$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEE66/FBD22964CD6411EDBED73C37C4F9AE02/D9B3417ACD9F11ED9482781BC4F9AE02.roa File: D9B3417ACD9F11ED9482781BC4F9AE02.roa (raw, json) Hash identifier: hMXSqPRIKLRFTeFmmDkY6lkBdSblfWWTBj/Abb5sDos= Subject key identifier: 82:C1:B0:56:28:74:4F:01:52:8D:85:B8:CC:06:A2:F8:87:7E:78:CD Certificate issuer: /CN=A91DEE66/serialNumber=938F90C9D7B9850562EDDE10A64640F2FDA064E4 Certificate serial: DE Authority key identifier: 93:8F:90:C9:D7:B9:85:05:62:ED:DE:10:A6:46:40:F2:FD:A0:64:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k4-Qyde5hQVi7d4QpkZA8v2gZOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEE66/FBD22964CD6411EDBED73C37C4F9AE02/D9B3417ACD9F11ED9482781BC4F9AE02.roa Signing time: Thu 25 Apr 2024 06:09:13 +0000 ROA not before: Thu 25 Apr 2024 06:09:13 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.212.169.0/24 maxlen: 24 160.202.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEE66/FBD22964CD6411EDBED73C37C4F9AE02/k4-Qyde5hQVi7d4QpkZA8v2gZOQ.crl rsync://rpki.apnic.net/member_repository/A91DEE66/FBD22964CD6411EDBED73C37C4F9AE02/k4-Qyde5hQVi7d4QpkZA8v2gZOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k4-Qyde5hQVi7d4QpkZA8v2gZOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEE66/serialNumber=938F90C9D7B9850562EDDE10A64640F2FDA064E4 Validity Not Before: Apr 25 06:09:13 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6629f389-7cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:de:1b:6d:90:78:f1:2b:04:6b:2d:87:d3:f2: e3:bc:41:f1:a3:60:1a:38:59:72:4f:72:ee:67:b6: f2:31:0c:28:8a:71:6f:15:3e:04:1f:cd:53:4c:59: f2:2d:f3:73:14:b0:b8:85:09:74:9f:17:a6:96:fc: 0c:28:89:98:a9:5a:39:d1:f5:32:d2:93:da:42:4e: a4:57:7b:d6:c0:2b:20:00:da:ce:bc:8d:68:e0:31: 8b:5c:72:c7:2b:d4:5c:e1:0d:04:2d:4e:7d:0c:e8: 2b:b1:42:0d:67:a3:de:51:91:5a:3e:6b:bb:96:a7: e2:43:c6:60:8f:6f:e7:ca:67:6d:43:84:c4:c0:95: de:ee:ef:4a:c6:02:7e:5b:77:10:a3:a1:b7:c5:1a: 6a:38:d3:c5:f2:30:1d:ce:df:28:d1:05:5e:1b:ee: 60:4c:4a:8d:c0:50:63:a9:36:d1:91:6e:82:84:27: e0:6a:f3:f8:45:a0:82:63:bc:1c:cf:24:38:5d:40: 75:f1:4e:38:2a:15:9f:9d:39:21:bf:63:cc:d5:52: 34:df:d8:5e:d6:df:ac:38:e7:41:23:5a:e9:c2:56: 81:23:f0:cc:9e:e5:b6:54:e2:a4:4a:bf:a0:cd:0a: 87:52:de:f0:63:1c:bd:d2:fd:0f:57:41:43:df:d3: da:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C1:B0:56:28:74:4F:01:52:8D:85:B8:CC:06:A2:F8:87:7E:78:CD X509v3 Authority Key Identifier: keyid:93:8F:90:C9:D7:B9:85:05:62:ED:DE:10:A6:46:40:F2:FD:A0:64:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEE66/FBD22964CD6411EDBED73C37C4F9AE02/k4-Qyde5hQVi7d4QpkZA8v2gZOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k4-Qyde5hQVi7d4QpkZA8v2gZOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEE66/FBD22964CD6411EDBED73C37C4F9AE02/D9B3417ACD9F11ED9482781BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.169.0/24 160.202.137.