$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/3A489388B4F511EC83B0B46AC4F9AE02.roa File: 3A489388B4F511EC83B0B46AC4F9AE02.roa (raw, json) Hash identifier: al2H7gM6kzB0Vp27ySN3uB5I0VZVXTYDVXzKyxwkT9s= Subject key identifier: 14:16:7F:8D:B4:49:0E:62:9E:1D:0B:A5:C0:E1:14:ED:06:15:11:FE Certificate issuer: /CN=A91B5C70/serialNumber=B8E549698953F65E71FB84B6D338C08AC1781A5A Certificate serial: 0810 Authority key identifier: B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/3A489388B4F511EC83B0B46AC4F9AE02.roa Signing time: Sun 28 May 2023 22:33:53 +0000 ROA not before: Sun 28 May 2023 22:33:53 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 141723 IP address blocks: 103.151.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.crl rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2064 (0x810) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5C70/serialNumber=B8E549698953F65E71FB84B6D338C08AC1781A5A Validity Not Before: May 28 22:33:53 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6473d6d1-403c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a5:ac:40:9d:c9:50:3c:b1:2a:a9:5d:41:02: 6e:57:1b:95:c2:03:88:90:5a:94:6d:19:58:d4:5c: 6e:41:0e:ad:45:88:f4:9d:7d:e9:b1:5d:95:a1:32: e2:bc:3a:78:cf:67:ca:4f:d1:43:9a:b9:9c:46:60: 9b:4f:bf:c8:73:24:b6:e0:b9:52:15:e7:ca:91:28: 10:28:e0:b1:7a:db:bb:b0:63:42:b4:ed:be:e8:64: 83:46:51:c2:a4:a0:d1:92:e9:c5:5a:1d:08:a1:df: 54:e7:8c:0f:a2:43:b9:d0:9c:af:10:70:af:eb:af: 28:39:ef:8c:37:26:76:19:99:66:92:f1:d3:df:27: 1c:fc:24:fa:3c:5c:89:41:bf:7b:75:53:68:e9:c5: c0:8e:54:eb:60:ef:b3:01:29:e6:b6:09:c6:fa:da: 29:1a:87:0d:3b:fb:a6:64:d3:1d:76:4b:5c:db:0d: 47:66:e9:8a:02:c1:f5:c7:68:80:21:24:e3:ee:c7: df:6e:22:44:9f:48:39:7a:0a:70:ed:c8:fe:91:ef: eb:fa:99:b4:79:5e:03:b5:da:a3:69:52:f4:8f:07: db:55:93:2a:2a:e1:68:57:db:da:20:5f:1c:d7:a3: 2f:44:11:70:45:73:69:12:05:0c:d4:1e:de:a8:63: 61:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:16:7F:8D:B4:49:0E:62:9E:1D:0B:A5:C0:E1:14:ED:06:15:11:FE X509v3 Authority Key Identifier: keyid:B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/3A489388B4F511EC83B0B46AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.61.0/24 Signature Algorithm: sha256WithRSAEncryption bc:ee:72:85:d7:96:f8:88:86:8f:be:2b:4e:ea:a1:80:dc:6f: 53:6e:b2:ba:ed:a5:97:ab:52:29:6d:5d:04:51:8d:06:01:29: 3b:84:9d:1d:d6:ab:d5:f6:93:c6:24:58:b3:e1:8e:e8:e7:4e: 29:ad:d2:95:1a:d1:df:ca:44:88:a1:b5:eb:f5:7d:7e:bd:2b: fb:92:2c:a4:fb:6c:57:d9:c6:29:19:04:2c:f5:35:f6:86:93: 64:fd:b1:97:31:6e:27:68:4e:ae:be:b4:e1:a5:f3:6d:6b:d7: 1d:ad:4c:2c:3d:f4:bd:a1:ed:12:dd:5f:29:f8:01:45:41:6a: 57:57:e5:ac:9c:d5:41:ce:35:cf:51:84:af:06:f0:a7:12:f5: 8a:4a:4a:3c:9e:f3:40:5c:38:d7:73:b2:cc:75:d9:44:88:1e: 06:6f:4c:42:14:1c:52:b7:1a:16:8a:db:d4:61:a7:2b:7b:6b: 79:68:07:76:1d:10:4d:dd:07:9b:65:4e:b0:80:af:4c:4f:a9: 1d:43:cb:45:ed:83:38:e5:19:c9:c2:b7:39:00:fd:e9:6a:a3: af:71:e2:f2:22:97:bd:0d:ff:5d:bc:d6:63:1b:77:dc:c0:23: f0:39:0a:6d:32:10:9b:cb:35:8a:cd:4f:61:e7:e5:71:d6:dd: a3:c7:ca:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDNzAxMTAvBgNVBAUTKEI4RTU0OTY5ODk1M0Y2NUU3MUZCODRCNkQzMzhDMDhB QzE3ODFBNUEwHhcNMjMwNTI4MjIzMzUzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDczZDZkMS00MDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqWsQJ3JUDyxKqldQQJuVxuVwgOIkFqUbRlY1FxuQQ6tRYj0nX3psV2VoTLi vDp4z2fKT9FDmrmcRmCbT7/IcyS24LlSFefKkSgQKOCxetu7sGNCtO2+6GSDRlHC pKDRkunFWh0Iod9U54wPokO50JyvEHCv668oOe+MNyZ2GZlmkvHT3ycc/CT6PFyJ Qb97dVNo6cXAjlTrYO+zASnmtgnG+topGocNO/umZNMddktc2w1HZumKAsH1x2iA ISTj7sffbiJEn0g5egpw7cj+ke/r+pm0eV4DtdqjaVL0jwfbVZMqKuFoV9vaIF8c 16MvRBFwRXNpEgUM1B7eqGNh5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBQWf420 SQ5inh0LpcDhFO0GFRH+MB8GA1UdIwQYMBaAFLjlSWmJU/ZecfuEttM4wIrBeBpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUM3MC8yM0EwQUMwNjkx MDcxMUVBQTNFOTNBNUJDNEY5QUUwMi91T1ZKYVlsVDlsNXgtNFMyMHpqQWlzRjRH bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPVkphWWxUOWw1eC00UzIwempBaXNGNEdsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVDNzAvMjNBMEFDMDY5MTA3MTFFQUEzRTkzQTVCQzRGOUFFMDIvM0E0ODkzODhC NEY1MTFFQzgzQjBCNDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlz0wDQYJKoZIhvcNAQELBQADggEBALzucoXXlviIho++ K07qoYDcb1NusrrtpZerUiltXQRRjQYBKTuEnR3Wq9X2k8YkWLPhjujnTimt0pUa 0d/KRIihtev1fX69K/uSLKT7bFfZxikZBCz1NfaGk2T9sZcxbidoTq6+tOGl821r 1x2tTCw99L2h7RLdXyn4AUVBaldX5ayc1UHONc9RhK8G8KcS9YpKSjye80BcONdz ssx12USIHgZvTEIUHFK3GhaK29Rhpyt7a3loB3YdEE3dB5tlTrCAr0xPqR1Dy0Xt gzjlGcnCtzkA/elqo69x4vIil70N/1281mMbd9zAI/A5Cm0yEJvLNYrNT2Hn5XHW 3aPHytQ= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:26 2024 by rpki-client on console-ams.rpki-client.org