$ rpki-client -vvf rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/51AC16D65B9211EE908D763DC4F9AE02.roa File: 51AC16D65B9211EE908D763DC4F9AE02.roa (raw, json) Hash identifier: igMS7SyCU3AZU/4z7eVlxFdZXBQDvyhPYYv8ygcOSRE= Subject key identifier: 66:47:42:CB:67:FB:C0:80:1C:AA:36:91:FF:E4:A4:04:8D:D9:B6:A8 Certificate issuer: /CN=A91C08EE/serialNumber=158B96664FB1C9AEEEB3D28707F877FE237B02DC Certificate serial: D6 Authority key identifier: 15:8B:96:66:4F:B1:C9:AE:EE:B3:D2:87:07:F8:77:FE:23:7B:02:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FYuWZk-xya7us9KHB_h3_iN7Atw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/51AC16D65B9211EE908D763DC4F9AE02.roa Signing time: Mon 25 Sep 2023 11:00:38 +0000 ROA not before: Mon 25 Sep 2023 11:00:38 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136969 IP address blocks: 103.203.89.0/24 maxlen: 24 2001:df1:2ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FYuWZk-xya7us9KHB_h3_iN7Atw.crl rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FYuWZk-xya7us9KHB_h3_iN7Atw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FYuWZk-xya7us9KHB_h3_iN7Atw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 04:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C08EE/serialNumber=158B96664FB1C9AEEEB3D28707F877FE237B02DC Validity Not Before: Sep 25 11:00:38 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65116856-ca4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:97:51:dd:bb:63:47:e3:8e:22:6d:7a:cc:82: 4e:a7:a7:f3:15:9a:b2:06:1a:1f:52:68:80:7b:7e: 76:4e:bf:06:38:ee:87:01:0a:cf:43:48:92:a7:34: f8:c8:a7:58:7f:14:ff:f9:28:7e:65:2e:37:39:51: a6:a9:a1:16:96:7f:ba:f0:63:9f:9e:36:4c:b9:e3: da:52:0d:ea:99:55:46:87:b0:a7:ba:e1:11:ff:81: 46:1c:a5:a3:a1:4b:78:ab:db:95:a5:c8:e3:80:28: 27:d1:9b:f7:78:83:77:a5:82:35:db:4b:73:23:95: 0a:b5:75:42:fe:9e:86:0e:1a:aa:ad:3e:2c:cd:ae: 3b:1b:75:dd:ff:d4:2d:6e:2b:1d:b1:af:47:a9:7f: 85:de:81:93:a6:bd:3e:19:18:c3:52:e1:2e:af:64: e7:47:f5:be:b3:40:bc:be:e3:67:b1:92:f5:6f:50: 89:41:14:ae:7f:2a:56:34:99:57:cd:99:0c:9e:5e: d8:8c:19:39:dd:2e:c2:1f:7f:e8:26:6e:19:db:c2: f4:24:05:a9:09:dd:a1:d3:0d:28:6e:1b:1d:fc:a8: 06:8e:d4:29:d5:98:41:c0:2e:e6:48:49:22:1b:b3: ce:23:fe:18:d6:e2:1e:79:01:31:f4:66:ef:94:c4: b1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:47:42:CB:67:FB:C0:80:1C:AA:36:91:FF:E4:A4:04:8D:D9:B6:A8 X509v3 Authority Key Identifier: keyid:15:8B:96:66:4F:B1:C9:AE:EE:B3:D2:87:07:F8:77:FE:23:7B:02:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FYuWZk-xya7us9KHB_h3_iN7Atw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FYuWZk-xya7us9KHB_h3_iN7Atw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/51AC16D65B9211EE908D763DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.89.0/24 