$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/CD9B103E08DD11ED830BEB5CC4F9AE02.roa File: CD9B103E08DD11ED830BEB5CC4F9AE02.roa (raw, json) Hash identifier: K6aCG080Auj5n1Lez4pjb5rS1LZn1x49HEYDtfCdMMk= Subject key identifier: 6E:0C:B9:C9:26:5C:43:E4:C4:39:6F:02:70:E5:C4:AA:62:5F:BC:41 Certificate issuer: /CN=A91B9A77/serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Certificate serial: 0120 Authority key identifier: 25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/CD9B103E08DD11ED830BEB5CC4F9AE02.roa Signing time: Fri 23 Jun 2023 05:02:31 +0000 ROA not before: Fri 23 Jun 2023 05:02:31 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149984 IP address blocks: 103.189.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77/serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Validity Not Before: Jun 23 05:02:31 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64952767-b8d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:78:8c:1a:d6:be:65:fa:41:6f:e5:e6:92:4f: 41:c2:9b:ee:17:6e:ea:c7:b2:b5:ba:a5:42:8f:72: 43:ce:ae:29:42:fd:b8:4b:9e:74:cc:c0:2c:de:ca: fa:58:b3:b9:16:f4:cd:c1:54:1a:23:79:62:69:af: c4:d8:f1:e4:9f:ad:ae:84:bd:dc:dd:b9:c1:b7:9e: 0d:9d:51:f0:f7:43:b4:45:cc:94:12:88:63:1c:47: 4c:b3:32:c0:e3:68:e1:7e:8d:6b:d5:19:4f:a9:b8: d5:a2:43:4d:7c:e7:d3:8d:d9:73:50:ea:3a:7f:98: 87:20:36:c1:4e:56:84:c7:41:ba:74:5b:42:f4:aa: 20:62:b6:98:aa:0c:c9:e3:a4:e1:fd:1a:5d:8b:10: 3c:b1:25:45:f1:ca:c6:40:69:85:a9:1c:21:30:33: 77:90:ae:8a:71:3f:af:96:8e:43:85:9d:ec:67:0f: 4c:08:e8:4f:77:df:bc:54:54:bf:b9:40:52:38:bb: 9a:4a:ca:fe:2f:6b:95:bd:dc:ea:1b:64:90:5c:9c: 72:98:fc:c8:b6:26:8a:f0:30:4f:e5:6e:d3:5d:b6: c1:dd:e3:54:c4:60:d3:2c:11:84:00:d1:87:87:2e: 09:1f:c3:32:ba:85:e9:56:44:07:c1:51:e6:16:dc: 6d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0C:B9:C9:26:5C:43:E4:C4:39:6F:02:70:E5:C4:AA:62:5F:BC:41 X509v3 Authority Key Identifier: keyid:25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/CD9B103E08DD11ED830BEB5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.2.0/24 Signature Algorithm: sha256WithRSAEncryption c0:11:2e:34:01:d5:89:fa:36:ca:90:3a:f2:38:76:6d:52:d4: 2a:9f:10:18:59:b4:e2:1e:27:d7:27:be:6b:fa:a9:e7:f5:ff: d6:7d:a8:49:9c:e6:56:f9:61:6e:66:57:14:5e:21:4d:40:3c: bf:65:70:50:36:ad:26:d9:3f:4e:47:63:b9:f3:9c:00:d2:fe: ad:32:68:79:7b:5d:66:7e:f9:f5:59:f3:2a:ea:03:10:f3:d7: 1b:10:82:8b:1e:de:4f:25:a0:b6:a5:ab:51:4f:94:d7:31:39: 90:59:55:ba:dd:b1:f0:63:3a:a9:67:0f:24:eb:9c:f7:c4:f3: 7a:4b:3c:20:38:59:b2:10:a9:75:00:79:cd:60:0e:1d:a5:fa: 8f:50:15:8d:05:4c:a4:11:75:ad:19:96:47:21:d1:b8:c4:9f: 29:77:c9:7a:e2:99:4b:71:b8:67:01:5f:fb:ca:56:89:72:ab: e7:d8:a3:ee:34:73:9d:2c:d9:1b:f7:89:c1:34:17:30:30:22: dd:f8:45:2d:6f:e7:e5:f2:f8:c2:17:3a:28:8e:48:a6:74:fa: 70:ff:e1:a0:0f:03:b8:ec:f2:57:32:6d:e2:13:b4:a8:2f:35: 48:b9:7e:59:7a:40:c2:31:80:1a:02:60:ae:71:f1:a1:fb:e4: ee:b4:28:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKDI1MjkzQjBBNzAzNkM4MTNBOUNEMDIwMDZERkMyOTBB QUYyNTMyNzQwHhcNMjMwNjIzMDUwMjMxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk1Mjc2Ny1iOGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvniMGta+ZfpBb+Xmkk9BwpvuF27qx7K1uqVCj3JDzq4pQv24S550zMAs3sr6 WLO5FvTNwVQaI3liaa/E2PHkn62uhL3c3bnBt54NnVHw90O0RcyUEohjHEdMszLA 42jhfo1r1RlPqbjVokNNfOfTjdlzUOo6f5iHIDbBTlaEx0G6dFtC9KogYraYqgzJ 46Th/RpdixA8sSVF8crGQGmFqRwhMDN3kK6KcT+vlo5DhZ3sZw9MCOhPd9+8VFS/ uUBSOLuaSsr+L2uVvdzqG2SQXJxymPzItiaK8DBP5W7TXbbB3eNUxGDTLBGEANGH hy4JH8MyuoXpVkQHwVHmFtxt3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFG4Muckm XEPkxDlvAnDlxKpiX7xBMB8GA1UdIwQYMBaAFCUpOwpwNsgTqc0CAG38KQqvJTJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9EM0FEMDdFMjA4 RDkxMUVEQkU5MkM5NTRDNEY5QUUwMi9KU2s3Q25BMnlCT3B6UUlBYmZ3cENxOGxN blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTazdDbkEyeUJPcHpRSUFiZndwQ3E4bE1uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlBNzcvRDNBRDA3RTIwOEQ5MTFFREJFOTJDOTU0QzRGOUFFMDIvQ0Q5QjEwM0Uw OEREMTFFRDgzMEJFQjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvQIwDQYJKoZIhvcNAQELBQADggEBAMARLjQB1Yn6NsqQ OvI4dm1S1CqfEBhZtOIeJ9cnvmv6qef1/9Z9qEmc5lb5YW5mVxReIU1APL9lcFA2 rSbZP05HY7nznADS/q0yaHl7XWZ++fVZ8yrqAxDz1xsQgose3k8loLalq1FPlNcx OZBZVbrdsfBjOqlnDyTrnPfE83pLPCA4WbIQqXUAec1gDh2l+o9QFY0FTKQRda0Z lkch0bjEnyl3yXrimUtxuGcBX/vKVolyq+fYo+40c50s2Rv3icE0FzAwIt34RS1v 5+Xy+MIXOiiOSKZ0+nD/4aAPA7js8lcybeITtKgvNUi5fll6QMIxgBoCYK5x8aH7 5O60KFI= -----END CERTIFICATE-----Generated at Sat May 25 06:05:14 2024 by rpki-client on console-ams.rpki-client.org