$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/880A2B1EB26D11EEB1ADB21AC4F9AE02.roa File: 880A2B1EB26D11EEB1ADB21AC4F9AE02.roa (raw, json) Hash identifier: KNHIPapW/T943NvxPhbFGmjSj7sAOJx3G4aK6MQoMc4= Subject key identifier: F5:4B:9D:39:FB:DC:CB:64:75:F5:F2:9E:3D:F2:0F:A3:5F:BC:96:14 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 0868 Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/880A2B1EB26D11EEB1ADB21AC4F9AE02.roa Signing time: Sat 06 Apr 2024 22:00:35 +0000 ROA not before: Sat 06 Apr 2024 22:00:35 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 47585 IP address blocks: 103.112.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2152 (0x868) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Apr 6 22:00:35 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6611c603-3d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:09:54:fa:08:aa:ad:a8:e1:b1:a7:69:d8:33: 3d:6c:a7:88:d1:a8:73:f9:85:1c:46:7e:54:e9:e6: 3f:25:53:57:ca:53:76:de:fa:01:2e:2c:89:ef:c2: f4:25:19:a2:8a:98:8a:04:2b:af:3f:01:f0:b8:35: 19:eb:12:9f:5d:e2:f8:d1:58:95:ec:bb:0e:f3:42: 84:36:7f:2a:4d:75:16:d2:90:94:87:62:40:98:84: 04:5f:25:7f:df:ca:cb:09:07:7e:4e:d9:6f:e1:a1: 31:fb:5c:b3:e6:82:4f:51:16:6a:3f:89:c5:60:d9: a0:3f:d1:af:b0:92:15:07:e6:f9:5e:a5:57:ac:af: b0:f8:f7:3a:c2:3b:05:c3:50:50:5f:9e:67:1a:5b: 86:e5:cb:32:3f:f1:f0:be:e4:37:e6:f2:06:a4:7f: b9:31:a6:15:ba:e4:9a:b6:f0:a5:f8:4b:3c:7a:05: 7b:00:56:5c:0e:2f:79:6a:29:e6:2f:32:b4:98:73: 61:fa:e8:24:7a:3b:ab:89:ac:9a:0f:c4:60:78:4e: 82:5f:51:9d:58:3e:57:b4:59:b3:f5:63:60:50:d0: 0c:a3:1a:9a:7b:23:8a:d6:88:de:a0:31:c6:86:9c: 94:cd:44:a3:5a:29:4b:85:45:fa:64:18:fa:2c:04: 3b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:4B:9D:39:FB:DC:CB:64:75:F5:F2:9E:3D:F2:0F:A3:5F:BC:96:14 X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/880A2B1EB26D11EEB1ADB21AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.1.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:9a:b8:e6:b0:e8:1f:11:7f:eb:5f:0f:41:50:81:d4:1c:cb: cb:08:85:8e:54:f4:f3:4f:0a:26:68:4f:1a:09:eb:95:bf:81: aa:ae:f1:4d:50:db:7d:29:16:b2:db:8d:e0:bf:cc:96:7d:18: 3f:66:04:95:c0:d6:04:79:0b:e8:ee:e2:ca:46:23:55:62:e3: e6:ef:e4:a2:e1:7d:c4:64:43:8e:0e:e0:08:f5:11:db:b4:40: 32:ce:53:ba:64:86:29:d7:d7:4e:cf:47:2a:5f:e6:fb:8f:af: 07:33:45:e8:f4:d1:a8:01:85:e3:c8:f2:94:67:8b:0f:a0:4a: a3:8f:7b:28:a0:9c:ee:50:5b:c5:d3:61:82:fe:5b:21:65:54: 99:06:40:a9:6c:66:1b:08:d5:0c:80:a6:ec:74:b5:bb:bd:33: 6f:c4:bd:bf:47:9d:6b:5b:b3:04:f8:3a:04:8f:82:03:24:19: dd:99:18:6b:0d:80:40:f8:26:e4:b7:5f:31:5e:34:d9:2d:9d: df:0c:77:58:ed:71:cc:ef:7b:d9:9f:7b:8a:0c:b0:5b:26:92: 66:36:92:f3:fa:45:2d:b4:50:67:ad:c8:7a:d4:21:7d:5e:2a: 03:24:21:b3:51:ef:1f:9a:10:2d:ed:84:c9:5c:f5:a9:2c:11: 9e:4d:8b:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjQwNDA2MjIwMDM1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjExYzYwMy0zZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1glU+giqrajhsadp2DM9bKeI0ahz+YUcRn5U6eY/JVNXylN23voBLiyJ78L0 JRmiipiKBCuvPwHwuDUZ6xKfXeL40ViV7LsO80KENn8qTXUW0pCUh2JAmIQEXyV/ 38rLCQd+Ttlv4aEx+1yz5oJPURZqP4nFYNmgP9GvsJIVB+b5XqVXrK+w+Pc6wjsF w1BQX55nGluG5csyP/HwvuQ35vIGpH+5MaYVuuSatvCl+Es8egV7AFZcDi95ainm LzK0mHNh+ugkejuriayaD8RgeE6CX1GdWD5XtFmz9WNgUNAMoxqaeyOK1ojeoDHG hpyUzUSjWilLhUX6ZBj6LAQ7bQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPVLnTn7 3MtkdfXynj3yD6NfvJYUMB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhGMjcvN0Y1MjI5QThCMDkyMTFFQUI1REJFQzU4QzRGOUFFMDIvODgwQTJCMUVC MjZEMTFFRUIxQURCMjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABncAEwDQYJKoZIhvcNAQELBQADggEBAF2auOaw6B8Rf+tf D0FQgdQcy8sIhY5U9PNPCiZoTxoJ65W/gaqu8U1Q230pFrLbjeC/zJZ9GD9mBJXA 1gR5C+ju4spGI1Vi4+bv5KLhfcRkQ44O4Aj1Edu0QDLOU7pkhinX107PRypf5vuP rwczRej00agBhePI8pRniw+gSqOPeyignO5QW8XTYYL+WyFlVJkGQKlsZhsI1QyA pux0tbu9M2/Evb9HnWtbswT4OgSPggMkGd2ZGGsNgED4JuS3XzFeNNktnd8Md1jt cczve9mfe4oMsFsmkmY2kvP6RS20UGetyHrUIX1eKgMkIbNR7x+aEC3thMlc9aks EZ5Ni1E= -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org