$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa File: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (raw, json) Hash identifier: yRoa0c1VoVUvCnrROdI2LofNJsWKndLEn2zob8PDTCg= Subject key identifier: 07:01:19:7B:8D:10:AC:20:45:25:ED:C1:59:29:11:FB:E4:2C:82:F3 Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 0161 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa Signing time: Mon 03 Jul 2023 02:52:27 +0000 ROA not before: Mon 03 Jul 2023 02:52:27 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 58057 IP address blocks: 103.189.238.0/23 maxlen: 24 2001:df0:de40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Jul 3 02:52:27 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a237eb-0d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:38:5b:88:a9:02:02:a6:94:02:c2:d1:e6:a0: 56:18:26:87:5b:89:3a:23:8a:4f:0a:73:ea:e8:43: c3:81:19:68:52:94:42:0a:95:1c:01:46:4a:2e:c6: b7:1b:25:e4:89:28:0a:1b:38:56:c6:3a:13:83:47: 11:e9:97:8a:2b:00:a0:8a:4a:05:a1:5a:3d:dc:12: 43:47:61:f1:af:1e:ca:69:79:6a:8a:b0:b8:12:8e: 04:ea:c7:ba:ec:82:ad:a9:7e:a3:f3:c3:02:39:ea: 9d:9d:3c:06:51:01:9f:3f:e3:d1:76:24:4a:c7:79: ee:51:3e:95:96:7e:32:db:90:b7:78:e0:33:32:64: 79:08:9d:10:35:e7:61:42:1d:ea:4c:55:e2:5f:c1: 7c:52:6c:79:54:e2:bc:b0:27:7f:ef:c2:35:04:97: 5e:3f:00:d7:00:34:b1:31:22:c5:de:e1:86:4a:f7: 6e:24:a1:ff:98:33:c6:f2:19:00:c8:92:10:02:f9: 34:9c:77:f7:d6:7e:86:5b:7c:d1:94:7a:ae:53:4b: 7a:cf:e6:0f:1f:13:23:74:d4:da:00:ae:ef:41:23: 3c:73:34:5e:a3:30:c3:55:cb:51:c5:cd:91:17:71: bd:4d:43:57:4d:59:fd:9c:e0:04:a7:68:ed:b8:f4: 1e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:01:19:7B:8D:10:AC:20:45:25:ED:C1:59:29:11:FB:E4:2C:82:F3 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.238.0/23 IPv6: 2001:df0:de40::/48 Signature Algorithm: sha256WithRSAEncryption 07:fd:d1:b9:99:cd:c7:ea:d5:58:3d:d4:5a:7a:c9:d0:ca:bd: c6:3c:93:1d:67:0f:67:a2:1f:9a:a5:db:36:27:8a:87:e2:21: 4c:db:29:e6:01:cf:e8:27:7a:fa:ad:68:21:8b:6f:3a:37:87: d2:a8:5b:bc:6d:c8:92:e3:1d:95:29:31:b3:45:2c:06:e6:75: 50:a0:1f:ca:40:c0:f1:35:97:17:8d:cd:63:64:1b:f4:bc:93: 0e:e3:bf:11:80:67:3e:a3:e7:60:cb:21:2c:16:3e:4f:29:09: dd:71:7f:37:cf:33:b0:4c:e3:fa:09:23:d5:6d:66:6d:12:4c: c6:6a:d1:7c:3a:ac:15:0b:b8:1e:ed:34:38:65:17:f5:a1:a2: db:e9:53:1e:74:8c:15:0a:9f:39:3b:a2:cd:b2:7a:27:e1:ad: 6d:8d:0a:3a:6d:25:32:ab:8b:0a:37:8c:70:b8:7f:ee:b0:fe: 5c:b4:c5:30:1d:b8:7c:f5:52:9f:7e:5f:fb:fb:7b:43:61:c1: 1c:c3:96:b8:45:ff:8a:5a:f2:05:09:5f:87:34:fa:f2:56:37: 67:76:d8:70:59:00:54:a0:43:1c:b4:33:59:e7:f6:17:75:3f: 31:83:ca:cc:9e:2f:5e:6d:6d:7e:c5:2a:e3:6e:b5:10:2e:a8: 03:89:b8:8d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjMwNzAzMDI1MjI3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGEyMzdlYi0wZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jhbiKkCAqaUAsLR5qBWGCaHW4k6I4pPCnPq6EPDgRloUpRCCpUcAUZKLsa3 GyXkiSgKGzhWxjoTg0cR6ZeKKwCgikoFoVo93BJDR2Hxrx7KaXlqirC4Eo4E6se6 7IKtqX6j88MCOeqdnTwGUQGfP+PRdiRKx3nuUT6Vln4y25C3eOAzMmR5CJ0QNedh Qh3qTFXiX8F8Umx5VOK8sCd/78I1BJdePwDXADSxMSLF3uGGSvduJKH/mDPG8hkA yJIQAvk0nHf31n6GW3zRlHquU0t6z+YPHxMjdNTaAK7vQSM8czReozDDVctRxc2R F3G9TUNXTVn9nOAEp2jtuPQeWwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAcBGXuN EKwgRSXtwVkpEfvkLILzMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBDNzMvODIxNDU3RDJGMTM3MTFFQzk3Rjc0RjBDQzRGOUFFMDIvRkEzRkYxRDRG MTNEMTFFQzlCNjczQTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnve4wDwQCAAIwCQMHACABDfDeQDANBgkqhkiG9w0BAQsF AAOCAQEAB/3RuZnNx+rVWD3UWnrJ0Mq9xjyTHWcPZ6IfmqXbNieKh+IhTNsp5gHP 6Cd6+q1oIYtvOjeH0qhbvG3IkuMdlSkxs0UsBuZ1UKAfykDA8TWXF43NY2Qb9LyT DuO/EYBnPqPnYMshLBY+TykJ3XF/N88zsEzj+gkj1W1mbRJMxmrRfDqsFQu4Hu00 OGUX9aGi2+lTHnSMFQqfOTuizbJ6J+GtbY0KOm0lMquLCjeMcLh/7rD+XLTFMB24 fPVSn35f+/t7Q2HBHMOWuEX/ilryBQlfhzT68lY3Z3bYcFkAVKBDHLQzWef2F3U/ MYPKzJ4vXm1tfsUq4261EC6oA4m4jQ== -----END CERTIFICATE-----Generated at Fri May 17 06:46:30 2024 by rpki-client on console-ams.rpki-client.org