c:3a:db:8b:33: db:e6:fd:18:aa:04:74:c6:de:1a:47:dc:18:9b:94: c6:ca:2d:f4:31:3c:6c:a4:60:67:b7:fc:7b:fd:e4: 05:d1:9b:5b:16:9a:2f:4c:55:d5:2b:60:dc:a9:20: b5:2c:96:8a:b1:bb:59:46:9f:c1:8c:78:89:3f:0a: fe:6f:34:93:d2:62:75:1d:01:05:82:ba:6b:30:09: 03:f8:1a:20:e9:b5:24:6f:23:4f:89:42:7b:4d:4a: a7:7b:a8:1a:31:c5:0a:7d:e0:1e:75:ad:1c:06:c8: 9d:4b:c5:77:1d:54:81:6d:24:be:b6:ba:75:69:9e: 74:ef:4a:6e:c2:46:79:b7:70:0b:26:d7:ca:c9:75: 79:75:b2:13:2f:45:6c:67:06:26:8e:33:6a:f9:e7: 1e:a4:2d:2a:22:06:36:fc:ee:8d:3f:38:d9:9e:f1: d2:cf:5c:0f:bc:cf:cb:ea:2b:66:db:5b:70:6a:3f: fa:29:7b:35:21:64:63:ac:1c:96:87:c6:ec:e1:07: 39:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:57:AC:E5:6B:49:AA:A6:0E:81:0D:C4:C8:CD:AA:3F:BC:8F:9F:92 X509v3 Authority Key Identifier: keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/9056CDF6A6D211EDA1D2862BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.62.0/24 Signature Algorithm: sha256WithRSAEncryption b0:ff:e1:88:86:26:e6:23:a8:10:d6:54:19:40:11:94:49:f3: 8d:52:7e:a5:a4:2a:4e:05:e2:3a:24:6f:b7:77:b4:b6:ed:04: 9d:35:d9:2d:dd:5b:d5:f3:d2:a5:8a:82:af:be:71:29:99:67: 74:51:15:fc:70:1d:9d:66:b7:34:40:57:28:7a:5c:9a:f4:2b: d6:85:e3:bc:fa:0a:ee:02:5f:35:86:62:3d:b7:b2:f3:57:32: d6:5b:55:df:ff:c1:5c:64:70:9a:2d:1f:ed:4f:ce:4c:be:98: db:87:b6:47:2d:3f:fd:03:09:bd:b6:cd:23:47:e7:8c:65:16: 38:2d:5a:c2:54:7c:48:66:04:e2:7d:f1:57:7f:2d:f9:b0:e5: fd:6b:9a:27:0b:49:26:13:90:66:48:ee:73:88:c7:8a:18:01: 7f:15:ee:0b:7c:13:2a:9c:5b:d0:79:f8:60:44:1f:87:71:86: bf:c9:5c:c3:6c:34:af:7e:7b:54:fb:af:2a:95:b5:e9:81:14: 1c:ae:15:81:72:b6:f3:56:7c:30:49:c6:df:cc:14:a6:95:5a: ce:90:09:e0:35:55:c8:03:55:e8:d7:f5:a2:f3:ed:56:a3:d2: d9:cd:a9:2c:63:80:a7:ec:8f:d7:69:f2:1a:f0:03:16:50:20: df:34:40:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIzNkEyQTVBNTBB RjA5Rjg0MTEwHhcNMjMwOTIyMjM0MDQyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBlMjVmYS1jYjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmpA7mESXMkorhlxZISVR6OMICmLHAUPHINV1HQFISkYF0c2Zxxh4g+an1rV c3b6leF0PItUfDrbizPb5v0YqgR0xt4aR9wYm5TGyi30MTxspGBnt/x7/eQF0Ztb FpovTFXVK2DcqSC1LJaKsbtZRp/BjHiJPwr+bzST0mJ1HQEFgrprMAkD+Bog6bUk byNPiUJ7TUqne6gaMcUKfeAeda0cBsidS8V3HVSBbSS+trp1aZ5070puwkZ5t3AL JtfKyXV5dbITL0VsZwYmjjNq+ecepC0qIgY2/O6NPzjZnvHSz1wPvM/L6itm21tw aj/6KXs1IWRjrByWh8bs4Qc57QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBxXrOVr SaqmDoENxMjNqj+8j5+SMB8GA1UdIwQYMBaAFHbI4BFVSe2pLeIiNqKlpQrwn4QR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjlGOC85MkQwQkUwMjkw NjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZWSjdha3Q0aUkyb3FXbEN2Q2Zo QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzamdFVlZKN2FrdDRpSTJvcVdsQ3ZDZmhCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI5RjgvOTJEMEJFMDI5MDY4MTFFQjlFM0ZDNjZDQzRGOUFFMDIvOTA1NkNERjZB NkQyMTFFREExRDI4NjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYz4wDQYJKoZIhvcNAQELBQADggEBALD/4YiGJuYjqBDW VBlAEZRJ841SfqWkKk4F4jokb7d3tLbtBJ012S3dW9Xz0qWKgq++cSmZZ3RRFfxw HZ1mtzRAVyh6XJr0K9aF47z6Cu4CXzWGYj23svNXMtZbVd//wVxkcJotH+1Pzky+ mNuHtkctP/0DCb22zSNH54xlFjgtWsJUfEhmBOJ98Vd/Lfmw5f1rmicLSSYTkGZI 7nOIx4oYAX8V7gt8EyqcW9B5+GBEH4dxhr/JXMNsNK9+e1T7ryqVtemBFByuFYFy tvNWfDBJxt/MFKaVWs6QCeA1VcgDVejX9aLz7Vaj0tnNqSxjgKfsj9dp8hrwAxZQ IN80QK8= -----END CERTIFICATE-----Generated at Tue May 7 02:01:04 2024 by rpki-client on console-ams.rpki-client.org