$ rpki-client -vvf rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/0F1061D0868911EDA888A96CC4F9AE02.roa File: 0F1061D0868911EDA888A96CC4F9AE02.roa (raw, json) Hash identifier: vSh++brKS8c8WUXJO+5rDkLX3DWqeoEWQdE4cGGx0Ic= Subject key identifier: F9:31:52:F1:1B:18:22:4D:E9:D7:05:6F:FB:64:F3:72:C7:1D:21:46 Certificate issuer: /CN=A91B30E5/serialNumber=4BADF423879F154DB9EAC88D160B4E116F66CDA9 Certificate serial: CC Authority key identifier: 4B:AD:F4:23:87:9F:15:4D:B9:EA:C8:8D:16:0B:4E:11:6F:66:CD:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S630I4efFU256siNFgtOEW9mzak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/0F1061D0868911EDA888A96CC4F9AE02.roa Signing time: Tue 23 Jan 2024 05:06:58 +0000 ROA not before: Tue 23 Jan 2024 05:06:58 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150699 IP address blocks: 103.60.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/S630I4efFU256siNFgtOEW9mzak.crl rsync://rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/S630I4efFU256siNFgtOEW9mzak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S630I4efFU256siNFgtOEW9mzak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 06:03:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B30E5/serialNumber=4BADF423879F154DB9EAC88D160B4E116F66CDA9 Validity Not Before: Jan 23 05:06:58 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65af4971-53a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d1:07:3c:9b:f8:b8:d5:a7:77:6d:34:40:da: e1:cf:43:99:7d:c5:cd:f3:9e:73:f7:18:9f:18:b3: cc:4d:ac:57:40:63:21:6e:26:c5:5f:9a:ea:94:60: 87:24:7c:f5:27:3c:ec:02:df:af:e9:87:1f:29:ee: 77:f6:dc:c6:99:31:2e:f8:87:d8:29:ea:a1:61:3b: eb:87:11:d3:66:11:f9:77:07:fd:67:2a:4d:40:78: 5a:6b:c1:00:3d:ee:2a:3d:79:ed:f2:19:c6:e8:cf: b8:6b:3e:5d:b6:35:e4:d3:11:45:5f:ea:34:04:20: 7e:c4:47:ae:40:6e:57:06:85:5b:13:8a:a4:f7:07: d0:cc:60:87:c1:b1:ba:98:b0:a8:bc:73:18:d5:aa: 02:dc:59:3c:16:9b:ba:dc:c9:00:64:01:9e:0b:be: a2:71:7d:89:10:21:9d:b1:a6:82:71:f1:30:f3:45: 8f:82:d1:4e:72:41:b9:d0:71:df:d1:8e:79:fe:90: 53:4e:39:16:1b:bd:cf:54:70:ef:4c:73:60:99:9f: 20:6d:b9:1e:d0:a2:83:83:6d:8e:9c:28:01:65:d7: 25:59:3a:ae:6f:fe:da:0f:17:dd:2f:4a:98:d0:8b: 05:ad:5c:5d:2e:7a:23:da:15:07:a0:95:fd:cd:c1: 19:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:31:52:F1:1B:18:22:4D:E9:D7:05:6F:FB:64:F3:72:C7:1D:21:46 X509v3 Authority Key Identifier: keyid:4B:AD:F4:23:87:9F:15:4D:B9:EA:C8:8D:16:0B:4E:11:6F:66:CD:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/S630I4efFU256siNFgtOEW9mzak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S630I4efFU256siNFgtOEW9mzak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B30E5/7293C116868411EDB7BFA171C4F9AE02/0F1061D0868911EDA888A96CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.188.0/23 