$ rpki-client -vvf rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/98B4FB32DB9011E996483B2BC4F9AE02.roa File: 98B4FB32DB9011E996483B2BC4F9AE02.roa (raw, json) Hash identifier: gGI/o+6AWHDKLMLvSuRNnfJa7hMNn4z6A82LgeXdoJk= Subject key identifier: 97:9E:44:67:0B:21:03:B0:A7:8A:DE:CB:8B:33:C7:28:62:79:83:E5 Certificate issuer: /CN=A91D322A/serialNumber=B0AE861C1EBE8BAD6E656D401F7F7506094074A0 Certificate serial: 0BE2 Authority key identifier: B0:AE:86:1C:1E:BE:8B:AD:6E:65:6D:40:1F:7F:75:06:09:40:74:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sK6GHB6-i61uZW1AH391BglAdKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/98B4FB32DB9011E996483B2BC4F9AE02.roa Signing time: Thu 28 Sep 2023 18:56:16 +0000 ROA not before: Thu 28 Sep 2023 18:56:16 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139579 IP address blocks: 103.141.250.0/23 maxlen: 24 2001:df1:1e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/sK6GHB6-i61uZW1AH391BglAdKA.crl rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/sK6GHB6-i61uZW1AH391BglAdKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sK6GHB6-i61uZW1AH391BglAdKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3042 (0xbe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D322A/serialNumber=B0AE861C1EBE8BAD6E656D401F7F7506094074A0 Validity Not Before: Sep 28 18:56:16 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6515cc50-efe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:74:46:77:e0:40:f2:59:52:63:df:d1:1f:2f: 2f:c5:b4:aa:c0:4a:ab:08:6a:2b:0f:c0:8d:e8:89: 08:56:ed:08:4d:d6:21:5c:85:19:75:79:35:4e:b9: 95:de:1b:97:8f:fc:6c:47:03:f6:ab:a0:ce:a4:4c: 70:dd:ea:d3:7a:0c:26:61:77:7c:15:f8:28:e7:d7: b8:e4:f6:f3:03:52:d3:18:7e:70:eb:06:0d:9e:ed: 4c:b5:56:de:f8:e2:3d:d3:e3:8f:63:9d:c1:b7:46: f5:97:2f:e0:64:82:5c:d6:c3:bd:96:e6:e5:65:7f: 5c:bc:9a:0a:75:88:35:da:ad:41:34:92:f5:c0:60: f0:02:fb:49:b0:37:38:66:d8:4a:74:08:f8:7e:82: 12:a9:d4:7d:9a:f0:90:c0:40:0f:f9:1e:90:bb:17: 9e:c1:f5:aa:f3:8a:1e:dd:5c:85:37:05:2c:6c:9d: aa:5d:f0:2a:94:70:20:f7:63:85:b0:3a:8f:e1:f9: 73:d0:bc:dc:3c:26:60:58:e6:30:c9:13:6d:29:cd: e9:35:fe:d5:33:53:54:1d:78:3e:2d:d3:d6:bb:c8: b7:41:99:56:46:52:b3:a8:07:4d:15:ad:52:0b:8c: dc:55:6c:3a:ba:b8:ac:83:fd:ea:55:6b:9c:ed:d9: 3d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:9E:44:67:0B:21:03:B0:A7:8A:DE:CB:8B:33:C7:28:62:79:83:E5 X509v3 Authority Key Identifier: keyid:B0:AE:86:1C:1E:BE:8B:AD:6E:65:6D:40:1F:7F:75:06:09:40:74:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/sK6GHB6-i61uZW1AH391BglAdKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sK6GHB6-i61uZW1AH391BglAdKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/98B4FB32DB9011E996483B2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.250.0/23 