$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/A042865C3DB211EE9EB40D3DC4F9AE02.roa File: A042865C3DB211EE9EB40D3DC4F9AE02.roa (raw, json) Hash identifier: tDeyIgXlklGW3pJmET16atIMTs5ZNSXZiS4Qu8O2/uk= Subject key identifier: 42:4B:9F:09:FD:20:96:C0:38:13:FD:C9:7F:D5:20:04:D2:8C:8F:76 Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 0384 Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/A042865C3DB211EE9EB40D3DC4F9AE02.roa Signing time: Sat 07 Oct 2023 01:22:53 +0000 ROA not before: Sat 07 Oct 2023 01:22:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133752 IP address blocks: 103.134.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Validity Not Before: Oct 7 01:22:53 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6520b2ed-a27d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:93:b0:e5:2d:fd:83:b9:b6:1a:02:5d:7e:cd: b4:f4:2d:70:b1:f0:32:a7:55:ac:a2:16:c9:b8:88: 05:e8:53:45:af:69:81:da:38:38:21:ce:81:50:a3: 99:bb:10:1e:1b:53:9f:90:c7:fb:ba:ad:80:c4:29: 7c:e5:a7:69:4e:82:75:e5:d8:c6:b9:e2:50:1e:6e: 71:46:f0:fe:0e:1b:04:c6:2d:af:3c:1d:fe:26:86: 20:6a:1f:8f:a0:b4:aa:3a:db:11:5c:11:fc:52:e1: 1d:58:6f:44:9d:df:77:db:dd:87:f1:a5:b7:9f:94: a2:eb:a3:ad:3e:1c:a4:13:57:dc:c8:7a:de:20:68: 16:ea:d9:3b:78:f7:0d:14:e0:3f:89:8f:5c:bd:f9: ce:b7:4d:e8:e0:dc:8a:03:c8:35:87:c1:00:ba:fb: 4a:d0:f6:0e:56:97:a1:86:4f:f6:90:a0:84:90:ad: 64:05:6a:15:c6:2f:e0:13:af:a8:87:46:99:bd:06: 86:df:e3:60:4c:e5:1c:72:c5:48:27:90:7b:18:d7: 03:c1:18:5e:e1:3e:1b:dd:c0:cc:c2:81:00:7d:74: e4:1b:d8:ab:65:33:57:3d:a3:5c:40:bf:38:2a:e3: 67:1d:c1:d7:c8:80:c6:13:e5:e4:18:92:d0:cf:aa: a4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:4B:9F:09:FD:20:96:C0:38:13:FD:C9:7F:D5:20:04:D2:8C:8F:76 X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/A042865C3DB211EE9EB40D3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.75.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:19:31:98:ec:74:59:a7:25:69:f1:c1:ec:93:14:07:46:69: be:71:0a:24:76:63:cb:9c:0c:bd:d0:04:3c:ef:08:3b:db:20: 68:64:70:30:68:ca:e7:04:01:be:1f:90:43:79:85:ae:6d:e5: 55:6d:80:3b:42:3d:5d:bf:44:78:0b:f2:03:7f:a4:88:54:aa: 68:b2:09:ea:75:90:36:c1:60:bd:b9:79:0f:35:81:e9:6b:fc: 5f:11:3d:ca:e7:77:d8:37:ae:b9:92:78:5f:e7:a7:ec:6a:81: 05:87:df:a6:eb:66:6f:46:06:ac:a0:0d:16:38:20:a1:a6:d9: 22:f4:ea:fa:d2:d8:91:58:74:41:4c:ed:8e:7d:9e:6a:45:76: 5e:e1:77:28:7f:a6:18:41:46:39:66:ed:56:9d:0a:e9:3d:72: 35:5e:71:9d:d9:25:63:cc:86:93:a5:96:37:6e:87:74:5c:bc: bd:18:85:ea:ba:70:95:a7:91:5d:c3:8b:9d:16:ff:f3:bf:3a: 98:f5:a1:4a:69:89:52:12:f4:38:85:d2:36:b6:bd:e5:3e:2b: b6:ee:f3:cd:46:77:ce:88:dd:e2:b2:08:eb:c5:04:60:68:2b: 9b:9b:16:7a:b3:cc:ba:bb:73:1e:7a:f4:ec:aa:44:ac:ff:76: 08:b6:f7:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjMxMDA3MDEyMjUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwYjJlZC1hMjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5Ow5S39g7m2GgJdfs209C1wsfAyp1WsohbJuIgF6FNFr2mB2jg4Ic6BUKOZ uxAeG1OfkMf7uq2AxCl85adpToJ15djGueJQHm5xRvD+DhsExi2vPB3+JoYgah+P oLSqOtsRXBH8UuEdWG9End93292H8aW3n5Si66OtPhykE1fcyHreIGgW6tk7ePcN FOA/iY9cvfnOt03o4NyKA8g1h8EAuvtK0PYOVpehhk/2kKCEkK1kBWoVxi/gE6+o h0aZvQaG3+NgTOUccsVIJ5B7GNcDwRhe4T4b3cDMwoEAfXTkG9irZTNXPaNcQL84 KuNnHcHXyIDGE+XkGJLQz6qkIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEJLnwn9 IJbAOBP9yX/VIATSjI92MB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDOUIvQTQ2RTk4OUEzMjJCMTFFQzk3RjhDRjdDQzRGOUFFMDIvQTA0Mjg2NUMz REIyMTFFRTlFQjQwRDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhkswDQYJKoZIhvcNAQELBQADggEBAAwZMZjsdFmnJWnx weyTFAdGab5xCiR2Y8ucDL3QBDzvCDvbIGhkcDBoyucEAb4fkEN5ha5t5VVtgDtC PV2/RHgL8gN/pIhUqmiyCep1kDbBYL25eQ81gelr/F8RPcrnd9g3rrmSeF/np+xq gQWH36brZm9GBqygDRY4IKGm2SL06vrS2JFYdEFM7Y59nmpFdl7hdyh/phhBRjlm 7VadCuk9cjVecZ3ZJWPMhpOlljduh3RcvL0Yheq6cJWnkV3Di50W//O/Opj1oUpp iVIS9DiF0ja2veU+K7bu881Gd86I3eKyCOvFBGBoK5ubFnqzzLq7cx569OyqRKz/ dgi29x4= -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:22 2024 by rpki-client on console-ams.rpki-client.org