$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECA1F/09D37E48DB0711EB9F659537C4F9AE02/8CBC85F8BA3511ECA20A3817C4F9AE02.roa File: 8CBC85F8BA3511ECA20A3817C4F9AE02.roa (raw, json) Hash identifier: 7ftrSg8k0A8IlBqdHDr5B+eZcGv8HCwzC5OC28xuw/g= Subject key identifier: 07:C8:8A:95:11:84:35:CA:30:CE:25:AB:F4:6D:9F:75:9F:80:9B:04 Certificate issuer: /CN=A91ECA1F/serialNumber=A7FB287839DDAC8A8AC8167F07041B6B25BD57DA Certificate serial: 041D Authority key identifier: A7:FB:28:78:39:DD:AC:8A:8A:C8:16:7F:07:04:1B:6B:25:BD:57:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_soeDndrIqKyBZ_BwQbayW9V9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECA1F/09D37E48DB0711EB9F659537C4F9AE02/8CBC85F8BA3511ECA20A3817C4F9AE02.roa Signing time: Thu 29 Jun 2023 00:17:32 +0000 ROA not before: Thu 29 Jun 2023 00:17:32 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 30633 IP address blocks: 103.139.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECA1F/09D37E48DB0711EB9F659537C4F9AE02/p_soeDndrIqKyBZ_BwQbayW9V9o.crl rsync://rpki.apnic.net/member_repository/A91ECA1F/09D37E48DB0711EB9F659537C4F9AE02/p_soeDndrIqKyBZ_BwQbayW9V9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_soeDndrIqKyBZ_BwQbayW9V9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 00:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECA1F/serialNumber=A7FB287839DDAC8A8AC8167F07041B6B25BD57DA Validity Not Before: Jun 29 00:17:32 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649ccd9c-e3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ec:59:22:7d:36:c1:1f:01:1a:41:57:bf:3f: 2f:f3:67:06:7f:a3:3b:36:41:7b:00:c2:31:b5:5d: f1:95:3b:14:4c:28:2f:db:21:45:a1:90:98:26:56: 0e:85:43:28:9e:7a:87:7f:54:f5:0c:3b:e4:73:c0: 5a:6e:61:a3:dc:48:81:36:12:73:22:29:6b:5a:bf: fd:58:d3:e9:a4:71:01:da:85:af:d0:0d:37:5a:87: cd:ff:d7:a4:d6:2c:db:7a:34:f3:f0:bf:24:19:39: 2f:da:8f:58:40:a5:3f:45:0d:fd:f3:72:d0:ee:8b: 21:e6:4b:bb:2a:87:bf:52:38:9a:f5:aa:48:0b:0e: 0e:e2:e5:93:6a:33:08:78:51:46:bd:97:34:9d:10: a2:27:1e:28:37:49:9d:51:69:6f:f2:b6:5b:23:12: a7:73:02:fc:d1:1d:39:f5:43:e7:b0:31:6f:55:3a: cb:4a:0e:01:c6:4c:c9:10:e6:5e:a8:ca:a0:df:c0: e1:ac:60:c2:50:99:f2:f7:06:16:3e:cc:f6:63:21: 10:e9:4d:a3:7f:dc:d5:f7:7c:32:50:c5:94:1a:59: 8b:ad:c0:c4:7a:a0:26:11:2b:fb:bc:8e:4b:75:e1: dd:27:95:fb:3e:29:e5:18:16:f4:f5:61:d7:ba:5e: db:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C8:8A:95:11:84:35:CA:30:CE:25:AB:F4:6D:9F:75:9F:80:9B:04 X509v3 Authority Key Identifier: