$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/9E43A19CD6E611EEAE5D8F64C4F9AE02.roa File: 9E43A19CD6E611EEAE5D8F64C4F9AE02.roa (raw, json) Hash identifier: ShLJrtzXni57aVHcps3NYL30Ym5SX2SH0OFQXLrKWh0= Subject key identifier: 7B:56:91:C2:02:63:67:C5:BE:DE:D8:25:E7:D8:8F:33:7C:97:4C:AA Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 07CC Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/9E43A19CD6E611EEAE5D8F64C4F9AE02.roa Signing time: Thu 29 Feb 2024 09:40:48 +0000 ROA not before: Thu 29 Feb 2024 09:40:48 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 140616 IP address blocks: 103.151.11.0/24 maxlen: 24 2406:1140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 21:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1996 (0x7cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Validity Not Before: Feb 29 09:40:48 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65e05120-bf3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4c:fd:20:42:d5:ae:57:a0:20:b8:8b:d5:f3: aa:f2:93:2e:17:6f:fc:7c:14:0b:62:04:dc:d4:5b: 3a:03:77:95:76:23:a1:04:50:4c:3e:91:d3:98:ef: 8f:cd:aa:10:67:79:3d:5a:74:bf:72:6b:1c:3f:88: 6c:c3:ac:94:ea:bc:4a:34:e8:48:24:c5:91:cb:b9: 47:22:ab:eb:3f:e8:5c:00:c5:69:68:ab:22:cc:b4: 6f:25:50:6b:71:7b:5b:a8:7a:f5:cc:c9:6b:d4:15: 85:1c:c5:22:4d:b3:0c:d1:c4:ac:9f:84:9c:a6:19: 2e:1f:8b:bb:21:d0:5e:ee:be:64:97:f4:e1:75:39: 83:16:23:3b:db:72:e9:ee:0e:71:2a:e9:3e:fc:80: 12:d7:90:a7:6d:cb:6e:3a:5a:30:e6:dd:36:0c:37: 3b:9a:31:96:2c:f3:78:76:65:8d:8c:2a:b9:7a:3b: 69:ad:cd:30:7e:ac:c1:2f:9e:45:23:39:f4:f5:3c: 83:7c:f7:d6:56:bf:90:0d:f7:49:d9:7d:07:8f:95: 68:05:8b:c3:d1:4c:0a:6b:b6:7e:39:f4:70:5d:8d: a6:be:96:79:12:20:bb:13:0e:74:98:9e:fe:35:a1: 71:51:64:a0:fb:ba:41:c8:48:45:13:27:f6:7b:ed: cc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:56:91:C2:02:63:67:C5:BE:DE:D8:25:E7:D8:8F:33:7C:97:4C:AA X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/9E43A19CD6E611EEAE5D8F64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.11.0/24 IPv6: 2406:1140::/32 Signature Algorithm: sha256WithRSAEncryption 38:60:42:81:bb:72:b8:fc:b3:0b:9b:b4:93:63:ae:1a:ad:42: 22:2a:2e:da:10:75:21:e2:63:04:62:15:4f:c0:da:6f:32:f4: 0d:0b:87:06:42:1f:6a:72:c1:4e:2b:37:98:9e:71:d9:65:0c: 6c:11:86:d1:bc:6f:40:f5:88:e3:2d:8a:b5:f6:37:24:d7:0d: 6b:87:be:f4:14:a3:b6:37:7e:0e:a1:f5:88:6f:e6:5e:ac:54: 50:f5:b1:70:a4:c0:29:6e:6c:bd:88:a7:b7:c4:b2:08:cd:1f: 55:b8:43:3b:53:65:35:f7:55:cd:54:06:0d:dd:79:2c:93:2d: 3f:9a:fe:b1:07:f3:75:e6:83:d1:0a:22:1f:cd:62:16:41:fc: 7b:00:b5:7a:5a:9f:98:08:7d:9b:33:7f:16:b3:59:9f:a7:a5: 3c:7a:5d:6e:56:d2:55:7e:53:4b:2a:4f:02:48:e7:bc:1a:1c: 54:38:7e:11:02:eb:b8:c4:60:a4:ae:11:ab:41:c6:2a:87:e0: 76:f3:35:b6:e0:f0:83:22:59:61:e4:a4:1a:1e:f8:de:3a:9c: 72:b3:39:22:52:21:98:0b:c3:c6:53:7e:65:91:f3:0c:4f:da: 3a:f9:e8:24:03:2a:48:8b:94:5a:30:a9:b4:be:c9:26:d6:d0: 1c:06:04:b7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjQwMjI5MDk0MDQ4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwNTEyMC1iZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUz9IELVrlegILiL1fOq8pMuF2/8fBQLYgTc1Fs6A3eVdiOhBFBMPpHTmO+P zaoQZ3k9WnS/cmscP4hsw6yU6rxKNOhIJMWRy7lHIqvrP+hcAMVpaKsizLRvJVBr cXtbqHr1zMlr1BWFHMUiTbMM0cSsn4ScphkuH4u7IdBe7r5kl/ThdTmDFiM723Lp 7g5xKuk+/IAS15CnbctuOlow5t02DDc7mjGWLPN4dmWNjCq5ejtprc0wfqzBL55F Izn09TyDfPfWVr+QDfdJ2X0Hj5VoBYvD0UwKa7Z+OfRwXY2mvpZ5EiC7Ew50mJ7+ NaFxUWSg+7pByEhFEyf2e+3MKwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHtWkcIC Y2fFvt7YJefYjzN8l0yqMB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ4RTAvRUUyRDUzMjZCOTQ3MTFFQThBNjQ5RTc2QzRGOUFFMDIvOUU0M0ExOUNE NkU2MTFFRUFFNUQ4RjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnlwswDQQCAAIwBwMFACQGEUAwDQYJKoZIhvcNAQELBQAD ggEBADhgQoG7crj8swubtJNjrhqtQiIqLtoQdSHiYwRiFU/A2m8y9A0LhwZCH2py wU4rN5iecdllDGwRhtG8b0D1iOMtirX2NyTXDWuHvvQUo7Y3fg6h9Yhv5l6sVFD1 sXCkwClubL2Ip7fEsgjNH1W4QztTZTX3Vc1UBg3deSyTLT+a/rEH83Xmg9EKIh/N YhZB/HsAtXpan5gIfZszfxazWZ+npTx6XW5W0lV+U0sqTwJI57waHFQ4fhEC67jE YKSuEatBxiqH4HbzNbbg8IMiWWHkpBoe+N46nHKzOSJSIZgLw8ZTfmWR8wxP2jr5 6CQDKkiLlFowqbS+ySbW0BwGBLc= -----END CERTIFICATE-----Generated at Tue May 14 22:49:23 2024 by rpki-client on console-ams.rpki-client.org