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:be:32:3f:f8:72:f3:61:76:d1:58:83:8b:51:db:3a:8f:55: 7e:4b:5c:1f:5d:d2:8f:f5:b7:36:28:78:fa:a3:55:52:e9:42: f7:8b:43:2d:4b:5e:78:6a:37:8b:61:2f:b0:19:51:d7:cf:b1: 5f:90:ad:62:49:f2:f1:4e:8f:2b:ae:36:bd:b7:86:a3:20:45: 23:15:cb:05:f4:34:32:b0:94:ad:67:1e:67:48:c8:1a:fe:d4: 64:67:37:f6:c5:41:d2:6a:11:d6:f6:ce:eb:2c:f8:f0:5f:81: 45:b3:a0:b8:17:62:f0:8f:22:6d:c5:13:4a:9d:f5:a7:f6:1a: 6e:95:08:11:45:8e:81:c9:70:6e:dd:cb:88:5e:58:57:5d:d2: 54:ab:d2:01:37:a3:a0:09:c5:4f:2e:ef:3b:02:01:42:6e:4d: e5:67:d1:e1:cb:e2:4b:c1:6e:20:5e:41:f9:22:31:ab:2f:62: 8c:2f:0a:b1:26:ad:85:e8:5e:ea:d8:62:cd:54:80:38:c5:c9: 3e:e2:51:db:62:2b:a0:96:9b:d4:04:16:3d:25:c4:d1:b1:38: 86:9a:21:d3:56:bf:47:14:c3:b3:80:6e:dc:9f:5c:f5:0e:a0: 78:ee:dc:34:77:58:15:e2:5c:f8:a7:12:79:3d:7a:18:af:39: 73:e9:e0:f5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVFNjYxMTAvBgNVBAUTKDkzOEY5MEM5RDdCOTg1MDU2MkVEREUxMEE2NDY0MEYy RkRBMDY0RTQwHhcNMjQwNDI1MDYwOTEzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI5ZjM4OS03Y2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs94bbZB48SsEay2H0/LjvEHxo2AaOFlyT3LuZ7byMQwoinFvFT4EH81TTFny LfNzFLC4hQl0nxemlvwMKImYqVo50fUy0pPaQk6kV3vWwCsgANrOvI1o4DGLXHLH K9Rc4Q0ELU59DOgrsUINZ6PeUZFaPmu7lqfiQ8Zgj2/nymdtQ4TEwJXe7u9KxgJ+ W3cQo6G3xRpqONPF8jAdzt8o0QVeG+5gTEqNwFBjqTbRkW6ChCfgavP4RaCCY7wc zyQ4XUB18U44KhWfnTkhv2PM1VI039he1t+sOOdBI1rpwlaBI/DMnuW2VOKkSr+g zQqHUt7wYxy90v0PV0FD39PauwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFILBsFYo dE8BUo2FuMwGoviHfnjNMB8GA1UdIwQYMBaAFJOPkMnXuYUFYu3eEKZGQPL9oGTk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUU2Ni9GQkQyMjk2NENE NjQxMUVEQkVENzNDMzdDNEY5QUUwMi9rNC1ReWRlNWhRVmk3ZDRRcGtaQTh2Mmda T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s0LVF5ZGU1aFFWaTdkNFFwa1pBOHYyZ1pPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVFNjYvRkJEMjI5NjRDRDY0MTFFREJFRDczQzM3QzRGOUFFMDIvRDlCMzQxN0FD RDlGMTFFRDk0ODI3ODFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn1KkDBACgyokwDQYJKoZIhvcNAQELBQADggEBAI++Mj/4 cvNhdtFYg4tR2zqPVX5LXB9d0o/1tzYoePqjVVLpQveLQy1LXnhqN4thL7AZUdfP sV+QrWJJ8vFOjyuuNr23hqMgRSMVywX0NDKwlK1nHmdIyBr+1GRnN/bFQdJqEdb2 zuss+PBfgUWzoLgXYvCPIm3FE0qd9af2Gm6VCBFFjoHJcG7dy4heWFdd0lSr0gE3 o6AJxU8u7zsCAUJuTeVn0eHL4kvBbiBeQfkiMasvYowvCrEmrYXoXurYYs1UgDjF yT7iUdtiK6CWm9QEFj0lxNGxOIaaIdNWv0cUw7OAbtyfXPUOoHju3DR3WBXiXPin Enk9ehivOXPp4PU= -----END CERTIFICATE-----Generated at Wed May 1 07:23:56 2024 by rpki-client on console-ams.rpki-client.org