keyid:A7:FB:28:78:39:DD:AC:8A:8A:C8:16:7F:07:04:1B:6B:25:BD:57:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECA1F/09D37E48DB0711EB9F659537C4F9AE02/p_soeDndrIqKyBZ_BwQbayW9V9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_soeDndrIqKyBZ_BwQbayW9V9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECA1F/09D37E48DB0711EB9F659537C4F9AE02/8CBC85F8BA3511ECA20A3817C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.50.0/24 Signature Algorithm: sha256WithRSAEncryption aa:36:f7:f8:c7:ed:ee:77:3b:d0:5f:a8:48:b3:f4:50:a4:df: fc:9e:7a:b9:51:3b:0b:ad:f2:77:bb:3c:95:06:ee:c6:e2:6e: 94:a3:fb:e6:a8:e0:f1:b0:f9:b4:c2:25:ad:83:4c:bd:f0:69: 3d:5e:f6:4a:21:5e:42:ab:f5:62:52:d0:4c:3c:76:98:ca:95: ad:04:ba:c5:2b:c1:ab:b2:c1:51:b3:54:0e:60:f1:6b:87:62: fb:46:3a:c3:02:4e:2f:fb:41:55:56:d9:ff:68:fb:4f:a5:e2: c8:c2:28:be:eb:a2:58:7c:4f:58:32:f4:40:17:1a:be:0c:e4: 56:36:84:55:e0:17:6b:b1:91:3c:5d:ae:7c:f3:2a:e8:67:81: 11:cc:ae:fb:47:57:6e:09:37:c9:95:36:f4:fe:a2:2e:00:ef: 09:41:dd:65:5e:0b:f3:e9:5f:db:e5:77:06:ba:31:a8:b6:a8: 72:b5:b0:4e:62:9f:cf:94:6a:57:ea:58:6f:a3:4b:c1:2b:45: 40:33:b6:da:1f:a9:27:8f:d0:3d:92:12:cf:72:d3:e1:03:c7: 26:67:50:61:65:e8:8e:e7:c7:8a:78:8c:fd:89:f0:ba:05:73: 67:bd:72:42:8b:7f:c7:c5:f9:78:58:35:d4:4c:29:a7:30:45: a3:b2:98:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNBMUYxMTAvBgNVBAUTKEE3RkIyODc4MzlEREFDOEE4QUM4MTY3RjA3MDQxQjZC MjVCRDU3REEwHhcNMjMwNjI5MDAxNzMyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDljY2Q5Yy1lM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOxZIn02wR8BGkFXvz8v82cGf6M7NkF7AMIxtV3xlTsUTCgv2yFFoZCYJlYO hUMonnqHf1T1DDvkc8BabmGj3EiBNhJzIilrWr/9WNPppHEB2oWv0A03WofN/9ek 1izbejTz8L8kGTkv2o9YQKU/RQ3983LQ7osh5ku7Koe/Ujia9apICw4O4uWTajMI eFFGvZc0nRCiJx4oN0mdUWlv8rZbIxKncwL80R059UPnsDFvVTrLSg4BxkzJEOZe qMqg38DhrGDCUJny9wYWPsz2YyEQ6U2jf9zV93wyUMWUGlmLrcDEeqAmESv7vI5L deHdJ5X7PinlGBb09WHXul7bpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAfIipUR hDXKMM4lq/Rtn3WfgJsEMB8GA1UdIwQYMBaAFKf7KHg53ayKisgWfwcEG2slvVfa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0ExRi8wOUQzN0U0OERC MDcxMUVCOUY2NTk1MzdDNEY5QUUwMi9wX3NvZURuZHJJcUt5QlpfQndRYmF5VzlW OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bfc29lRG5kcklxS3lCWl9Cd1FiYXlXOVY5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNBMUYvMDlEMzdFNDhEQjA3MTFFQjlGNjU5NTM3QzRGOUFFMDIvOENCQzg1RjhC QTM1MTFFQ0EyMEEzODE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnizIwDQYJKoZIhvcNAQELBQADggEBAKo29/jH7e53O9Bf qEiz9FCk3/yeerlROwut8ne7PJUG7sbibpSj++ao4PGw+bTCJa2DTL3waT1e9koh XkKr9WJS0Ew8dpjKla0EusUrwauywVGzVA5g8WuHYvtGOsMCTi/7QVVW2f9o+0+l 4sjCKL7rolh8T1gy9EAXGr4M5FY2hFXgF2uxkTxdrnzzKuhngRHMrvtHV24JN8mV NvT+oi4A7wlB3WVeC/PpX9vldwa6Mai2qHK1sE5in8+UalfqWG+jS8ErRUAzttof qSeP0D2SEs9y0+EDxyZnUGFl6I7nx4p4jP2J8LoFc2e9ckKLf8fF+XhYNdRMKacw RaOymKE= -----END CERTIFICATE-----Generated at Thu May 23 02:40:41 2024 by rpki-client on console-ams.rpki-client.org