$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/99667AD4F83211ED97101D26C4F9AE02.roa File: 99667AD4F83211ED97101D26C4F9AE02.roa (raw, json) Hash identifier: MCVKksxhrGPeFaXG6jI+y2FpN/ON3PY9O0Ypa8BfH80= Subject key identifier: 06:BC:F4:8A:AB:C1:6C:89:3F:0A:88:C0:07:4A:26:E5:7E:A3:9D:22 Certificate issuer: /CN=A91C1710/serialNumber=C93753A9AAA2A86E56CA4EA0C3FF857C30E34228 Certificate serial: 7A Authority key identifier: C9:37:53:A9:AA:A2:A8:6E:56:CA:4E:A0:C3:FF:85:7C:30:E3:42:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/99667AD4F83211ED97101D26C4F9AE02.roa Signing time: Sun 31 Dec 2023 02:24:32 +0000 ROA not before: Sun 31 Dec 2023 02:24:32 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58701 IP address blocks: 103.20.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1710/serialNumber=C93753A9AAA2A86E56CA4EA0C3FF857C30E34228 Validity Not Before: Dec 31 02:24:32 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6590d0df-c306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:4f:d1:74:1d:d9:63:e9:c8:9c:44:ea:eb: b5:46:bd:2a:01:3d:88:9c:17:8d:ff:a5:2d:16:4e: b3:6e:80:31:3a:cb:e5:e4:6f:96:99:7b:01:d4:8c: 2c:65:2a:e9:57:77:26:11:a8:d9:d2:84:0b:f2:61: fc:92:66:72:29:48:7f:4b:93:69:88:67:4c:ce:3b: 92:57:b0:a8:fe:f1:27:e0:23:48:2a:27:1d:e2:4f: 6c:dc:da:7c:a1:c3:1b:ee:ce:2c:af:ba:f5:cf:29: 46:96:9e:9f:66:00:c8:51:49:c5:7d:17:64:84:77: 81:93:57:c7:8b:26:d6:47:c9:81:d2:0c:04:55:23: 25:7a:19:0b:b4:6b:5b:78:60:fa:3a:84:9f:14:b6: ea:6e:a4:a3:4d:2a:1f:b7:66:57:65:d1:33:24:9a: f6:ac:c8:9f:c0:9e:63:f8:f7:79:e3:f3:af:96:ef: ee:a3:41:e6:89:34:8f:16:a6:12:f9:3b:f5:af:66: 33:ef:57:58:c5:77:64:54:35:ea:92:8d:0c:7b:04: 8e:71:90:39:41:53:dd:6b:b5:2e:31:47:a7:62:1e: 5e:40:a1:40:7b:a2:78:94:a5:0f:00:6a:49:a2:4e: ab:d0:16:a1:c3:c5:dd:36:9f:ef:18:8d:77:1a:35: cd:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:BC:F4:8A:AB:C1:6C:89:3F:0A:88:C0:07:4A:26:E5:7E:A3:9D:22 X509v3 Authority Key Identifier: keyid:C9:37:53:A9:AA:A2:A8:6E:56:CA:4E:A0:C3:FF:85:7C:30:E3:42:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/99667AD4F83211ED97101D26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.89.0/24 Signature Algorithm: sha256WithRSAEncryption 64:b4:9c:32:3b:36:d5:ad:21:f3:09:b4:cf:d4:df:ef:9f:b1: 7d:b2:d9:4c:dc:a0:8d:55:53:16:f3:41:f8:22:81:87:67:cc: 