$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/CC57D98CE1A511EC8AB72944C4F9AE02.roa File: CC57D98CE1A511EC8AB72944C4F9AE02.roa (raw, json) Hash identifier: Mus4Pp8fg1rL2SYY2nH+YUCifMto6SDmrsJGtBCLaWk= Subject key identifier: 16:5F:48:79:64:DA:0B:C2:5C:62:0C:A8:0D:CB:CE:71:F3:28:E9:AE Certificate issuer: /CN=A91CE39F/serialNumber=4FFFAC717813392EE1C876A321671E1D6C2AB9B4 Certificate serial: 0657 Authority key identifier: 4F:FF:AC:71:78:13:39:2E:E1:C8:76:A3:21:67:1E:1D:6C:2A:B9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_-scXgTOS7hyHajIWceHWwqubQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/CC57D98CE1A511EC8AB72944C4F9AE02.roa Signing time: Sat 27 May 2023 00:06:19 +0000 ROA not before: Sat 27 May 2023 00:06:19 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.151.192.0/24 maxlen: 24 103.151.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/T_-scXgTOS7hyHajIWceHWwqubQ.crl rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/T_-scXgTOS7hyHajIWceHWwqubQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_-scXgTOS7hyHajIWceHWwqubQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE39F/serialNumber=4FFFAC717813392EE1C876A321671E1D6C2AB9B4 Validity Not Before: May 27 00:06:19 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6471497b-bea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:37:d5:d7:93:d7:0e:ff:84:7d:3b:63:3a:d0: a0:b9:93:f2:81:71:b2:f4:44:f7:d7:10:29:05:07: bc:7f:b1:a2:bf:24:2e:9c:f5:6c:93:17:b5:c1:ee: 7e:7a:5f:5e:a8:b3:4b:8d:de:e0:ea:16:9b:65:6a: 64:d5:02:b8:4d:01:ca:da:07:25:64:8d:61:f3:35: 3b:1e:c4:fd:66:13:45:f0:0f:38:28:58:45:b8:33: 5d:ec:5e:c1:5a:97:42:c6:98:cb:88:3e:69:f8:3a: 6f:a5:e4:5f:8b:13:e0:7d:2a:aa:53:b5:b7:9d:46: 57:a6:74:8c:44:79:fd:b7:ac:72:66:92:48:ed:4e: 1a:20:f5:5b:32:5d:c1:84:c4:6c:8b:30:73:2a:5c: e0:df:40:b2:42:78:22:28:21:37:73:92:b0:e0:ee: 7b:ee:b1:3c:18:cd:4b:c0:3d:72:21:b1:9f:01:35: ba:69:01:8c:25:5e:10:87:ef:94:bd:42:2a:b9:f4: af:8e:f0:b4:e9:e3:c7:ba:e2:6b:e2:b3:d4:de:fa: 28:9b:b9:4d:a1:93:b1:73:97:c0:eb:f6:4e:b7:62: 32:5e:d6:66:68:dc:cb:16:29:a2:46:6f:5e:58:70: 21:8f:b3:12:fa:f4:b9:86:1c:48:c0:8f:eb:21:13: 3f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5F:48:79:64:DA:0B:C2:5C:62:0C:A8:0D:CB:CE:71:F3:28:E9:AE X509v3 Authority Key Identifier: keyid:4F:FF:AC:71:78:13:39:2E:E1:C8:76:A3:21:67:1E:1D:6C:2A:B9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/T_-scXgTOS7hyHajIWceHWwqubQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_-scXgTOS7hyHajIWceHWwqubQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/CC57D98CE1A511EC8AB72944C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.192.0/23 