$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/164B8B986D8B11EEAE28C283C4F9AE02.roa File: 164B8B986D8B11EEAE28C283C4F9AE02.roa (raw, json) Hash identifier: eXTBE8BtvNJbRs+t5O94GI8MZuItYc/KZDVWqR74VHw= Subject key identifier: 7D:77:8F:83:AB:33:BB:96:AB:3D:66:33:A3:FD:F9:DA:C8:8C:6E:B0 Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 06 Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/164B8B986D8B11EEAE28C283C4F9AE02.roa Signing time: Wed 18 Oct 2023 07:52:49 +0000 ROA not before: Wed 18 Oct 2023 07:52:49 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.172.192.0/24 maxlen: 24 2001:df2:f8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 07:53:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Oct 18 07:52:49 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652f8ed1-065a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:21:62:fe:10:f5:1f:6b:bc:cc:3d:5b:11:aa: b1:4e:d4:76:dc:bf:a2:53:85:4d:9b:2c:dc:cd:21: 6a:10:37:6f:f9:38:c3:cc:12:4e:46:d9:55:4a:b4: 57:53:5b:5a:d2:f4:bb:33:3b:87:01:4c:57:dc:0f: d5:01:5d:a6:d4:11:82:4e:55:47:3a:f1:77:5e:09: 68:a5:b1:2d:e0:01:65:f1:ac:a5:59:f1:4c:ad:8f: eb:6e:61:bc:77:c2:77:ee:e1:8e:7d:b2:1e:81:40: f8:ad:62:ff:e8:a0:17:e4:0a:4b:17:98:5a:68:d5: 35:46:1a:c3:ea:bc:79:0a:1b:0a:0f:2d:bf:1a:5a: f2:d7:96:53:15:a4:2e:bd:de:4e:a4:65:e9:4d:f5: 3e:98:eb:fc:a5:eb:d6:cf:84:30:d4:49:cf:32:8a: 41:07:37:84:f3:72:a8:cf:3e:d6:24:88:40:e4:a9: 28:06:0e:1a:05:55:6c:9b:7c:e5:9b:0b:83:db:3a: a2:67:66:06:c4:11:64:8b:e2:fd:cb:e8:f4:e1:0a: 79:2d:f4:b2:ad:f2:04:25:0e:4d:8e:73:a0:fc:b6: e0:5d:36:1e:b2:d6:7c:3e:5d:18:d8:e0:4f:8e:2f: 0b:42:80:20:3e:c6:73:94:d9:76:4e:da:5f:e4:d3: 60:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:77:8F:83:AB:33:BB:96:AB:3D:66:33:A3:FD:F9:DA:C8:8C:6E:B0 X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/164B8B986D8B11EEAE28C283C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.192.0/24 IPv6: 2001:df2:f8c0::/48 Signature Algorithm: sha256WithRSAEncryption 08:e3:20:00:a2:33:14:42:2d:f6:46:bb:fa:1e:f8:29:94:27: d6:8f:f4:5c:9e:32:bf:78:47:e2:b6:45:7c:45:26:11:7a:3c: ef:8e:c0:a1:fc:22:12:67:16:44:1b:80:65:2e:bc:c7:a9:3a: 8e:65:e6:b6:8e:c9:f9:5a:89:37:3b:a2:0f:3e:a9:a7:44:31: 25:65:85:29:69:9c:46:df:ad:de:4e:5a:ab:7b:bc:92:49:43: f7:2f:a9:88:2b:4a:d7:9b:f0:83:38:ba:c2:ca:72:94:1c:f1: ea:ef:a0:a5:94:27:36:4f:ec:1d:80:29:90:7b:d0:cc:1a:a9: b2:7d:be:f5:55:b2:b6:bb:84:29:9f:29:f0:a1:0d:66:2a:22: e7:a6:13:6d:20:13:21:c4:3a:09:f1:e1:ab:98:02:92:5d:57: ff:e7:66:7e:e5:74:5e:53:4a:08:f7:5a:7c:15:8b:35:be:34: 22:eb:34:9f:7e:84:77:7a:f4:5e:c8:0e:03:b2:1d:93:11:4b: 42:fc:2c:ca:a1:3e:1f:2a:53:53:fa:cd:b8:89:6a:b3:c5:40: a6:f3:13:c5:aa:e5:4f:b5:92:e2:e9:e5:84:49:73:ab:c5:de: e7:45:94:aa:f5:92:41:0b:9a:02:13:67:34:96:e5:b1:24:e5: 0c:02:aa:98 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUJGRDExMC8GA1UEBRMoMjE3REEyOTA4Qzc1NDc1REJEQ0RBQTcwRTM2QjlCNDBE NDkxMkVERDAeFw0yMzEwMTgwNzUyNDlaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MmY4ZWQxLTA2NWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrIWL+EPUfa7zMPVsRqrFO1Hbcv6JThU2bLNzNIWoQN2/5OMPMEk5G2VVKtFdT W1rS9LszO4cBTFfcD9UBXabUEYJOVUc68XdeCWilsS3gAWXxrKVZ8Uytj+tuYbx3 wnfu4Y59sh6BQPitYv/ooBfkCksXmFpo1TVGGsPqvHkKGwoPLb8aWvLXllMVpC69 3k6kZelN9T6Y6/yl69bPhDDUSc8yikEHN4TzcqjPPtYkiEDkqSgGDhoFVWybfOWb C4PbOqJnZgbEEWSL4v3L6PThCnkt9LKt8gQlDk2Oc6D8tuBdNh6y1nw+XRjY4E+O LwtCgCA+xnOU2XZO2l/k02CbAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUfXePg6sz u5arPWYzo/352siMbrAwHwYDVR0jBBgwFoAUIX2ikIx1R129zapw42ubQNSRLt0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQkZELzg5NUE0OTUwNkQ4 OTExRUU4MkExRjY4MEM0RjlBRTAyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVgyaWtJeDFSMTI5emFwdzQydWJRTlNSTHQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUJGRC84OTVBNDk1MDZEODkxMUVFODJBMUY2ODBDNEY5QUUwMi8xNjRCOEI5ODZE OEIxMUVFQUUyOEMyODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeswDAPBAIAAjAJAwcAIAEN8vjAMA0GCSqGSIb3DQEBCwUA A4IBAQAI4yAAojMUQi32Rrv6HvgplCfWj/RcnjK/eEfitkV8RSYRejzvjsCh/CIS ZxZEG4BlLrzHqTqOZea2jsn5Wok3O6IPPqmnRDElZYUpaZxG363eTlqre7ySSUP3 L6mIK0rXm/CDOLrCynKUHPHq76CllCc2T+wdgCmQe9DMGqmyfb71VbK2u4Qpnynw oQ1mKiLnphNtIBMhxDoJ8eGrmAKSXVf/52Z+5XReU0oI91p8FYs1vjQi6zSffoR3 evReyA4Dsh2TEUtC/CzKoT4fKlNT+s24iWqzxUCm8xPFquVPtZLi6eWESXOrxd7n RZSq9ZJBC5oCE2c0luWxJOUMAqqY -----END CERTIFICATE-----Generated at Wed May 1 10:10:57 2024 by rpki-client on console-ams.rpki-client.org