$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa File: FDC6A888AEB111EE9A78E132C4F9AE02.roa (raw, json) Hash identifier: aEcN2Cs7OgTpYZZvfACcGu7oN71BWJOcQaqEJASkqww= Subject key identifier: 6E:6D:87:BD:14:6B:1F:EA:93:C2:C6:77:1C:D0:F1:D0:67:BC:AB:37 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 015C Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa Signing time: Tue 09 Jan 2024 05:43:19 +0000 ROA not before: Tue 09 Jan 2024 05:43:19 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 146943 IP address blocks: 103.101.58.0/24 maxlen: 24 103.101.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Jan 9 05:43:19 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=659cdcf6-693d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:dd:b0:56:ff:1a:b2:a9:54:1a:4e:5a:83:2e: 97:9e:fa:a1:c8:38:d1:ee:a7:1a:6c:ff:cb:04:e7: c7:8c:4e:73:b9:9d:62:ec:b6:c8:40:f9:04:3d:be: df:6a:5d:1c:76:26:11:5c:9c:ca:b6:ed:00:c4:71: 43:f5:6c:c6:33:50:b9:e0:21:a3:14:05:40:6f:7c: 5b:3e:3d:cc:44:01:52:61:d9:bc:3b:3a:c1:75:0d: ce:36:ea:e2:bf:5e:0e:bd:40:d6:d5:92:02:cd:00: 53:bf:21:5e:06:78:42:64:19:10:b0:af:7d:60:57: 24:13:a4:5b:45:5a:79:83:89:2f:55:34:fa:db:e2: b5:b8:15:73:c7:1a:69:d5:fc:51:99:31:5d:2a:80: 3e:54:69:4b:19:f5:d6:ec:e7:40:07:82:1f:50:68: d5:e3:69:b0:3e:e5:88:72:0b:bb:df:fd:b0:7f:51: 2c:5b:a4:e5:74:13:7e:3b:c1:61:e7:24:c9:c2:68: b7:af:82:f0:2a:ca:d9:8b:5b:37:40:4b:4f:6a:69: d3:fb:60:ee:69:40:d4:c6:73:35:3c:2f:20:19:45: 23:b0:69:2f:69:20:6b:05:7e:02:7b:e2:ed:d9:d4: a2:44:93:63:9e:59:1e:e8:69:d9:4b:ba:ef:3f:99: 2e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6D:87:BD:14:6B:1F:EA:93:C2:C6:77:1C:D0:F1:D0:67:BC:AB:37 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.58.0/23 Signature Algorithm: sha256WithRSAEncryption 82:13:56:e5:27:45:03:24:2a:bf:04:58:9c:bd:78:2e:ea:37: b3:d5:85:87:4a:7d:4f:d3:95:8a:eb:b4:11:65:2a:2e:2c:49: c7:73:de:b4:af:5f:7d:66:79:07:28:d2:88:12:77:22:b1:b3: 14:f6:1b:a9:62:bb:e9:ee:67:a8:e3:87:20:8c:58:c3:54:55: 6b:76:d3:56:15:90:bc:4a:83:ff:5d:c9:5c:74:f7:fe:b0:14: a0:27:7b:a5:18:74:47:b1:63:e7:48:65:87:e2:8e:f0:21:71: 92:c8:33:5c:01:43:28:df:e6:22:1f:54:f7:91:14:5c:a0:d9: fb:e3:04:ba:f8:e2:ac:d0:56:a2:64:3e:89:a4:3d:64:c8:ae: 56:22:a3:8e:04:fe:71:8b:73:de:ff:ff:6a:ff:9b:16:21:32: ab:dd:ae:62:58:77:77:d9:24:fd:5a:43:82:d1:00:97:4a:bc: a9:8a:ef:e0:fb:10:1a:a3:a0:67:03:e7:ee:3f:cf:0d:3b:54: 3b:51:a9:37:c2:72:33:44:39:b0:45:ff:23:97:72:d0:c5:0a: ab:4c:64:d0:67:9f:5c:7f:69:cc:5d:89:77:27:4a:88:50:2f: fd:67:9b:3d:72:2b:05:87:4e:15:05:06:ca:df:c7:c0:19:2f: 93:ff:d5:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwMTA5MDU0MzE5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTljZGNmNi02OTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp92wVv8asqlUGk5agy6XnvqhyDjR7qcabP/LBOfHjE5zuZ1i7LbIQPkEPb7f al0cdiYRXJzKtu0AxHFD9WzGM1C54CGjFAVAb3xbPj3MRAFSYdm8OzrBdQ3ONuri v14OvUDW1ZICzQBTvyFeBnhCZBkQsK99YFckE6RbRVp5g4kvVTT62+K1uBVzxxpp 1fxRmTFdKoA+VGlLGfXW7OdAB4IfUGjV42mwPuWIcgu73/2wf1EsW6TldBN+O8Fh 5yTJwmi3r4LwKsrZi1s3QEtPamnT+2DuaUDUxnM1PC8gGUUjsGkvaSBrBX4Ce+Lt 2dSiRJNjnlke6GnZS7rvP5kuOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG5th70U ax/qk8LGdxzQ8dBnvKs3MB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRkRDNkE4ODhB RUIxMTFFRTlBNzhFMTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnZTowDQYJKoZIhvcNAQELBQADggEBAIITVuUnRQMkKr8E WJy9eC7qN7PVhYdKfU/TlYrrtBFlKi4sScdz3rSvX31meQco0ogSdyKxsxT2G6li u+nuZ6jjhyCMWMNUVWt201YVkLxKg/9dyVx09/6wFKAne6UYdEexY+dIZYfijvAh cZLIM1wBQyjf5iIfVPeRFFyg2fvjBLr44qzQVqJkPomkPWTIrlYio44E/nGLc97/ /2r/mxYhMqvdrmJYd3fZJP1aQ4LRAJdKvKmK7+D7EBqjoGcD5+4/zw07VDtRqTfC cjNEObBF/yOXctDFCqtMZNBnn1x/acxdiXcnSohQL/1nmz1yKwWHThUFBsrfx8AZ L5P/1dQ= -----END CERTIFICATE-----Generated at Wed May 15 06:54:31 2024 by rpki-client on console-ams.rpki-client.org