$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF7F6/7824EBD4BFBD11ECB788125DC4F9AE02/C09ED7E6804A11EDABB05C09C4F9AE02.roa File: C09ED7E6804A11EDABB05C09C4F9AE02.roa (raw, json) Hash identifier: MdzXZWQvKT2p/5qK7lv3O0+EPTJmWPhpO5delwufwRg= Subject key identifier: 2D:BC:19:E4:8B:C0:6F:7A:28:CE:19:B1:A9:E0:DA:9A:D2:96:80:28 Certificate issuer: /CN=A91CF7F6/serialNumber=8A391460CA6F644A58911DB738346184E378D005 Certificate serial: 0187 Authority key identifier: 8A:39:14:60:CA:6F:64:4A:58:91:1D:B7:38:34:61:84:E3:78:D0:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijkUYMpvZEpYkR23ODRhhON40AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF7F6/7824EBD4BFBD11ECB788125DC4F9AE02/C09ED7E6804A11EDABB05C09C4F9AE02.roa Signing time: Wed 11 Jan 2023 05:04:16 +0000 ROA not before: Wed 11 Jan 2023 05:04:16 +0000 ROA not after: Sun 31 Mar 2024 00:00:00 +0000 asID: 140224 IP address blocks: 103.179.242.0/24 maxlen: 24 103.179.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF7F6/7824EBD4BFBD11ECB788125DC4F9AE02/ijkUYMpvZEpYkR23ODRhhON40AU.crl rsync://rpki.apnic.net/member_repository/A91CF7F6/7824EBD4BFBD11ECB788125DC4F9AE02/ijkUYMpvZEpYkR23ODRhhON40AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijkUYMpvZEpYkR23ODRhhON40AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Mar 2023 05:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF7F6/serialNumber=8A391460CA6F644A58911DB738346184E378D005 Validity Not Before: Jan 11 05:04:16 2023 GMT Not After : Mar 31 00:00:00 2024 GMT Subject: CN=63be434f-1526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:34:b5:2f:01:70:d3:46:c0:d2:27:64:d0:1b: 46:de:17:5a:bd:f6:84:b5:e8:46:0a:26:d1:7f:3b: f5:0c:aa:2a:eb:64:7b:2f:e6:11:4e:3c:16:16:0d: f0:93:84:1d:18:80:e2:95:3b:e7:16:f7:d9:69:2e: b7:47:f5:2f:45:a9:4d:25:0a:44:03:b8:02:a1:a9: 70:d8:2d:74:f3:05:0d:0e:d6:9f:9e:69:d3:63:30: c4:e1:07:e9:e7:61:ac:a6:2e:9a:7c:70:15:86:1f: 67:a2:a7:ba:78:fc:91:aa:dd:56:4c:dc:18:a5:7f: b7:90:ca:eb:15:c2:53:c3:3b:21:f6:11:02:ed:bc: 8e:3c:a3:cb:a7:5a:33:5b:02:d3:6e:c9:6b:1c:8d: 7b:0e:b7:f1:74:1c:07:2b:45:b9:b5:79:57:ba:67: b4:3e:56:73:3e:50:02:17:64:03:e7:e1:f6:a7:48: c9:f6:db:ad:09:38:69:6c:b9:f3:c9:7d:8b:58:c5: e0:96:1a:00:0b:8c:d0:e7:a6:b5:9e:31:10:55:b1: bd:40:9e:20:0b:4b:3f:6d:39:eb:a5:db:8c:98:89: 3e:4c:37:7d:1f:41:d7:07:56:59:93:dc:d1:cd:41: 0d:98:6b:aa:a3:0e:d6:1e:e1:51:7c:df:b8:65:aa: af:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BC:19:E4:8B:C0:6F:7A:28:CE:19:B1:A9:E0:DA:9A:D2:96:80:28 X509v3 Authority Key Identifier: