$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/C443D86A55A311E7896BED09C4F9AE02.roa File: C443D86A55A311E7896BED09C4F9AE02.roa (raw, json) Hash identifier: xWo/rYKhoze+FnFL9rOKNoebOnGHzWWUZ7U3Tsf/zgs= Subject key identifier: D7:99:1F:82:71:9D:DC:BC:E4:48:FC:83:CF:31:D4:99:84:27:5C:1F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1946 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/C443D86A55A311E7896BED09C4F9AE02.roa Signing time: Wed 31 Jan 2024 06:41:44 +0000 ROA not before: Wed 31 Jan 2024 06:41:44 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 8360 IP address blocks: 103.119.72.0/23 maxlen: 23 103.233.172.0/23 maxlen: 24 103.233.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6470 (0x1946) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Jan 31 06:41:44 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65b9eba7-0955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:28:39:8a:25:b7:dc:e8:e9:e3:a2:3e:4b:8b: d8:37:c5:89:7a:5c:ef:99:92:61:5f:8f:21:91:aa: 30:27:11:dd:41:bc:a4:ea:6c:29:d3:00:a6:6b:b5: 24:ad:4a:99:9d:38:72:c5:2f:ca:99:0f:5b:a1:31: e2:6c:00:26:c2:36:08:e3:92:ee:45:bf:77:4d:cb: 4c:97:37:9e:ad:09:8e:97:8e:66:76:d2:b8:91:74: 35:26:c3:f3:ff:03:10:14:e6:5d:cf:7b:be:c7:ca: 58:2b:4b:ee:dc:5f:c3:a6:62:44:6e:c8:79:fc:70: 33:92:01:2b:e2:57:33:1f:f7:77:b0:8d:84:94:04: ee:f1:fd:51:03:d0:22:66:44:44:d2:a3:58:15:89: 0c:e3:bc:38:0f:b3:16:8b:bd:d8:51:7f:b0:cc:da: 40:5c:2e:1b:68:2d:28:7d:fd:dd:58:e8:2f:72:0f: fb:07:ee:7f:0f:bf:ff:14:4a:59:57:67:53:ab:cc: f5:ef:ac:8e:fc:70:5a:d9:b0:67:82:ac:80:c6:e3: 84:36:08:bb:78:4a:2e:62:5b:b7:36:48:ff:2e:41: 71:f2:9b:b3:ff:e5:06:d6:ee:de:17:07:43:e8:60: d5:26:05:42:be:f8:20:b0:10:6d:dd:b6:2a:57:de: b9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:99:1F:82:71:9D:DC:BC:E4:48:FC:83:CF:31:D4:99:84:27:5C:1F X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/C443D86A55A311E7896BED09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.72.0/23 103.233.172.0/22 Signature Algorithm: sha256WithRSAEncryption 09:56:3b:17:7c:f8:28:e4:73:ca:92:10:d7:9b:7b:7d:7b:35: d8:48:f8:14:04:61:3d:b0:8a:97:ae:1d:f8:ed:a5:b0:75:a6: 93:24:e5:c0:9d:ea:67:d5:5d:5f:93:b4:95:45:a8:26:14:8a: 31:90:43:78:21:e6:0b:a2:01:89:05:39:9a:6b:21:09:f8:e2: 7b:40:ea:d9:51:0f:e7:c4:79:dc:ae:47:af:97:63:07:05:75: 98:69:c4:c7:70:0b:24:1b:d4:e9:71:f9:03:61:47:dd:27:78: ad:b8:fb:c1:bc:2e:18:b2:fa:9b:b5:f9:93:9a:b8:f2:8b:bc: 05:d2:92:58:a8:f6:50:e4:98:c6:6c:0d:ca:b6:4f:ad:bb:76: c5:b1:62:48:88:3b:80:8e:33:60:9b:21:74:04:96:0e:71:2a: d8:eb:d9:c8:34:fa:4a:cc:b3:06:1f:89:73:52:d8:8d:dd:ab: 4b:52:ed:3f:a2:58:ab:32:2d:31:a8:4d:fc:fe:b6:2b:72:22: 78:eb:eb:60:10:1d:29:f7:53:df:cd:4e:e7:69:78:b1:e1:15: 3e:46:40:a1:52:99:e6:0a:21:f3:68:4d:f9:92:07:f0:f5:c5: fc:87:50:8f:e9:dc:99:21:63:26:76:d5:93:3d:54:dc:ce:7a: 8b:16:ee:32 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjQwMTMxMDY0MTQ0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5ZWJhNy0wOTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyg5iiW33Ojp46I+S4vYN8WJelzvmZJhX48hkaowJxHdQbyk6mwp0wCma7Uk rUqZnThyxS/KmQ9boTHibAAmwjYI45LuRb93TctMlzeerQmOl45mdtK4kXQ1JsPz /wMQFOZdz3u+x8pYK0vu3F/DpmJEbsh5/HAzkgEr4lczH/d3sI2ElATu8f1RA9Ai ZkRE0qNYFYkM47w4D7MWi73YUX+wzNpAXC4baC0off3dWOgvcg/7B+5/D7//FEpZ V2dTq8z176yO/HBa2bBngqyAxuOENgi7eEouYlu3Nkj/LkFx8puz/+UG1u7eFwdD 6GDVJgVCvvggsBBt3bYqV965jwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNeZH4Jx ndy85Ej8g88x1JmEJ1wfMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjUzQTUvMjU4MEE4RDY0QjY1MTFFN0I0NjlDMDdBQzRGOUFFMDIvQzQ0M0Q4NkE1 NUEzMTFFNzg5NkJFRDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnd0gDBAJn6awwDQYJKoZIhvcNAQELBQADggEBAAlWOxd8 +Cjkc8qSENebe317NdhI+BQEYT2wipeuHfjtpbB1ppMk5cCd6mfVXV+TtJVFqCYU ijGQQ3gh5guiAYkFOZprIQn44ntA6tlRD+fEedyuR6+XYwcFdZhpxMdwCyQb1Olx +QNhR90neK24+8G8Lhiy+pu1+ZOauPKLvAXSklio9lDkmMZsDcq2T627dsWxYkiI O4COM2CbIXQElg5xKtjr2cg0+krMswYfiXNS2I3dq0tS7T+iWKsyLTGoTfz+tity Injr62AQHSn3U9/NTudpeLHhFT5GQKFSmeYKIfNoTfmSB/D1xfyHUI/p3JkhYyZ2 1ZM9VNzOeosW7jI= -----END CERTIFICATE-----Generated at Fri May 10 19:18:44 2024 by rpki-client on console-ams.rpki-client.org