$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93E/5AE7852E9F2711ECBF60D27FC4F9AE02/113047A69F2A11ECACE41C82C4F9AE02.roa File: 113047A69F2A11ECACE41C82C4F9AE02.roa (raw, json) Hash identifier: 8HFiuoEkuOCg+QdpD10PuBQC+1LXfTtw3kiyaOdbRTc= Subject key identifier: A4:8D:FE:9E:97:8D:9D:1C:18:D3:28:CD:B5:30:4B:AB:2E:15:B5:CA Certificate issuer: /CN=A91EC93E/serialNumber=B4298FCB2D849D8D4D712A26272BCB1C96DBFE5E Certificate serial: 0271 Authority key identifier: B4:29:8F:CB:2D:84:9D:8D:4D:71:2A:26:27:2B:CB:1C:96:DB:FE:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tCmPyy2EnY1NcSomJyvLHJbb_l4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93E/5AE7852E9F2711ECBF60D27FC4F9AE02/113047A69F2A11ECACE41C82C4F9AE02.roa Signing time: Thu 09 Nov 2023 03:14:39 +0000 ROA not before: Thu 09 Nov 2023 03:14:39 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134405 IP address blocks: 103.123.232.0/23 maxlen: 24 203.34.36.0/24 maxlen: 24 2404:e9c0::/48 maxlen: 48 2404:e9c0:1::/48 maxlen: 48 2404:e9c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93E/5AE7852E9F2711ECBF60D27FC4F9AE02/tCmPyy2EnY1NcSomJyvLHJbb_l4.crl rsync://rpki.apnic.net/member_repository/A91EC93E/5AE7852E9F2711ECBF60D27FC4F9AE02/tCmPyy2EnY1NcSomJyvLHJbb_l4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tCmPyy2EnY1NcSomJyvLHJbb_l4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 625 (0x271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93E/serialNumber=B4298FCB2D849D8D4D712A26272BCB1C96DBFE5E Validity Not Before: Nov 9 03:14:39 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654c4e9f-b6c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:41:6f:d8:49:fc:44:65:a6:79:c8:83:a0:ca: 62:5d:ba:4a:c4:3a:48:61:8b:4d:0e:84:52:ed:91: 14:2b:bf:84:35:07:7b:41:45:e1:91:cd:df:43:38: ca:e2:45:0b:ef:44:7d:bb:78:aa:94:b1:b2:35:eb: 51:c3:e1:c3:7e:93:ff:1f:3f:d2:43:7a:fd:15:79: 5a:a4:a7:a0:44:c3:db:0e:7e:1c:12:b0:ea:bc:bc: eb:51:ec:74:31:c4:64:57:d4:87:65:b8:c0:8f:0b: 96:c4:99:54:fe:30:50:25:cd:99:bd:9b:c9:e5:5a: 0b:cb:b2:5e:16:60:f7:d8:e4:74:06:a4:f2:15:06: c5:71:49:b7:16:5e:0f:51:c6:ee:57:63:e4:ab:f7: b5:d4:55:e1:4c:9e:18:0b:dc:83:f0:3c:1e:50:ac: fc:34:9d:73:37:11:58:b1:26:04:aa:ce:bb:99:75: 02:4c:32:85:cb:ab:d5:68:4c:c6:0f:60:fd:54:42: c1:e4:7a:ea:0c:57:6c:17:67:a4:69:bb:ff:8c:16: ac:09:d5:46:d1:b6:ac:22:c4:0d:55:cb:74:2d:ab: fe:9b:ad:ae:5d:25:2a:04:b3:8a:34:2a:61:a9:63: 1e:b8:2e:5a:80:74:45:81:c0:7b:3c:1e:dd:aa:e3: 6b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:8D:FE:9E:97:8D:9D:1C:18:D3:28:CD:B5:30:4B:AB:2E:15:B5:CA X509v3 Authority Key Identifier: