$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa File: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (raw, json) Hash identifier: JVg0n/QA2pwPGrHW+UoSFccSj+Bfdsmj4n+1kb9VR6g= Subject key identifier: F9:67:37:DA:0C:FD:4A:52:AB:47:E1:98:A5:A6:5E:71:4A:77:C3:8B Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 03EB Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa Signing time: Thu 03 Aug 2023 01:01:49 +0000 ROA not before: Thu 03 Aug 2023 01:01:49 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 142300 IP address blocks: 103.167.162.0/24 maxlen: 24 103.167.163.0/24 maxlen: 24 2001:df6:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 01:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1003 (0x3eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Aug 3 01:01:49 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64cafc7d-6aa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:42:18:7b:91:0d:d4:af:b3:85:2a:02:c2:cd: 2b:54:01:fd:5e:31:aa:b9:bc:9e:f2:5e:fc:be:dd: f2:d4:33:b2:40:9a:b9:17:60:1a:ae:06:ae:d1:2f: d5:35:03:b8:a1:50:b0:c6:c2:f6:e4:70:91:3e:b0: 76:ef:e0:d9:e6:86:e8:00:fa:d1:65:37:7c:3c:88: 6d:c9:d6:48:78:18:c9:35:22:84:80:b1:f7:3c:ca: cd:bb:5f:9d:f1:d0:7f:86:f4:fe:b9:f9:e7:11:2f: 71:18:81:0d:22:6f:6d:f5:0d:51:84:e4:aa:57:8c: 38:c5:2b:8a:91:84:40:9c:0a:ab:a4:87:b7:77:e8: 70:1f:67:b8:23:e1:5e:74:86:fb:43:17:fa:08:e7: 7e:7a:91:c4:18:32:02:3b:8a:37:be:15:e9:7d:b3: df:ac:e6:cd:89:3e:a7:68:60:8f:08:59:7d:71:55: a0:9c:ba:c2:68:4c:f8:a7:01:a8:28:6b:53:f7:c5: 53:38:cd:b6:dc:0a:f2:82:59:3e:60:c5:6f:c0:13: 95:c8:0f:44:4d:72:f9:ce:70:b1:4e:48:3c:12:a0: 29:2c:97:3f:08:27:b1:7f:69:2f:c7:60:04:86:a3: fd:c6:ac:20:cb:9c:fd:26:e9:f3:5c:a2:60:03:2a: 8f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:67:37:DA:0C:FD:4A:52:AB:47:E1:98:A5:A6:5E:71:4A:77:C3:8B X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.162.0/23 IPv6: 2001:df6:b980::/48 Signature Algorithm: sha256WithRSAEncryption 36:b7:46:69:2e:b5:6e:81:a0:1b:0f:46:da:e5:8c:1b:ee:57: 80:f1:c2:4a:fb:af:0e:7c:af:d9:57:02:5a:3d:77:a6:50:e6: 2b:ab:47:4f:6f:18:b8:b4:75:1c:4a:eb:30:3b:b2:1a:54:10: 33:1b:b5:be:0b:f4:a9:0d:1f:8c:4c:bd:0c:de:cb:33:ee:2f: 3b:dc:58:51:fd:8c:99:16:f5:0d:1f:d1:dd:0d:98:56:77:ba: 12:ff:8c:8c:f6:bc:c6:da:c9:5f:47:ad:47:4c:e0:cf:69:05: a8:3a:33:93:9b:9b:dd:29:27:81:4d:fe:0b:29:bd:9b:07:4b: fa:7a:c8:1c:7b:17:54:d8:33:9e:74:f0:35:e1:f2:40:cc:be: 3a:42:3f:e9:66:cd:c0:8a:32:2a:39:67:2c:ad:59:39:64:05: 23:b6:aa:cc:f0:fd:6d:12:2e:d7:09:f0:90:38:a7:b0:b3:64: c6:7a:f8:2d:5e:c7:20:e1:b0:c3:26:be:05:72:65:95:ee:9f: c5:a9:77:98:9b:db:1f:a3:c3:fb:cd:6d:60:7b:70:f2:14:bb: 37:e4:b9:b6:99:30:27:fa:47:59:a9:51:51:35:09:82:5e:60: d7:f0:97:b8:54:34:0f:05:45:86:b7:fe:b0:c0:d3:c0:00:29: 75:46:d8:dd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjMwODAzMDEwMTQ5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmM3ZC02YWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UIYe5EN1K+zhSoCws0rVAH9XjGqubye8l78vt3y1DOyQJq5F2Aargau0S/V NQO4oVCwxsL25HCRPrB27+DZ5oboAPrRZTd8PIhtydZIeBjJNSKEgLH3PMrNu1+d 8dB/hvT+ufnnES9xGIENIm9t9Q1RhOSqV4w4xSuKkYRAnAqrpIe3d+hwH2e4I+Fe dIb7Qxf6COd+epHEGDICO4o3vhXpfbPfrObNiT6naGCPCFl9cVWgnLrCaEz4pwGo KGtT98VTOM223Aryglk+YMVvwBOVyA9ETXL5znCxTkg8EqApLJc/CCexf2kvx2AE hqP9xqwgy5z9JunzXKJgAyqPpQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPlnN9oM /UpSq0fhmKWmXnFKd8OLMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE3QTkvNUY4OUY2RUNGQjMxMTFFQjhGQkZBNTU5QzRGOUFFMDIvRTE5QjZBRDZE NUJFMTFFQ0E4QkU0NjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnp6IwDwQCAAIwCQMHACABDfa5gDANBgkqhkiG9w0BAQsF AAOCAQEANrdGaS61boGgGw9G2uWMG+5XgPHCSvuvDnyv2VcCWj13plDmK6tHT28Y uLR1HErrMDuyGlQQMxu1vgv0qQ0fjEy9DN7LM+4vO9xYUf2MmRb1DR/R3Q2YVne6 Ev+MjPa8xtrJX0etR0zgz2kFqDozk5ub3SkngU3+Cym9mwdL+nrIHHsXVNgznnTw NeHyQMy+OkI/6WbNwIoyKjlnLK1ZOWQFI7aqzPD9bRIu1wnwkDinsLNkxnr4LV7H IOGwwya+BXJlle6fxal3mJvbH6PD+81tYHtw8hS7N+S5tpkwJ/pHWalRUTUJgl5g 1/CXuFQ0DwVFhrf+sMDTwAApdUbY3Q== -----END CERTIFICATE-----Generated at Tue May 21 03:39:39 2024 by rpki-client on console-ams.rpki-client.org