$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/5B6AD2DCF1C811ECBBC34549C4F9AE02.roa File: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (raw, json) Hash identifier: QAxTmUc4ywf6JpQ5X6AmgUVj+K+9kxislSOsZQqIr3E= Subject key identifier: A6:A9:B2:1C:F2:A2:AC:FF:AC:2B:C2:98:3F:04:85:31:15:14:D0:42 Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 0161 Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/5B6AD2DCF1C811ECBBC34549C4F9AE02.roa Signing time: Fri 07 Jul 2023 03:02:06 +0000 ROA not before: Fri 07 Jul 2023 03:02:06 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.58.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 04:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: Jul 7 03:02:06 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a7802e-7e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:30:9e:c2:44:28:13:b8:e9:96:b4:6e:51:91: da:a1:23:e3:3a:0c:ec:5c:9b:4a:78:69:0f:bb:19: 00:93:64:db:34:ba:9d:dc:f6:ff:6a:b3:8f:be:76: 21:d6:ed:d6:17:a0:d3:6f:3e:a4:71:21:b0:dd:70: ab:63:af:e3:08:3a:c7:b6:6a:c7:57:6a:37:1f:4a: bb:d5:4a:55:0f:d3:c4:61:ed:3e:f8:dd:c3:07:0f: dd:20:39:1d:60:74:3e:d6:1b:d6:c1:14:76:71:ec: 54:2d:46:af:6d:5e:df:56:54:a1:28:c5:b0:4a:3d: 67:b6:29:36:f0:5e:0e:64:0f:fe:d5:03:f0:7d:f8: 22:ea:dc:00:fc:fd:53:39:16:fa:4b:ce:20:0c:64: d4:77:25:0e:87:ff:05:85:8d:20:13:1f:d5:c1:32: 86:31:aa:5c:45:b9:6b:61:91:45:8c:a0:9c:3d:94: a1:b8:53:fb:9f:96:e7:82:78:f3:ea:7e:8c:fa:90: 53:f9:62:0b:44:2f:20:89:f3:7e:26:89:0e:b8:6c: c6:6d:e8:a2:d5:c5:6c:f3:90:49:d1:98:33:b2:cf: d4:20:47:85:17:c1:57:ac:b5:e4:66:6a:52:81:97: ac:14:18:4f:ab:f2:e4:18:9e:45:7d:77:97:ae:2f: 76:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A9:B2:1C:F2:A2:AC:FF:AC:2B:C2:98:3F:04:85:31:15:14:D0:42 X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/5B6AD2DCF1C811ECBBC34549C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.192.0/24 Signature Algorithm: sha256WithRSAEncryption 85:16:06:22:ab:78:24:82:a8:22:6b:ba:69:0d:85:c9:48:e1: d6:8a:7f:15:38:e7:1e:c3:d7:45:ce:56:1e:d1:5c:aa:06:38: dd:b7:7c:aa:98:a5:ff:86:11:31:9b:b4:d4:06:cc:de:64:59: e0:72:74:82:ba:60:cc:4b:db:5c:4c:42:fe:bd:dd:3d:08:5a: f0:a5:eb:ad:72:c4:b7:4d:ca:d0:6d:39:79:3e:7e:79:92:3e: ea:4f:e1:64:76:96:8f:2f:c3:60:ca:01:2c:36:f1:74:d4:d4: cc:8f:9c:2b:b2:36:f1:20:fb:bc:25:49:5e:c8:a4:9f:df:b1: 2d:b0:0f:7f:48:fc:a1:f5:2d:46:33:be:13:4f:f3:47:99:a8: 53:93:4a:ee:0c:99:66:25:f8:40:d5:23:e0:79:b2:2b:17:8f: f1:ca:83:85:1c:3d:53:8c:69:c4:a4:2c:0c:19:72:d5:e2:bf: 25:55:25:6a:28:ef:ee:2b:48:c7:59:65:01:8b:45:86:56:ba: b1:d6:01:d6:d7:df:a6:9a:99:9b:7a:3f:44:c0:77:12:ca:9c: 04:c5:d6:13:d9:ae:fa:0f:79:dd:2f:79:98:d7:06:22:58:fa: e1:d7:37:84:70:12:0a:66:3e:8c:ed:ad:2f:fd:ad:95:15:a9: 67:13:e3:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjMwNzA3MDMwMjA2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE3ODAyZS03ZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zCewkQoE7jplrRuUZHaoSPjOgzsXJtKeGkPuxkAk2TbNLqd3Pb/arOPvnYh 1u3WF6DTbz6kcSGw3XCrY6/jCDrHtmrHV2o3H0q71UpVD9PEYe0++N3DBw/dIDkd YHQ+1hvWwRR2cexULUavbV7fVlShKMWwSj1ntik28F4OZA/+1QPwffgi6twA/P1T ORb6S84gDGTUdyUOh/8FhY0gEx/VwTKGMapcRblrYZFFjKCcPZShuFP7n5bngnjz 6n6M+pBT+WILRC8gifN+JokOuGzGbeii1cVs85BJ0Zgzss/UIEeFF8FXrLXkZmpS gZesFBhPq/LkGJ5FfXeXri92vwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKapshzy oqz/rCvCmD8EhTEVFNBCMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY1QzAvQkNCRDRGQjZGMUMyMTFFQ0ExNjNGRDQyQzRGOUFFMDIvNUI2QUQyRENG MUM4MTFFQ0JCQzM0NTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOsAwDQYJKoZIhvcNAQELBQADggEBAIUWBiKreCSCqCJr umkNhclI4daKfxU45x7D10XOVh7RXKoGON23fKqYpf+GETGbtNQGzN5kWeBydIK6 YMxL21xMQv693T0IWvCl661yxLdNytBtOXk+fnmSPupP4WR2lo8vw2DKASw28XTU 1MyPnCuyNvEg+7wlSV7IpJ/fsS2wD39I/KH1LUYzvhNP80eZqFOTSu4MmWYl+EDV I+B5sisXj/HKg4UcPVOMacSkLAwZctXivyVVJWoo7+4rSMdZZQGLRYZWurHWAdbX 36aamZt6P0TAdxLKnATF1hPZrvoPed0veZjXBiJY+uHXN4RwEgpmPoztrS/9rZUV qWcT46k= -----END CERTIFICATE-----Generated at Thu Apr 25 06:17:49 2024 by rpki-client on console-ams.rpki-client.org