Signature Algorithm: sha256WithRSAEncryption 82:d0:0f:7d:5c:65:27:91:70:2f:d9:fa:4c:68:f9:30:3d:1b: 86:13:8f:a0:1d:e8:21:05:33:46:a2:5a:95:22:6a:d5:5e:ff: 10:d5:d1:06:47:b1:b9:cd:a2:72:58:41:9b:13:0d:bf:a7:62: a8:05:1e:f3:fb:2c:92:cc:d5:d4:9a:fa:c7:98:ce:6d:58:5d: 46:fa:26:2a:79:f7:28:d1:d9:1a:e1:09:57:cd:7c:11:8b:3e: 09:b1:e1:76:d5:59:44:68:64:04:46:e6:0a:06:a7:08:ad:5f: 9b:54:14:51:51:76:fb:da:88:b1:28:97:de:a8:8b:79:53:6f: 16:83:69:c8:c2:09:ed:0d:2a:eb:2d:3f:27:c8:ec:3d:38:53: d5:41:f2:55:25:01:b5:ca:3d:d2:48:bf:63:5a:98:0c:12:31: cc:74:67:8d:70:2f:39:59:a7:53:4a:2b:38:ea:d0:79:91:f2: 6b:7f:72:c8:60:f4:16:cc:88:00:43:fb:ba:81:56:06:ac:c4: c2:dd:ce:31:92:81:82:28:1b:da:af:53:d6:67:67:5f:7d:2f: 1e:b3:36:3f:74:1f:c8:ca:84:9a:fe:07:3a:ad:8a:60:91:c5: 3a:09:99:a3:3e:14:cd:7c:20:e9:94:64:fd:e7:98:ce:82:41: 73:de:c7:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMwRTUxMTAvBgNVBAUTKDRCQURGNDIzODc5RjE1NERCOUVBQzg4RDE2MEI0RTEx NkY2NkNEQTkwHhcNMjQwMTIzMDUwNjU4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFmNDk3MS01M2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tEHPJv4uNWnd200QNrhz0OZfcXN855z9xifGLPMTaxXQGMhbibFX5rqlGCH JHz1JzzsAt+v6YcfKe539tzGmTEu+IfYKeqhYTvrhxHTZhH5dwf9ZypNQHhaa8EA Pe4qPXnt8hnG6M+4az5dtjXk0xFFX+o0BCB+xEeuQG5XBoVbE4qk9wfQzGCHwbG6 mLCovHMY1aoC3Fk8Fpu63MkAZAGeC76icX2JECGdsaaCcfEw80WPgtFOckG50HHf 0Y55/pBTTjkWG73PVHDvTHNgmZ8gbbke0KKDg22OnCgBZdclWTqub/7aDxfdL0qY 0IsFrVxdLnoj2hUHoJX9zcEZWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPkxUvEb GCJN6dcFb/tk83LHHSFGMB8GA1UdIwQYMBaAFEut9COHnxVNuerIjRYLThFvZs2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzBFNS83MjkzQzExNjg2 ODQxMUVEQjdCRkExNzFDNEY5QUUwMi9TNjMwSTRlZkZVMjU2c2lORmd0T0VXOW16 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M2MzBJNGVmRlUyNTZzaU5GZ3RPRVc5bXphay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjMwRTUvNzI5M0MxMTY4Njg0MTFFREI3QkZBMTcxQzRGOUFFMDIvMEYxMDYxRDA4 Njg5MTFFREE4ODhBOTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnPLwwDQYJKoZIhvcNAQELBQADggEBAILQD31cZSeRcC/Z +kxo+TA9G4YTj6Ad6CEFM0aiWpUiatVe/xDV0QZHsbnNonJYQZsTDb+nYqgFHvP7 LJLM1dSa+seYzm1YXUb6Jip59yjR2RrhCVfNfBGLPgmx4XbVWURoZARG5goGpwit X5tUFFFRdvvaiLEol96oi3lTbxaDacjCCe0NKustPyfI7D04U9VB8lUlAbXKPdJI v2NamAwSMcx0Z41wLzlZp1NKKzjq0HmR8mt/cshg9BbMiABD+7qBVgasxMLdzjGS gYIoG9qvU9ZnZ199Lx6zNj90H8jKhJr+BzqtimCRxToJmaM+FM18IOmUZP3nmM6C QXPex6M= -----END CERTIFICATE-----Generated at Wed May 29 07:27:37 2024 by rpki-client on console-ams.rpki-client.org