$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/87EEC61CCB4111ED8A4D796BC4F9AE02.roa File: 87EEC61CCB4111ED8A4D796BC4F9AE02.roa (raw, json) Hash identifier: qnHZ9BxY7BARIYnoZIbLGut+Ka0httnoVJLS138cfew= Subject key identifier: C3:3B:1E:1E:A2:29:79:FC:57:5E:06:9A:0C:01:F4:9D:08:E6:6C:5C Certificate issuer: /CN=A91F5246/serialNumber=4A188E3187CEC5D36C368C24E94F431D04253B7B Certificate serial: 9E Authority key identifier: 4A:18:8E:31:87:CE:C5:D3:6C:36:8C:24:E9:4F:43:1D:04:25:3B:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShiOMYfOxdNsNowk6U9DHQQlO3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/87EEC61CCB4111ED8A4D796BC4F9AE02.roa Signing time: Sun 03 Dec 2023 05:15:50 +0000 ROA not before: Sun 03 Dec 2023 05:15:50 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 147303 IP address blocks: 103.29.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/ShiOMYfOxdNsNowk6U9DHQQlO3s.crl rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/ShiOMYfOxdNsNowk6U9DHQQlO3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShiOMYfOxdNsNowk6U9DHQQlO3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5246/serialNumber=4A188E3187CEC5D36C368C24E94F431D04253B7B Validity Not Before: Dec 3 05:15:50 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=656c0f06-0fdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:93:ee:9e:cb:32:e7:6b:60:6a:46:60:10:1f: cb:6f:61:38:53:0f:ad:f9:6b:95:99:46:5b:c7:30: 54:af:da:92:4a:89:84:22:13:c0:a0:3d:85:ea:27: 05:6c:a5:55:99:eb:8d:25:ba:51:37:fc:c5:10:4a: 49:57:d6:0d:cb:82:f5:8a:48:35:41:d4:fb:3b:45: 5e:3e:fd:0d:64:e5:dc:78:38:90:2c:91:ad:47:42: 0b:b1:72:de:f2:55:b3:c4:0f:92:47:2b:62:53:52: 20:63:8f:c3:c1:ed:93:67:ab:a8:4f:60:a3:fe:e4: 2f:ea:2c:79:42:ae:54:c4:e6:6a:3c:1b:5d:2b:e1: f5:87:ea:51:b7:83:e0:92:ca:af:47:60:24:f2:49: 53:a6:a1:5f:0d:9b:e0:6b:2d:3c:b9:0b:a3:6e:8b: 0a:f7:0f:f8:e4:68:ae:70:66:f3:5b:19:c6:39:80: 07:a6:f0:e4:4e:a6:64:2f:be:9b:2d:05:fb:92:69: 3f:e7:59:dd:43:64:3e:8a:cd:0d:eb:53:8d:de:5f: f3:81:7a:2d:cb:2a:d2:09:77:5d:3b:73:fd:0d:8d: e8:48:61:fd:cf:82:ba:6e:f3:c9:a3:95:e7:93:07: 37:93:08:52:c0:a8:d1:74:e1:98:93:f0:9b:2c:c8: aa:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:3B:1E:1E:A2:29:79:FC:57:5E:06:9A:0C:01:F4:9D:08:E6:6C:5C X509v3 Authority Key Identifier: keyid:4A:18:8E:31:87:CE:C5:D3:6C:36:8C:24:E9:4F:43:1D:04:25:3B:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/ShiOMYfOxdNsNowk6U9DHQQlO3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShiOMYfOxdNsNowk6U9DHQQlO3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/87EEC61CCB4111ED8A4D796BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.180.0/24 