Signature Algorithm: sha256WithRSAEncryption d9:0a:c9:09:46:d1:d4:4f:5c:dc:80:c9:bb:ca:37:23:c3:95: 0d:b4:ba:1c:1c:2d:59:72:e3:e4:ac:05:00:8b:89:dc:0f:09: 22:db:16:c5:88:af:d0:bf:7f:55:bb:fc:77:40:d8:a8:02:82: f1:4e:05:b5:e6:ae:52:4c:aa:bb:b1:6f:5d:6b:00:ed:cb:3a: 2c:76:45:8d:ce:73:25:9c:57:b8:a6:a8:f8:74:60:80:65:66: 7b:ac:10:24:38:44:85:7a:fa:be:50:a9:c6:9b:22:66:8c:c7: db:1b:1a:03:11:2e:fb:3d:16:b4:bc:1b:05:e7:e8:f2:ca:4c: 11:f6:ea:3c:64:ce:2d:e0:41:fe:22:68:42:26:d8:10:fc:12: fd:7e:7b:6d:f7:6c:50:45:5e:b1:2d:78:b6:4b:e7:21:e0:2e: bf:b8:04:02:9b:27:e8:5a:75:90:63:1c:c7:ac:68:b4:46:b4: cb:1d:94:8b:48:0b:ec:4d:fe:a8:86:31:13:15:4f:2b:cf:3e: 03:c9:eb:c5:2b:bf:91:9f:b3:fe:73:2d:cb:13:37:5f:37:4e: cb:eb:86:6e:9a:9e:72:fd:9a:83:77:00:ab:fc:05:dd:e9:11: 22:87:db:ca:d1:f4:b3:65:55:7a:f9:c1:1f:5e:6d:86:ee:4f: cb:e8:89:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzOUYxMTAvBgNVBAUTKDRGRkZBQzcxNzgxMzM5MkVFMUM4NzZBMzIxNjcxRTFE NkMyQUI5QjQwHhcNMjMwNTI3MDAwNjE5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxNDk3Yi1iZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjfV15PXDv+EfTtjOtCguZPygXGy9ET31xApBQe8f7GivyQunPVskxe1we5+ el9eqLNLjd7g6habZWpk1QK4TQHK2gclZI1h8zU7HsT9ZhNF8A84KFhFuDNd7F7B WpdCxpjLiD5p+DpvpeRfixPgfSqqU7W3nUZXpnSMRHn9t6xyZpJI7U4aIPVbMl3B hMRsizBzKlzg30CyQngiKCE3c5Kw4O577rE8GM1LwD1yIbGfATW6aQGMJV4Qh++U vUIqufSvjvC06ePHuuJr4rPU3voom7lNoZOxc5fA6/ZOt2IyXtZmaNzLFimiRm9e WHAhj7MS+vS5hhxIwI/rIRM/qwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBZfSHlk 2gvCXGIMqA3LznHzKOmuMB8GA1UdIwQYMBaAFE//rHF4Ezku4ch2oyFnHh1sKrm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM5Ri9DMTVDNDFCNEZE NTcxMUVBQkMzQ0EyNERDNEY5QUUwMi9UXy1zY1hnVE9TN2h5SGFqSVdjZUhXd3F1 YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfLXNjWGdUT1M3aHlIYWpJV2NlSFd3cXViUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzOUYvQzE1QzQxQjRGRDU3MTFFQUJDM0NBMjREQzRGOUFFMDIvQ0M1N0Q5OENF MUE1MTFFQzhBQjcyOTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnl8AwDQYJKoZIhvcNAQELBQADggEBANkKyQlG0dRPXNyA ybvKNyPDlQ20uhwcLVly4+SsBQCLidwPCSLbFsWIr9C/f1W7/HdA2KgCgvFOBbXm rlJMqruxb11rAO3LOix2RY3OcyWcV7imqPh0YIBlZnusECQ4RIV6+r5QqcabImaM x9sbGgMRLvs9FrS8GwXn6PLKTBH26jxkzi3gQf4iaEIm2BD8Ev1+e233bFBFXrEt eLZL5yHgLr+4BAKbJ+hadZBjHMesaLRGtMsdlItIC+xN/qiGMRMVTyvPPgPJ68Ur v5Gfs/5zLcsTN183Tsvrhm6annL9moN3AKv8Bd3pESKH28rR9LNlVXr5wR9ebYbu T8voiXM= -----END CERTIFICATE-----Generated at Wed Apr 24 23:34:31 2024 by rpki-client on console-ams.rpki-client.org