$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/B0B897E62F4F11ED8B8A7165C4F9AE02.roa File: B0B897E62F4F11ED8B8A7165C4F9AE02.roa (raw, json) Hash identifier: 53Q5a2II9Q6ghdzv55gsCXS8EdmnkViyGeX8Upweybk= Subject key identifier: 67:2E:42:37:08:5F:85:E9:23:E4:75:E8:4E:01:7E:46:D3:C5:F0:13 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: E7 Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/B0B897E62F4F11ED8B8A7165C4F9AE02.roa Signing time: Thu 03 Aug 2023 04:37:28 +0000 ROA not before: Thu 03 Aug 2023 04:37:28 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149981 IP address blocks: 103.189.255.0/24 maxlen: 24 2407:2440:21::/48 maxlen: 48 2407:2440:24::/48 maxlen: 48 2407:2440:26::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 04:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Aug 3 04:37:28 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64cb2f08-4209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:83:de:c2:15:be:50:26:05:d7:22:cb:42:63: bd:a1:1d:bb:e4:af:ee:49:4d:40:d7:58:2e:5c:5b: 6e:bf:86:60:88:c1:92:32:ab:64:98:98:32:0c:cb: 57:fc:32:83:6b:52:61:47:89:67:11:02:49:33:81: da:02:f0:c1:ae:ea:0d:58:b6:14:b1:37:89:b7:d5: 14:e7:be:70:57:00:c7:47:ab:8e:f6:80:68:65:33: ee:b4:5c:7b:8a:a0:c6:43:ec:1e:d2:6b:7d:54:b4: 3c:ef:a4:c7:e0:b6:ef:de:6c:d1:52:5b:fa:70:c5: a8:1a:67:42:60:46:3b:5c:21:7d:7e:66:50:2b:0f: d3:d3:b1:67:b8:c1:ff:f1:46:42:f5:8f:33:92:ae: 7d:28:87:ce:c4:3a:61:d2:15:4a:b9:42:c2:1d:fd: 63:e9:d5:30:d8:66:34:d5:34:d6:0d:28:c6:18:57: ac:2a:a2:76:37:46:ec:e9:de:74:9d:f0:74:76:92: 92:78:a3:72:0f:27:6e:86:86:b8:fa:59:47:91:f9: ca:5f:4d:0a:75:f1:68:72:39:fb:ab:5e:e1:6b:d6: a0:b6:2a:25:7b:61:91:04:df:a5:3b:fd:e2:4a:d9: 3f:1f:81:b6:7d:e1:21:75:60:aa:31:ec:e0:93:2c: 86:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:2E:42:37:08:5F:85:E9:23:E4:75:E8:4E:01:7E:46:D3:C5:F0:13 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/B0B897E62F4F11ED8B8A7165C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.255.0/24 IPv6: 2407:2440:21::/48 2407:2440:24::/48 2407:2440:26::/48 Signature Algorithm: sha256WithRSAEncryption 2d:9a:1e:29:1c:5d:31:60:e8:5c:4c:5f:fa:8d:09:4e:c2:fe: 2b:35:ec:e2:d7:31:43:24:5d:db:c3:3e:76:05:de:e2:c1:f2: 1a:40:24:84:6a:3d:6b:a0:1a:cc:00:bc:6e:ca:03:be:6a:38: ba:50:57:85:35:c1:d3:ee:24:f6:11:2f:e6:70:ad:ba:e9:17: 9b:7c:d7:0d:84:bb:5d:86:65:25:bb:0b:a6:39:84:1e:e3:1a: fc:cd:af:48:38:b8:56:0f:fa:2a:6e:60:bf:ef:63:39:f9:bb: 18:38:78:1c:b1:17:89:dc:da:23:55:e8:f1:f6:74:57:26:ff: d9:40:13:9d:ad:99:6b:68:1a:da:97:b5:90:64:c3:fe:1c:c4: c3:86:ec:0c:d8:2a:7a:44:2f:ea:66:80:b3:b1:f6:06:8e:a1: 8b:54:dc:43:8f:3f:71:ce:a2:db:ec:2a:37:36:13:a2:8f:b4: 96:c9:66:df:0f:d9:eb:2b:35:03:d0:ed:52:79:f5:f5:0c:c2: 19:40:22:91:76:58:5d:24:83:8f:1c:aa:2f:4c:52:80:00:5c: 65:56:d0:b5:2b:c9:1c:cf:71:01:ed:6b:2e:3b:48:56:0d:24: 30:b7:93:cb:81:a2:10:ee:3d:65:1e:93:e3:ad:41:42:3b:88: 4c:09:a2:ae -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjMwODAzMDQzNzI4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNiMmYwOC00MjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+YPewhW+UCYF1yLLQmO9oR275K/uSU1A11guXFtuv4ZgiMGSMqtkmJgyDMtX /DKDa1JhR4lnEQJJM4HaAvDBruoNWLYUsTeJt9UU575wVwDHR6uO9oBoZTPutFx7 iqDGQ+we0mt9VLQ876TH4Lbv3mzRUlv6cMWoGmdCYEY7XCF9fmZQKw/T07FnuMH/ 8UZC9Y8zkq59KIfOxDph0hVKuULCHf1j6dUw2GY01TTWDSjGGFesKqJ2N0bs6d50 nfB0dpKSeKNyDyduhoa4+llHkfnKX00KdfFocjn7q17ha9agtiole2GRBN+lO/3i Stk/H4G2feEhdWCqMezgkyyGCQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFGcuQjcI X4XpI+R16E4BfkbTxfATMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQjBCODk3RTYy RjRGMTFFRDhCOEE3MTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMAwEAgABMAYDBABnvf8wIQQCAAIwGwMHACQHJEAAIQMHACQHJEAAJAMHACQH JEAAJjANBgkqhkiG9w0BAQsFAAOCAQEALZoeKRxdMWDoXExf+o0JTsL+KzXs4tcx QyRd28M+dgXe4sHyGkAkhGo9a6AazAC8bsoDvmo4ulBXhTXB0+4k9hEv5nCtuukX m3zXDYS7XYZlJbsLpjmEHuMa/M2vSDi4Vg/6Km5gv+9jOfm7GDh4HLEXidzaI1Xo 8fZ0Vyb/2UATna2Za2ga2pe1kGTD/hzEw4bsDNgqekQv6maAs7H2Bo6hi1TcQ48/ cc6i2+wqNzYToo+0lslm3w/Z6ys1A9DtUnn19QzCGUAikXZYXSSDjxyqL0xSgABc ZVbQtSvJHM9xAe1rLjtIVg0kMLeTy4GiEO49ZR6T461BQjuITAmirg== -----END CERTIFICATE-----Generated at Tue May 21 05:35:46 2024 by rpki-client on console-ams.rpki-client.org