$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/2C74B00CF70011EA8EFF4C67C4F9AE02.roa File: 2C74B00CF70011EA8EFF4C67C4F9AE02.roa (raw, json) Hash identifier: OfR146pBfvNdwkmbFc5ToWQ2OMEy3nfWQWtHKGhPQFg= Subject key identifier: AC:A8:8E:E1:B7:AC:55:AD:7D:4F:44:C9:F2:91:BF:E4:2D:12:42:C4 Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 0743 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/2C74B00CF70011EA8EFF4C67C4F9AE02.roa Signing time: Tue 12 Sep 2023 21:39:06 +0000 ROA not before: Tue 12 Sep 2023 21:39:06 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140896 IP address blocks: 103.153.30.0/24 maxlen: 24 2001:df4:2c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1859 (0x743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Sep 12 21:39:06 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6500da7a-f3f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d4:8e:d5:64:5a:15:0a:ec:1c:5b:40:be:4e: 85:89:8c:a2:03:ae:11:ec:94:8a:77:58:59:56:92: 59:83:d3:49:2d:b3:7f:9a:87:8a:bb:fb:10:99:07: 5f:78:1c:b1:e1:1f:1f:db:89:6b:79:c3:77:91:2e: 19:99:37:e3:07:49:a8:52:32:28:d4:b1:cb:1a:22: 6d:0b:5d:d9:ae:27:a7:73:5d:4a:1b:11:fc:65:db: ba:68:1c:23:3e:a7:ed:52:7c:52:72:cc:91:54:78: 41:ef:60:35:2e:59:3e:1f:32:aa:73:11:45:d9:a4: fc:be:96:93:c8:ef:00:9d:91:94:63:5f:18:9e:f9: 59:fc:36:64:5d:db:4f:37:c3:be:9b:0b:6f:2e:aa: 81:29:70:cd:6c:2a:2f:77:3d:90:f7:a5:83:3e:43: 35:51:db:ff:0a:f3:66:c3:72:e0:63:69:cb:f9:cd: dd:c1:01:d6:d4:ca:d8:97:dd:f9:cd:4f:44:7d:80: df:71:40:92:b8:3c:72:dc:dd:d3:ff:1d:82:d8:f2: ee:b6:5d:48:c4:58:dc:b5:04:c9:92:93:fa:e7:50: 9d:46:f6:e1:7b:e0:26:7f:7d:a4:3b:42:71:0c:a2: 09:5a:78:6f:6a:51:c4:e6:e0:b6:87:5e:f1:b2:e8: 53:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A8:8E:E1:B7:AC:55:AD:7D:4F:44:C9:F2:91:BF:E4:2D:12:42:C4 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/2C74B00CF70011EA8EFF4C67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.30.0/24 IPv6: 2001:df4:2c80::/48 Signature Algorithm: sha256WithRSAEncryption 43:3e:80:25:2a:86:2f:28:af:62:21:a0:83:20:01:62:42:3a: 76:6b:a0:95:63:c8:e6:c7:79:f0:75:86:fc:24:ae:dc:19:77: 62:2d:c3:07:16:06:88:41:11:39:55:e9:f2:0f:5b:e5:48:10: 42:c3:64:ba:f5:8f:29:2a:b7:8c:30:50:11:ad:fa:4e:5e:9d: b2:9e:ad:26:c4:22:ad:aa:b7:29:c2:cb:c5:71:44:14:51:fb: 7e:b2:b3:e7:2e:e7:75:b7:c7:bd:d3:77:36:a6:25:56:07:f5: 25:4a:9f:13:bf:f4:4b:03:2f:1c:cb:8e:e3:df:f1:91:bb:3d: 46:40:57:c8:e0:f4:5c:cb:58:67:08:49:d5:18:be:23:12:24: d1:7b:93:24:56:62:a4:0f:81:bb:e6:24:63:8b:e5:1c:7e:7c: e5:26:ad:63:8e:c5:c3:c5:ca:35:c8:92:1b:e2:e5:af:f6:57: b0:45:f9:12:02:60:c9:66:91:b1:84:2f:c3:c5:1b:10:03:14: 99:d1:e0:3b:66:a8:6e:49:d3:fc:42:a0:fb:73:b4:49:cd:56: fb:89:91:54:36:04:34:f5:13:6c:97:0a:72:32:82:98:d8:1c: 02:bf:9a:a5:89:9a:98:bb:02:ad:cc:55:82:24:99:58:e5:b9: dd:9d:db:19 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjMwOTEyMjEzOTA2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwZGE3YS1mM2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9SO1WRaFQrsHFtAvk6FiYyiA64R7JSKd1hZVpJZg9NJLbN/moeKu/sQmQdf eByx4R8f24lrecN3kS4ZmTfjB0moUjIo1LHLGiJtC13Zrienc11KGxH8Zdu6aBwj PqftUnxScsyRVHhB72A1Llk+HzKqcxFF2aT8vpaTyO8AnZGUY18YnvlZ/DZkXdtP N8O+mwtvLqqBKXDNbCovdz2Q96WDPkM1Udv/CvNmw3LgY2nL+c3dwQHW1MrYl935 zU9EfYDfcUCSuDxy3N3T/x2C2PLutl1IxFjctQTJkpP651CdRvbhe+Amf32kO0Jx DKIJWnhvalHE5uC2h17xsuhTIwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKyojuG3 rFWtfU9EyfKRv+QtEkLEMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQxQzkvNDlCRDlEQTZDMEY4MTFFQThBQzZDNDZDQzRGOUFFMDIvMkM3NEIwMENG NzAwMTFFQThFRkY0QzY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnmR4wDwQCAAIwCQMHACABDfQsgDANBgkqhkiG9w0BAQsF AAOCAQEAQz6AJSqGLyivYiGggyABYkI6dmuglWPI5sd58HWG/CSu3Bl3Yi3DBxYG iEEROVXp8g9b5UgQQsNkuvWPKSq3jDBQEa36Tl6dsp6tJsQiraq3KcLLxXFEFFH7 frKz5y7ndbfHvdN3NqYlVgf1JUqfE7/0SwMvHMuO49/xkbs9RkBXyOD0XMtYZwhJ 1Ri+IxIk0XuTJFZipA+Bu+YkY4vlHH585SatY47Fw8XKNciSG+Llr/ZXsEX5EgJg yWaRsYQvw8UbEAMUmdHgO2aobknT/EKg+3O0Sc1W+4mRVDYENPUTbJcKcjKCmNgc Ar+apYmamLsCrcxVgiSZWOW53Z3bGQ== -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org