$ rpki-client -vvf rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/A84FB264FD7011EAA1DF3534C4F9AE02.roa File: A84FB264FD7011EAA1DF3534C4F9AE02.roa (raw, json) Hash identifier: /bFK6mYJTCXC/pV1oiZj4Bqj+TrA/G35/V0Xsbj2Yz4= Subject key identifier: 81:18:08:9B:EE:9F:20:D2:D5:C1:09:62:9C:9E:9B:27:E3:90:90:A8 Certificate issuer: /CN=A91C609A/serialNumber=3FD3895952FD849A97BC112474950284C6868645 Certificate serial: 06D2 Authority key identifier: 3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/A84FB264FD7011EAA1DF3534C4F9AE02.roa Signing time: Fri 16 Feb 2024 16:00:22 +0000 ROA not before: Fri 16 Feb 2024 16:00:22 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141184 IP address blocks: 103.155.218.0/23 maxlen: 24 2407:f640::/32 maxlen: 32 2407:f640:600::/48 maxlen: 48 2407:f640:601::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C609A/serialNumber=3FD3895952FD849A97BC112474950284C6868645 Validity Not Before: Feb 16 16:00:22 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65cf8696-bfda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:69:98:48:3d:b2:84:6b:32:3f:67:4d:dc:0a: 0b:aa:25:05:12:2e:4d:14:20:77:b3:03:a4:fc:2a: 91:82:46:8b:a1:1b:96:a7:33:30:ac:3f:c8:ed:81: d6:37:6a:50:7a:3d:ec:25:6b:a4:bb:54:ce:b6:08: c8:d2:c4:c2:b9:57:48:51:a3:65:d1:b2:9b:76:72: 71:53:36:c6:e0:55:64:35:a8:9f:6b:59:b1:6b:2b: ef:ad:23:b3:f3:b3:43:c5:6a:80:da:04:15:83:87: 40:fa:b5:7c:aa:bb:a9:b3:12:10:fb:77:10:5d:75: a5:a2:89:41:40:a9:88:02:5a:e0:cf:b1:fa:33:9e: d1:9b:b8:f5:fd:7e:ba:b5:4a:1b:89:c2:06:dd:e8: bf:19:3f:85:d4:84:37:92:96:95:08:d0:8b:fb:4b: bd:42:ef:5d:16:8e:11:f6:b1:c1:c6:b4:18:c5:73: ae:14:fb:9b:38:7f:f6:fa:31:5a:e3:95:27:35:0f: 66:2a:ef:07:87:fe:a2:cb:59:a9:01:b6:a5:fd:bb: 81:cd:73:9b:8b:51:cc:be:4d:a1:e0:dc:0f:a3:74: 53:40:6b:b5:5d:44:0c:05:35:c0:97:53:7c:56:b6: 58:3d:f5:02:c6:cd:fb:81:23:63:7b:03:0d:bc:e2: 6a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:18:08:9B:EE:9F:20:D2:D5:C1:09:62:9C:9E:9B:27:E3:90:90:A8 X509v3 Authority Key Identifier: keyid:3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/A84FB264FD7011EAA1DF3534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.218.0/23 IPv6: 2407:f640::/32 Signature Algorithm: sha256WithRSAEncryption 8c:df:7a:3b:c3:26:79:6c:6a:e8:86:ed:7d:ca:ec:5d:6b:50: 5d:71:4c:01:91:a2:d9:f6:ca:43:04:fb:1b:6e:e1:ff:7d:a1: b9:41:b1:56:92:53:0e:01:b9:c4:17:6c:3d:fa:d6:3c:60:c9: d5:ab:37:54:c6:ea:02:3a:cb:98:b6:9c:55:9c:55:81:5e:b8: 60:0c:4e:34:86:61:0a:89:9c:4b:4c:5d:2c:9e:05:00:10:01: d0:20:77:a1:d3:72:61:a7:c5:37:7a:92:59:f1:65:c5:36:73: 0c:fd:75:84:0d:4a:e5:48:27:85:54:e1:3b:fc:3a:10:8c:a1: e2:3c:61:1c:15:06:4a:82:cc:56:51:87:46:45:9d:12:97:be: c7:85:7b:fd:a1:5b:f3:1b:d9:fb:6c:18:30:50:74:c1:1d:d8: 14:7d:cc:a6:23:18:e3:cd:d0:ab:74:10:66:25:0a:3a:8f:66: 74:2d:5c:78:80:46:bd:96:2a:de:07:18:4e:e7:88:24:8f:95: 06:5e:fc:ec:d4:0b:c8:f5:61:5d:98:d0:3a:53:55:59:1f:9c: 00:36:7d:d8:7f:d0:74:99:ac:f5:53:7c:56:db:0b:fc:7d:2a: bc:a4:23:cf:18:23:7c:52:27:c7:7a:3a:bf:26:d9:01:4a:ab: fc:49:e4:c0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYwOUExMTAvBgNVBAUTKDNGRDM4OTU5NTJGRDg0OUE5N0JDMTEyNDc0OTUwMjg0 QzY4Njg2NDUwHhcNMjQwMjE2MTYwMDIyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmODY5Ni1iZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGmYSD2yhGsyP2dN3AoLqiUFEi5NFCB3swOk/CqRgkaLoRuWpzMwrD/I7YHW N2pQej3sJWuku1TOtgjI0sTCuVdIUaNl0bKbdnJxUzbG4FVkNaifa1mxayvvrSOz 87NDxWqA2gQVg4dA+rV8qrupsxIQ+3cQXXWloolBQKmIAlrgz7H6M57Rm7j1/X66 tUobicIG3ei/GT+F1IQ3kpaVCNCL+0u9Qu9dFo4R9rHBxrQYxXOuFPubOH/2+jFa 45UnNQ9mKu8Hh/6iy1mpAbal/buBzXObi1HMvk2h4NwPo3RTQGu1XUQMBTXAl1N8 VrZYPfUCxs37gSNjewMNvOJqmQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIEYCJvu nyDS1cEJYpyemyfjkJCoMB8GA1UdIwQYMBaAFD/TiVlS/YSal7wRJHSVAoTGhoZF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjA5QS9BMzdBRTkyNkZE NkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhKcVh2QkVrZEpVQ2hNYUdo a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5T0pXVkw5aEpxWHZCRWtkSlVDaE1hR2hrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYwOUEvQTM3QUU5MjZGRDZGMTFFQThFODE1RTMzQzRGOUFFMDIvQTg0RkIyNjRG RDcwMTFFQUExREYzNTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnm9owDQQCAAIwBwMFACQH9kAwDQYJKoZIhvcNAQELBQAD ggEBAIzfejvDJnlsauiG7X3K7F1rUF1xTAGRotn2ykME+xtu4f99oblBsVaSUw4B ucQXbD361jxgydWrN1TG6gI6y5i2nFWcVYFeuGAMTjSGYQqJnEtMXSyeBQAQAdAg d6HTcmGnxTd6klnxZcU2cwz9dYQNSuVIJ4VU4Tv8OhCMoeI8YRwVBkqCzFZRh0ZF nRKXvseFe/2hW/Mb2ftsGDBQdMEd2BR9zKYjGOPN0Kt0EGYlCjqPZnQtXHiARr2W Kt4HGE7niCSPlQZe/OzUC8j1YV2Y0DpTVVkfnAA2fdh/0HSZrPVTfFbbC/x9Kryk I88YI3xSJ8d6Or8m2QFKq/xJ5MA= -----END CERTIFICATE-----Generated at Sun May 19 00:30:21 2024 by rpki-client on console-ams.rpki-client.org