$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/BE8369D6053711EA9A24E761C4F9AE02.roa File: BE8369D6053711EA9A24E761C4F9AE02.roa (raw, json) Hash identifier: XxAe1LiLKzhQdzJO3Lo5T8NSvmoTjAF2Km8r6YlmsIE= Subject key identifier: BA:4C:10:D3:34:04:36:B6:C6:97:62:96:C3:6D:EB:29:F4:3C:42:73 Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0B2C Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/BE8369D6053711EA9A24E761C4F9AE02.roa Signing time: Wed 06 Sep 2023 19:06:34 +0000 ROA not before: Wed 06 Sep 2023 19:06:34 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 16276 IP address blocks: 103.5.12.0/22 maxlen: 22 2402:1f00::/32 maxlen: 32 2402:1f00:8000::/40 maxlen: 40 2402:1f00:8100::/40 maxlen: 40 2402:1f00:8200::/40 maxlen: 40 2402:1f00:8300::/40 maxlen: 40 2402:1f00:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2860 (0xb2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: Sep 6 19:06:34 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f8cdba-ce4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:07:33:82:ee:20:ca:c7:39:75:c9:ba:f1:5b: 81:da:ec:63:8a:d2:60:36:17:ff:21:f9:ad:67:d4: 8a:e8:b9:cb:99:f3:fd:aa:66:c2:d1:0c:41:d5:07: 65:69:21:ae:82:51:c0:ad:03:1c:5b:35:ba:bc:4e: 98:71:00:c8:2c:2a:a1:32:5c:ee:d1:fa:56:92:d4: 2d:e5:b3:aa:f7:c1:17:39:6c:7d:b0:c3:17:f1:70: b0:c0:6a:74:86:7d:bd:9c:0a:69:37:3f:dc:7f:08: 21:d7:56:32:93:76:00:68:bd:7f:ce:4f:d4:17:85: c8:14:99:f5:ab:d4:36:42:eb:df:62:6d:7d:6a:77: 67:ad:81:8e:89:95:a9:39:f3:82:08:14:78:c1:1a: 86:06:b1:99:1b:99:f8:99:0e:e2:e7:c6:61:ed:9e: 10:4a:97:be:97:81:a6:bf:ab:13:4d:96:8d:e5:d1: 5b:b6:37:53:de:cd:2c:fb:39:b6:a4:8d:6d:50:b1: 9b:72:87:22:23:28:71:42:37:93:45:f3:44:19:14: 14:2b:b5:cf:fd:67:d3:a1:59:86:2d:00:f3:9f:1f: 8f:16:26:17:03:1f:c2:ff:98:d1:81:31:03:18:eb: 6e:9a:a6:d0:27:55:7b:ce:bd:c5:38:aa:f5:f7:44: cd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4C:10:D3:34:04:36:B6:C6:97:62:96:C3:6D:EB:29:F4:3C:42:73 X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/BE8369D6053711EA9A24E761C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.12.0/22 IPv6: 2402:1f00::/32 Signature Algorithm: sha256WithRSAEncryption 08:a5:42:71:57:58:20:85:0a:5e:c9:0e:b2:70:45:e4:85:50: 35:e9:16:e9:2f:3c:84:45:14:20:a1:b1:ea:65:e3:66:9c:7d: f6:fe:a3:22:46:59:fd:34:f9:c0:e8:73:31:17:82:a5:24:4c: 30:0c:7d:ba:29:6a:07:f5:5e:db:db:49:76:f6:84:58:be:48: 27:e3:7e:19:45:02:f8:ad:b2:96:53:f2:a8:b2:09:2c:cd:40: 6f:e7:e5:bb:d0:b4:15:b5:cf:28:81:e7:ca:01:2d:df:31:66: 62:29:1e:3c:ae:01:d5:8b:1e:ae:76:67:ed:63:27:bd:43:01: ba:49:ad:38:d3:d4:ad:42:7d:b4:8b:37:3e:59:13:0e:d1:a4: bb:37:dc:eb:47:3d:a6:d8:cd:c3:81:0a:08:60:4f:58:cb:eb: c8:ed:60:e4:80:ab:21:9d:ed:4a:6e:13:53:48:93:7a:1c:dc: 6f:cd:b7:1f:ca:3c:2d:80:a9:d4:c0:f7:88:71:ee:84:1a:65: ca:de:b9:3e:2a:52:06:19:5a:ab:23:b3:51:32:ac:6a:b7:ab: 92:74:a9:cd:42:7b:11:76:f4:30:4d:b5:78:01:ab:ed:db:f9: ea:2e:17:2f:08:2e:68:6f:0b:08:ab:d8:b7:2c:23:dd:8b:1e: a9:fc:13:2a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjMwOTA2MTkwNjM0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY4Y2RiYS1jZTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwczgu4gysc5dcm68VuB2uxjitJgNhf/IfmtZ9SK6LnLmfP9qmbC0QxB1Qdl aSGuglHArQMcWzW6vE6YcQDILCqhMlzu0fpWktQt5bOq98EXOWx9sMMX8XCwwGp0 hn29nAppNz/cfwgh11Yyk3YAaL1/zk/UF4XIFJn1q9Q2QuvfYm19andnrYGOiZWp OfOCCBR4wRqGBrGZG5n4mQ7i58Zh7Z4QSpe+l4Gmv6sTTZaN5dFbtjdT3s0s+zm2 pI1tULGbcociIyhxQjeTRfNEGRQUK7XP/WfToVmGLQDznx+PFiYXAx/C/5jRgTED GOtumqbQJ1V7zr3FOKr190TNHQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLpMENM0 BDa2xpdilsNt6yn0PEJzMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI0NkIvNDkzMUVFNDYwMDdEMTFFQUI0ODkxMzFCQzRGOUFFMDIvQkU4MzY5RDYw NTM3MTFFQTlBMjRFNzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnBQwwDQQCAAIwBwMFACQCHwAwDQYJKoZIhvcNAQELBQAD ggEBAAilQnFXWCCFCl7JDrJwReSFUDXpFukvPIRFFCChsepl42acffb+oyJGWf00 +cDoczEXgqUkTDAMfbopagf1XtvbSXb2hFi+SCfjfhlFAvitspZT8qiyCSzNQG/n 5bvQtBW1zyiB58oBLd8xZmIpHjyuAdWLHq52Z+1jJ71DAbpJrTjT1K1CfbSLNz5Z Ew7RpLs33OtHPabYzcOBCghgT1jL68jtYOSAqyGd7UpuE1NIk3oc3G/Ntx/KPC2A qdTA94hx7oQaZcreuT4qUgYZWqsjs1EyrGq3q5J0qc1CexF29DBNtXgBq+3b+eou Fy8ILmhvCwir2LcsI92LHqn8Eyo= -----END CERTIFICATE-----Generated at Tue May 14 21:48:50 2024 by rpki-client on console-ams.rpki-client.org