$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/F3484DBA34CE11EEBBA9D046C4F9AE02.roa File: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (raw, json) Hash identifier: KN097sj8tp2qdOXl0WodsTPOwpV2GR7rS/3ve5t47xI= Subject key identifier: DF:EF:59:85:7B:5A:C7:5B:EE:C6:25:F2:56:B1:5A:F8:B4:53:E6:04 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 92 Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/F3484DBA34CE11EEBBA9D046C4F9AE02.roa Signing time: Tue 07 May 2024 07:09:29 +0000 ROA not before: Tue 07 May 2024 07:09:29 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141766 IP address blocks: 103.163.156.0/24 maxlen: 24 103.184.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: May 7 07:09:29 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6639d3a9-14e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:74:cb:4d:ed:a4:9a:41:f4:d0:02:92:34:97: 29:21:56:ca:ae:94:5e:8a:d0:54:9d:ac:1c:3b:a8: 8c:26:54:1e:00:a2:35:1e:56:cc:f2:21:61:dc:9c: df:30:1f:89:ed:f6:b8:db:df:df:0d:33:0a:dd:34: 7a:72:ab:47:d2:65:c4:c7:b6:00:90:72:76:1b:21: 03:f3:21:95:17:14:2a:15:ae:e0:43:4e:6d:aa:63: b7:27:61:2f:fd:96:77:28:bc:02:74:a9:9b:98:fa: 5c:c6:96:12:6b:bd:89:36:07:0b:d3:2b:25:96:bc: 9a:d6:eb:89:fb:92:fe:a7:da:17:12:0c:58:5c:19: ca:90:c3:aa:1f:59:2f:64:4a:e8:90:a7:21:97:81: aa:14:94:5f:00:ff:6e:19:49:dd:87:5d:ea:44:ee: 49:ce:d7:92:d8:60:dd:31:b7:97:54:db:57:63:40: f5:9a:e6:81:9e:b5:53:ab:44:7e:c6:ca:33:64:02: c4:4d:fe:13:0d:9c:d0:74:20:8b:3c:0c:02:e0:fb: d9:27:dc:39:0a:60:68:9f:34:53:f9:41:12:48:7d: bc:28:2b:1a:b7:a3:f4:70:fd:e8:79:99:c3:7a:ba: 2d:ba:8a:fd:01:d9:a2:54:0b:95:14:21:91:a8:5e: df:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:EF:59:85:7B:5A:C7:5B:EE:C6:25:F2:56:B1:5A:F8:B4:53:E6:04 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/F3484DBA34CE11EEBBA9D046C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.156.0/24 103.184.129.0/24 Signature Algorithm: sha256WithRSAEncryption 48:5c:7a:fa:bc:a3:29:13:d8:67:29:6b:52:94:2d:91:9c:94: a8:fd:90:c4:47:a8:a0:da:aa:03:5f:67:df:90:49:aa:b8:0e: 00:ac:75:9e:4c:0e:04:46:88:cc:f9:e5:06:62:17:1e:8f:b5: 2a:b1:d3:fa:cd:b5:bd:09:27:c8:94:55:69:d0:c2:a0:f3:79: cd:3a:58:39:2c:9b:3e:65:84:0f:b6:e5:bc:b2:e4:f4:9e:a2: 04:54:7e:34:03:52:af:7c:3f:6e:60:a2:fd:7b:28:2b:e7:19: 9c:31:09:a3:4d:35:84:8a:d0:84:c6:25:1b:72:57:9b:fc:38: 4b:d5:30:d6:ae:87:23:8c:35:27:67:75:4d:e8:f6:b1:58:83: 06:80:56:aa:f8:0f:f5:17:ca:60:67:ba:6d:46:d3:de:79:b1: 57:c1:d0:dc:f8:68:aa:6d:17:01:2e:c0:6a:9f:eb:d4:04:27: 00:5e:4f:7f:59:64:32:0d:09:7b:7d:62:2f:02:5f:43:1f:b0: b3:fd:dd:4f:64:45:ea:cf:f9:97:e8:e3:e1:f4:fd:10:31:c2: 1e:57:f7:d9:1b:25:84:38:70:28:46:cf:3e:1d:d2:75:cb:79: 20:07:ce:b0:5b:fc:a7:b4:07:34:5a:67:cc:30:60:32:59:f7: e6:1b:7a:af -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjQwNTA3MDcwOTI5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM5ZDNhOS0xNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXTLTe2kmkH00AKSNJcpIVbKrpReitBUnawcO6iMJlQeAKI1HlbM8iFh3Jzf MB+J7fa429/fDTMK3TR6cqtH0mXEx7YAkHJ2GyED8yGVFxQqFa7gQ05tqmO3J2Ev /ZZ3KLwCdKmbmPpcxpYSa72JNgcL0ysllrya1uuJ+5L+p9oXEgxYXBnKkMOqH1kv ZErokKchl4GqFJRfAP9uGUndh13qRO5JzteS2GDdMbeXVNtXY0D1muaBnrVTq0R+ xsozZALETf4TDZzQdCCLPAwC4PvZJ9w5CmBonzRT+UESSH28KCsat6P0cP3oeZnD erotuor9AdmiVAuVFCGRqF7fEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFN/vWYV7 Wsdb7sYl8laxWvi0U+YEMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5QjkvOTUxRjk4RUEzMkQyMTFFRTg2OUZEQjcxQzRGOUFFMDIvRjM0ODREQkEz NENFMTFFRUJCQTlEMDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABno5wDBABnuIEwDQYJKoZIhvcNAQELBQADggEBAEhcevq8 oykT2Gcpa1KULZGclKj9kMRHqKDaqgNfZ9+QSaq4DgCsdZ5MDgRGiMz55QZiFx6P tSqx0/rNtb0JJ8iUVWnQwqDzec06WDksmz5lhA+25byy5PSeogRUfjQDUq98P25g ov17KCvnGZwxCaNNNYSK0ITGJRtyV5v8OEvVMNauhyOMNSdndU3o9rFYgwaAVqr4 D/UXymBnum1G0955sVfB0Nz4aKptFwEuwGqf69QEJwBeT39ZZDINCXt9Yi8CX0Mf sLP93U9kRerP+Zfo4+H0/RAxwh5X99kbJYQ4cChGzz4d0nXLeSAHzrBb/Ke0BzRa Z8wwYDJZ9+Ybeq8= -----END CERTIFICATE-----Generated at Sat Jun 15 10:27:31 2024 by rpki-client on console-ams.rpki-client.org