$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/60A8F48A25D211ECB2CCF633C4F9AE02.roa File: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (raw, json) Hash identifier: Lc2dupe+wARi1Yp6AZUB8N6bLX8BIh3e0MGDTtp7+eU= Subject key identifier: 13:79:EC:69:DC:6C:14:72:C0:39:C8:6A:FF:16:41:15:DB:68:5C:D8 Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 03A4 Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/60A8F48A25D211ECB2CCF633C4F9AE02.roa Signing time: Thu 05 Oct 2023 01:02:47 +0000 ROA not before: Thu 05 Oct 2023 01:02:47 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 147055 IP address blocks: 103.173.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 02:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Oct 5 01:02:47 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651e0b36-e1d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a5:58:c0:4d:e1:6b:35:32:ae:9a:61:5c:f7: d8:d0:e2:3e:8b:55:da:cd:fc:9f:a5:fe:2f:52:2c: cc:39:d6:3d:ee:fe:2e:21:f9:20:68:8c:4b:cb:4e: a2:bd:bb:fe:18:db:6e:d6:90:61:ef:53:48:8f:2b: c6:33:db:72:44:9d:7d:fe:04:9a:6e:e8:14:d7:31: 41:5d:39:18:83:13:ec:5c:9d:b7:cd:6a:f8:9d:35: f5:c5:77:51:60:29:cb:30:50:67:c1:00:09:2d:c9: e6:82:08:71:1b:df:12:b8:94:d4:8f:83:6c:70:c8: 1b:b0:d9:bf:a7:01:8a:e3:6e:0e:e6:a1:73:c6:8e: 5b:74:b1:3d:b2:73:a7:23:a8:3f:c3:0c:c9:84:c3: 14:8f:c1:e3:fb:f3:15:b5:de:2c:71:f3:b0:d9:88: d5:4d:98:3e:0d:2c:bc:1d:65:f0:93:36:6d:45:6d: c1:7c:49:d1:b5:64:cb:33:d9:41:12:9b:17:95:bc: 24:6f:71:d7:90:ad:60:41:62:1b:bf:d6:0a:e3:46: 9e:80:ac:c3:c9:c3:bf:3c:5c:a0:9f:da:61:ee:39: 42:0b:58:80:96:4d:ad:34:8c:87:e5:b5:1d:ab:e9: 16:95:70:0d:71:ce:57:b3:27:ce:18:58:e0:79:38: b0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:79:EC:69:DC:6C:14:72:C0:39:C8:6A:FF:16:41:15:DB:68:5C:D8 X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/60A8F48A25D211ECB2CCF633C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.186.0/24 Signature Algorithm: sha256WithRSAEncryption a8:b6:e8:73:06:fd:a8:b6:eb:1e:e4:c0:bd:75:4c:4f:93:08: 67:49:5d:7b:36:96:9a:a6:8b:80:cd:09:0d:15:ea:76:36:c9: b5:e2:01:77:a7:5e:cf:c0:89:12:f4:f4:74:c0:aa:94:19:cc: b7:6c:4e:64:7b:88:aa:60:c3:c3:90:39:6c:92:34:d9:78:db: 81:bb:c6:5c:aa:95:db:7d:79:47:3e:da:f1:cc:3c:95:57:b7: ee:6c:80:87:2d:36:46:0a:8d:b4:c9:85:c9:ff:1e:12:cb:46: f3:70:78:bb:85:8c:0e:7a:d2:0e:36:6f:4c:52:8d:38:2e:e7: 3e:20:a0:90:50:26:e5:46:20:b4:96:61:d3:c2:dc:56:6c:bd: 52:9c:7a:52:c0:cc:49:5e:f3:13:05:ad:73:e4:53:0a:0c:c1: dd:96:53:78:98:8c:3a:b6:9f:b0:ae:97:63:b2:cd:93:bc:96: 9e:03:af:6f:ba:e2:77:99:3f:95:d1:b0:b3:d4:de:93:4f:00: ca:b5:86:62:ed:8b:de:0c:65:cb:52:30:66:98:94:aa:a1:f3: ec:d9:c9:85:62:3e:b3:f8:e6:3e:52:8d:b6:4b:94:90:39:e3: e2:e9:eb:4f:b7:66:91:54:62:ff:4a:7f:e8:51:e4:fb:36:46: 4b:44:e4:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjMxMDA1MDEwMjQ3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFlMGIzNi1lMWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKVYwE3hazUyrpphXPfY0OI+i1Xazfyfpf4vUizMOdY97v4uIfkgaIxLy06i vbv+GNtu1pBh71NIjyvGM9tyRJ19/gSabugU1zFBXTkYgxPsXJ23zWr4nTX1xXdR YCnLMFBnwQAJLcnmgghxG98SuJTUj4NscMgbsNm/pwGK424O5qFzxo5bdLE9snOn I6g/wwzJhMMUj8Hj+/MVtd4scfOw2YjVTZg+DSy8HWXwkzZtRW3BfEnRtWTLM9lB EpsXlbwkb3HXkK1gQWIbv9YK40aegKzDycO/PFygn9ph7jlCC1iAlk2tNIyH5bUd q+kWlXANcc5XsyfOGFjgeTiwQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBN57Gnc bBRywDnIav8WQRXbaFzYMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBFNTcvRkNDMThBMTQyMDRFMTFFQ0IxM0VFMTdBQzRGOUFFMDIvNjBBOEY0OEEy NUQyMTFFQ0IyQ0NGNjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrbowDQYJKoZIhvcNAQELBQADggEBAKi26HMG/ai26x7k wL11TE+TCGdJXXs2lpqmi4DNCQ0V6nY2ybXiAXenXs/AiRL09HTAqpQZzLdsTmR7 iKpgw8OQOWySNNl424G7xlyqldt9eUc+2vHMPJVXt+5sgIctNkYKjbTJhcn/HhLL RvNweLuFjA560g42b0xSjTgu5z4goJBQJuVGILSWYdPC3FZsvVKcelLAzEle8xMF rXPkUwoMwd2WU3iYjDq2n7Cul2OyzZO8lp4Dr2+64neZP5XRsLPU3pNPAMq1hmLt i94MZctSMGaYlKqh8+zZyYViPrP45j5SjbZLlJA54+Lp60+3ZpFUYv9Kf+hR5Ps2 RktE5BM= -----END CERTIFICATE-----Generated at Wed May 29 06:12:24 2024 by rpki-client on console-ams.rpki-client.org