$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/A212A64854F611E79DF7E643C4F9AE02.roa File: A212A64854F611E79DF7E643C4F9AE02.roa (raw, json) Hash identifier: hqQQAaZRgcjCgg9dxqCtWyXjW9YlU7f12oZXVkvMZlQ= Subject key identifier: 6C:87:60:13:61:24:CC:55:14:4F:AA:61:5C:53:46:FA:D4:11:2B:6E Certificate issuer: /CN=A91E01A9/serialNumber=4A575F2BF3312462F856461AE9DDD0A3844ABD2F Certificate serial: 1EB6 Authority key identifier: 4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/A212A64854F611E79DF7E643C4F9AE02.roa Signing time: Thu 14 Dec 2023 16:23:17 +0000 ROA not before: Thu 14 Dec 2023 16:23:17 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134787 IP address blocks: 103.9.20.0/23 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.crl rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7862 (0x1eb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01A9/serialNumber=4A575F2BF3312462F856461AE9DDD0A3844ABD2F Validity Not Before: Dec 14 16:23:17 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657b2bf5-4576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:85:60:67:e4:ec:1f:45:65:b8:07:44:77:44: c9:e6:1c:43:82:ba:97:b6:ed:c9:1f:e1:94:16:fd: 7f:f5:ab:f5:14:2a:52:da:a7:4e:24:1e:70:e7:cd: 9a:5f:12:0f:8b:a2:10:6e:a8:9a:83:2c:6a:04:c5: ba:7a:fa:d2:43:82:a0:e8:ac:de:99:af:72:11:d9: e4:b8:2c:c6:a5:d7:ec:dd:77:5e:b6:81:44:d6:29: f6:8e:35:8c:78:a2:71:5c:7a:36:d4:c3:23:43:a2: ba:50:11:5a:dd:56:0c:20:75:c2:fe:32:98:3f:11: 2d:65:b8:5b:56:90:39:d1:7f:d0:88:a3:ef:08:34: d9:60:4a:9f:17:3f:aa:68:39:ca:c8:fd:0c:56:37: d5:07:17:70:60:49:8b:49:5a:c0:90:ca:8b:0a:0b: 21:c7:cf:e0:dd:6b:7b:6e:0a:89:5d:25:39:99:a6: 3b:99:75:42:a6:86:a9:52:3f:fd:4e:90:40:5a:db: e2:72:2d:3f:7a:df:28:42:ab:a1:fd:a4:32:54:08: de:58:5d:aa:91:5e:66:fd:25:b6:f0:01:a9:ad:16: e1:0b:8d:88:e6:65:47:03:d4:8c:16:ca:7c:ab:3c: d0:ff:64:80:40:44:94:aa:30:08:95:68:e9:0a:05: 40:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:87:60:13:61:24:CC:55:14:4F:AA:61:5C:53:46:FA:D4:11:2B:6E X509v3 Authority Key Identifier: keyid:4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/A212A64854F611E79DF7E643C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.20.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:d1:1e:05:4e:a2:79:57:ca:3c:fd:ba:b6:f2:3c:53:11:5d: 54:6e:c1:aa:b6:1c:d3:5b:0a:b2:2a:c6:06:77:f2:09:ec:5b: 8e:d4:c0:54:cd:cc:b2:72:de:9a:b5:51:16:ed:eb:86:d5:57: 22:8a:f3:0f:16:ba:65:0b:b4:50:a2:81:31:a4:d3:d6:41:68: ce:d2:86:b3:bb:8e:5e:4e:9f:12:f2:c9:7d:8f:34:bd:37:91: 63:a4:c3:4e:32:6c:ef:3f:5d:d7:91:b1:9e:65:16:a7:24:89: 3c:76:fc:7c:c3:d2:94:44:99:9b:43:a9:7f:c9:5b:cd:6e:8b: 26:aa:b2:93:92:10:c0:90:d0:4f:60:3a:e7:0b:b9:77:3a:2f: 00:fd:88:c3:44:57:9a:72:ce:e7:c1:44:5e:3c:ac:a8:a2:ec: 41:08:b7:e8:92:0b:b8:96:6c:6a:37:00:87:51:d6:a6:dc:97: 65:31:21:95:9c:21:99:0c:5c:f9:ef:dd:d6:4c:9e:d7:68:a7: a0:2b:e8:c2:af:41:59:2b:35:f7:e4:37:52:5f:6e:34:c5:58: 9f:a0:f5:11:39:e6:22:e0:91:52:93:ac:e1:58:a7:ea:e5:a0: c3:b1:46:b3:22:8f:e3:0e:a8:24:1b:2a:05:a8:f4:43:38:4f: c6:e1:40:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQTkxMTAvBgNVBAUTKDRBNTc1RjJCRjMzMTI0NjJGODU2NDYxQUU5REREMEEz ODQ0QUJEMkYwHhcNMjMxMjE0MTYyMzE3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiMmJmNS00NTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoVgZ+TsH0VluAdEd0TJ5hxDgrqXtu3JH+GUFv1/9av1FCpS2qdOJB5w582a XxIPi6IQbqiagyxqBMW6evrSQ4Kg6Kzema9yEdnkuCzGpdfs3XdetoFE1in2jjWM eKJxXHo21MMjQ6K6UBFa3VYMIHXC/jKYPxEtZbhbVpA50X/QiKPvCDTZYEqfFz+q aDnKyP0MVjfVBxdwYEmLSVrAkMqLCgshx8/g3Wt7bgqJXSU5maY7mXVCpoapUj/9 TpBAWtvici0/et8oQquh/aQyVAjeWF2qkV5m/SW28AGprRbhC42I5mVHA9SMFsp8 qzzQ/2SAQESUqjAIlWjpCgVApQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGyHYBNh JMxVFE+qYVxTRvrUEStuMB8GA1UdIwQYMBaAFEpXXyvzMSRi+FZGGund0KOESr0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFBOS84M0MzMTEwODMz NUMxMUU2QTgwMDBGNERDNEY5QUUwMi9TbGRmS19NeEpHTDRWa1lhNmQzUW80Ukt2 UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NsZGZLX014SkdMNFZrWWE2ZDNRbzRSS3ZTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAxQTkvODNDMzExMDgzMzVDMTFFNkE4MDAwRjREQzRGOUFFMDIvQTIxMkE2NDg1 NEY2MTFFNzlERjdFNjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnCRQwDQYJKoZIhvcNAQELBQADggEBAHvRHgVOonlXyjz9 urbyPFMRXVRuwaq2HNNbCrIqxgZ38gnsW47UwFTNzLJy3pq1URbt64bVVyKK8w8W umULtFCigTGk09ZBaM7ShrO7jl5OnxLyyX2PNL03kWOkw04ybO8/XdeRsZ5lFqck iTx2/HzD0pREmZtDqX/JW81uiyaqspOSEMCQ0E9gOucLuXc6LwD9iMNEV5pyzufB RF48rKii7EEIt+iSC7iWbGo3AIdR1qbcl2UxIZWcIZkMXPnv3dZMntdop6Ar6MKv QVkrNffkN1JfbjTFWJ+g9RE55iLgkVKTrOFYp+rloMOxRrMij+MOqCQbKgWo9EM4 T8bhQO0= -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org