$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/9A4B6146EED111EC9BDD4C49C4F9AE02.roa File: 9A4B6146EED111EC9BDD4C49C4F9AE02.roa (raw, json) Hash identifier: eAuiHz95OnsqMbafdwqxvw/kZ1YaOXM/w2y2Dchm1aU= Subject key identifier: EF:4C:AF:89:29:AD:7A:68:C0:AA:DC:F0:01:5F:C8:5F:EE:CE:D2:D1 Certificate issuer: /CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Certificate serial: 01CC Authority key identifier: E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/9A4B6146EED111EC9BDD4C49C4F9AE02.roa Signing time: Tue 23 Jan 2024 04:58:27 +0000 ROA not before: Tue 23 Jan 2024 04:58:27 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 149868 IP address blocks: 103.189.218.0/23 maxlen: 24 2001:df0:db40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Validity Not Before: Jan 23 04:58:27 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65af4773-7b77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:92:19:9b:83:d0:48:91:8f:91:5e:7e:7a:fd: 3a:07:9e:26:1f:d4:f9:4c:4c:4f:74:74:17:72:4e: c7:4d:79:4b:80:13:df:00:c9:78:e3:8a:0f:3e:84: b1:e8:db:00:f0:1c:c7:eb:82:6f:0b:d9:07:d4:9d: 3e:49:f3:03:80:9e:ab:2c:7a:39:3c:ca:c3:4a:cb: 96:18:2c:cd:16:46:9e:aa:fb:39:df:8d:5a:4d:19: 06:78:5e:45:ee:00:6e:22:49:d5:34:67:b4:fe:6b: d4:56:90:71:02:c3:93:09:66:64:cc:18:48:49:22: b0:7a:81:ee:3e:fc:c3:22:7b:b8:17:70:c2:22:f8: a9:6c:fa:73:ee:f1:b8:29:82:df:8e:80:68:af:7b: ff:1c:87:ec:1c:da:3d:c3:a6:4d:b2:f6:d3:1a:ba: 9e:15:83:e4:bd:12:ed:83:e4:6d:80:ff:27:8b:1d: 22:3d:26:57:ed:21:c5:be:98:eb:f7:79:8d:f4:f0: 46:46:29:21:19:f1:a4:f3:3b:d8:77:20:22:7a:22: ac:04:1a:de:de:5d:24:55:03:95:a3:44:3d:2b:52: e1:6f:1c:0e:9b:a1:1c:8a:c4:8c:bf:99:79:c0:fd: e2:c5:73:a2:c8:83:55:d8:10:9a:d5:e4:d6:d5:47: ba:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:4C:AF:89:29:AD:7A:68:C0:AA:DC:F0:01:5F:C8:5F:EE:CE:D2:D1 X509v3 Authority Key Identifier: keyid:E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/9A4B6146EED111EC9BDD4C49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.218.0/23 IPv6: 2001:df0:db40::/48 Signature Algorithm: sha256WithRSAEncryption 1a:33:1e:a7:d6:e2:8a:b5:b7:0e:64:06:d1:f3:d2:83:e5:9e: ce:90:d6:6b:38:42:2b:5d:6d:b1:09:94:c4:0f:a5:79:45:64: a0:82:2a:81:be:aa:9e:14:fd:28:8d:f2:bd:0d:a1:0c:74:40: e4:b9:0e:56:69:ca:17:1c:08:af:41:93:f9:4e:d0:eb:87:ab: ed:f7:c4:5b:98:02:b3:19:89:25:df:d8:dc:d6:9a:70:55:89: c0:4f:3c:fd:ce:00:72:5f:3d:b6:17:a9:fa:cf:6e:54:e4:2c: 85:fb:4f:44:2a:64:1b:8e:e1:1e:28:6e:36:ab:30:fb:46:4c: fe:86:01:8f:5d:30:af:05:d0:32:38:c7:30:99:9d:0f:b4:f4: 32:2c:22:34:fc:3a:af:be:a9:21:b3:0a:b1:94:a3:cc:0a:cd: e1:35:22:41:6b:02:91:c3:1a:cd:75:a9:b3:3c:d5:15:5a:6a: 79:7b:50:37:4c:3f:96:e0:01:16:89:f0:0c:00:f4:9f:e0:1f: 33:03:51:46:84:2d:40:47:b6:46:e9:d8:5a:b2:ef:a5:1c:0c: 74:d1:0e:af:ff:fa:e0:c2:c0:5d:4b:1b:79:be:2e:5e:ac:60: f3:6b:bc:35:a6:5b:ab:11:9e:5c:65:a5:00:70:d9:32:d8:31: f5:94:66:db -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxNzQxMTAvBgNVBAUTKEU0MjJCRjAyNjE0MEQyMDNFRkQ2QkZERUFFRTI2OEFB OEIwNDY2RDUwHhcNMjQwMTIzMDQ1ODI3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFmNDc3My03Yjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJIZm4PQSJGPkV5+ev06B54mH9T5TExPdHQXck7HTXlLgBPfAMl444oPPoSx 6NsA8BzH64JvC9kH1J0+SfMDgJ6rLHo5PMrDSsuWGCzNFkaeqvs5341aTRkGeF5F 7gBuIknVNGe0/mvUVpBxAsOTCWZkzBhISSKweoHuPvzDInu4F3DCIvipbPpz7vG4 KYLfjoBor3v/HIfsHNo9w6ZNsvbTGrqeFYPkvRLtg+RtgP8nix0iPSZX7SHFvpjr 93mN9PBGRikhGfGk8zvYdyAieiKsBBre3l0kVQOVo0Q9K1LhbxwOm6EcisSMv5l5 wP3ixXOiyINV2BCa1eTW1Ue6tQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO9Mr4kp rXpowKrc8AFfyF/uztLRMB8GA1UdIwQYMBaAFOQivwJhQNID79a/3q7iaKqLBGbV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzE3NC9CMTMxRjg5Q0VF Q0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBnUHYxcl9lcnVKb3Fvc0Va dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDS19BbUZBMGdQdjFyX2VydUpvcW9zRVp0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxNzQvQjEzMUY4OUNFRUNEMTFFQzhDRjQ0NzFFQzRGOUFFMDIvOUE0QjYxNDZF RUQxMTFFQzlCREQ0QzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnvdowDwQCAAIwCQMHACABDfDbQDANBgkqhkiG9w0BAQsF AAOCAQEAGjMep9biirW3DmQG0fPSg+WezpDWazhCK11tsQmUxA+leUVkoIIqgb6q nhT9KI3yvQ2hDHRA5LkOVmnKFxwIr0GT+U7Q64er7ffEW5gCsxmJJd/Y3NaacFWJ wE88/c4Acl89thep+s9uVOQshftPRCpkG47hHihuNqsw+0ZM/oYBj10wrwXQMjjH MJmdD7T0MiwiNPw6r76pIbMKsZSjzArN4TUiQWsCkcMazXWpszzVFVpqeXtQN0w/ luABFonwDAD0n+AfMwNRRoQtQEe2RunYWrLvpRwMdNEOr//64MLAXUsbeb4uXqxg 82u8NaZbqxGeXGWlAHDZMtgx9ZRm2w== -----END CERTIFICATE-----Generated at Sun May 19 05:08:06 2024 by rpki-client on console-ams.rpki-client.org