$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1C49B43C419F11EA8B12587CC4F9AE02.roa File: 1C49B43C419F11EA8B12587CC4F9AE02.roa (raw, json) Hash identifier: Jgk8yuqCdN6EE4nL1jd3xhL23VBXzcAyNGtY9mrZLK0= Subject key identifier: CF:F1:57:12:8D:80:23:47:C2:4E:F2:31:4D:56:79:5E:71:EE:1D:00 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 09C9 Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1C49B43C419F11EA8B12587CC4F9AE02.roa Signing time: Sat 02 Sep 2023 19:47:32 +0000 ROA not before: Sat 02 Sep 2023 19:47:32 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17408 IP address blocks: 103.14.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2505 (0x9c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Sep 2 19:47:32 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f39154-ce23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7a:60:0c:dd:3a:9e:82:91:d5:17:06:dc:b0: 07:6d:65:a6:75:99:47:86:b4:70:75:0e:b0:54:1e: b6:31:e1:a9:2d:91:89:ea:09:f7:12:e1:18:79:69: 21:0c:5d:4d:63:08:e2:60:20:0a:a4:ca:4e:38:cc: f4:5f:24:19:61:ad:45:64:c1:a8:30:af:43:85:d4: d6:65:8d:4f:0f:03:da:85:f5:d6:93:2b:cc:9b:dd: 33:c6:fa:e5:f3:4e:40:20:d1:b0:d8:f0:f8:af:c6: 66:4a:a7:61:46:0c:85:90:27:b6:ea:d9:57:f8:cb: d8:12:f0:c4:d1:cf:86:a1:b9:c7:8c:fd:4a:2c:07: 01:e5:c0:22:05:34:2d:6f:8d:1e:3e:99:e2:c9:c6: 1a:25:77:d7:6e:07:f4:db:ec:3f:5e:76:d2:91:6f: 08:86:2a:b8:5d:7b:b2:24:25:45:47:c4:d2:36:59: bc:c6:75:5c:bb:30:73:30:a9:ad:57:3b:9f:14:02: af:18:32:f5:f6:12:fc:3a:23:3e:9a:5d:6f:92:44: 19:e0:f2:8b:60:88:2f:42:0b:32:5f:35:0d:17:17: c6:28:4d:8e:2e:1f:0a:63:9d:9a:ee:23:a4:07:60: ae:91:fc:e7:fd:39:f1:18:3b:4e:50:7f:77:ca:98: 0f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F1:57:12:8D:80:23:47:C2:4E:F2:31:4D:56:79:5E:71:EE:1D:00 X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1C49B43C419F11EA8B12587CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.164.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:ac:17:ef:36:ee:02:8b:0b:c2:d3:d2:d6:1f:f2:25:ed:de: f5:0c:09:2c:68:aa:45:c9:91:f4:16:97:7f:9b:4f:ad:41:17: 68:f5:47:0a:50:eb:e5:74:fb:9b:c6:1a:67:3e:e4:ea:52:9e: 51:a9:3c:87:b9:6d:bc:aa:a1:68:20:be:52:30:b1:22:f1:4e: 3e:03:f3:ab:3d:ca:57:fc:58:16:c5:80:d4:4f:32:b1:d8:b4: 6b:b2:5e:77:c5:68:7d:d8:b1:48:d2:c4:a0:60:4a:43:41:07: 58:a6:ac:3a:92:1b:c2:fb:55:69:72:6d:66:b1:42:fa:6e:8d: c2:90:bd:cd:77:16:59:f5:d6:99:f6:95:dd:9f:fd:55:59:c6: dd:a3:ee:63:77:f7:38:85:44:11:a3:93:56:15:6b:de:6e:85: 55:71:11:37:5a:19:cc:57:80:8b:3a:ac:c7:b6:f0:ab:c8:04: d9:8e:9f:7b:b6:f5:cf:6c:23:a7:64:ad:a3:ea:8f:3a:0c:2b: ce:0f:74:96:e6:13:7a:6f:64:e1:24:4a:2e:b1:02:c4:04:0c: ef:f7:ec:9d:42:d9:d3:95:a8:72:1e:91:50:d7:d5:fe:be:4d: a3:5e:82:73:57:a5:9a:c0:d3:df:db:9e:25:05:3a:72:d4:fe: 30:c7:39:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjMwOTAyMTk0NzMyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzOTE1NC1jZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HpgDN06noKR1RcG3LAHbWWmdZlHhrRwdQ6wVB62MeGpLZGJ6gn3EuEYeWkh DF1NYwjiYCAKpMpOOMz0XyQZYa1FZMGoMK9DhdTWZY1PDwPahfXWkyvMm90zxvrl 805AINGw2PD4r8ZmSqdhRgyFkCe26tlX+MvYEvDE0c+GobnHjP1KLAcB5cAiBTQt b40ePpniycYaJXfXbgf02+w/XnbSkW8Ihiq4XXuyJCVFR8TSNlm8xnVcuzBzMKmt VzufFAKvGDL19hL8OiM+ml1vkkQZ4PKLYIgvQgsyXzUNFxfGKE2OLh8KY52a7iOk B2Cukfzn/TnxGDtOUH93ypgPnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFM/xVxKN gCNHwk7yMU1WeV5x7h0AMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI0NzUvMjA4RkI3MzA0MTcyMTFFQTk4QTM2ODZEQzRGOUFFMDIvMUM0OUI0M0M0 MTlGMTFFQThCMTI1ODdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnDqQwDQYJKoZIhvcNAQELBQADggEBAC2sF+827gKLC8LT 0tYf8iXt3vUMCSxoqkXJkfQWl3+bT61BF2j1RwpQ6+V0+5vGGmc+5OpSnlGpPIe5 bbyqoWggvlIwsSLxTj4D86s9ylf8WBbFgNRPMrHYtGuyXnfFaH3YsUjSxKBgSkNB B1imrDqSG8L7VWlybWaxQvpujcKQvc13Fln11pn2ld2f/VVZxt2j7mN39ziFRBGj k1YVa95uhVVxETdaGcxXgIs6rMe28KvIBNmOn3u29c9sI6dkraPqjzoMK84PdJbm E3pvZOEkSi6xAsQEDO/37J1C2dOVqHIekVDX1f6+TaNegnNXpZrA09/bniUFOnLU /jDHORs= -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org