$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/8F44F16A4BCC11EDA2E6375FC4F9AE02.roa File: 8F44F16A4BCC11EDA2E6375FC4F9AE02.roa (raw, json) Hash identifier: x231ib6LtQn2ZaTzj0rBtnLFFmdREFizySX9QKoBgMk= Subject key identifier: E1:9A:A1:E7:78:1C:8F:59:18:A2:22:E8:ED:91:68:9E:86:97:EE:9E Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 06CB Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/8F44F16A4BCC11EDA2E6375FC4F9AE02.roa Signing time: Mon 22 May 2023 23:45:48 +0000 ROA not before: Mon 22 May 2023 23:45:48 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 136014 IP address blocks: 103.138.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1739 (0x6cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 22 23:45:48 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646bfeac-4d91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a7:51:f7:83:62:a4:2c:7e:d9:a9:ed:ed:a3: 17:b1:0b:65:bf:e2:30:08:62:79:ec:a3:f4:47:4f: d1:8c:a3:35:79:49:cb:6d:d2:0e:0a:33:8b:51:95: 89:38:ed:a7:26:56:57:cd:4b:eb:3e:27:c1:5a:0f: 52:bd:53:22:fa:d1:78:7e:ad:0d:35:01:0e:35:c3: c2:dd:8b:c1:e0:d9:3f:74:15:09:1e:7f:fc:84:4d: 4b:5d:0f:38:a6:b9:b4:7e:2e:db:6f:01:5d:48:e7: d8:87:a0:c4:f1:da:e2:71:48:53:94:f5:15:e7:ca: 7b:d2:79:47:ee:e9:9b:d5:cb:82:c9:c9:44:d5:57: 79:e5:e6:44:e2:c4:35:2d:8d:8f:3a:37:24:bf:b6: ae:3a:d7:de:ad:16:4d:87:52:42:a7:e5:e3:c6:85: 20:a0:28:d5:19:28:f4:24:a5:5a:79:b8:e0:61:a3: 7e:22:14:c2:15:91:97:b4:14:a1:d1:58:0b:39:cc: 33:fa:16:eb:e3:b3:18:98:5e:71:c2:ec:95:72:d2: 54:05:90:46:85:0b:94:ea:8b:ca:36:20:39:d6:ca: 6b:e7:51:52:5b:48:2c:4c:01:a7:a2:76:cf:64:c8: a3:6d:da:72:68:bb:2b:d3:13:88:c2:fa:83:ec:21: 72:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:9A:A1:E7:78:1C:8F:59:18:A2:22:E8:ED:91:68:9E:86:97:EE:9E X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/8F44F16A4BCC11EDA2E6375FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.214.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:df:69:1d:5a:9a:65:19:4a:09:36:73:e9:7c:16:44:e8:8d: 57:ea:56:1c:96:42:12:b0:64:c2:1e:e5:36:d6:c7:99:d1:eb: 0a:32:9e:41:4e:d7:f0:e5:08:c3:65:d2:dc:c3:86:b5:85:63: ac:fa:ea:83:8e:c4:9c:46:24:a7:f4:2a:be:5e:84:2f:8f:7a: 86:28:b2:d2:c1:a7:a9:1d:41:52:1f:a2:e8:84:38:e1:81:57: ba:20:21:ab:ed:0f:06:98:ae:7a:77:48:a3:30:38:2f:c6:5f: 54:ff:f3:78:03:cf:21:22:e8:ce:c2:3c:33:76:d2:71:2d:c5: 33:8a:02:d2:e5:f7:59:e9:4f:25:52:42:28:3d:99:86:09:14: 0e:4a:11:fe:71:61:61:b6:ef:e8:5f:6e:7c:b5:3b:66:9f:69: e2:8b:84:72:8a:c5:ec:45:61:22:7f:64:8e:64:6a:dd:3b:2b: 81:90:31:24:0c:f0:7c:84:6c:f7:f7:a6:20:11:03:4d:21:d6: c0:71:31:98:a9:ab:4b:d8:a9:1a:6e:72:fe:e8:5e:86:e9:6a: 58:33:cd:5e:15:4f:9a:f2:66:b6:b5:fd:b8:3c:40:23:22:1b: 6d:2e:68:99:e0:7b:71:df:20:c8:13:74:4d:23:31:f6:56:2c: 59:da:b2:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjMwNTIyMjM0NTQ4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZiZmVhYy00ZDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxadR94NipCx+2ant7aMXsQtlv+IwCGJ57KP0R0/RjKM1eUnLbdIOCjOLUZWJ OO2nJlZXzUvrPifBWg9SvVMi+tF4fq0NNQEONcPC3YvB4Nk/dBUJHn/8hE1LXQ84 prm0fi7bbwFdSOfYh6DE8dricUhTlPUV58p70nlH7umb1cuCyclE1Vd55eZE4sQ1 LY2POjckv7auOtferRZNh1JCp+XjxoUgoCjVGSj0JKVaebjgYaN+IhTCFZGXtBSh 0VgLOcwz+hbr47MYmF5xwuyVctJUBZBGhQuU6ovKNiA51spr51FSW0gsTAGnonbP ZMijbdpyaLsr0xOIwvqD7CFylQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOGaoed4 HI9ZGKIi6O2RaJ6Gl+6eMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQTQvMTVGNjhCNUNDRjE5MTFFQUFFRjYwQjFFQzRGOUFFMDIvOEY0NEYxNkE0 QkNDMTFFREEyRTYzNzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitYwDQYJKoZIhvcNAQELBQADggEBAH7faR1ammUZSgk2 c+l8FkTojVfqVhyWQhKwZMIe5TbWx5nR6woynkFO1/DlCMNl0tzDhrWFY6z66oOO xJxGJKf0Kr5ehC+PeoYostLBp6kdQVIfouiEOOGBV7ogIavtDwaYrnp3SKMwOC/G X1T/83gDzyEi6M7CPDN20nEtxTOKAtLl91npTyVSQig9mYYJFA5KEf5xYWG27+hf bny1O2afaeKLhHKKxexFYSJ/ZI5kat07K4GQMSQM8HyEbPf3piARA00h1sBxMZip q0vYqRpucv7oXobpalgzzV4VT5ryZra1/bg8QCMiG20uaJnge3HfIMgTdE0jMfZW LFnaslg= -----END CERTIFICATE-----Generated at Sun May 19 00:30:20 2024 by rpki-client on console-ams.rpki-client.org