$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/2B6E7D32FC5311ECBCE27247C4F9AE02.roa File: 2B6E7D32FC5311ECBCE27247C4F9AE02.roa (raw, json) Hash identifier: oXt1DPXjWPZcWGx2zmUdD8F+oWdjv59d4gp7Tb8aLTY= Subject key identifier: 79:07:5A:93:EC:EE:46:27:ED:14:98:94:9C:63:44:33:F5:E6:6C:37 Certificate issuer: /CN=A91E1C16/serialNumber=70294605B017CB796CAD8842F5EFBA3F448707F5 Certificate serial: 047C Authority key identifier: 70:29:46:05:B0:17:CB:79:6C:AD:88:42:F5:EF:BA:3F:44:87:07:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/2B6E7D32FC5311ECBCE27247C4F9AE02.roa Signing time: Mon 05 Jun 2023 02:40:00 +0000 ROA not before: Mon 05 Jun 2023 02:40:00 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 38136 IP address blocks: 103.167.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.crl rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1148 (0x47c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1C16/serialNumber=70294605B017CB796CAD8842F5EFBA3F448707F5 Validity Not Before: Jun 5 02:40:00 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647d4b00-3f76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:89:eb:b1:b8:21:5b:c2:bd:62:d5:c3:8e:1f: dd:22:dd:ef:66:b4:90:66:0e:bc:d0:22:76:f9:18: 2e:e1:e8:f6:02:d1:c8:46:86:d3:12:f6:4b:7d:14: 42:89:3d:96:e2:ef:72:2c:0e:19:46:69:f5:73:eb: 83:ed:ba:68:4b:5c:91:69:cb:15:6b:87:4e:5b:ad: f3:70:c0:b4:e3:fd:1b:b6:a0:32:1e:ef:7f:04:e2: 79:95:72:a2:07:dd:3c:72:1c:f5:2f:ea:69:e2:4d: 91:91:2c:59:71:4a:e4:4c:ad:59:1f:dc:fe:2a:29: 65:16:04:d0:bb:e5:a7:30:9b:13:fe:62:1e:ce:d8: a4:11:bd:97:5e:a2:d4:09:2b:b3:1c:4d:f5:77:20: 06:83:5b:64:b3:10:e5:eb:66:8b:e7:f1:5e:0d:e0: 69:29:7b:5d:2c:f2:77:da:89:41:a8:f3:11:d5:39: 35:94:3d:5d:43:5e:05:81:7f:fa:18:96:a0:f8:6e: e8:74:5e:09:2c:ef:40:19:91:d7:94:c4:dd:6e:31: 2e:ea:b2:02:74:cc:ef:88:18:4d:5f:34:0f:fb:e2: de:c5:1f:4f:05:b7:c7:09:8c:d3:37:21:97:bd:d0: da:3b:78:41:15:94:7b:70:12:e3:c2:9f:ca:b9:76: 95:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:07:5A:93:EC:EE:46:27:ED:14:98:94:9C:63:44:33:F5:E6:6C:37 X509v3 Authority Key Identifier: keyid:70:29:46:05:B0:17:CB:79:6C:AD:88:42:F5:EF:BA:3F:44:87:07:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/2B6E7D32FC5311ECBCE27247C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.134.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:0f:ff:3a:78:a0:42:3e:31:51:50:4f:35:7f:e6:56:28:7e: 51:21:ab:29:2b:45:d3:43:ba:59:fe:c7:46:28:22:c7:78:e0: 2e:c3:3e:1b:9e:4f:88:2b:42:ce:4e:ba:a4:0b:41:e5:81:77: 06:70:97:25:82:dd:66:ab:9d:8b:15:2e:c3:52:5e:6f:c6:8d: 53:8e:05:7e:3d:22:9a:df:d7:ae:ab:04:90:a2:59:36:76:2a: db:03:01:fe:df:98:b6:82:05:cb:a8:81:00:fd:f2:45:2b:b5: 93:5c:8a:bc:cb:49:b3:e2:5e:c1:a4:8a:e1:14:ba:cc:70:90: 1a:fa:6f:96:77:3d:53:92:61:ab:8e:eb:a1:f4:30:9e:e1:af: 3c:df:7e:44:e9:c5:63:cd:26:67:7d:7f:bb:8f:bc:37:47:44: be:a3:a0:64:c8:bd:9d:f8:75:aa:06:16:f0:57:8b:27:47:98: 84:65:91:56:77:2f:84:ce:b9:cc:5a:a9:72:91:1b:92:6d:4e: 07:97:7c:6e:0c:fd:94:d4:1e:d1:2e:4f:cf:e2:20:25:14:47: 20:f2:4e:35:c3:dd:a6:5f:a4:eb:c5:6d:54:f5:21:66:6f:7d: 2e:ce:9f:b2:b8:f9:1b:93:5b:4e:9f:ad:3f:cf:7f:11:40:c7: 55:94:bc:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFDMTYxMTAvBgNVBAUTKDcwMjk0NjA1QjAxN0NCNzk2Q0FEODg0MkY1RUZCQTNG NDQ4NzA3RjUwHhcNMjMwNjA1MDI0MDAwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdkNGIwMC0zZjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4nrsbghW8K9YtXDjh/dIt3vZrSQZg680CJ2+Rgu4ej2AtHIRobTEvZLfRRC iT2W4u9yLA4ZRmn1c+uD7bpoS1yRacsVa4dOW63zcMC04/0btqAyHu9/BOJ5lXKi B908chz1L+pp4k2RkSxZcUrkTK1ZH9z+KillFgTQu+WnMJsT/mIeztikEb2XXqLU CSuzHE31dyAGg1tksxDl62aL5/FeDeBpKXtdLPJ32olBqPMR1Tk1lD1dQ14FgX/6 GJag+G7odF4JLO9AGZHXlMTdbjEu6rICdMzviBhNXzQP++LexR9PBbfHCYzTNyGX vdDaO3hBFZR7cBLjwp/KuXaVdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHkHWpPs 7kYn7RSYlJxjRDP15mw3MB8GA1UdIwQYMBaAFHApRgWwF8t5bK2IQvXvuj9Ehwf1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUMxNi84RjBDNkIwMEJF NjExMUVCQUVGMzVBNjFDNEY5QUUwMi9jQ2xHQmJBWHkzbHNyWWhDOWUtNlAwU0hC X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDbEdCYkFYeTNsc3JZaEM5ZS02UDBTSEJfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFDMTYvOEYwQzZCMDBCRTYxMTFFQkFFRjM1QTYxQzRGOUFFMDIvMkI2RTdEMzJG QzUzMTFFQ0JDRTI3MjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnp4YwDQYJKoZIhvcNAQELBQADggEBADsP/zp4oEI+MVFQ TzV/5lYoflEhqykrRdNDuln+x0YoIsd44C7DPhueT4grQs5OuqQLQeWBdwZwlyWC 3WarnYsVLsNSXm/GjVOOBX49Iprf166rBJCiWTZ2KtsDAf7fmLaCBcuogQD98kUr tZNcirzLSbPiXsGkiuEUusxwkBr6b5Z3PVOSYauO66H0MJ7hrzzffkTpxWPNJmd9 f7uPvDdHRL6joGTIvZ34daoGFvBXiydHmIRlkVZ3L4TOucxaqXKRG5JtTgeXfG4M /ZTUHtEuT8/iICUURyDyTjXD3aZfpOvFbVT1IWZvfS7On7K4+RuTW06frT/PfxFA x1WUvNA= -----END CERTIFICATE-----Generated at Sun May 19 01:47:16 2024 by rpki-client on console-ams.rpki-client.org