$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa File: 7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa (raw, json) Hash identifier: cHNaznrXTmiJqba+iHQeSWh9M4ibe/txr0GFchiLiag= Subject key identifier: 95:76:ED:9E:DD:48:A5:E4:F6:49:38:5A:AF:72:47:5E:64:BE:D3:9C Certificate issuer: /CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Certificate serial: 03A9 Authority key identifier: 93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa Signing time: Sat 15 Jul 2023 00:41:21 +0000 ROA not before: Sat 15 Jul 2023 00:41:21 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.138.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Validity Not Before: Jul 15 00:41:21 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b1eb31-3937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1d:6c:8e:65:f7:b7:1c:d1:0b:e8:37:e0:4c: bf:c8:71:70:cd:73:60:b2:82:fa:ec:ab:ce:6a:e1: a0:25:ae:36:be:2b:5c:d7:b3:6c:d3:16:98:e9:29: d6:12:a2:6d:26:ae:0e:18:3e:7d:b5:6e:4b:2a:cd: e7:c3:16:26:79:12:60:5d:0e:d8:31:25:f9:cc:81: 8a:3b:c3:b4:54:00:51:3d:b2:3e:95:89:28:aa:d5: c0:1b:e5:33:27:39:f9:e6:28:e3:68:aa:34:80:5a: 08:85:89:04:e8:99:ba:2c:fb:03:62:42:c5:72:fb: 79:8b:88:ed:8a:f4:f3:88:37:0c:00:9e:45:a9:e0: 2b:ec:9e:35:54:1f:93:88:a5:cf:0b:59:c0:aa:e7: f9:10:91:73:a3:30:7f:7e:56:ff:7d:18:0c:ae:f9: c2:c4:1b:ff:05:a3:a3:93:2e:2b:8e:12:6f:ce:a5: 5b:60:74:4b:ce:2b:f9:ac:58:9e:7d:c7:dc:f1:67: e9:5d:1b:94:f1:35:62:18:05:f3:01:4e:58:46:d7: 2f:84:be:b3:e5:2b:0d:c1:5b:54:12:e6:79:a9:e1: 44:20:07:f2:a8:df:94:0e:bf:13:e8:17:0b:e8:0d: c0:c4:25:fc:88:2f:9d:1e:43:4a:7a:91:80:6d:3a: db:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:76:ED:9E:DD:48:A5:E4:F6:49:38:5A:AF:72:47:5E:64:BE:D3:9C X509v3 Authority Key Identifier: keyid:93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.231.0/24 Signature Algorithm: sha256WithRSAEncryption 28:7f:57:54:4a:91:3e:d9:7e:37:3c:2b:b3:f6:38:fb:bb:f5: 07:ea:e8:2f:0c:1c:60:d6:20:b6:32:30:6b:c5:53:24:ff:c9: 4c:96:82:9a:23:87:9a:db:b6:34:28:24:4f:99:25:26:98:8a: 8a:13:a9:0f:cc:92:cb:b3:95:2e:e8:24:af:8d:31:bf:67:f7: e3:9f:9b:8c:aa:d8:d4:af:29:ad:de:b1:20:37:ca:45:e9:db: 06:d0:0e:41:83:11:7b:da:a2:38:a3:2c:f0:26:bb:da:e7:ff: 30:8e:8e:c8:24:6b:db:bd:0d:67:93:b3:77:a1:7e:43:0d:fc: e2:fe:fe:05:5f:18:e7:9d:4f:d3:ed:c3:11:b7:0f:4d:21:a5: b8:84:8d:3d:51:b2:56:8f:52:5d:da:25:b1:8a:48:07:70:46: 6b:a0:57:d5:df:71:bc:59:7b:00:bf:ea:aa:b3:5b:22:da:59: 1b:e4:67:29:14:68:c2:a0:da:c1:0c:e6:5d:15:f4:21:84:dc: 97:ef:d0:99:d5:0b:1c:9a:62:54:c1:76:59:21:f9:fe:86:24: 34:f6:d8:9a:3d:4e:c8:6c:a3:f0:06:18:55:cc:19:16:63:90: 0e:37:91:a7:d5:96:71:aa:ee:93:f4:95:42:60:7b:ef:ef:f4: 40:b8:bf:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVGMzMxMTAvBgNVBAUTKDkzMTdCQjE5RkY5MDdGNDcxODExRUI1NjEwMEFBMEJD OTJDRjE0OTcwHhcNMjMwNzE1MDA0MTIxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxZWIzMS0zOTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux1sjmX3txzRC+g34Ey/yHFwzXNgsoL67KvOauGgJa42vitc17Ns0xaY6SnW EqJtJq4OGD59tW5LKs3nwxYmeRJgXQ7YMSX5zIGKO8O0VABRPbI+lYkoqtXAG+Uz Jzn55ijjaKo0gFoIhYkE6Jm6LPsDYkLFcvt5i4jtivTziDcMAJ5FqeAr7J41VB+T iKXPC1nAquf5EJFzozB/flb/fRgMrvnCxBv/BaOjky4rjhJvzqVbYHRLziv5rFie fcfc8WfpXRuU8TViGAXzAU5YRtcvhL6z5SsNwVtUEuZ5qeFEIAfyqN+UDr8T6BcL 6A3AxCX8iC+dHkNKepGAbTrbQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJV27Z7d SKXk9kk4Wq9yR15kvtOcMB8GA1UdIwQYMBaAFJMXuxn/kH9HGBHrVhAKoLySzxSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUYzMy8yRjZBQzEzQzBC RUMxMUVDOTIxMzBENUFDNEY5QUUwMi9reGU3R2YtUWYwY1lFZXRXRUFxZ3ZKTFBG SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4ZTdHZi1RZjBjWUVldFdFQXFndkpMUEZKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVGMzMvMkY2QUMxM0MwQkVDMTFFQzkyMTMwRDVBQzRGOUFFMDIvNzE4N0NERTYw QkVGMTFFQ0FFRjNFQTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniucwDQYJKoZIhvcNAQELBQADggEBACh/V1RKkT7Zfjc8 K7P2OPu79Qfq6C8MHGDWILYyMGvFUyT/yUyWgpojh5rbtjQoJE+ZJSaYiooTqQ/M ksuzlS7oJK+NMb9n9+Ofm4yq2NSvKa3esSA3ykXp2wbQDkGDEXvaojijLPAmu9rn /zCOjsgka9u9DWeTs3ehfkMN/OL+/gVfGOedT9PtwxG3D00hpbiEjT1RslaPUl3a JbGKSAdwRmugV9XfcbxZewC/6qqzWyLaWRvkZykUaMKg2sEM5l0V9CGE3Jfv0JnV CxyaYlTBdlkh+f6GJDT22Jo9Tshso/AGGFXMGRZjkA43kafVlnGq7pP0lUJge+/v 9EC4v5g= -----END CERTIFICATE-----Generated at Tue Apr 23 18:44:25 2024 by rpki-client on console-ams.rpki-client.org