IPv6: 2001:df1:1e80::/48 Signature Algorithm: sha256WithRSAEncryption 9d:c9:82:6b:5f:3c:31:4e:9f:8f:22:1c:09:20:8d:e1:65:50: 06:76:4a:1c:a5:75:26:1b:74:d0:66:b4:17:e2:1c:43:12:c0: 43:af:4f:59:65:a3:ff:76:d5:18:1c:e6:38:6f:31:ba:14:55: 63:d6:92:41:a2:20:1b:d1:f9:87:df:dd:8b:65:e7:c1:41:99: b9:cd:a6:be:d8:d5:2a:82:b1:6a:b2:a1:a2:60:16:03:9a:f2: b6:61:71:1b:b7:65:65:62:dc:7a:1a:b1:02:3d:06:b0:e0:94: eb:39:6b:b0:fb:b4:e2:92:ce:9f:35:ed:e2:1e:92:f3:10:15: 41:14:5e:0c:91:48:35:86:42:f6:7e:aa:37:81:2b:79:cf:c7: 3c:d2:5b:78:40:78:ef:35:76:c4:dc:cd:3c:b4:0b:05:82:1b: 60:7d:bd:88:f6:5c:44:3c:76:45:e0:10:f2:97:1a:a3:03:2e: 00:d3:33:91:98:c0:b1:59:f0:50:4d:e1:97:87:de:fb:96:a4: 1e:9f:37:b0:ce:99:8b:c5:93:6e:06:77:c9:f1:cd:75:26:e0: 70:6d:6e:a7:9b:80:5f:67:a3:52:a0:9a:df:f4:4d:c6:42:48: 0e:cc:a9:d2:bc:d5:67:36:cf:d6:98:60:b6:2a:39:8b:81:33: b3:81:3a:9d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMyMkExMTAvBgNVBAUTKEIwQUU4NjFDMUVCRThCQUQ2RTY1NkQ0MDFGN0Y3NTA2 MDk0MDc0QTAwHhcNMjMwOTI4MTg1NjE2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE1Y2M1MC1lZmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn3RGd+BA8llSY9/RHy8vxbSqwEqrCGorD8CN6IkIVu0ITdYhXIUZdXk1TrmV 3huXj/xsRwP2q6DOpExw3erTegwmYXd8Ffgo59e45PbzA1LTGH5w6wYNnu1MtVbe +OI90+OPY53Bt0b1ly/gZIJc1sO9lublZX9cvJoKdYg12q1BNJL1wGDwAvtJsDc4 ZthKdAj4foISqdR9mvCQwEAP+R6QuxeewfWq84oe3VyFNwUsbJ2qXfAqlHAg92OF sDqP4flz0LzcPCZgWOYwyRNtKc3pNf7VM1NUHXg+LdPWu8i3QZlWRlKzqAdNFa1S C4zcVWw6urisg/3qVWuc7dk99wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJeeRGcL IQOwp4rey4szxyhieYPlMB8GA1UdIwQYMBaAFLCuhhwevoutbmVtQB9/dQYJQHSg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzIyQS8wREMxREY3Q0RC OTAxMUU5OUMyNUM1MkFDNEY5QUUwMi9zSzZHSEI2LWk2MXVaVzFBSDM5MUJnbEFk S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NLNkdIQjYtaTYxdVpXMUFIMzkxQmdsQWRLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDMyMkEvMERDMURGN0NEQjkwMTFFOTlDMjVDNTJBQzRGOUFFMDIvOThCNEZCMzJE QjkwMTFFOTk2NDgzQjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjfowDwQCAAIwCQMHACABDfEegDANBgkqhkiG9w0BAQsF AAOCAQEAncmCa188MU6fjyIcCSCN4WVQBnZKHKV1Jht00Ga0F+IcQxLAQ69PWWWj /3bVGBzmOG8xuhRVY9aSQaIgG9H5h9/di2XnwUGZuc2mvtjVKoKxarKhomAWA5ry tmFxG7dlZWLcehqxAj0GsOCU6zlrsPu04pLOnzXt4h6S8xAVQRReDJFINYZC9n6q N4Erec/HPNJbeEB47zV2xNzNPLQLBYIbYH29iPZcRDx2ReAQ8pcaowMuANMzkZjA sVnwUE3hl4fe+5akHp83sM6Zi8WTbgZ3yfHNdSbgcG1up5uAX2ejUqCa3/RNxkJI Dsyp0rzVZzbP1phgtio5i4Ezs4E6nQ== -----END CERTIFICATE-----Generated at Sat May 18 20:16:06 2024 by rpki-client on console-ams.rpki-client.org