$ rpki-client -vvf rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A291634816B711ECBD752D47C4F9AE02.roa File: A291634816B711ECBD752D47C4F9AE02.roa (raw, json) Hash identifier: ZfJ7/UZgkrT87F0mr1Mj/yKL9GTf3YQRNmUOn/GBBdo= Subject key identifier: 9C:A9:98:EC:5B:CC:E8:BF:B0:42:05:7C:6E:D8:C6:9D:77:91:E3:A8 Certificate issuer: /CN=A91D891D/serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Certificate serial: 037D Authority key identifier: 41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A291634816B711ECBD752D47C4F9AE02.roa Signing time: Tue 23 May 2023 00:48:17 +0000 ROA not before: Tue 23 May 2023 00:48:17 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 134520 IP address blocks: 103.113.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 893 (0x37d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D891D/serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Validity Not Before: May 23 00:48:17 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646c0d51-8057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:45:62:c8:15:0b:e7:89:6c:d3:65:e2:6b:df: 9d:70:e2:26:04:0c:05:79:88:e4:a7:e7:82:90:75: e3:8b:7c:cb:2f:86:96:d1:85:59:a5:26:e1:b9:9e: 29:e2:d4:66:6e:c9:9d:41:a7:d0:12:96:b0:98:a5: d6:d4:2b:0c:59:2f:68:27:b3:2e:bb:0c:64:75:4a: 14:4a:29:0a:99:81:a9:e3:b0:8a:67:ea:cd:30:49: 4e:b2:82:d8:58:05:6c:e9:73:fd:62:1f:de:01:23: 42:78:b6:ca:7f:14:45:0c:79:10:b1:12:e2:77:16: 30:5a:57:e4:9a:4b:74:83:a8:24:2c:30:56:ca:66: 7f:fa:60:b6:7b:cb:90:8a:d1:02:cc:b8:0c:35:00: 2c:6a:a1:a0:b1:4f:b8:8f:0c:75:06:3f:af:3f:69: 1d:d7:a7:35:7e:a5:ee:52:11:57:0c:c2:46:ab:51: b1:3f:5b:60:f0:e8:d3:21:bf:f2:27:30:9a:6b:34: c0:01:f6:e7:8f:1f:12:33:16:6c:32:dd:de:9c:5a: 1d:f8:7b:e7:f9:8e:da:41:bc:75:3e:42:f7:dd:39: 84:ac:3b:14:fe:a2:84:8a:e3:cc:cc:76:a2:32:e2: 8e:b7:3f:0a:b7:37:f7:52:a8:6f:c1:6b:43:e6:18: d1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A9:98:EC:5B:CC:E8:BF:B0:42:05:7C:6E:D8:C6:9D:77:91:E3:A8 X509v3 Authority Key Identifier: keyid:41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A291634816B711ECBD752D47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.156.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:ad:5f:7f:f4:0f:92:03:81:dd:0e:61:3b:93:df:e8:50:e4: c1:28:52:b5:3a:2e:eb:f6:07:d6:b6:fc:df:2f:22:4d:f8:c5: ef:cf:32:dd:ee:65:89:50:50:f1:76:2e:b8:e2:41:ae:f6:06: 8c:2d:34:1d:1f:1e:35:2a:c7:47:a1:50:e2:22:a3:07:59:d3: ba:37:b8:48:fc:3a:4f:22:02:f2:2b:fe:67:fe:1d:0c:ad:38: 0d:42:aa:ea:6b:64:b6:65:7b:c7:41:ad:3a:43:58:24:b8:4f: 43:6e:eb:22:77:63:b9:9b:92:44:a0:18:80:cd:12:03:2e:a4: eb:bf:9e:cd:68:27:aa:b7:57:4e:cb:87:e4:b4:57:ae:eb:67: e9:0e:dc:9c:c7:32:29:02:dc:57:38:94:da:4e:7f:14:6c:65: 77:64:15:d5:2f:fc:88:ac:26:d4:4f:25:a2:5b:8a:2b:8e:e5: 84:ea:e6:45:eb:49:ac:5b:d9:d8:e3:ca:62:b7:bc:b1:f5:d6: 5f:40:bd:35:8f:78:cc:61:e8:a1:66:64:de:4f:70:60:b7:c2: ca:45:77:1c:19:8d:77:a1:c5:95:6c:a6:e2:b8:69:87:fa:5f: d4:5f:68:8f:5c:a7:0f:86:a1:77:06:df:0f:43:b4:e4:f2:3a: 58:cc:7b:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MUQxMTAvBgNVBAUTKDQxRDI2OEM1MTEzRUYzRUQ3QjE3M0I3ODBFMDE3RUQz RkU4NTU1RjcwHhcNMjMwNTIzMDA0ODE3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZjMGQ1MS04MDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEViyBUL54ls02Xia9+dcOImBAwFeYjkp+eCkHXji3zLL4aW0YVZpSbhuZ4p 4tRmbsmdQafQEpawmKXW1CsMWS9oJ7MuuwxkdUoUSikKmYGp47CKZ+rNMElOsoLY WAVs6XP9Yh/eASNCeLbKfxRFDHkQsRLidxYwWlfkmkt0g6gkLDBWymZ/+mC2e8uQ itECzLgMNQAsaqGgsU+4jwx1Bj+vP2kd16c1fqXuUhFXDMJGq1GxP1tg8OjTIb/y JzCaazTAAfbnjx8SMxZsMt3enFod+Hvn+Y7aQbx1PkL33TmErDsU/qKEiuPMzHai MuKOtz8Ktzf3UqhvwWtD5hjRkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJypmOxb zOi/sEIFfG7Yxp13keOoMB8GA1UdIwQYMBaAFEHSaMURPvPtexc7eA4BftP+hVX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkxRC8zODFBOEYyQTFD QzIxMUVCODJCNTcxNzhDNEY5QUUwMi9RZEpveFJFLTgtMTdGenQ0RGdGLTBfNkZW ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FkSm94UkUtOC0xN0Z6dDREZ0YtMF82RlZmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5MUQvMzgxQThGMkExQ0MyMTFFQjgyQjU3MTc4QzRGOUFFMDIvQTI5MTYzNDgx NkI3MTFFQ0JENzUyRDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncZwwDQYJKoZIhvcNAQELBQADggEBAI6tX3/0D5IDgd0O YTuT3+hQ5MEoUrU6Luv2B9a2/N8vIk34xe/PMt3uZYlQUPF2LrjiQa72BowtNB0f HjUqx0ehUOIiowdZ07o3uEj8Ok8iAvIr/mf+HQytOA1CquprZLZle8dBrTpDWCS4 T0Nu6yJ3Y7mbkkSgGIDNEgMupOu/ns1oJ6q3V07Lh+S0V67rZ+kO3JzHMikC3Fc4 lNpOfxRsZXdkFdUv/IisJtRPJaJbiiuO5YTq5kXrSaxb2djjymK3vLH11l9AvTWP eMxh6KFmZN5PcGC3wspFdxwZjXehxZVspuK4aYf6X9RfaI9cpw+GoXcG3w9DtOTy OljMe08= -----END CERTIFICATE-----Generated at Tue May 7 00:53:25 2024 by rpki-client on console-ams.rpki-client.org