$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/D41A1814442211EBBF7D9D65C4F9AE02.roa File: D41A1814442211EBBF7D9D65C4F9AE02.roa (raw, json) Hash identifier: AgcKAjaCRKIWP1a9YEXBW6Iro6Lq63Z3c3xlP1bvtXY= Subject key identifier: 74:5C:F3:9A:8F:62:DF:74:D3:D5:C5:64:12:5E:D3:3F:A6:A5:EC:9A Certificate issuer: /CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Certificate serial: 05D5 Authority key identifier: 1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/D41A1814442211EBBF7D9D65C4F9AE02.roa Signing time: Tue 10 Oct 2023 23:11:06 +0000 ROA not before: Tue 10 Oct 2023 23:11:06 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141216 IP address blocks: 103.156.154.0/24 maxlen: 24 103.156.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1493 (0x5d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Validity Not Before: Oct 10 23:11:06 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6525da0a-ef72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:76:91:12:26:1c:9d:5e:3a:22:d2:66:58:9a: 42:1a:9e:d5:f0:6a:a1:58:3b:01:f6:c1:f9:27:02: b0:93:cf:46:69:e5:d5:9b:37:c7:03:ca:b4:8a:3a: e2:5e:54:ea:9d:4d:ce:52:5e:22:06:27:a0:4f:b4: ea:1e:70:b1:f9:41:e0:4a:aa:03:da:0a:92:4e:fa: 7e:8a:e6:eb:d5:45:28:14:85:b8:b2:83:4f:25:01: 15:22:0f:3f:8b:3d:fd:a9:13:ad:28:b0:42:d4:50: 0b:67:d7:64:e7:4e:d6:df:fb:a2:d5:de:be:17:c9: 18:2e:7e:be:97:0c:e2:9a:e3:37:fd:1d:ef:3c:0f: 97:78:17:b8:ab:c6:fa:1a:78:8e:3e:09:a4:31:e5: c0:02:6a:e9:40:0f:3f:95:00:e8:f8:d5:bb:7a:24: e1:eb:d5:19:8d:25:ed:db:af:80:9e:e7:09:d3:52: d1:4e:eb:d7:b6:e1:02:ac:20:3b:49:83:8e:ca:f8: cb:76:10:df:ae:7a:49:25:b9:27:6e:ec:3a:b0:f0: 4f:81:49:77:ce:80:4a:79:90:20:7f:4b:0e:ff:4b: 10:a4:4c:4d:28:9e:6e:e2:24:91:0e:7a:fe:cc:18: e2:e4:c5:84:28:1f:dc:3e:93:4b:cc:b0:b2:f0:b5: ae:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:5C:F3:9A:8F:62:DF:74:D3:D5:C5:64:12:5E:D3:3F:A6:A5:EC:9A X509v3 Authority Key Identifier: keyid:1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/D41A1814442211EBBF7D9D65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.154.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:b9:f6:94:55:0b:eb:a2:b5:1e:63:49:8d:17:19:72:bb:5c: 94:5a:cf:d8:05:86:3d:c3:39:a7:95:66:1a:a9:50:bb:f7:24: 06:5c:d6:55:95:2b:82:a3:4f:c6:7c:a1:e3:f8:1c:50:14:a7: 97:39:f4:c5:be:de:a7:df:82:4b:01:d8:40:4c:d8:18:b2:55: dd:a2:ec:f0:a3:7d:fd:32:85:2e:50:b6:61:61:c2:a1:09:d6: 93:99:a8:d8:bf:31:4d:eb:03:92:b6:62:83:56:db:bf:7a:78: 91:c9:34:7f:3b:5d:c2:db:32:84:4d:c0:00:ff:91:88:f7:0e: 7e:b6:90:2d:87:17:1a:56:9a:b7:7b:30:a0:52:a2:38:1c:c4: 3d:8b:c9:07:70:81:33:bc:8e:c4:e9:71:a3:31:55:31:54:48: 54:38:b0:20:83:cb:50:b4:14:b4:24:b1:80:2c:d4:97:7e:38: 5b:fa:56:cb:6d:de:15:e4:f7:b4:4a:42:f0:f3:f3:99:ba:97: b0:04:71:c1:7b:a7:bb:fc:b4:a3:87:8a:d3:67:50:a1:9b:eb: 2f:36:5a:8c:59:38:9c:4e:80:22:45:ee:66:33:2d:12:1b:89: d5:13:21:76:88:dd:7f:e3:f5:b2:5a:70:ce:0c:34:be:57:96: 18:ac:e0:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyNTcxMTAvBgNVBAUTKDFFRDc4MkJFNjJENzEwMTc2NjhCMjhBMzI2ODlFNDcw RURBMjAxRjgwHhcNMjMxMDEwMjMxMTA2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI1ZGEwYS1lZjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3aREiYcnV46ItJmWJpCGp7V8GqhWDsB9sH5JwKwk89GaeXVmzfHA8q0ijri XlTqnU3OUl4iBiegT7TqHnCx+UHgSqoD2gqSTvp+iubr1UUoFIW4soNPJQEVIg8/ iz39qROtKLBC1FALZ9dk507W3/ui1d6+F8kYLn6+lwzimuM3/R3vPA+XeBe4q8b6 GniOPgmkMeXAAmrpQA8/lQDo+NW7eiTh69UZjSXt26+AnucJ01LRTuvXtuECrCA7 SYOOyvjLdhDfrnpJJbknbuw6sPBPgUl3zoBKeZAgf0sO/0sQpExNKJ5u4iSRDnr+ zBji5MWEKB/cPpNLzLCy8LWu/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHRc85qP Yt9009XFZBJe0z+mpeyaMB8GA1UdIwQYMBaAFB7Xgr5i1xAXZosooyaJ5HDtogH4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTI1Ny9BOTBGMUVFNjQ0 MjAxMUVCODU2Q0QxNjJDNEY5QUUwMi9IdGVDdm1MWEVCZG1peWlqSm9ua2NPMmlB ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZUN2bUxYRUJkbWl5aWpKb25rY08yaUFmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTEyNTcvQTkwRjFFRTY0NDIwMTFFQjg1NkNEMTYyQzRGOUFFMDIvRDQxQTE4MTQ0 NDIyMTFFQkJGN0Q5RDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnJowDQYJKoZIhvcNAQELBQADggEBAC259pRVC+uitR5j SY0XGXK7XJRaz9gFhj3DOaeVZhqpULv3JAZc1lWVK4KjT8Z8oeP4HFAUp5c59MW+ 3qffgksB2EBM2BiyVd2i7PCjff0yhS5QtmFhwqEJ1pOZqNi/MU3rA5K2YoNW2796 eJHJNH87XcLbMoRNwAD/kYj3Dn62kC2HFxpWmrd7MKBSojgcxD2LyQdwgTO8jsTp caMxVTFUSFQ4sCCDy1C0FLQksYAs1Jd+OFv6Vstt3hXk97RKQvDz85m6l7AEccF7 p7v8tKOHitNnUKGb6y82WoxZOJxOgCJF7mYzLRIbidUTIXaI3X/j9bJacM4MNL5X lhis4HA= -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org