$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa File: E940EF3464B611EA9B743415C4F9AE02.roa (raw, json) Hash identifier: 7Xx9UE44DwGeyKwhiiS/2v5Rq4p5F1fjKHI+6cXUu50= Subject key identifier: B8:B7:A5:2B:EA:4B:3B:3A:FF:88:16:67:05:53:19:B5:29:03:98:98 Certificate issuer: /CN=A91CDE0E/serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2 Certificate serial: 1522 Authority key identifier: 73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa Signing time: Wed 02 Aug 2023 17:14:42 +0000 ROA not before: Wed 02 Aug 2023 17:14:42 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 4647 IP address blocks: 103.246.28.0/22 maxlen: 24 2404:fc80::/32 maxlen: 36 2404:fc80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.crl rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 17:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5410 (0x1522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDE0E/serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2 Validity Not Before: Aug 2 17:14:42 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ca8f01-bd21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7c:01:a8:6a:10:df:54:90:c5:4a:e7:45:63: 71:47:cd:12:ab:c7:4c:95:1b:bc:aa:2e:ae:de:c8: 4f:85:aa:01:47:a3:09:3a:37:2f:ab:82:7c:ff:17: 8a:70:1d:02:2a:a1:04:f4:68:f8:23:d6:77:ce:23: da:ae:e7:74:4f:8d:11:b9:35:eb:4a:5a:a2:16:6a: 11:d8:af:00:32:e7:fc:6f:a9:56:28:5f:cf:b4:17: bd:93:54:12:78:ae:4a:b0:73:38:6e:a3:fc:d0:c1: 6a:7d:2b:86:fa:13:db:65:36:d6:28:2a:46:de:88: d0:c6:48:db:5f:ef:fe:f8:17:0f:49:47:97:31:6f: 88:a0:2c:8a:10:d7:41:4a:a3:25:c3:77:7d:f4:d8: c4:ed:d1:1b:e9:68:df:82:68:99:72:54:c8:d6:ad: 34:36:e6:53:df:4a:a1:72:02:dc:51:fe:b2:d6:92: 74:11:b2:eb:1b:e6:40:46:4f:16:e7:a9:00:3b:45: 4e:3d:b5:24:5e:cc:30:11:77:3a:7c:ce:67:6f:e1: 6d:56:c0:ea:26:d5:3d:f7:2f:9f:cb:e8:30:bf:28: 10:61:57:d9:e0:c8:39:59:bc:8e:84:0b:a1:f2:ff: dd:a8:d0:f7:63:45:48:d1:39:fd:11:46:cb:49:fb: 32:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B7:A5:2B:EA:4B:3B:3A:FF:88:16:67:05:53:19:B5:29:03:98:98 X509v3 Authority Key Identifier: keyid:73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.28.0/22 IPv6: 2404:fc80::/32 Signature Algorithm: sha256WithRSAEncryption 2b:30:0c:b1:f2:b9:96:ad:95:2a:99:29:6c:16:9d:b8:20:7d: 60:2c:c5:9d:2b:d1:2d:ac:b6:3d:7d:94:e5:5e:ee:0e:79:93: e7:c2:fe:de:68:1d:cd:f7:ff:fa:05:99:10:79:fb:19:e2:2d: 1c:b1:6d:0e:91:76:f3:74:75:9d:82:a6:ad:c7:4c:20:b6:4f: 83:d4:16:0e:26:64:6c:54:59:9d:2f:8b:bd:1b:37:0b:4c:c8: 7e:65:e2:46:22:be:d2:86:39:28:94:ce:63:90:ad:1b:b0:ba: 55:a9:a6:f4:16:fe:bf:ce:f4:4b:92:ad:50:b1:19:43:9f:99: 7e:f0:24:0b:61:47:de:3c:11:77:88:30:6a:62:14:ab:37:95: b5:37:1a:00:eb:70:25:6a:5f:ce:5e:b2:7a:3a:97:9d:81:85: 0c:59:9a:c4:fa:e4:b0:04:f6:4b:ac:6f:d1:7e:fb:c7:33:1c: 79:ba:ca:60:27:31:ba:8a:c6:15:c0:20:be:27:83:04:28:6f: 75:19:d4:55:d1:b1:14:ae:4e:ba:21:81:91:d0:be:d2:c2:d7: be:22:22:76:02:49:18:0b:32:2f:07:5a:52:14:56:fe:e0:04: 28:ab:e5:5b:4d:ac:06:14:fa:98:a6:64:cd:a6:e6:1a:b1:1e: 6d:b0:7c:75 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFMEUxMTAvBgNVBAUTKDczMTE0MUFGMEE3OTNBQTMxNkVGN0RERDJGMUIwNUY4 OTFDNTY2QjIwHhcNMjMwODAyMTcxNDQyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhOGYwMS1iZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHwBqGoQ31SQxUrnRWNxR80Sq8dMlRu8qi6u3shPhaoBR6MJOjcvq4J8/xeK cB0CKqEE9Gj4I9Z3ziParud0T40RuTXrSlqiFmoR2K8AMuf8b6lWKF/PtBe9k1QS eK5KsHM4bqP80MFqfSuG+hPbZTbWKCpG3ojQxkjbX+/++BcPSUeXMW+IoCyKENdB SqMlw3d99NjE7dEb6WjfgmiZclTI1q00NuZT30qhcgLcUf6y1pJ0EbLrG+ZARk8W 56kAO0VOPbUkXswwEXc6fM5nb+FtVsDqJtU99y+fy+gwvygQYVfZ4Mg5WbyOhAuh 8v/dqND3Y0VI0Tn9EUbLSfsyxwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLi3pSvq Szs6/4gWZwVTGbUpA5iYMB8GA1UdIwQYMBaAFHMRQa8KeTqjFu993S8bBfiRxWay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREUwRS82RTFFN0RFNDA1 N0MxMUU4ODJGRThFMjhDNEY5QUUwMi9jeEZCcndwNU9xTVc3MzNkTHhzRi1KSEZa ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4RkJyd3A1T3FNVzczM2RMeHNGLUpIRlpySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RFMEUvNkUxRTdERTQwNTdDMTFFODgyRkU4RTI4QzRGOUFFMDIvRTk0MEVGMzQ2 NEI2MTFFQTlCNzQzNDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn9hwwDQQCAAIwBwMFACQE/IAwDQYJKoZIhvcNAQELBQAD ggEBACswDLHyuZatlSqZKWwWnbggfWAsxZ0r0S2stj19lOVe7g55k+fC/t5oHc33 //oFmRB5+xniLRyxbQ6RdvN0dZ2Cpq3HTCC2T4PUFg4mZGxUWZ0vi70bNwtMyH5l 4kYivtKGOSiUzmOQrRuwulWppvQW/r/O9EuSrVCxGUOfmX7wJAthR948EXeIMGpi FKs3lbU3GgDrcCVqX85esno6l52BhQxZmsT65LAE9kusb9F++8czHHm6ymAnMbqK xhXAIL4ngwQob3UZ1FXRsRSuTrohgZHQvtLC174iInYCSRgLMi8HWlIUVv7gBCir 5VtNrAYU+pimZM2m5hqxHm2wfHU= -----END CERTIFICATE-----Generated at Mon Jun 24 21:24:00 2024 by rpki-client on console-ams.rpki-client.org