keyid:B4:29:8F:CB:2D:84:9D:8D:4D:71:2A:26:27:2B:CB:1C:96:DB:FE:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93E/5AE7852E9F2711ECBF60D27FC4F9AE02/tCmPyy2EnY1NcSomJyvLHJbb_l4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tCmPyy2EnY1NcSomJyvLHJbb_l4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93E/5AE7852E9F2711ECBF60D27FC4F9AE02/113047A69F2A11ECACE41C82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.232.0/23 203.34.36.0/24 IPv6: 2404:e9c0::-2404:e9c0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 98:27:1a:1f:f8:cf:11:6f:41:f1:ae:0a:43:e2:d5:82:98:06: a1:2d:de:34:1f:84:f1:1f:41:78:5f:42:a7:0f:f6:d1:e8:74: 40:4e:7c:74:2c:91:2c:f8:ca:4f:ed:a0:d4:59:98:96:5e:29: 43:d9:f8:ec:d6:50:95:73:4a:ed:24:d3:b0:24:04:51:d0:ea: 01:88:97:23:51:9d:50:a6:8e:ed:3c:70:d7:cc:4a:a2:ac:88: dd:b4:f4:ae:00:d3:2f:7a:c7:a9:b1:6e:d2:3b:39:b5:ba:00: e5:4f:a4:ec:1f:4f:54:c7:59:b2:5b:d7:9a:bd:10:6f:d1:32: 18:90:8c:ff:ee:1a:28:f9:09:81:08:21:aa:ec:69:86:55:e2: f8:fe:aa:ba:cd:68:d0:67:c9:5d:49:2b:81:2b:b3:54:9b:79: a6:0b:57:2e:63:50:87:3f:5e:ee:6e:13:91:b2:0c:08:d2:c1: fd:f8:46:09:a7:f9:31:68:4b:24:4b:07:44:15:29:ec:ef:a8: 7f:22:f2:ea:da:26:c1:fc:4f:8d:7b:35:70:58:de:07:8e:36: 02:79:39:b6:ab:9d:d5:e6:6f:be:d3:71:74:3b:3c:32:2e:f1: 7b:2c:03:83:72:45:d6:f9:cf:66:9b:b8:54:d8:d7:d3:fe:d0: f9:cb:9d:45 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0UxMTAvBgNVBAUTKEI0Mjk4RkNCMkQ4NDlEOEQ0RDcxMkEyNjI3MkJDQjFD OTZEQkZFNUUwHhcNMjMxMTA5MDMxNDM5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRjNGU5Zi1iNmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UFv2En8RGWmeciDoMpiXbpKxDpIYYtNDoRS7ZEUK7+ENQd7QUXhkc3fQzjK 4kUL70R9u3iqlLGyNetRw+HDfpP/Hz/SQ3r9FXlapKegRMPbDn4cErDqvLzrUex0 McRkV9SHZbjAjwuWxJlU/jBQJc2ZvZvJ5VoLy7JeFmD32OR0BqTyFQbFcUm3Fl4P UcbuV2Pkq/e11FXhTJ4YC9yD8DweUKz8NJ1zNxFYsSYEqs67mXUCTDKFy6vVaEzG D2D9VELB5HrqDFdsF2ekabv/jBasCdVG0basIsQNVct0Lav+m62uXSUqBLOKNCph qWMeuC5agHRFgcB7PB7dquNrXQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFKSN/p6X jZ0cGNMozbUwS6suFbXKMB8GA1UdIwQYMBaAFLQpj8sthJ2NTXEqJicryxyW2/5e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRS81QUU3ODUyRTlG MjcxMUVDQkY2MEQyN0ZDNEY5QUUwMi90Q21QeXkyRW5ZMU5jU29tSnl2TEhKYmJf bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RDbVB5eTJFblkxTmNTb21KeXZMSEpiYl9sNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM5M0UvNUFFNzg1MkU5RjI3MTFFQ0JGNjBEMjdGQzRGOUFFMDIvMTEzMDQ3QTY5 RjJBMTFFQ0FDRTQxQzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBIEAgABMAwDBAFne+gDBADLIiQwGAQCAAIwEjAQAwUGJATpwAMHACQE6cAA AjANBgkqhkiG9w0BAQsFAAOCAQEAmCcaH/jPEW9B8a4KQ+LVgpgGoS3eNB+E8R9B eF9Cpw/20eh0QE58dCyRLPjKT+2g1FmYll4pQ9n47NZQlXNK7STTsCQEUdDqAYiX I1GdUKaO7Txw18xKoqyI3bT0rgDTL3rHqbFu0js5tboA5U+k7B9PVMdZslvXmr0Q b9EyGJCM/+4aKPkJgQghquxphlXi+P6qus1o0GfJXUkrgSuzVJt5pgtXLmNQhz9e 7m4TkbIMCNLB/fhGCaf5MWhLJEsHRBUp7O+ofyLy6tomwfxPjXs1cFjeB442Ank5 tqud1eZvvtNxdDs8Mi7xeywDg3JF1vnPZpu4VNjX0/7Q+cudRQ== -----END CERTIFICATE-----Generated at Tue May 21 04:39:47 2024 by rpki-client on console-ams.rpki-client.org