$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/8D9A6E1246CC11E8B5408617C4F9AE02.roa File: 8D9A6E1246CC11E8B5408617C4F9AE02.roa (raw, json) Hash identifier: Yhfg4YvQQZjhY3KRsDWyz6hCLcA/Ph/uJc8vvKK428M= Subject key identifier: F6:F4:DE:B0:7B:47:A4:52:20:D1:D5:CC:FA:82:0B:C5:D8:9F:A1:36 Certificate issuer: /CN=A91BE8F6/serialNumber=4A388DAD13DF69C2D0E9EA16B98B0C23358FDB03 Certificate serial: 1460 Authority key identifier: 4A:38:8D:AD:13:DF:69:C2:D0:E9:EA:16:B9:8B:0C:23:35:8F:DB:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/8D9A6E1246CC11E8B5408617C4F9AE02.roa Signing time: Tue 30 Apr 2024 17:55:45 +0000 ROA not before: Tue 30 Apr 2024 17:55:45 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9541 IP address blocks: 103.213.108.0/22 maxlen: 24 192.140.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.crl rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5216 (0x1460) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE8F6/serialNumber=4A388DAD13DF69C2D0E9EA16B98B0C23358FDB03 Validity Not Before: Apr 30 17:55:45 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663130a0-d081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:32:92:4e:84:56:ab:56:37:8a:07:b0:f8:06: 7c:91:af:b6:ca:47:25:2f:58:ea:f6:59:c5:5f:89: 46:2c:e5:d3:dc:95:c2:5e:3a:10:39:56:35:03:a1: cd:1a:17:09:58:9d:1d:d1:3d:4e:ae:97:43:a1:a2: 17:8a:1d:ca:1b:f7:b0:1d:ba:0d:ab:00:d9:30:d1: b9:83:98:95:9c:d0:53:90:44:7d:b5:72:bf:bb:98: cb:2d:0c:fb:8c:7a:59:45:c7:7c:ef:c0:75:2d:8a: 05:c0:8f:95:f6:1b:dc:a2:12:66:e9:1c:ec:71:28: ea:47:d2:39:10:f5:24:3d:5f:df:28:7c:91:33:ba: 73:9f:25:d3:a8:4c:d7:44:8b:cd:89:ac:8e:20:cd: d5:6e:38:89:20:60:fd:51:d4:8a:39:db:d5:7e:90: 8f:18:fe:49:28:86:a7:d1:e3:e5:c4:5b:3a:a8:dd: ec:e2:92:95:66:6a:a5:57:dd:27:07:7a:5d:6d:bb: ef:f6:80:69:bb:46:ba:a4:e6:a9:c9:f2:f3:41:d9: fb:54:7e:4c:c2:b7:4b:c6:90:a6:d2:40:ce:c2:ec: f6:df:fd:5b:56:f9:8f:06:61:9f:53:b1:db:1f:2d: d6:f2:9b:92:9b:6c:c4:da:3b:9a:0f:55:65:64:43: 49:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F4:DE:B0:7B:47:A4:52:20:D1:D5:CC:FA:82:0B:C5:D8:9F:A1:36 X509v3 Authority Key Identifier: keyid:4A:38:8D:AD:13:DF:69:C2:D0:E9:EA:16:B9:8B:0C:23:35:8F:DB:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/8D9A6E1246CC11E8B5408617C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.108.0/22 192.140.144.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:b9:dc:f4:be:6d:a6:5a:b0:db:64:32:7f:4d:18:f6:15:76: 68:a4:a3:26:62:11:e5:3a:04:47:6e:fe:12:37:64:87:13:21: ce:11:a2:59:95:2f:81:29:98:bb:c4:a7:e6:aa:5a:43:eb:3d: 08:cc:7a:07:a4:43:69:10:41:6e:42:42:5b:c0:52:2f:3e:2d: 77:f8:f3:64:39:0b:24:41:85:96:26:cb:3f:49:9b:99:a2:3b: bd:9d:27:4a:f7:87:31:2d:6d:e7:46:56:03:f9:20:9b:ba:98: b5:01:1b:c7:4c:11:ea:fe:45:7e:64:55:c2:7f:10:8c:56:a9: ef:0c:cd:61:be:1f:f5:43:81:b6:27:58:de:a0:79:3f:3a:2c: f4:96:47:a0:dc:12:f6:6e:42:67:90:1a:99:fc:14:e8:97:6d: 02:ae:4e:b3:78:2d:62:c0:2a:95:47:3f:5b:c0:93:34:19:53: 95:53:3e:94:23:9a:63:36:7b:38:39:4b:f0:44:ba:bb:38:58: 2c:f1:4b:92:15:bd:6a:d4:8c:25:52:49:a0:c5:3f:cd:12:7e: c1:84:e1:c9:89:9c:32:16:a1:cb:68:ae:0a:a2:26:34:63:b4: f5:5c:28:d8:c7:07:79:93:77:dd:b8:8f:c7:24:e8:31:93:7d: 93:b3:f0:f5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkU4RjYxMTAvBgNVBAUTKDRBMzg4REFEMTNERjY5QzJEMEU5RUExNkI5OEIwQzIz MzU4RkRCMDMwHhcNMjQwNDMwMTc1NTQ1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMzBhMC1kMDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzKSToRWq1Y3igew+AZ8ka+2ykclL1jq9lnFX4lGLOXT3JXCXjoQOVY1A6HN GhcJWJ0d0T1OrpdDoaIXih3KG/ewHboNqwDZMNG5g5iVnNBTkER9tXK/u5jLLQz7 jHpZRcd878B1LYoFwI+V9hvcohJm6RzscSjqR9I5EPUkPV/fKHyRM7pznyXTqEzX RIvNiayOIM3VbjiJIGD9UdSKOdvVfpCPGP5JKIan0ePlxFs6qN3s4pKVZmqlV90n B3pdbbvv9oBpu0a6pOapyfLzQdn7VH5MwrdLxpCm0kDOwuz23/1bVvmPBmGfU7Hb Hy3W8puSm2zE2juaD1VlZENJxwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPb03rB7 R6RSINHVzPqCC8XYn6E2MB8GA1UdIwQYMBaAFEo4ja0T32nC0OnqFrmLDCM1j9sD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRThGNi9CMjZFNUYyRTQ2 Q0IxMUU4ODQyQjRCMTZDNEY5QUUwMi9TamlOclJQZmFjTFE2ZW9XdVlzTUl6V1Ay d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NqaU5yUlBmYWNMUTZlb1d1WXNNSXpXUDJ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkU4RjYvQjI2RTVGMkU0NkNCMTFFODg0MkI0QjE2QzRGOUFFMDIvOEQ5QTZFMTI0 NkNDMTFFOEI1NDA4NjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1WwDBALAjJAwDQYJKoZIhvcNAQELBQADggEBAI253PS+ baZasNtkMn9NGPYVdmikoyZiEeU6BEdu/hI3ZIcTIc4RolmVL4EpmLvEp+aqWkPr PQjMegekQ2kQQW5CQlvAUi8+LXf482Q5CyRBhZYmyz9Jm5miO72dJ0r3hzEtbedG VgP5IJu6mLUBG8dMEer+RX5kVcJ/EIxWqe8MzWG+H/VDgbYnWN6geT86LPSWR6Dc EvZuQmeQGpn8FOiXbQKuTrN4LWLAKpVHP1vAkzQZU5VTPpQjmmM2ezg5S/BEurs4 WCzxS5IVvWrUjCVSSaDFP80SfsGE4cmJnDIWoctorgqiJjRjtPVcKNjHB3mTd924 j8ck6DGTfZOz8PU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org