$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/E0E9B1966D8A11EEB33A1E83C4F9AE02.roa File: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (raw, json) Hash identifier: WqChmFL0t+0fvgVc6SzyAMYVtnHR5DBUAjHd0DNHHE0= Subject key identifier: 4A:06:25:A4:18:1E:ED:68:7E:57:FC:76:EC:C5:D9:3B:FC:50:0C:86 Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 07 Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/E0E9B1966D8A11EEB33A1E83C4F9AE02.roa Signing time: Wed 18 Oct 2023 07:52:50 +0000 ROA not before: Wed 18 Oct 2023 07:52:50 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.172.192.0/24 maxlen: 24 2001:df2:f8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 07:53:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Oct 18 07:52:50 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652f8ed1-2f9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5b:68:16:0f:94:40:b7:e1:95:00:0b:46:62: b3:84:b3:ab:a4:98:c4:03:88:34:0a:91:79:52:2f: 79:cc:2a:47:80:18:7b:2a:eb:40:f8:11:a7:3a:e4: eb:aa:89:85:dc:76:74:74:6a:88:15:05:ad:ec:ad: cd:7a:7e:25:dd:8c:00:c4:61:a3:8b:0d:fa:a9:6d: c2:ec:27:9f:6e:81:d3:f3:a2:e8:67:37:c6:5e:34: c5:6d:d3:6d:f3:ba:4a:66:8b:a9:0a:aa:68:99:4d: eb:32:a2:27:a0:7a:b1:5a:df:2b:26:f5:6e:85:e4: 11:9c:0e:62:67:73:6f:bc:d5:f9:d5:7e:ad:e5:e1: 15:14:8c:a3:21:d6:0f:5e:02:51:37:c2:45:f1:c8: e8:f7:49:df:bc:ec:68:9f:e0:88:b4:f3:04:d8:80: 22:19:14:15:f7:09:cf:05:5c:2d:0e:82:b7:b9:7a: 29:b8:b8:64:3d:f1:af:3e:3f:87:4f:a3:fc:cf:78: ac:ed:f8:dd:b9:6d:c0:d0:73:bf:e2:4b:2d:f4:10: 46:30:b3:94:15:ff:95:70:b3:57:8d:da:18:7b:f9: 05:c6:35:fc:26:6d:88:2a:75:c4:84:81:0e:3e:92: 49:b2:22:cb:6e:a1:09:95:eb:4a:a2:1f:fc:a2:a6: 4e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:06:25:A4:18:1E:ED:68:7E:57:FC:76:EC:C5:D9:3B:FC:50:0C:86 X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/E0E9B1966D8A11EEB33A1E83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.192.0/24 IPv6: 2001:df2:f8c0::/48 Signature Algorithm: sha256WithRSAEncryption 73:47:8b:c7:00:34:e8:e3:cb:1b:4c:1b:41:d2:14:a1:b3:dd: b5:da:82:2f:9a:50:3c:10:80:bf:f5:74:db:bf:f9:10:92:45: d8:49:20:11:21:e1:ee:b1:c2:9b:02:00:d2:9a:46:9f:93:94: 5c:23:55:bb:16:18:e4:03:16:9a:e3:5d:e4:68:16:d9:bc:ca: d9:76:b5:38:00:2d:bd:0a:63:8c:06:3f:6a:67:26:55:23:45: 26:b7:5b:a9:9d:b8:72:5e:3d:c8:75:86:9f:d4:4c:2a:08:7e: 22:cc:d5:56:e5:bc:c0:52:09:b7:93:d6:f3:86:f0:d7:77:92: c5:b1:99:bf:2a:f8:27:29:ee:2f:77:50:f1:1c:a9:f7:97:00: 95:0e:59:fe:89:40:d9:08:ba:93:b5:bc:0b:fe:51:6c:b2:2b: 02:83:19:c5:22:20:cb:bb:bb:bd:4e:9f:e0:f4:1c:b7:c5:49: b0:60:d6:1b:03:e0:00:1a:47:63:78:75:a3:2f:0c:96:2c:61: 6b:9b:08:8a:c0:2c:1e:5c:80:9d:03:d3:24:67:d6:7f:68:d9: c5:61:19:15:49:71:f8:3e:ad:df:a7:1c:e6:2d:12:3b:55:70: 54:51:13:f3:4e:d1:c6:5a:c6:93:ef:5b:99:e5:32:f7:fc:49: ec:32:43:dd -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUJGRDExMC8GA1UEBRMoMjE3REEyOTA4Qzc1NDc1REJEQ0RBQTcwRTM2QjlCNDBE NDkxMkVERDAeFw0yMzEwMTgwNzUyNTBaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MmY4ZWQxLTJmOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/W2gWD5RAt+GVAAtGYrOEs6ukmMQDiDQKkXlSL3nMKkeAGHsq60D4Eac65Ouq iYXcdnR0aogVBa3src16fiXdjADEYaOLDfqpbcLsJ59ugdPzouhnN8ZeNMVt023z ukpmi6kKqmiZTesyoiegerFa3ysm9W6F5BGcDmJnc2+81fnVfq3l4RUUjKMh1g9e AlE3wkXxyOj3Sd+87Gif4Ii08wTYgCIZFBX3Cc8FXC0Ogre5eim4uGQ98a8+P4dP o/zPeKzt+N25bcDQc7/iSy30EEYws5QV/5Vws1eN2hh7+QXGNfwmbYgqdcSEgQ4+ kkmyIstuoQmV60qiH/yipk5FAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUSgYlpBge 7Wh+V/x27MXZO/xQDIYwHwYDVR0jBBgwFoAUIX2ikIx1R129zapw42ubQNSRLt0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQkZELzg5NUE0OTUwNkQ4 OTExRUU4MkExRjY4MEM0RjlBRTAyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVgyaWtJeDFSMTI5emFwdzQydWJRTlNSTHQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUJGRC84OTVBNDk1MDZEODkxMUVFODJBMUY2ODBDNEY5QUUwMi9FMEU5QjE5NjZE OEExMUVFQjMzQTFFODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeswDAPBAIAAjAJAwcAIAEN8vjAMA0GCSqGSIb3DQEBCwUA A4IBAQBzR4vHADTo48sbTBtB0hShs9212oIvmlA8EIC/9XTbv/kQkkXYSSARIeHu scKbAgDSmkafk5RcI1W7FhjkAxaa413kaBbZvMrZdrU4AC29CmOMBj9qZyZVI0Um t1upnbhyXj3IdYaf1EwqCH4izNVW5bzAUgm3k9bzhvDXd5LFsZm/KvgnKe4vd1Dx HKn3lwCVDln+iUDZCLqTtbwL/lFssisCgxnFIiDLu7u9Tp/g9By3xUmwYNYbA+AA GkdjeHWjLwyWLGFrmwiKwCweXICdA9MkZ9Z/aNnFYRkVSXH4Pq3fpxzmLRI7VXBU URPzTtHGWsaT71uZ5TL3/EnsMkPd -----END CERTIFICATE-----Generated at Wed May 1 10:10:57 2024 by rpki-client on console-ams.rpki-client.org