$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/EF0EFF5833F511EDA5C4F37DC4F9AE02.roa File: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (raw, json) Hash identifier: bvSpv9ufPXfeUHUBo907zxCzqsiJ9vO7QbKLUhCyJr0= Subject key identifier: E5:A4:21:DE:1A:76:2F:5D:C5:71:D9:85:84:FB:56:A8:7E:D4:1F:E7 Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: D5 Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/EF0EFF5833F511EDA5C4F37DC4F9AE02.roa Signing time: Sat 09 Sep 2023 03:33:56 +0000 ROA not before: Sat 09 Sep 2023 03:33:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150308 IP address blocks: 103.232.142.0/24 maxlen: 24 103.232.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 04:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Sep 9 03:33:56 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=64fbe7a4-7400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:63:f2:ee:82:c8:1e:d2:15:21:0b:5f:15:d0: ce:33:79:9a:59:4d:ce:88:1b:88:4b:16:5b:3d:6f: 8f:22:ec:2b:55:34:c9:2d:d7:e9:69:7f:1e:06:25: 51:22:31:25:a2:e3:79:35:ca:93:94:9c:b0:eb:bb: 27:64:45:01:97:96:45:72:13:7c:d4:1a:0d:08:08: 55:93:4f:72:b0:18:85:ed:d3:d7:57:81:b0:d5:35: b2:fe:d0:f7:96:52:f2:51:fc:8a:4b:ef:50:cf:81: c3:26:fb:4a:aa:97:28:6d:89:3f:8d:96:ab:a3:21: cb:a8:17:01:21:68:f7:74:e7:1c:23:8d:64:bf:e3: d4:77:35:a2:3f:09:39:f5:ec:0d:e9:b7:ac:9d:c5: 12:2c:54:8c:c6:cf:e4:55:97:c4:12:bb:96:56:dd: 50:be:f3:c7:be:e9:0b:d6:93:f9:c6:18:cd:86:e2: 71:2b:e6:3b:64:8a:ab:7c:1e:e7:e8:2f:45:79:55: ae:c3:5a:ae:c8:92:15:11:c7:91:d2:67:0a:15:62: 88:10:82:6f:09:e1:1d:5a:25:f5:ca:90:b0:0a:6d: 21:77:0d:99:0f:16:eb:f7:c0:c9:d3:8b:da:6a:fb: 14:09:79:76:45:9b:89:f4:5f:5f:7f:5e:bb:83:99: 61:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A4:21:DE:1A:76:2F:5D:C5:71:D9:85:84:FB:56:A8:7E:D4:1F:E7 X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/EF0EFF5833F511EDA5C4F37DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.142.0/23 Signature Algorithm: sha256WithRSAEncryption 64:d3:3e:e8:11:46:c2:42:0d:3f:6a:08:11:03:79:f2:ce:96: ae:9b:4f:46:9a:16:20:49:e7:4b:80:61:7f:e2:d5:23:9d:8f: c0:e5:1f:18:75:cb:d4:fc:42:eb:3d:a9:51:ac:85:95:ff:c4: 33:91:96:48:d3:1c:29:84:42:f3:3f:2d:d0:11:87:59:fb:1d: 91:4f:7d:c3:b0:30:a0:cf:c3:e7:4c:30:cd:85:c9:c3:20:b8: c5:74:ee:2e:73:d4:82:80:0f:99:46:27:43:08:f6:6d:b3:cc: de:0b:32:6c:5e:b1:82:4d:97:23:1a:50:32:1b:65:6b:da:ce: ec:00:bf:1f:36:15:e4:17:7d:b9:5e:bc:f0:62:85:9d:2f:fc: f2:9a:b1:1c:29:7e:80:40:28:fe:ee:b0:f8:ce:85:43:3b:33: be:c0:17:fa:80:19:a1:b5:d5:5f:be:62:4d:f3:5c:cb:15:c8: 50:fa:dd:fd:71:e9:ef:8d:78:f7:b3:b5:09:f9:78:73:dd:5e: 55:0f:e3:36:e1:d9:9a:fe:75:64:c1:5a:21:56:bf:b2:6d:8e: 08:58:2d:27:7b:05:40:70:4b:fb:70:29:9b:56:53:32:02:20: 38:32:41:1c:a1:23:00:18:6f:0e:6f:bf:9c:44:00:23:22:7f: dc:02:38:a6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjMwOTA5MDMzMzU2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZiZTdhNC03NDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2Py7oLIHtIVIQtfFdDOM3maWU3OiBuISxZbPW+PIuwrVTTJLdfpaX8eBiVR IjElouN5NcqTlJyw67snZEUBl5ZFchN81BoNCAhVk09ysBiF7dPXV4Gw1TWy/tD3 llLyUfyKS+9Qz4HDJvtKqpcobYk/jZaroyHLqBcBIWj3dOccI41kv+PUdzWiPwk5 9ewN6besncUSLFSMxs/kVZfEEruWVt1QvvPHvukL1pP5xhjNhuJxK+Y7ZIqrfB7n 6C9FeVWuw1quyJIVEceR0mcKFWKIEIJvCeEdWiX1ypCwCm0hdw2ZDxbr98DJ04va avsUCXl2RZuJ9F9ff167g5lhswIDAQABo4IClTCCApEwHQYDVR0OBBYEFOWkId4a di9dxXHZhYT7Vqh+1B/nMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFQUYvQkUzNTIxQjgzM0YxMTFFREI4MzYxMDg2QzRGOUFFMDIvRUYwRUZGNTgz M0Y1MTFFREE1QzRGMzdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn6I4wDQYJKoZIhvcNAQELBQADggEBAGTTPugRRsJCDT9q CBEDefLOlq6bT0aaFiBJ50uAYX/i1SOdj8DlHxh1y9T8Qus9qVGshZX/xDORlkjT HCmEQvM/LdARh1n7HZFPfcOwMKDPw+dMMM2FycMguMV07i5z1IKAD5lGJ0MI9m2z zN4LMmxesYJNlyMaUDIbZWvazuwAvx82FeQXfblevPBihZ0v/PKasRwpfoBAKP7u sPjOhUM7M77AF/qAGaG11V++Yk3zXMsVyFD63f1x6e+NePeztQn5eHPdXlUP4zbh 2Zr+dWTBWiFWv7JtjghYLSd7BUBwS/twKZtWUzICIDgyQRyhIwAYbw5vv5xEACMi f9wCOKY= -----END CERTIFICATE-----Generated at Mon May 27 08:08:54 2024 by rpki-client on console-ams.rpki-client.org