$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBAF1/8FE7A8B8248E11EBABEF2B2FC4F9AE02/A2201588391F11EBAD1E3A2CC4F9AE02.roa File: A2201588391F11EBAD1E3A2CC4F9AE02.roa (raw, json) Hash identifier: uUl4OOjjVYu5CafSIQQTXknEsBMr0bl5pgf0r0tVsTw= Subject key identifier: CD:B0:7F:2F:14:E9:C0:38:9B:5C:FE:EE:E4:FF:78:D1:5D:F1:8B:C3 Certificate issuer: /CN=A91DBAF1/serialNumber=6329304119F1A47F5D0640B2DF75DEF1F64C7BAF Certificate serial: 05CE Authority key identifier: 63:29:30:41:19:F1:A4:7F:5D:06:40:B2:DF:75:DE:F1:F6:4C:7B:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YykwQRnxpH9dBkCy33Xe8fZMe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBAF1/8FE7A8B8248E11EBABEF2B2FC4F9AE02/A2201588391F11EBAD1E3A2CC4F9AE02.roa Signing time: Sat 22 Apr 2023 07:00:51 +0000 ROA not before: Sat 22 Apr 2023 07:00:51 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 23686 IP address blocks: 103.91.164.0/23 maxlen: 23 103.91.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBAF1/8FE7A8B8248E11EBABEF2B2FC4F9AE02/YykwQRnxpH9dBkCy33Xe8fZMe68.crl rsync://rpki.apnic.net/member_repository/A91DBAF1/8FE7A8B8248E11EBABEF2B2FC4F9AE02/YykwQRnxpH9dBkCy33Xe8fZMe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YykwQRnxpH9dBkCy33Xe8fZMe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 23:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1486 (0x5ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBAF1/serialNumber=6329304119F1A47F5D0640B2DF75DEF1F64C7BAF Validity Not Before: Apr 22 07:00:51 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64438622-a574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e1:58:db:df:28:87:10:d5:74:42:6f:6c:6d: 26:ba:3f:ff:f3:7f:ac:07:64:0f:27:4d:63:be:26: 52:cc:f2:53:81:a4:a7:c5:0b:24:20:49:fe:93:b7: 21:e7:fc:00:6e:e2:4a:d8:53:0b:8d:c7:29:64:ba: f7:09:f1:07:6c:c9:f5:ee:ee:e9:b4:80:56:d8:61: c9:2d:ba:ef:de:ca:38:5b:b0:ef:47:88:bc:34:7f: 32:00:d2:e0:7e:10:75:b1:a9:97:45:1d:31:19:59: 5f:ed:b4:19:de:1f:35:12:dd:d1:42:0b:ba:f2:12: ee:14:26:d3:7b:8e:c5:e2:96:cc:87:c5:e2:e7:e6: b8:a7:ef:aa:87:42:84:49:ab:cf:c8:fb:cf:92:3b: f4:88:7d:0c:2a:22:e6:11:df:78:7a:10:5e:cd:4b: d2:7a:a6:89:d4:18:77:b6:94:dc:dc:e6:55:6c:12: c2:4b:9b:60:41:4a:17:eb:cf:07:8a:81:02:12:83: 1d:a5:6e:d7:c2:ec:74:f9:0a:4e:53:aa:49:1a:23: 01:4f:ed:45:05:20:70:30:69:ca:21:08:98:35:c4: 07:c5:cb:3a:83:1a:bd:65:4e:ef:1d:5c:4b:e1:47: 76:7b:8f:50:99:2d:71:fc:58:30:d3:0e:14:3f:d1: ec:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B0:7F:2F:14:E9:C0:38:9B:5C:FE:EE:E4:FF:78:D1:5D:F1:8B:C3 X509v3 Authority Key Identifier: keyid:63:29:30:41:19:F1:A4:7F:5D:06:40:B2:DF:75:DE:F1:F6:4C:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/8FE7A8B8248E11EBABEF2B2FC4F9AE02/YykwQRnxpH9dBkCy33Xe8fZMe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YykwQRnxpH9dBkCy33Xe8fZMe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/8FE7A8B8248E11EBABEF2B2FC4F9AE02/A2201588391F11EBAD1E3A2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.164.0/23 103.91.167.