Signature Algorithm: sha256WithRSAEncryption 27:33:11:bb:9a:55:ef:17:1b:ef:d9:df:59:ec:29:37:32:7f: 71:57:c2:46:61:de:4a:59:01:ff:28:e4:c2:93:22:41:c7:05: 6b:91:9e:83:30:e3:ce:22:7d:c9:e1:f6:0f:a5:26:5c:d0:9b: ec:cd:1f:e3:22:88:6c:c2:44:28:75:8c:ba:43:a2:9e:52:74: bb:39:95:8c:e8:82:a8:0d:b3:a8:35:e5:e2:12:e1:1e:fb:41: 5e:0b:22:f2:62:f9:37:b1:99:f5:a9:8b:8a:3e:60:07:b4:a0: 72:f3:1f:a3:20:b2:e9:a9:65:20:4e:d2:13:1a:d2:ca:f1:8c: f6:b4:1a:66:70:1e:32:78:7f:c3:ca:94:4e:ef:0a:99:c6:30: 3e:44:2a:11:48:1e:3e:22:d7:7a:c8:90:19:97:57:78:99:17: 94:14:53:c4:5d:48:0e:86:b3:60:74:3f:b4:bd:68:10:ad:2f: cf:76:10:f3:23:5f:56:95:13:38:ba:9e:51:63:01:84:05:f9: 92:85:e4:10:03:f4:88:ff:78:cc:47:0f:28:e9:9b:44:f7:f6: 26:f9:9a:f2:f3:14:ed:fd:ff:ac:74:af:d5:f4:c5:8a:5e:43: ff:53:72:f8:53:47:99:32:6d:ea:a0:37:a1:33:72:ec:e8:e4: 0b:52:ff:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyNDYxMTAvBgNVBAUTKDRBMTg4RTMxODdDRUM1RDM2QzM2OEMyNEU5NEY0MzFE MDQyNTNCN0IwHhcNMjMxMjAzMDUxNTUwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZjMGYwNi0wZmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5Punssy52tgakZgEB/Lb2E4Uw+t+WuVmUZbxzBUr9qSSomEIhPAoD2F6icF bKVVmeuNJbpRN/zFEEpJV9YNy4L1ikg1QdT7O0VePv0NZOXceDiQLJGtR0ILsXLe 8lWzxA+SRytiU1IgY4/Dwe2TZ6uoT2Cj/uQv6ix5Qq5UxOZqPBtdK+H1h+pRt4Pg ksqvR2Ak8klTpqFfDZvgay08uQujbosK9w/45GiucGbzWxnGOYAHpvDkTqZkL76b LQX7kmk/51ndQ2Q+is0N61ON3l/zgXotyyrSCXddO3P9DY3oSGH9z4K6bvPJo5Xn kwc3kwhSwKjRdOGYk/CbLMiqEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMM7Hh6i KXn8V14GmgwB9J0I5mxcMB8GA1UdIwQYMBaAFEoYjjGHzsXTbDaMJOlPQx0EJTt7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI0Ni8zOEM5NzA4QUIx MDgxMUVEQTg4NTQyMTdDNEY5QUUwMi9TaGlPTVlmT3hkTnNOb3drNlU5REhRUWxP M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoaU9NWWZPeGROc05vd2s2VTlESFFRbE8zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUyNDYvMzhDOTcwOEFCMTA4MTFFREE4ODU0MjE3QzRGOUFFMDIvODdFRUM2MUND QjQxMTFFRDhBNEQ3OTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnHbQwDQYJKoZIhvcNAQELBQADggEBACczEbuaVe8XG+/Z 31nsKTcyf3FXwkZh3kpZAf8o5MKTIkHHBWuRnoMw484ifcnh9g+lJlzQm+zNH+Mi iGzCRCh1jLpDop5SdLs5lYzogqgNs6g15eIS4R77QV4LIvJi+TexmfWpi4o+YAe0 oHLzH6MgsumpZSBO0hMa0srxjPa0GmZwHjJ4f8PKlE7vCpnGMD5EKhFIHj4i13rI kBmXV3iZF5QUU8RdSA6Gs2B0P7S9aBCtL892EPMjX1aVEzi6nlFjAYQF+ZKF5BAD 9Ij/eMxHDyjpm0T39ib5mvLzFO39/6x0r9X0xYpeQ/9TcvhTR5kybeqgN6Ezcuzo 5AtS/9U= -----END CERTIFICATE-----Generated at Sun May 19 08:25:12 2024 by rpki-client on console-ams.rpki-client.org