$ rpki-client -vvf rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/469C2676D76111EB97EB721DC4F9AE02.roa File: 469C2676D76111EB97EB721DC4F9AE02.roa (raw, json) Hash identifier: 7d5HceNo+BwC7Q7PU6+bWZvk1yROvAMjbz2juLPUG4c= Subject key identifier: 7C:98:45:6B:F2:E2:73:D1:FC:E7:1D:4F:C8:86:54:BD:95:95:A9:06 Certificate issuer: /CN=A91D008B/serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Certificate serial: 0415 Authority key identifier: C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/469C2676D76111EB97EB721DC4F9AE02.roa Signing time: Sat 03 Jun 2023 03:10:29 +0000 ROA not before: Sat 03 Jun 2023 03:10:29 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 142407 IP address blocks: 103.168.8.0/24 maxlen: 24 103.168.9.0/24 maxlen: 24 2407:7ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 01:31:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1045 (0x415) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D008B/serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Validity Not Before: Jun 3 03:10:29 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647aaf25-e88b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6f:2e:22:b9:72:5e:e9:b8:c8:8e:a3:8f:e0: a9:72:0b:51:e2:da:db:fc:66:71:9b:86:4f:3b:49: 5a:88:f7:24:86:39:c1:b8:29:c3:03:e3:d7:39:f2: 2d:c3:49:a5:4a:32:d1:d0:82:ed:df:d4:6d:68:ce: 33:a4:05:52:5b:49:6d:08:2c:1d:36:37:2e:06:dd: e6:a3:68:47:fc:b2:7a:2f:ac:31:db:f4:f8:7e:89: 99:4f:96:ae:81:7a:2c:08:00:4a:24:ff:e6:c3:ec: 62:28:2e:29:e2:f5:d8:76:68:9f:e0:31:5b:26:78: 6d:51:da:4a:6c:15:69:ec:bf:eb:c6:da:f6:3f:6a: 51:d5:10:58:cc:07:c9:d4:b4:68:16:03:d9:ab:5a: 2a:44:bf:c3:62:b0:11:cf:a5:7e:13:ac:4b:0d:58: 05:b8:a4:a1:5b:18:21:2a:4f:24:98:63:5e:1c:91: c2:d6:9a:c6:44:39:0a:ba:78:76:bf:67:28:63:e0: 15:06:5c:e3:bc:5f:14:f9:91:15:f0:40:4d:a1:84: 7b:4c:f8:15:70:cb:38:69:4b:be:6d:91:db:2b:99: 36:d6:63:5c:e3:8d:92:d2:7c:c6:df:a7:a4:dc:66: 0f:be:24:ad:06:dd:67:29:e0:99:a9:d2:ba:32:e5: 43:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:98:45:6B:F2:E2:73:D1:FC:E7:1D:4F:C8:86:54:BD:95:95:A9:06 X509v3 Authority Key Identifier: keyid:C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/469C2676D76111EB97EB721DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.8.0/23 IPv6: 2407:7ac0::/32 Signature Algorithm: sha256WithRSAEncryption 7d:a3:de:1c:e2:0d:37:e0:fa:90:ca:1c:87:0a:53:76:a9:2f: bb:36:e4:21:98:8d:35:37:62:cf:68:b4:c7:6a:0e:02:66:c9: 8c:1b:fb:e3:92:08:84:a8:3a:b1:66:67:4c:63:f5:d5:9f:74: 8c:2e:b0:d4:d3:c9:3e:76:79:1d:48:bb:87:4a:3e:91:28:c4: 65:6e:f6:9e:82:39:e8:7d:76:4c:44:eb:48:73:55:e1:d3:1e: be:ec:17:bf:0e:53:13:de:4c:56:ef:b5:ac:27:2f:89:b5:a0: d6:7d:56:e0:a4:bb:7c:82:f0:2c:92:93:dd:98:2c:71:0e:d9: 8d:4d:74:c0:5b:f0:44:9a:95:72:e6:38:ff:41:50:24:4e:2e: e1:76:a7:53:fb:3d:d3:fe:ed:56:57:d5:88:c4:ee:a3:3e:53: 88:dd:02:6e:43:14:09:14:66:4d:2a:fe:f2:9d:11:f2:a3:1e: 62:e1:fd:4d:d1:54:36:24:cf:31:27:41:09:f7:6e:d2:b6:9b: 57:02:38:f1:e4:2a:d3:46:dd:cc:0e:d2:ef:f6:49:5c:25:89: 44:c9:50:b8:bd:70:9d:9e:31:31:02:c6:eb:3a:0c:bd:77:11: 82:70:da:f3:59:b1:b5:59:62:2d:2a:f6:48:77:45:72:88:d9: 9e:1f:23:ce -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAwOEIxMTAvBgNVBAUTKEM4MkQ0NjIzQjc5REM1QTA0MDA3MkMxMTJBMUJBQkVC NDQxNjA0MUMwHhcNMjMwNjAzMDMxMDI5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhYWYyNS1lODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3m8uIrlyXum4yI6jj+CpcgtR4trb/GZxm4ZPO0laiPckhjnBuCnDA+PXOfIt w0mlSjLR0ILt39RtaM4zpAVSW0ltCCwdNjcuBt3mo2hH/LJ6L6wx2/T4fomZT5au gXosCABKJP/mw+xiKC4p4vXYdmif4DFbJnhtUdpKbBVp7L/rxtr2P2pR1RBYzAfJ 1LRoFgPZq1oqRL/DYrARz6V+E6xLDVgFuKShWxghKk8kmGNeHJHC1prGRDkKunh2 v2coY+AVBlzjvF8U+ZEV8EBNoYR7TPgVcMs4aUu+bZHbK5k21mNc442S0nzG36ek 3GYPviStBt1nKeCZqdK6MuVDQwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHyYRWvy 4nPR/OcdT8iGVL2VlakGMB8GA1UdIwQYMBaAFMgtRiO3ncWgQAcsESobq+tEFgQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDA4Qi80OUU2MjcxNkQ3 NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhhQkFCeXdSS2h1cjYwUVdC QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDMUdJN2VkeGFCQUJ5d1JLaHVyNjBRV0JCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDAwOEIvNDlFNjI3MTZENzVGMTFFQjlCRDI0QjFEQzRGOUFFMDIvNDY5QzI2NzZE NzYxMTFFQjk3RUI3MjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnqAgwDQQCAAIwBwMFACQHesAwDQYJKoZIhvcNAQELBQAD ggEBAH2j3hziDTfg+pDKHIcKU3apL7s25CGYjTU3Ys9otMdqDgJmyYwb++OSCISo OrFmZ0xj9dWfdIwusNTTyT52eR1Iu4dKPpEoxGVu9p6COeh9dkxE60hzVeHTHr7s F78OUxPeTFbvtawnL4m1oNZ9VuCku3yC8CySk92YLHEO2Y1NdMBb8ESalXLmOP9B UCROLuF2p1P7PdP+7VZX1YjE7qM+U4jdAm5DFAkUZk0q/vKdEfKjHmLh/U3RVDYk zzEnQQn3btK2m1cCOPHkKtNG3cwO0u/2SVwliUTJULi9cJ2eMTECxus6DL13EYJw 2vNZsbVZYi0q9kh3RXKI2Z4fI84= -----END CERTIFICATE-----Generated at Fri May 17 03:06:34 2024 by rpki-client on console-ams.rpki-client.org