$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa File: DB63CF9A011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: h9Fh9EUvUC3oV/r/uGWrFesRwzibrMM5nGlTiBIllQc= Subject key identifier: C3:D8:7C:D2:41:06:ED:AB:A6:28:51:65:37:DF:49:3D:59:59:46:F0 Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0B00 Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa Signing time: Thu 08 Jun 2023 20:00:14 +0000 ROA not before: Thu 08 Jun 2023 20:00:14 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 10143 IP address blocks: 43.239.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 19:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2816 (0xb00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 8 20:00:14 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6482334e-abe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:35:83:1b:a9:fa:48:28:8a:a1:b0:ff:66:93: 7d:e8:18:f8:c0:61:0f:dd:4a:e9:fb:b5:bc:da:c9: 9d:b9:03:07:56:33:c3:44:48:01:f0:e0:54:2e:e2: d9:db:6c:86:8d:28:8f:a5:90:3a:3b:e7:4c:2a:3f: b5:23:4f:1a:7e:2d:c3:1a:fb:cb:e4:48:6e:d4:f4: 7f:33:96:af:f8:1c:5f:93:d3:c7:d2:35:df:e7:a5: f5:1a:01:fb:4a:48:f7:29:b9:6c:79:cc:51:dc:75: 54:29:89:e7:44:07:fa:13:f7:6e:a6:f4:c5:74:26: fa:64:5e:7c:cf:25:bf:9f:0c:63:29:d8:9f:1c:58: 38:7d:9a:62:92:da:0e:a9:6b:8e:32:09:4b:c3:0d: fb:47:9b:b5:b3:9e:54:03:06:0b:2f:62:5c:b3:59: 9a:a6:54:63:bc:95:57:28:7a:93:6e:15:ba:63:9f: f8:c5:2a:ab:4d:3d:ca:58:5c:e5:8a:c3:d5:26:b8: 76:29:21:f1:35:17:f6:bc:c5:91:30:49:5c:a3:b3: d5:8d:87:02:5f:8b:d3:b6:1a:ab:b1:33:58:b9:9a: a9:0f:ef:9c:14:e3:53:45:d7:a8:89:52:07:a3:46: b9:b9:56:4a:96:95:31:c6:e5:a6:cd:f3:c4:42:30: 91:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:D8:7C:D2:41:06:ED:AB:A6:28:51:65:37:DF:49:3D:59:59:46:F0 X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.102.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:e7:b4:6d:65:98:08:f2:14:f0:86:57:3c:a5:06:dd:89:93: d4:47:fe:7e:b6:4b:d3:e2:f0:3f:4f:1d:0a:c3:01:16:c3:51: dd:54:38:e0:b8:95:59:2b:f8:63:0b:d8:b4:ae:0c:9e:d7:af: 71:4f:95:c5:b4:01:f6:58:32:5a:a7:ed:e8:8c:e1:e4:11:89: d8:60:9e:c5:7f:10:49:8e:b8:db:82:75:f5:8d:76:9a:37:63: d2:bb:b5:5b:60:2b:34:99:a8:8a:11:b5:dd:61:65:e5:cd:d5: 66:41:58:f4:49:84:6a:7e:1f:e3:57:ea:cd:f1:64:e0:27:87: 0e:e9:b2:8a:d7:36:95:2c:f2:e5:d7:93:29:a1:c1:b0:87:7e: 1c:b2:e8:83:e9:f6:54:0b:06:10:43:68:0c:93:9b:0e:da:4d: af:ec:fa:42:47:03:2f:34:cc:cd:49:9c:bf:50:31:4f:de:7c: 3f:29:36:48:ff:e4:f3:98:05:ee:b0:fb:65:62:70:d6:e4:82: 4e:e3:6d:ef:8b:de:c5:09:47:94:8a:4f:58:2f:32:4d:65:e6: f0:3b:4a:9c:51:92:50:b4:71:3f:18:c7:97:94:6f:3d:0a:31: a6:bf:b4:5f:fa:ad:c8:37:96:ea:a7:7f:72:dd:a4:22:20:aa: 76:41:ef:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjMwNjA4MjAwMDE0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgyMzM0ZS1hYmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjWDG6n6SCiKobD/ZpN96Bj4wGEP3Urp+7W82smduQMHVjPDREgB8OBULuLZ 22yGjSiPpZA6O+dMKj+1I08afi3DGvvL5Ehu1PR/M5av+Bxfk9PH0jXf56X1GgH7 Skj3KblsecxR3HVUKYnnRAf6E/dupvTFdCb6ZF58zyW/nwxjKdifHFg4fZpiktoO qWuOMglLww37R5u1s55UAwYLL2Jcs1maplRjvJVXKHqTbhW6Y5/4xSqrTT3KWFzl isPVJrh2KSHxNRf2vMWRMElco7PVjYcCX4vTthqrsTNYuZqpD++cFONTRdeoiVIH o0a5uVZKlpUxxuWmzfPEQjCRnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMPYfNJB Bu2rpihRZTffST1ZWUbwMB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvREI2M0NGOUEw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr72YwDQYJKoZIhvcNAQELBQADggEBAI3ntG1lmAjyFPCG VzylBt2Jk9RH/n62S9Pi8D9PHQrDARbDUd1UOOC4lVkr+GML2LSuDJ7Xr3FPlcW0 AfZYMlqn7eiM4eQRidhgnsV/EEmOuNuCdfWNdpo3Y9K7tVtgKzSZqIoRtd1hZeXN 1WZBWPRJhGp+H+NX6s3xZOAnhw7psorXNpUs8uXXkymhwbCHfhyy6IPp9lQLBhBD aAyTmw7aTa/s+kJHAy80zM1JnL9QMU/efD8pNkj/5POYBe6w+2VicNbkgk7jbe+L 3sUJR5SKT1gvMk1l5vA7SpxRklC0cT8Yx5eUbz0KMaa/tF/6rcg3luqnf3LdpCIg qnZB7+M= -----END CERTIFICATE-----Generated at Tue May 28 22:51:35 2024 by rpki-client on console-ams.rpki-client.org