$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/16A4DFE893C711EDB3D8A867C4F9AE02.roa File: 16A4DFE893C711EDB3D8A867C4F9AE02.roa (raw, json) Hash identifier: IBZAP7iOL5qiIGXDzBTyH+c2zWvMKj2GZwRANrok5Nw= Subject key identifier: A9:FF:40:A3:46:59:9D:A1:BB:05:8D:E4:94:CE:F8:2A:92:4B:D0:94 Certificate issuer: /CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Certificate serial: 0467 Authority key identifier: A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/16A4DFE893C711EDB3D8A867C4F9AE02.roa Signing time: Mon 07 Aug 2023 00:41:58 +0000 ROA not before: Mon 07 Aug 2023 00:41:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 20473 IP address blocks: 103.168.42.0/24 maxlen: 24 103.168.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 01:25:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1127 (0x467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Validity Not Before: Aug 7 00:41:58 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d03dd6-3cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:58:48:ba:51:81:22:9a:03:99:5e:7d:21:ae: 90:1c:a0:45:59:62:3d:e4:e6:8d:37:9d:23:44:c0: 55:ab:0a:9a:96:1a:9a:72:c6:54:e1:b5:61:02:2f: b7:c3:2c:46:61:62:3d:8b:eb:9a:95:1b:37:27:e1: 86:3e:87:6d:58:19:39:91:e7:fc:36:02:9d:fd:ed: 25:e4:09:a0:8b:98:a3:d0:fd:79:f2:42:7d:ad:27: 90:f5:55:da:db:59:af:4e:fa:0c:a3:02:a6:a5:51: a2:ee:6b:c1:15:ce:7c:8c:d3:b1:00:31:dc:23:db: 21:f5:88:e2:ec:0d:1d:4b:6e:60:1c:5c:04:75:4a: d1:e9:83:3c:44:6f:8a:2a:4c:1d:45:08:4c:27:ed: 6d:b9:35:14:ac:e9:d4:5d:32:cd:09:1c:f2:72:77: 88:48:e3:b7:c3:08:36:c0:bd:37:47:24:22:fe:8a: 88:4e:9d:e9:31:f0:99:ef:19:b6:a8:1b:78:7c:cf: b5:53:b7:dd:ee:30:1d:ca:af:69:b5:96:c9:bc:1a: db:d2:8e:77:fd:45:a4:34:2d:cb:7e:42:11:c0:3d: 46:f5:ac:30:55:b2:a8:09:90:eb:73:8e:d1:e2:ad: bf:49:c1:d0:48:c2:1a:59:83:f9:e1:5c:cc:97:9c: 9b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FF:40:A3:46:59:9D:A1:BB:05:8D:E4:94:CE:F8:2A:92:4B:D0:94 X509v3 Authority Key Identifier: keyid:A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/16A4DFE893C711EDB3D8A867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.42.0/23 Signature Algorithm: sha256WithRSAEncryption b2:2a:bd:0e:73:65:28:fe:ca:4b:5f:96:32:e0:c1:ef:23:63: 45:cb:d8:61:4e:74:84:73:2e:db:2c:78:f7:3b:c1:d3:a4:6c: 19:b2:81:d8:4e:df:25:16:d5:ea:59:74:aa:5f:ac:75:f2:0b: 67:8f:1d:b1:03:6e:ac:aa:54:f2:dc:16:1a:41:c3:e3:2f:a0: a0:4b:0b:e7:6f:be:6d:c0:3b:a5:86:ec:72:ae:af:3b:cb:30: 8c:8c:b7:f4:87:49:03:7e:d3:51:9b:21:17:62:81:e9:8e:df: 5e:b9:00:87:ad:9a:96:96:72:38:29:6a:3a:49:b3:02:8e:d7: 4b:07:99:4c:19:d6:dd:37:c0:a3:cf:08:c6:55:94:93:75:89: 7d:8a:b1:0a:90:27:ff:5a:ff:77:94:27:25:43:e3:36:f1:02: 72:e3:0a:ef:12:c2:84:46:c2:6c:3b:94:e3:1a:0a:7d:b6:cd: 6d:14:07:c8:52:2b:1c:17:10:8f:88:13:f8:8e:f2:14:6f:5d: f6:ac:f4:da:65:a7:19:03:4c:a1:16:b7:27:69:20:06:29:a1: ec:79:3d:5a:cf:a7:39:08:1e:1e:3c:3b:fa:8f:7b:28:9f:e7: 41:68:2c:ad:cd:f0:98:2f:f6:26:f8:c0:e2:e9:6e:0b:04:a1: 81:1b:b0:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjgxMTAvBgNVBAUTKEEwNEU3NDNBRDMxRjRGODNGMDlEQzVEMkY3RUY0RkFC RTFFRjY4N0IwHhcNMjMwODA3MDA0MTU4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQwM2RkNi0zY2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm1hIulGBIpoDmV59Ia6QHKBFWWI95OaNN50jRMBVqwqalhqacsZU4bVhAi+3 wyxGYWI9i+ualRs3J+GGPodtWBk5kef8NgKd/e0l5Amgi5ij0P158kJ9rSeQ9VXa 21mvTvoMowKmpVGi7mvBFc58jNOxADHcI9sh9Yji7A0dS25gHFwEdUrR6YM8RG+K KkwdRQhMJ+1tuTUUrOnUXTLNCRzycneISOO3wwg2wL03RyQi/oqITp3pMfCZ7xm2 qBt4fM+1U7fd7jAdyq9ptZbJvBrb0o53/UWkNC3LfkIRwD1G9awwVbKoCZDrc47R 4q2/ScHQSMIaWYP54VzMl5ybDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKn/QKNG WZ2huwWN5JTO+CqSS9CUMB8GA1UdIwQYMBaAFKBOdDrTH0+D8J3F0vfvT6vh72h7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGOC9DOTM4RDEwNkNC NTQxMUVCQTNEMzZDNUJDNEY5QUUwMi9vRTUwT3RNZlQ0UHduY1hTOS05UHEtSHZh SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29FNTBPdE1mVDRQd25jWFM5LTlQcS1IdmFIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjgvQzkzOEQxMDZDQjU0MTFFQkEzRDM2QzVCQzRGOUFFMDIvMTZBNERGRTg5 M0M3MTFFREIzRDhBODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqCowDQYJKoZIhvcNAQELBQADggEBALIqvQ5zZSj+yktf ljLgwe8jY0XL2GFOdIRzLtssePc7wdOkbBmygdhO3yUW1epZdKpfrHXyC2ePHbED bqyqVPLcFhpBw+MvoKBLC+dvvm3AO6WG7HKurzvLMIyMt/SHSQN+01GbIRdigemO 3165AIetmpaWcjgpajpJswKO10sHmUwZ1t03wKPPCMZVlJN1iX2KsQqQJ/9a/3eU JyVD4zbxAnLjCu8SwoRGwmw7lOMaCn22zW0UB8hSKxwXEI+IE/iO8hRvXfas9Npl pxkDTKEWtydpIAYpoex5PVrPpzkIHh48O/qPeyif50FoLK3N8Jgv9ib4wOLpbgsE oYEbsDU= -----END CERTIFICATE-----Generated at Tue Apr 23 18:44:55 2024 by rpki-client on console-ams.rpki-client.org