$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/EAC9D46200F911EB8E61B84CC4F9AE02.roa File: EAC9D46200F911EB8E61B84CC4F9AE02.roa (raw, json) Hash identifier: lpCGZpsIHfq/TYYzXHLzianBw4q1hr7uSQVL0A/MYK8= Subject key identifier: 89:42:85:54:46:B3:91:08:F4:49:87:06:12:D7:65:E7:0C:1C:7E:59 Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 0691 Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/EAC9D46200F911EB8E61B84CC4F9AE02.roa Signing time: Fri 10 Nov 2023 22:29:58 +0000 ROA not before: Fri 10 Nov 2023 22:29:58 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 139643 IP address blocks: 103.143.0.0/24 maxlen: 24 103.143.1.0/24 maxlen: 24 2001:df1:6480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Nov 10 22:29:58 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654eaee5-ec14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:e9:02:5e:fa:7f:36:73:79:60:19:07:65: c9:39:2d:a4:65:90:9a:10:94:62:47:43:a1:4d:33: c9:b4:51:84:db:d4:f5:b2:bb:9d:2b:e1:a8:0d:d3: 24:87:3c:59:0a:fc:44:8e:f2:a9:e0:8b:97:7f:47: 4d:a7:c7:8a:23:ab:86:ed:47:ae:c3:39:b4:1f:75: de:ff:c9:ee:aa:ef:e7:7d:53:1c:5d:3b:dc:33:45: 7f:8e:ec:36:75:55:4c:be:ba:9d:76:7f:4b:d1:8c: 1d:a6:b1:2b:e4:f2:f1:d5:4e:8f:7d:14:81:3b:d2: 11:39:2d:89:ff:0c:8f:76:89:7c:71:d1:8d:eb:a9: 99:5a:da:94:f6:f3:55:fd:ad:4b:6c:22:18:a5:3f: 02:b2:cb:09:2d:38:c4:b5:32:87:68:58:d1:0d:53: 33:a9:65:07:f1:98:02:1c:b2:59:a6:3b:dd:8f:bc: 14:09:45:35:73:3b:12:0d:e0:c5:fd:8c:34:fe:4f: 1b:8b:dc:45:e6:05:92:b3:8b:e9:0f:f5:95:31:2d: 56:6f:a0:ae:30:02:ff:cf:84:f2:ac:04:bc:51:85: ba:19:d4:9c:09:f7:12:22:3e:60:29:c2:6b:ce:0a: 1f:73:38:e8:9d:3e:8b:a0:d8:28:b8:19:af:ed:3d: 25:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:42:85:54:46:B3:91:08:F4:49:87:06:12:D7:65:E7:0C:1C:7E:59 X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/EAC9D46200F911EB8E61B84CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.0.0/23 IPv6: 2001:df1:6480::/48 Signature Algorithm: sha256WithRSAEncryption 4a:a8:ac:99:2c:71:66:84:af:01:dc:22:5b:28:67:ad:f8:18: be:a7:1a:a7:57:de:08:01:a5:fd:4b:74:98:29:e3:12:f4:9b: 3c:8a:62:da:9b:13:d4:62:e7:a4:33:0b:92:dd:09:0b:18:60: de:9f:00:62:b7:1c:88:cf:46:23:6d:c0:11:dc:5d:33:22:33: 5c:e3:79:70:54:29:c9:66:e4:d3:a6:b5:86:5e:0a:fc:72:3c: 5c:f1:77:2e:0f:1c:5c:63:19:60:ac:1d:be:9c:c9:fa:bc:cb: 05:4e:24:7f:bf:20:de:9e:f3:35:41:81:09:31:b7:1b:d7:e6: 79:f9:0a:48:99:4a:d8:b1:bd:17:6a:6b:70:af:5e:98:6d:f1: 44:b4:0b:a1:7c:9c:b5:5e:cc:4d:32:08:f5:81:b0:37:cb:d8: ca:a9:63:40:23:0a:52:cf:58:08:8e:57:23:0d:60:24:14:5d: 52:17:85:2c:99:71:97:e8:b0:15:3f:db:0e:3a:35:23:26:ca: b2:a3:4a:01:b8:67:b2:0a:58:f7:6b:e0:e2:47:03:96:39:8e: ef:43:59:1e:f3:f2:01:01:17:09:d5:7e:29:55:3c:9f:41:2e: 56:eb:b9:90:c9:1a:c0:a1:c9:80:da:8a:0f:39:fd:f2:1f:b3: eb:00:b1:4c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjMxMTEwMjIyOTU4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRlYWVlNS1lYzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOLpAl76fzZzeWAZB2XJOS2kZZCaEJRiR0OhTTPJtFGE29T1srudK+GoDdMk hzxZCvxEjvKp4IuXf0dNp8eKI6uG7Ueuwzm0H3Xe/8nuqu/nfVMcXTvcM0V/juw2 dVVMvrqddn9L0YwdprEr5PLx1U6PfRSBO9IROS2J/wyPdol8cdGN66mZWtqU9vNV /a1LbCIYpT8CsssJLTjEtTKHaFjRDVMzqWUH8ZgCHLJZpjvdj7wUCUU1czsSDeDF /Yw0/k8bi9xF5gWSs4vpD/WVMS1Wb6CuMAL/z4TyrAS8UYW6GdScCfcSIj5gKcJr zgofczjonT6LoNgouBmv7T0lYQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIlChVRG s5EI9EmHBhLXZecMHH5ZMB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg4ODEvMDg5REU4NDAwMEY4MTFFQkIyMTdBNDQ5QzRGOUFFMDIvRUFDOUQ0NjIw MEY5MTFFQjhFNjFCODRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjwAwDwQCAAIwCQMHACABDfFkgDANBgkqhkiG9w0BAQsF AAOCAQEASqismSxxZoSvAdwiWyhnrfgYvqcap1feCAGl/Ut0mCnjEvSbPIpi2psT 1GLnpDMLkt0JCxhg3p8AYrcciM9GI23AEdxdMyIzXON5cFQpyWbk06a1hl4K/HI8 XPF3Lg8cXGMZYKwdvpzJ+rzLBU4kf78g3p7zNUGBCTG3G9fmefkKSJlK2LG9F2pr cK9emG3xRLQLoXyctV7MTTII9YGwN8vYyqljQCMKUs9YCI5XIw1gJBRdUheFLJlx l+iwFT/bDjo1IybKsqNKAbhnsgpY92vg4kcDljmO70NZHvPyAQEXCdV+KVU8n0Eu Vuu5kMkawKHJgNqKDzn98h+z6wCxTA== -----END CERTIFICATE-----Generated at Sat May 11 01:30:21 2024 by rpki-client on console-ams.rpki-client.org