$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/429AFADCF25E11EE9E1B8A09C4F9AE02.roa File: 429AFADCF25E11EE9E1B8A09C4F9AE02.roa (raw, json) Hash identifier: YAXA02U3eZrR0Yjns12Z2nAWMDc+7YprNjgj1meJyJM= Subject key identifier: 63:FF:45:A2:0F:EC:A7:9A:D0:24:80:97:4E:BE:0C:6A:B0:5B:62:FA Certificate issuer: /CN=A91DE9CC/serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324 Certificate serial: 010B Authority key identifier: 82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/429AFADCF25E11EE9E1B8A09C4F9AE02.roa Signing time: Thu 04 Apr 2024 08:35:15 +0000 ROA not before: Thu 04 Apr 2024 08:35:15 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134562 IP address blocks: 103.31.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.crl rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:18:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE9CC/serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324 Validity Not Before: Apr 4 08:35:15 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=660e6643-c828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:99:1e:c9:ca:10:11:f6:ed:f8:6f:27:0b:b5: 49:f2:90:37:d5:b4:45:dd:c0:6c:57:b7:0d:04:3f: b9:cc:e8:52:b5:d7:e8:6c:bd:4a:29:31:68:fc:19: 85:c8:bf:d9:77:3f:80:48:12:e5:74:24:b0:6e:95: 1c:c0:84:2b:db:e4:16:e4:ee:93:9f:b3:53:06:10: 6f:b3:c1:92:ab:48:c5:85:ab:80:fe:cd:46:fc:20: 75:da:66:5c:bc:18:47:92:f9:f4:ba:2e:3d:fa:03: d2:29:41:2d:aa:33:6b:91:fa:16:61:5a:57:06:74: 75:42:27:c1:f6:48:5f:45:2c:16:15:4a:c5:89:35: a3:75:6f:01:f7:39:47:25:6b:58:95:ec:52:38:44: 5e:f3:31:da:e9:d5:ef:b7:9f:28:90:2c:1f:72:50: ea:bc:18:c2:02:4f:01:c5:47:c6:ef:bf:4b:2d:fb: c4:0c:2a:43:b3:cc:98:f2:37:b1:d7:da:d0:97:29: 4a:ee:b1:ac:12:f6:7c:6e:d1:ae:a3:d8:d4:82:12: 9f:a9:d7:60:c4:3d:6d:ea:92:87:45:a3:06:50:c3: d1:7c:bc:ba:e8:93:ac:f4:bf:64:45:33:01:dc:a9: 67:ce:dc:10:fb:83:0b:1b:1d:5f:e3:6a:e7:c5:67: 32:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:FF:45:A2:0F:EC:A7:9A:D0:24:80:97:4E:BE:0C:6A:B0:5B:62:FA X509v3 Authority Key Identifier: keyid:82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/429AFADCF25E11EE9E1B8A09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.11.0/24 Signature Algorithm: sha256WithRSAEncryption 90:11:df:31:3c:aa:75:87:19:3d:45:de:8e:b3:e3:18:cc:07: 5d:64:61:07:7c:aa:8a:ff:8f:2b:71:b9:f4:1e:10:9d:fd:07: c5:be:54:ea:1b:f8:ae:5a:29:72:ef:2c:2c:22:a6:08:3c:06: 03:45:91:03:8a:da:d7:d8:67:72:09:71:bc:f3:7a:5f:be:26: ad:db:c6:b9:e6:be:f1:77:21:14:47:cf:c6:1c:f0:c6:91:fc: e7:a7:e3:40:84:0a:9f:c2:70:d0:82:92:cc:92:8a:98:4a:06: 29:89:78:95:63:1e:3c:08:30:c1:69:16:b5:76:ee:5d:1f:5a: 02:d9:58:c2:07:f4:a2:22:16:7f:6e:be:9b:54:95:f1:80:d5: 51:e0:8a:f0:54:28:19:82:56:c0:7b:ce:62:8e:c1:19:51:67: 80:06:71:a9:7d:f8:fd:3f:7a:2a:d2:85:00:60:d9:b0:fd:67: e5:34:1f:63:5e:4e:eb:0c:14:92:19:74:6b:25:00:04:4d:61: df:3a:59:b8:08:61:ae:69:7d:63:6d:5f:e9:ab:5f:5d:71:f4: 49:e7:73:29:24:05:d6:4d:1f:c0:d5:8f:ce:2f:ac:a8:ba:20: 70:b5:ae:86:90:da:c5:30:d8:7b:1c:fe:62:8c:b6:72:88:0e: 36:68:04:05 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU5Q0MxMTAvBgNVBAUTKDgyOTQ0RTZBQTU3MUMwRUIzNUUyNzkxQkMxNTk2Rjc3 Mjc3QTczMjQwHhcNMjQwNDA0MDgzNTE1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlNjY0My1jODI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05keycoQEfbt+G8nC7VJ8pA31bRF3cBsV7cNBD+5zOhStdfobL1KKTFo/BmF yL/Zdz+ASBLldCSwbpUcwIQr2+QW5O6Tn7NTBhBvs8GSq0jFhauA/s1G/CB12mZc vBhHkvn0ui49+gPSKUEtqjNrkfoWYVpXBnR1QifB9khfRSwWFUrFiTWjdW8B9zlH JWtYlexSOERe8zHa6dXvt58okCwfclDqvBjCAk8BxUfG779LLfvEDCpDs8yY8jex 19rQlylK7rGsEvZ8btGuo9jUghKfqddgxD1t6pKHRaMGUMPRfLy66JOs9L9kRTMB 3KlnztwQ+4MLGx1f42rnxWcy+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGP/RaIP 7Kea0CSAl06+DGqwW2L6MB8GA1UdIwQYMBaAFIKUTmqlccDrNeJ5G8FZb3cnenMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTlDQy82MEI0NDdCQTVG NEExMUVEQUQ2ODY1N0VDNEY5QUUwMi9ncFJPYXFWeHdPczE0bmtid1ZsdmR5ZDZj eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dwUk9hcVZ4d09zMTRua2J3Vmx2ZHlkNmN5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU5Q0MvNjBCNDQ3QkE1RjRBMTFFREFENjg2NTdFQzRGOUFFMDIvNDI5QUZBRENG MjVFMTFFRTlFMUI4QTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnHwswDQYJKoZIhvcNAQELBQADggEBAJAR3zE8qnWHGT1F 3o6z4xjMB11kYQd8qor/jytxufQeEJ39B8W+VOob+K5aKXLvLCwipgg8BgNFkQOK 2tfYZ3IJcbzzel++Jq3bxrnmvvF3IRRHz8Yc8MaR/Oen40CECp/CcNCCksySiphK BimJeJVjHjwIMMFpFrV27l0fWgLZWMIH9KIiFn9uvptUlfGA1VHgivBUKBmCVsB7 zmKOwRlRZ4AGcal9+P0/eirShQBg2bD9Z+U0H2NeTusMFJIZdGslAARNYd86WbgI Ya5pfWNtX+mrX11x9EnncykkBdZNH8DVj84vrKi6IHC1roaQ2sUw2Hsc/mKMtnKI DjZoBAU= -----END CERTIFICATE-----Generated at Fri May 17 06:46:29 2024 by rpki-client on console-ams.rpki-client.org