$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/377B6620506B11EBAD849641C4F9AE02.roa File: 377B6620506B11EBAD849641C4F9AE02.roa (raw, json) Hash identifier: l67TXmYzX11ydKu0rEHDmPeizjtCpkC5Dw8UPLRU3aU= Subject key identifier: 0E:F8:F4:DB:A6:86:8C:42:38:EF:84:99:86:A9:75:1F:8D:68:A5:8B Certificate issuer: /CN=A91E4EF6/serialNumber=28CAEE8496569C573C3E5B1890C5A1B34CFC8E30 Certificate serial: 05C0 Authority key identifier: 28:CA:EE:84:96:56:9C:57:3C:3E:5B:18:90:C5:A1:B3:4C:FC:8E:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/377B6620506B11EBAD849641C4F9AE02.roa Signing time: Thu 26 Oct 2023 20:28:45 +0000 ROA not before: Thu 26 Oct 2023 20:28:45 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133957 IP address blocks: 103.129.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.crl rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1472 (0x5c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EF6/serialNumber=28CAEE8496569C573C3E5B1890C5A1B34CFC8E30 Validity Not Before: Oct 26 20:28:45 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=653acbfc-ec42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:da:4e:70:98:1b:a0:df:33:2f:11:f5:03:ad: b9:c9:63:bc:33:35:29:a1:80:98:9b:a3:35:32:4a: bc:1d:2e:db:89:70:98:c5:92:59:4e:21:dd:ea:b0: d9:11:44:64:02:f3:44:31:65:f3:1d:88:48:6e:e1: fb:df:24:4b:2c:99:f6:b2:10:62:cb:5d:55:d8:f3: 6e:e0:40:fb:7c:8c:7b:c4:21:4f:ac:c0:87:7c:1a: 42:aa:ba:25:2d:5e:36:db:21:1e:01:c9:7f:27:26: 24:70:24:93:0e:1a:57:f9:e3:e3:0a:9c:d3:68:29: cb:38:71:1b:89:3f:94:58:93:e9:e1:a6:a4:15:64: c1:a4:28:87:f4:7a:29:35:ef:32:f6:bb:7c:06:86: b5:2e:0d:a7:39:87:54:3b:dc:ad:19:ad:cc:bf:e8: a9:ca:ba:2d:66:36:da:43:93:f9:aa:70:5d:49:ae: eb:d0:d7:1b:c8:8b:8b:b3:7a:9e:37:bf:e2:80:82: cc:c1:a9:a7:d6:a2:af:2a:b7:df:cb:6a:2b:29:7d: 67:72:df:fa:70:29:2d:1b:2e:68:e8:3a:2c:9e:c6: 00:22:f4:25:5f:bd:04:cc:4a:d4:07:9c:c9:f2:3e: 32:bb:ff:ac:50:50:ba:df:64:e7:4f:9d:1f:89:34: 7c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F8:F4:DB:A6:86:8C:42:38:EF:84:99:86:A9:75:1F:8D:68:A5:8B X509v3 Authority Key Identifier: keyid:28:CA:EE:84:96:56:9C:57:3C:3E:5B:18:90:C5:A1:B3:4C:FC:8E:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/377B6620506B11EBAD849641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.153.0/24 Signature Algorithm: sha256WithRSAEncryption b0:74:55:eb:71:68:11:b2:57:7a:21:a0:fd:da:0d:5f:08:a5: 3b:2c:00:fc:f0:25:0f:be:a3:35:0e:90:89:c4:34:6d:9a:87: 52:45:4d:fe:2d:6f:c9:1e:23:ae:47:f6:bb:40:7e:00:66:29: ed:5d:88:7b:6c:0b:05:72:48:7a:3e:a9:5c:b5:9b:17:c2:41: bc:6c:eb:c4:21:08:04:f5:71:94:8b:01:86:9f:fa:bc:df:94: 1a:ef:84:6d:02:dc:e7:5b:ee:f8:43:cf:2a:5b:6f:29:7a:04: e4:b4:15:b5:7e:4c:18:d5:35:35:36:1a:a5:1d:0c:61:97:03: cd:e2:0a:2f:41:a0:4e:6f:41:e1:6a:55:78:45:fd:85:76:1b: 3a:1d:98:0d:fc:af:49:21:8d:4c:68:9f:6c:f8:aa:68:27:3f: dc:0a:45:40:08:1e:3f:e5:41:cb:42:ed:c1:8e:3b:32:c4:e7: f0:50:6c:36:a1:99:ad:99:b5:db:64:92:62:16:62:ea:46:67: 9d:fd:8b:1e:2d:c3:0d:52:70:83:8b:11:81:1b:50:c7:cb:17: 4d:74:a1:65:47:7e:d2:44:01:dd:15:22:cb:12:ae:29:0e:55: dd:4d:2c:98:90:1c:28:ad:d0:f3:97:cf:39:d5:93:8d:37:83: b6:f2:3d:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRjYxMTAvBgNVBAUTKDI4Q0FFRTg0OTY1NjlDNTczQzNFNUIxODkwQzVBMUIz NENGQzhFMzAwHhcNMjMxMDI2MjAyODQ1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNhY2JmYy1lYzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdpOcJgboN8zLxH1A625yWO8MzUpoYCYm6M1Mkq8HS7biXCYxZJZTiHd6rDZ EURkAvNEMWXzHYhIbuH73yRLLJn2shBiy11V2PNu4ED7fIx7xCFPrMCHfBpCqrol LV422yEeAcl/JyYkcCSTDhpX+ePjCpzTaCnLOHEbiT+UWJPp4aakFWTBpCiH9Hop Ne8y9rt8Boa1Lg2nOYdUO9ytGa3Mv+ipyrotZjbaQ5P5qnBdSa7r0NcbyIuLs3qe N7/igILMwamn1qKvKrffy2orKX1nct/6cCktGy5o6DosnsYAIvQlX70EzErUB5zJ 8j4yu/+sUFC632TnT50fiTR85wIDAQABo4IClTCCApEwHQYDVR0OBBYEFA749Num hoxCOO+EmYapdR+NaKWLMB8GA1UdIwQYMBaAFCjK7oSWVpxXPD5bGJDFobNM/I4w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVGNi85MzgwMDc4RTYx RDYxMUVBQjhEMDE1NUJDNEY5QUUwMi9LTXJ1aEpaV25GYzhQbHNZa01XaHMwejhq akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNcnVoSlpXbkZjOFBsc1lrTVdoczB6OGpqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFRjYvOTM4MDA3OEU2MUQ2MTFFQUI4RDAxNTVCQzRGOUFFMDIvMzc3QjY2MjA1 MDZCMTFFQkFEODQ5NjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngZkwDQYJKoZIhvcNAQELBQADggEBALB0VetxaBGyV3oh oP3aDV8IpTssAPzwJQ++ozUOkInENG2ah1JFTf4tb8keI65H9rtAfgBmKe1diHts CwVySHo+qVy1mxfCQbxs68QhCAT1cZSLAYaf+rzflBrvhG0C3Odb7vhDzypbbyl6 BOS0FbV+TBjVNTU2GqUdDGGXA83iCi9BoE5vQeFqVXhF/YV2GzodmA38r0khjUxo n2z4qmgnP9wKRUAIHj/lQctC7cGOOzLE5/BQbDahma2ZtdtkkmIWYupGZ539ix4t ww1ScIOLEYEbUMfLF010oWVHftJEAd0VIssSrikOVd1NLJiQHCit0POXzznVk403 g7byPRE= -----END CERTIFICATE-----Generated at Thu May 16 22:34:54 2024 by rpki-client on console-ams.rpki-client.org