keyid:8A:39:14:60:CA:6F:64:4A:58:91:1D:B7:38:34:61:84:E3:78:D0:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF7F6/7824EBD4BFBD11ECB788125DC4F9AE02/ijkUYMpvZEpYkR23ODRhhON40AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijkUYMpvZEpYkR23ODRhhON40AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF7F6/7824EBD4BFBD11ECB788125DC4F9AE02/C09ED7E6804A11EDABB05C09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.242.0/23 Signature Algorithm: sha256WithRSAEncryption b0:50:ab:a5:41:70:fe:f4:34:88:8c:55:e4:29:81:34:fa:0c: 0b:75:d8:20:fd:26:5c:67:6b:10:d1:57:82:21:fc:21:4c:df: 72:63:61:32:5f:a9:03:19:6b:41:f2:c2:e8:3e:11:77:e2:b9: 11:7e:d4:c7:29:1d:81:03:cf:ac:3e:f6:f5:d7:38:d2:04:88: 95:2f:1a:33:ac:9f:56:4d:9b:31:9b:0e:22:8d:f4:9e:25:33: 01:f6:08:a2:d2:fb:3b:ba:3c:cb:fd:72:d3:a3:67:e3:e5:5f: 12:7e:e2:3a:95:b0:de:2e:0e:1f:6d:77:5d:91:bd:f0:96:d5: 5b:36:cb:ff:76:7f:24:40:05:c6:e0:de:a4:1a:4e:6c:9f:94: f3:5a:5e:0b:bd:2b:8e:b8:7c:62:fe:e3:99:c7:b7:2e:3b:4c: 38:47:1d:d8:1a:9c:20:75:a7:9e:92:70:07:0d:b0:67:24:94: e5:b0:7a:f5:4b:af:bb:db:da:04:d2:af:f4:6c:0b:a3:e0:e8: ac:bf:2b:d7:52:93:64:c5:9d:e3:f9:ba:d4:45:e6:b9:af:5a: 6f:cb:a2:3b:64:9e:34:ee:44:a0:f5:c7:7d:67:7e:e4:4e:aa: e7:92:82:c1:d7:ca:29:f6:f3:67:72:0f:cd:3b:36:01:a9:c8: 3f:71:c2:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3RjYxMTAvBgNVBAUTKDhBMzkxNDYwQ0E2RjY0NEE1ODkxMURCNzM4MzQ2MTg0 RTM3OEQwMDUwHhcNMjMwMTExMDUwNDE2WhcNMjQwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02M2JlNDM0Zi0xNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDS1LwFw00bA0idk0BtG3hdavfaEtehGCibRfzv1DKoq62R7L+YRTjwWFg3w k4QdGIDilTvnFvfZaS63R/UvRalNJQpEA7gCoalw2C108wUNDtafnmnTYzDE4Qfp 52Gspi6afHAVhh9noqe6ePyRqt1WTNwYpX+3kMrrFcJTwzsh9hEC7byOPKPLp1oz WwLTbslrHI17DrfxdBwHK0W5tXlXume0PlZzPlACF2QD5+H2p0jJ9tutCThpbLnz yX2LWMXglhoAC4zQ56a1njEQVbG9QJ4gC0s/bTnrpduMmIk+TDd9H0HXB1ZZk9zR zUENmGuqow7WHuFRfN+4ZaqviwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC28GeSL wG96KM4Zsang2prSloAoMB8GA1UdIwQYMBaAFIo5FGDKb2RKWJEdtzg0YYTjeNAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjdGNi83ODI0RUJENEJG QkQxMUVDQjc4ODEyNURDNEY5QUUwMi9pamtVWU1wdlpFcFlrUjIzT0RSaGhPTjQw QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lqa1VZTXB2WkVwWWtSMjNPRFJoaE9ONDBBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y3RjYvNzgyNEVCRDRCRkJEMTFFQ0I3ODgxMjVEQzRGOUFFMDIvQzA5RUQ3RTY4 MDRBMTFFREFCQjA1QzA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFns/IwDQYJKoZIhvcNAQELBQADggEBALBQq6VBcP70NIiM VeQpgTT6DAt12CD9JlxnaxDRV4Ih/CFM33JjYTJfqQMZa0Hywug+EXfiuRF+1Mcp HYEDz6w+9vXXONIEiJUvGjOsn1ZNmzGbDiKN9J4lMwH2CKLS+zu6PMv9ctOjZ+Pl XxJ+4jqVsN4uDh9td12RvfCW1Vs2y/92fyRABcbg3qQaTmyflPNaXgu9K464fGL+ 45nHty47TDhHHdganCB1p56ScAcNsGcklOWwevVLr7vb2gTSr/RsC6Pg6Ky/K9dS k2TFneP5utRF5rmvWm/LojtknjTuRKD1x31nfuROqueSgsHXyin282dyD807NgGp yD9xwrA= -----END CERTIFICATE-----Generated at Wed Mar 15 11:45:31 2023 by rpki-client on console-ams.rpki-client.org