$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/B1FD800CF32111EEB820DB5BC4F9AE02.roa File: B1FD800CF32111EEB820DB5BC4F9AE02.roa (raw, json) Hash identifier: 0nblzfNtNJ2NHVNu2q9tSBAuPPx6fqsAaXu/4C5VXV8= Subject key identifier: 87:C0:AB:70:5F:DF:0B:FB:6E:A7:D4:FC:69:51:49:1B:F7:EE:CC:B9 Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 03F4 Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/B1FD800CF32111EEB820DB5BC4F9AE02.roa Signing time: Fri 05 Apr 2024 07:54:14 +0000 ROA not before: Fri 05 Apr 2024 07:54:14 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 1239 IP address blocks: 103.120.129.0/24 maxlen: 24 103.134.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Validity Not Before: Apr 5 07:54:14 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=660fae26-bf73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b1:3f:ee:73:f6:94:8a:22:66:75:73:2e:de: a4:3e:41:e0:8c:ff:4b:a3:51:1d:df:d1:3e:ac:28: c9:0d:20:dd:ce:25:57:62:33:0c:97:10:35:63:1e: 73:4e:9c:a9:d2:00:1e:68:6e:33:5f:5c:a1:b9:02: bc:f5:a1:8f:e4:2d:97:c4:79:62:48:9f:70:39:06: 01:bf:f7:1f:b3:de:68:4c:c7:49:6f:80:a2:af:99: d6:6d:20:22:14:e3:ed:3f:99:53:fd:c9:15:fb:7d: a3:ed:d5:b9:a6:e5:c8:80:44:34:af:84:dc:01:e2: d3:30:2b:38:4d:38:93:c8:40:8a:3d:40:b7:4f:c5: 5b:4e:cf:8d:7c:16:fd:3e:ad:8c:41:87:8c:46:39: a4:27:43:16:81:dd:99:d1:25:f9:60:70:81:82:7b: 97:b5:b1:59:af:c6:0f:58:e1:b1:f1:65:28:32:c8: 26:f4:d1:64:73:d4:06:e1:0e:91:07:9c:7e:5f:56: 35:24:55:47:14:68:13:87:d9:b3:ff:7d:c0:17:60: e1:d3:03:03:ab:12:09:de:d6:f2:c1:07:b4:25:18: 0e:b6:bd:43:66:f0:4d:bc:37:09:66:f8:54:2b:f0: b1:5a:6c:99:96:da:b8:a0:19:e0:b3:63:0d:03:5a: 84:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C0:AB:70:5F:DF:0B:FB:6E:A7:D4:FC:69:51:49:1B:F7:EE:CC:B9 X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/B1FD800CF32111EEB820DB5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.129.0/24 103.134.74.0/24 Signature Algorithm: sha256WithRSAEncryption 36:54:ba:1a:13:71:86:97:37:2e:b2:9a:c3:71:e7:81:7e:cd: 11:a4:33:1f:7d:68:75:e2:ad:cb:43:35:da:f9:92:05:bb:e1: 94:1c:8d:05:de:5b:0e:92:8b:ac:9f:fb:b9:96:cd:74:51:ad: e5:8c:3c:41:95:bc:c8:32:88:a0:d1:ca:f7:54:ea:2b:8e:34: 24:e3:d1:23:f1:a5:f0:fd:f3:4f:eb:0d:77:8f:e0:4d:0b:f0: 3b:d5:0c:ec:8d:89:e6:15:90:7d:81:b9:97:df:07:29:14:bc: d4:6c:f7:f3:f4:8a:b1:83:f7:1d:02:cd:42:23:14:b3:e7:34: c9:5e:54:17:47:f4:1a:4e:ce:79:e7:8d:b5:93:64:cb:30:0a: 4e:2d:f2:31:2c:6c:db:b1:92:e2:f5:76:d0:a5:e0:8d:30:bc: 1d:7c:9e:32:5c:93:3f:3b:5b:d9:7d:81:be:7e:e9:6e:28:69: cf:73:44:89:05:65:af:0c:0a:93:09:a7:9a:54:1c:1b:c8:8c: 89:10:0f:e9:ea:97:31:9c:b0:d4:5b:16:ee:7f:ac:41:7b:50: f0:50:55:db:f6:ce:d0:35:c4:dc:eb:5b:76:c8:b8:76:74:38: b0:e7:2e:f6:87:68:c6:db:fe:81:fd:8c:89:54:53:55:25:53: f4:39:32:78 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjQwNDA1MDc1NDE0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmYWUyNi1iZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LE/7nP2lIoiZnVzLt6kPkHgjP9Lo1Ed39E+rCjJDSDdziVXYjMMlxA1Yx5z Tpyp0gAeaG4zX1yhuQK89aGP5C2XxHliSJ9wOQYBv/cfs95oTMdJb4Cir5nWbSAi FOPtP5lT/ckV+32j7dW5puXIgEQ0r4TcAeLTMCs4TTiTyECKPUC3T8VbTs+NfBb9 Pq2MQYeMRjmkJ0MWgd2Z0SX5YHCBgnuXtbFZr8YPWOGx8WUoMsgm9NFkc9QG4Q6R B5x+X1Y1JFVHFGgTh9mz/33AF2Dh0wMDqxIJ3tbywQe0JRgOtr1DZvBNvDcJZvhU K/CxWmyZltq4oBngs2MNA1qElwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIfAq3Bf 3wv7bqfU/GlRSRv37sy5MB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDOUIvQTQ2RTk4OUEzMjJCMTFFQzk3RjhDRjdDQzRGOUFFMDIvQjFGRDgwMENG MzIxMTFFRUI4MjBEQjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABneIEDBABnhkowDQYJKoZIhvcNAQELBQADggEBADZUuhoT cYaXNy6ymsNx54F+zRGkMx99aHXirctDNdr5kgW74ZQcjQXeWw6Si6yf+7mWzXRR reWMPEGVvMgyiKDRyvdU6iuONCTj0SPxpfD980/rDXeP4E0L8DvVDOyNieYVkH2B uZffBykUvNRs9/P0irGD9x0CzUIjFLPnNMleVBdH9BpOznnnjbWTZMswCk4t8jEs bNuxkuL1dtCl4I0wvB18njJckz87W9l9gb5+6W4oac9zRIkFZa8MCpMJp5pUHBvI jIkQD+nqlzGcsNRbFu5/rEF7UPBQVdv2ztA1xNzrW3bIuHZ0OLDnLvaHaMbb/oH9 jIlUU1UlU/Q5Mng= -----END CERTIFICATE-----Generated at Tue May 7 03:12:22 2024 by rpki-client on console-fra.rpki-client.org