$ rpki-client -vvf rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/BC41A65E33C011EE83E9A61BC4F9AE02.roa File: BC41A65E33C011EE83E9A61BC4F9AE02.roa (raw, json) Hash identifier: CS93G7RcWD5+qr4AoKfyZNjTKuN7GWxR2yfMPswfmRg= Subject key identifier: 72:6C:58:84:CD:BE:0F:F6:98:C1:F2:3D:0E:C9:ED:EC:FF:65:5E:DE Certificate issuer: /CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Certificate serial: 0585 Authority key identifier: 39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/BC41A65E33C011EE83E9A61BC4F9AE02.roa Signing time: Mon 14 Aug 2023 23:20:30 +0000 ROA not before: Mon 14 Aug 2023 23:20:30 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 134365 IP address blocks: 103.68.192.0/23 maxlen: 23 103.68.192.0/24 maxlen: 24 103.68.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1413 (0x585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Validity Not Before: Aug 14 23:20:30 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64dab6be-92d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f5:8e:93:8a:5e:ca:6e:02:0b:0d:3e:ca:ac: d1:24:0d:07:29:11:8c:b2:f6:10:b1:e1:48:ed:50: 91:cd:e2:1c:dc:ba:6a:b3:4f:0f:b0:31:5e:a9:af: 7f:10:01:35:3d:ea:b0:32:8f:49:bb:b7:79:96:b4: 30:7b:b0:72:47:58:ad:1b:90:75:9f:44:23:3b:be: 1d:db:cc:75:43:1d:10:73:4a:ba:d1:4d:cd:cc:6d: 28:fe:32:b8:0b:9c:1c:bc:c2:64:2c:27:7d:17:ee: bf:43:21:f0:f5:9b:15:7c:dd:38:68:2f:e9:4f:3c: af:6e:73:68:07:74:2d:65:39:78:f3:5b:8a:f7:16: 02:74:2a:da:a5:45:c5:88:5a:70:a1:88:6d:4d:fc: e2:33:12:e5:52:9d:d1:74:c5:7d:00:c9:62:eb:3a: 25:e5:0a:64:2a:63:bd:5a:1c:c4:3f:18:7f:2b:d6: b2:73:de:51:ef:3f:c7:7c:ad:00:c4:56:8a:96:46: 7e:b5:93:70:a0:09:e6:79:f1:22:07:12:28:18:01: 75:89:e8:fc:28:08:d7:54:eb:2d:88:0e:c3:33:f1: 4a:e1:e8:e4:7b:2d:5d:06:a6:13:38:9d:8e:93:7c: b9:b3:8d:e3:5b:73:31:3e:ad:e1:64:cc:25:63:7c: a7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:6C:58:84:CD:BE:0F:F6:98:C1:F2:3D:0E:C9:ED:EC:FF:65:5E:DE X509v3 Authority Key Identifier: keyid:39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/BC41A65E33C011EE83E9A61BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.192.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:ba:72:8f:09:0d:39:6c:5a:37:15:81:78:28:3d:54:e4:9e: d4:d3:a3:c1:34:96:3c:2e:64:fa:25:e1:17:68:fc:15:71:45: 3f:b1:8b:35:fb:91:15:3d:4b:86:78:2b:0e:e5:59:15:59:81: 4c:96:7b:79:3a:f1:06:02:f0:ff:14:62:32:c2:0f:b9:8a:35: c5:88:2d:86:0e:70:46:b6:c3:a2:c6:78:23:9b:11:94:fe:50: 0c:b1:9d:de:d4:43:f0:aa:f5:cf:41:c5:7e:be:cc:d5:78:6d: dd:68:bb:30:b5:f8:5d:17:df:fd:e2:4e:99:7d:ab:16:24:ef: d7:94:2c:53:2a:58:f6:53:ce:1c:8b:9f:25:22:12:e6:92:26: e2:de:2f:2a:98:75:47:48:c2:46:d8:2b:fe:68:54:d5:e5:3e: 41:64:e8:51:06:94:41:e8:ad:93:89:9f:6d:0f:53:7f:7d:f6: 36:e8:78:65:ba:7c:2b:cf:8e:5e:27:12:5e:24:31:d8:29:78: 8e:0b:40:b8:63:06:68:87:5f:6b:3c:5b:ce:14:3c:5b:b4:fd: a1:0b:9d:fb:b0:ed:a5:b2:05:d8:9e:92:5a:56:07:1f:9b:fa: 81:aa:31:35:ab:60:b2:17:f2:95:fd:bd:e7:08:67:eb:65:48: 11:b4:28:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMyNkYxMTAvBgNVBAUTKDM5MkYzNkUwQTQ1MDA1M0MzREM2NkQyRTM4OTRFMTBD QTczM0REQTYwHhcNMjMwODE0MjMyMDMwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRhYjZiZS05MmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvWOk4peym4CCw0+yqzRJA0HKRGMsvYQseFI7VCRzeIc3Lpqs08PsDFeqa9/ EAE1PeqwMo9Ju7d5lrQwe7ByR1itG5B1n0QjO74d28x1Qx0Qc0q60U3NzG0o/jK4 C5wcvMJkLCd9F+6/QyHw9ZsVfN04aC/pTzyvbnNoB3QtZTl481uK9xYCdCrapUXF iFpwoYhtTfziMxLlUp3RdMV9AMli6zol5QpkKmO9WhzEPxh/K9ayc95R7z/HfK0A xFaKlkZ+tZNwoAnmefEiBxIoGAF1iej8KAjXVOstiA7DM/FK4ejkey1dBqYTOJ2O k3y5s43jW3MxPq3hZMwlY3ynGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHJsWITN vg/2mMHyPQ7J7ez/ZV7eMB8GA1UdIwQYMBaAFDkvNuCkUAU8PcZtLjiU4QynM92m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzI2Ri83ODY2RjUzMDVG QzcxMUVCOEE2OTIwMkVDNEY5QUUwMi9PUzgyNEtSUUJUdzl4bTB1T0pUaERLY3oz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TODI0S1JRQlR3OXhtMHVPSlRoREtjejNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMyNkYvNzg2NkY1MzA1RkM3MTFFQjhBNjkyMDJFQzRGOUFFMDIvQkM0MUE2NUUz M0MwMTFFRTgzRTlBNjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnRMAwDQYJKoZIhvcNAQELBQADggEBAJ+6co8JDTlsWjcV gXgoPVTkntTTo8E0ljwuZPol4Rdo/BVxRT+xizX7kRU9S4Z4Kw7lWRVZgUyWe3k6 8QYC8P8UYjLCD7mKNcWILYYOcEa2w6LGeCObEZT+UAyxnd7UQ/Cq9c9BxX6+zNV4 bd1ouzC1+F0X3/3iTpl9qxYk79eULFMqWPZTzhyLnyUiEuaSJuLeLyqYdUdIwkbY K/5oVNXlPkFk6FEGlEHorZOJn20PU3999jboeGW6fCvPjl4nEl4kMdgpeI4LQLhj BmiHX2s8W84UPFu0/aELnfuw7aWyBdieklpWBx+b+oGqMTWrYLIX8pX9vecIZ+tl SBG0KMA= -----END CERTIFICATE-----Generated at Fri May 3 00:48:30 2024 by rpki-client on console-ams.rpki-client.org