71:dc:b0:79:e5:0a:11:90:7b:38:38:ee:d6:2c:ea:84:c4:10: b0:bd:c8:70:0f:1d:e0:cb:34:80:a5:07:47:82:43:c3:09:e3: 6b:e1:ca:60:32:56:d5:26:c0:f5:0b:af:56:65:00:46:68:c8: 29:88:bf:02:03:d5:38:b1:50:d7:4f:6b:24:69:7a:3f:59:60: 17:9b:05:f9:4b:9e:8a:3b:25:5a:a7:05:7e:9c:a0:a3:a2:a3: 27:10:65:c9:6a:c1:aa:ac:f6:75:26:e2:93:c8:79:7e:77:2d: cb:3e:80:7a:6f:2d:98:89:16:05:86:c2:93:67:57:52:68:9b: 9c:4a:fc:ec:fd:1f:b9:2f:69:e8:15:1b:d8:c3:d7:aa:b1:7a: 25:ae:e3:6a:04:e7:d2:8e:53:6f:1b:b8:0f:9e:58:c2:7f:55: 10:da:e2:fc:d3:4a:e1:03:9c:ba:e9:99:da:8a:0b:a4:1b:b2: e1:47:f3:8b:05:aa:f7:c7:42:77:4f:f6:28:34:46:16:0d:1d: 64:7c:e7:52:59:f8:d0:c0:8d:49:3a:64:f2:e2:9c:7c:51:52: c9:c6:bf:c5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTcxMDExMC8GA1UEBRMoQzkzNzUzQTlBQUEyQTg2RTU2Q0E0RUEwQzNGRjg1N0Mz MEUzNDIyODAeFw0yMzEyMzEwMjI0MzJaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTBkMGRmLWMzMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIJU/RdB3ZY+nInETq67VGvSoBPYicF43/pS0WTrNugDE6y+Xkb5aZewHUjCxl KulXdyYRqNnShAvyYfySZnIpSH9Lk2mIZ0zOO5JXsKj+8SfgI0gqJx3iT2zc2nyh wxvuziyvuvXPKUaWnp9mAMhRScV9F2SEd4GTV8eLJtZHyYHSDARVIyV6GQu0a1t4 YPo6hJ8UtupupKNNKh+3Zldl0TMkmvasyJ/AnmP493nj86+W7+6jQeaJNI8WphL5 O/WvZjPvV1jFd2RUNeqSjQx7BI5xkDlBU91rtS4xR6diHl5AoUB7oniUpQ8Aakmi TqvQFqHDxd02n+8YjXcaNc05AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBrz0iqvB bIk/CojAB0om5X6jnSIwHwYDVR0jBBgwFoAUyTdTqaqiqG5Wyk6gw/+FfDDjQigw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNzEwLzE4MjI5QTg2ODI2 QjExRUNBMTFCQTUyQkM0RjlBRTAyL3lUZFRxYXFpcUc1V3lrNmd3Xy1GZkREalFp Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveVRkVHFhcWlxRzVXeWs2Z3dfLUZmRERqUWlnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTcxMC8xODIyOUE4NjgyNkIxMUVDQTExQkE1MkJDNEY5QUUwMi85OTY2N0FENEY4 MzIxMUVEOTcxMDFEMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcUWTANBgkqhkiG9w0BAQsFAAOCAQEAZLScMjs21a0h8wm0 z9Tf75+xfbLZTNygjVVTFvNB+CKBh2fMcdyweeUKEZB7ODju1izqhMQQsL3IcA8d 4Ms0gKUHR4JDwwnja+HKYDJW1SbA9QuvVmUARmjIKYi/AgPVOLFQ109rJGl6P1lg F5sF+UueijslWqcFfpygo6KjJxBlyWrBqqz2dSbik8h5fnctyz6Aem8tmIkWBYbC k2dXUmibnEr87P0fuS9p6BUb2MPXqrF6Ja7jagTn0o5Tbxu4D55Ywn9VENri/NNK 4QOcuumZ2ooLpBuy4UfziwWq98dCd0/2KDRGFg0dZHznUln40MCNSTpk8uKcfFFS yca/xQ== -----END CERTIFICATE-----Generated at Fri May 17 03:50:07 2024 by rpki-client on console-fra.rpki-client.org