IPv6: 2001:df1:2ec0::/48 Signature Algorithm: sha256WithRSAEncryption 8d:2f:ef:d6:71:3a:2a:c2:d5:cd:a3:24:84:15:6d:fc:52:a2: cb:2d:09:1a:46:06:e3:76:5d:80:f2:7c:2d:e2:bd:05:47:79: f2:c7:d5:74:62:ec:0b:16:6a:df:aa:56:0d:94:36:0b:b2:80: 8e:45:3e:65:52:c0:8e:d0:c0:ff:14:9e:95:e7:3c:17:04:51: 37:85:d7:78:4a:c3:8f:78:9b:f2:47:7b:1e:e0:9a:5b:75:64: 37:5e:d0:f3:6a:63:6d:3a:a1:0e:9a:15:ed:44:4a:c8:cb:d1: 9d:72:bc:8c:b9:54:e0:13:c6:a6:53:88:90:bf:0f:03:a6:31: 6d:88:ce:73:cf:3b:5e:26:97:69:64:c1:1f:e6:3f:ea:6c:89: a8:a2:0a:d2:7c:70:c5:14:88:54:2b:53:9c:bc:67:bf:87:bb: 69:44:a6:38:df:5e:97:74:f8:d9:da:bf:3d:37:95:7c:27:df: 50:f4:a9:f2:4d:b9:c8:ae:5b:2d:66:02:07:9d:2b:e9:5a:c0: 91:e6:b2:5b:43:ab:99:de:66:73:28:a2:37:88:18:42:d9:2a: 9e:d3:52:81:32:66:be:c6:b9:df:e7:e3:87:aa:70:df:2f:0f: 58:69:78:07:59:7c:9a:49:b7:7c:ca:22:50:86:4d:1b:21:96: 44:50:bf:64 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA4RUUxMTAvBgNVBAUTKDE1OEI5NjY2NEZCMUM5QUVFRUIzRDI4NzA3Rjg3N0ZF MjM3QjAyREMwHhcNMjMwOTI1MTEwMDM4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTExNjg1Ni1jYTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pdR3btjR+OOIm16zIJOp6fzFZqyBhofUmiAe352Tr8GOO6HAQrPQ0iSpzT4 yKdYfxT/+Sh+ZS43OVGmqaEWln+68GOfnjZMuePaUg3qmVVGh7CnuuER/4FGHKWj oUt4q9uVpcjjgCgn0Zv3eIN3pYI120tzI5UKtXVC/p6GDhqqrT4sza47G3Xd/9Qt bisdsa9HqX+F3oGTpr0+GRjDUuEur2TnR/W+s0C8vuNnsZL1b1CJQRSufypWNJlX zZkMnl7YjBk53S7CH3/oJm4Z28L0JAWpCd2h0w0obhsd/KgGjtQp1ZhBwC7mSEki G7POI/4Y1uIeeQEx9GbvlMSx9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGZHQstn +8CAHKo2kf/kpASN2baoMB8GA1UdIwQYMBaAFBWLlmZPscmu7rPShwf4d/4jewLc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDhFRS81M0M2NzhENjQz MDAxMUVEODQwQjMzNTdDNEY5QUUwMi9GWXVXWmsteHlhN3VzOUtIQl9oM19pTjdB dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZZdVdaay14eWE3dXM5S0hCX2gzX2lON0F0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzA4RUUvNTNDNjc4RDY0MzAwMTFFRDg0MEIzMzU3QzRGOUFFMDIvNTFBQzE2RDY1 QjkyMTFFRTkwOEQ3NjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABny1kwDwQCAAIwCQMHACABDfEuwDANBgkqhkiG9w0BAQsF AAOCAQEAjS/v1nE6KsLVzaMkhBVt/FKiyy0JGkYG43ZdgPJ8LeK9BUd58sfVdGLs CxZq36pWDZQ2C7KAjkU+ZVLAjtDA/xSelec8FwRRN4XXeErDj3ib8kd7HuCaW3Vk N17Q82pjbTqhDpoV7URKyMvRnXK8jLlU4BPGplOIkL8PA6YxbYjOc887XiaXaWTB H+Y/6myJqKIK0nxwxRSIVCtTnLxnv4e7aUSmON9el3T42dq/PTeVfCffUPSp8k25 yK5bLWYCB50r6VrAkeayW0Ormd5mcyiiN4gYQtkqntNSgTJmvsa53+fjh6pw3y8P WGl4B1l8mkm3fMoiUIZNGyGWRFC/ZA== -----END CERTIFICATE-----Generated at Tue May 21 05:35:45 2024 by rpki-client on console-ams.rpki-client.org