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:80:6f:50:ca:1a:02:51:3c:f8:a7:1b:e8:bc:47:e5:5d:45: 19:bd:be:f3:15:55:29:b9:66:e5:91:d6:18:08:a5:ba:00:94: a2:82:45:cb:b9:d4:93:cd:c5:82:a7:84:e8:2e:e5:ee:ca:ec: 27:65:77:3d:aa:b0:50:54:0b:ff:0e:bb:9d:83:0d:a9:3e:28: b2:d5:0b:26:56:34:33:a0:9a:b1:3e:1c:ce:83:66:8c:7e:4f: 2c:83:82:cc:46:0c:d6:5e:f9:34:59:09:4d:40:5c:70:41:ae: 34:d4:0b:cb:01:3b:a0:12:51:7f:4c:d1:45:50:d9:25:24:ac: f0:8b:d6:a0:6f:a9:e7:66:62:85:a4:3f:54:05:48:6d:54:10: 5e:52:16:62:02:ff:a5:e3:f0:1a:23:5f:09:ba:c8:09:71:87: a9:6b:c5:0e:ac:ac:3c:0b:7d:41:23:ff:84:44:26:c0:77:04: bc:1f:66:28:33:f3:c1:31:a7:81:d2:e0:c6:20:63:30:ae:08: 30:99:79:5f:57:ca:4c:b9:7c:fc:70:63:85:29:23:b5:13:ec: 80:34:87:e4:44:b0:8f:0b:c6:27:f7:6a:c4:1e:ec:a1:59:ac: 35:8e:18:17:0f:57:39:d2:c9:6f:c3:a8:44:59:07:c5:82:78: f1:67:7a:80 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBRjExMTAvBgNVBAUTKDYzMjkzMDQxMTlGMUE0N0Y1RDA2NDBCMkRGNzVERUYx RjY0QzdCQUYwHhcNMjMwNDIyMDcwMDUxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDQzODYyMi1hNTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+FY298ohxDVdEJvbG0muj//83+sB2QPJ01jviZSzPJTgaSnxQskIEn+k7ch 5/wAbuJK2FMLjccpZLr3CfEHbMn17u7ptIBW2GHJLbrv3so4W7DvR4i8NH8yANLg fhB1samXRR0xGVlf7bQZ3h81Et3RQgu68hLuFCbTe47F4pbMh8Xi5+a4p++qh0KE SavPyPvPkjv0iH0MKiLmEd94ehBezUvSeqaJ1Bh3tpTc3OZVbBLCS5tgQUoX688H ioECEoMdpW7Xwux0+QpOU6pJGiMBT+1FBSBwMGnKIQiYNcQHxcs6gxq9ZU7vHVxL 4Ud2e49QmS1x/Fgw0w4UP9HsiQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM2wfy8U 6cA4m1z+7uT/eNFd8YvDMB8GA1UdIwQYMBaAFGMpMEEZ8aR/XQZAst913vH2THuv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkFGMS84RkU3QThCODI0 OEUxMUVCQUJFRjJCMkZDNEY5QUUwMi9ZeWt3UVJueHBIOWRCa0N5MzNYZThmWk1l NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1l5a3dRUm54cEg5ZEJrQ3kzM1hlOGZaTWU2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJBRjEvOEZFN0E4QjgyNDhFMTFFQkFCRUYyQjJGQzRGOUFFMDIvQTIyMDE1ODgz OTFGMTFFQkFEMUUzQTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnW6QDBABnW6cwDQYJKoZIhvcNAQELBQADggEBAJ6Ab1DK GgJRPPinG+i8R+VdRRm9vvMVVSm5ZuWR1hgIpboAlKKCRcu51JPNxYKnhOgu5e7K 7Cdldz2qsFBUC/8Ou52DDak+KLLVCyZWNDOgmrE+HM6DZox+TyyDgsxGDNZe+TRZ CU1AXHBBrjTUC8sBO6ASUX9M0UVQ2SUkrPCL1qBvqedmYoWkP1QFSG1UEF5SFmIC /6Xj8BojXwm6yAlxh6lrxQ6srDwLfUEj/4REJsB3BLwfZigz88Exp4HS4MYgYzCu CDCZeV9Xyky5fPxwY4UpI7UT7IA0h+REsI8Lxif3asQe7KFZrDWOGBcPVznSyW/D qERZB8WCePFneoA= -----END CERTIFICATE-----Generated at Mon May 27 00:39:40 2024 by rpki-client on console-ams.rpki-client.org