$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FF128D36DF6F11EDB0112E29C4F9AE02.roa File: FF128D36DF6F11EDB0112E29C4F9AE02.roa (raw, json) Hash identifier: 3Jr6O5z91SsYiK64102lUc5reHPGCUcJ9KyVcFDdlJs= Subject key identifier: 01:AA:E5:6F:73:B6:55:EC:13:51:5A:87:AA:68:F1:24:00:AB:F4:21 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 0BC9 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FF128D36DF6F11EDB0112E29C4F9AE02.roa Signing time: Wed 24 May 2023 23:25:41 +0000 ROA not before: Wed 24 May 2023 23:25:41 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 209854 IP address blocks: 113.203.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 06:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: May 24 23:25:41 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646e9cf5-2aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7e:07:0b:1f:60:eb:e8:fc:99:4a:89:82:08: 8e:41:20:3b:ea:23:c2:30:56:ed:8f:be:c1:ca:d9: 3c:75:24:82:b1:8f:45:54:59:06:59:d4:74:31:8b: b2:3f:19:23:2a:8a:67:5a:05:f9:de:a7:8f:08:88: 09:65:0b:56:5f:ed:c8:49:e5:af:6f:09:7f:46:08: 3a:20:47:0c:36:32:8e:07:34:95:3a:51:c5:49:35: 86:98:48:2e:44:48:a1:50:97:af:32:22:b6:15:9a: 45:fe:37:a0:53:2c:bc:2f:52:f8:0a:ed:a3:95:7c: 1c:f2:26:d4:8f:11:cb:c7:58:0a:82:64:8a:42:45: 15:ce:33:1b:36:2b:24:7b:fc:33:47:29:74:50:d6: 29:0e:1c:77:12:28:53:12:b7:de:0d:69:f3:67:2e: 77:e7:fc:c3:e0:9f:87:83:d1:af:cf:49:e8:b9:95: 16:94:29:63:ba:48:7a:77:e3:fa:cc:9d:b3:d1:fe: 35:9a:6f:f8:a7:dd:9e:03:00:30:85:58:0a:8a:08: ce:b8:f2:3c:99:c2:10:90:29:9b:20:3d:8e:cb:0e: 90:3f:b9:06:c4:72:58:a3:71:5f:7d:77:f2:d7:e2: 26:2c:f0:55:01:f8:40:af:e1:d0:18:b7:0d:9b:52: 6d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:AA:E5:6F:73:B6:55:EC:13:51:5A:87:AA:68:F1:24:00:AB:F4:21 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FF128D36DF6F11EDB0112E29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.203.221.0/24 Signature Algorithm: sha256WithRSAEncryption a9:e5:b5:cb:05:69:d9:63:2c:cb:4f:93:44:c5:47:61:6f:37: 29:ef:05:a8:62:c4:e8:1b:09:7b:42:63:1f:89:30:b4:98:82: 93:fa:ae:ad:b9:f0:55:3e:26:7a:d0:68:68:e4:c4:09:e5:09: 9b:0a:a3:d3:7b:b9:41:44:68:62:d5:a5:ce:6e:bc:7d:1b:b9: f6:b1:09:e4:62:ec:35:c4:c1:9d:a6:9f:3e:90:af:ea:88:62: cd:5b:1b:ac:33:1d:bd:59:e5:89:13:f8:36:b6:2d:60:5c:a2: a9:d3:8f:36:96:69:da:d3:c3:da:05:ff:b4:55:e8:aa:99:9e: 92:cb:94:57:78:f3:1a:0f:68:d6:86:84:58:b1:f9:27:90:a0: 7e:c4:db:c2:26:48:0f:06:ce:76:9e:16:a3:f8:61:22:47:a4: 8e:ea:df:3a:31:07:9b:ba:f7:d6:53:48:84:a6:5b:bc:8a:0d: 85:a4:bb:c8:83:16:37:2e:09:88:fa:8c:18:e7:e7:0c:0e:9c: 1b:35:2d:ed:da:42:39:79:4f:de:8f:ce:aa:44:ff:ff:c4:3c: ec:74:2b:db:7c:48:27:0f:80:a9:09:ba:37:8c:0d:73:f5:c5: 2b:f6:5b:dc:64:62:f6:dc:6e:29:fe:be:e4:6c:f4:47:c0:14: e0:7b:13:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjMwNTI0MjMyNTQxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZlOWNmNS0yYWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr34HCx9g6+j8mUqJggiOQSA76iPCMFbtj77Bytk8dSSCsY9FVFkGWdR0MYuy PxkjKopnWgX53qePCIgJZQtWX+3ISeWvbwl/Rgg6IEcMNjKOBzSVOlHFSTWGmEgu REihUJevMiK2FZpF/jegUyy8L1L4Cu2jlXwc8ibUjxHLx1gKgmSKQkUVzjMbNisk e/wzRyl0UNYpDhx3EihTErfeDWnzZy535/zD4J+Hg9Gvz0nouZUWlCljukh6d+P6 zJ2z0f41mm/4p92eAwAwhVgKigjOuPI8mcIQkCmbID2Oyw6QP7kGxHJYo3FffXfy 1+ImLPBVAfhAr+HQGLcNm1Jt7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAGq5W9z tlXsE1Fah6po8SQAq/QhMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRkYxMjhEMzZE RjZGMTFFREIwMTEyRTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABxy90wDQYJKoZIhvcNAQELBQADggEBAKnltcsFadljLMtP k0TFR2FvNynvBahixOgbCXtCYx+JMLSYgpP6rq258FU+JnrQaGjkxAnlCZsKo9N7 uUFEaGLVpc5uvH0bufaxCeRi7DXEwZ2mnz6Qr+qIYs1bG6wzHb1Z5YkT+Da2LWBc oqnTjzaWadrTw9oF/7RV6KqZnpLLlFd48xoPaNaGhFix+SeQoH7E28ImSA8Gznae FqP4YSJHpI7q3zoxB5u699ZTSISmW7yKDYWku8iDFjcuCYj6jBjn5wwOnBs1Le3a Qjl5T96PzqpE///EPOx0K9t8SCcPgKkJujeMDXP1xSv2W9xkYvbcbin+vuRs9EfA FOB7Exs= -----END CERTIFICATE-----Generated at Thu Apr 25 08:13:22 2024 by rpki-client on console-ams.rpki-client.org