$ rpki-client -vvf rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/0D99319006F011EFA8C8D445C4F9AE02.roa File: 0D99319006F011EFA8C8D445C4F9AE02.roa (raw, json) Hash identifier: C6re+QWyYWAh1U39CaaLD4VccggpP51RWJ3NUe7kXOA= Subject key identifier: 4C:29:E7:8F:72:F2:45:32:89:D7:BE:35:7D:44:9F:82:EA:39:6D:95 Certificate issuer: /CN=A91F77AD/serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Certificate serial: A1 Authority key identifier: 7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/0D99319006F011EFA8C8D445C4F9AE02.roa Signing time: Tue 30 Apr 2024 12:49:16 +0000 ROA not before: Tue 30 Apr 2024 12:49:16 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 800 IP address blocks: 103.68.188.0/22 maxlen: 24 103.147.48.0/23 maxlen: 23 2405:a9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F77AD/serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Validity Not Before: Apr 30 12:49:16 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6630e8cc-045e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:58:bd:01:f0:e8:98:09:22:99:47:23:6a:f8: d4:ad:06:98:4d:23:64:b7:33:30:7d:df:34:fe:3f: 3b:d4:98:87:fc:f3:b4:53:9b:06:5f:99:16:2a:ca: eb:df:17:0a:50:36:17:be:2e:95:8a:a7:38:c8:fd: 0d:7e:9a:b0:54:02:1f:d8:c4:60:fe:0e:ce:08:f2: 69:a9:54:75:3e:c5:88:f6:b2:33:80:b3:3d:cb:dc: 13:52:13:d7:8e:89:cf:e5:85:62:6f:5a:56:a1:c8: 70:79:00:67:1d:7d:5d:6e:4d:e4:a0:b5:e7:bb:7f: b3:4c:72:64:6d:86:97:7c:57:db:f8:3c:55:41:42: 4b:de:4d:5f:ec:fc:21:1f:3f:43:a5:5f:29:fa:d4: 6d:53:0b:fe:12:60:1a:35:b8:ea:ee:10:05:88:a0: 03:9f:f3:d7:4e:4c:bd:a2:9d:c6:5d:67:61:a2:b7: 8c:08:8f:cb:8e:54:18:44:ca:eb:e1:5f:5b:27:38: ef:10:67:52:39:b8:be:1c:3f:6e:3e:a3:55:fc:27: b2:90:c3:3a:1f:c2:1a:d1:71:4b:07:f4:da:6e:b7: fc:d1:49:89:e1:fb:2e:4d:d9:4c:91:00:f0:de:26: 97:79:98:fa:b4:d8:71:eb:01:03:19:ae:f2:37:17: f3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:29:E7:8F:72:F2:45:32:89:D7:BE:35:7D:44:9F:82:EA:39:6D:95 X509v3 Authority Key Identifier: keyid:7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/0D99319006F011EFA8C8D445C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.188.0/22 103.147.48.0/23 IPv6: 2405:a9c0::/32 Signature Algorithm: sha256WithRSAEncryption 16:f5:b0:d7:1d:1c:96:a8:6b:e0:7c:f4:00:b9:2f:ac:39:94: 6b:79:38:6c:93:e7:b8:ad:4b:8a:fc:fe:ac:44:cb:07:8a:af: f2:60:79:51:32:92:6c:01:ae:e3:1b:50:c6:fb:02:84:05:a1: ee:ef:c1:fa:81:52:64:c4:e6:8c:43:49:7e:eb:dd:92:3f:73: 2f:6e:26:94:3a:8e:a6:16:1f:0f:94:a8:45:d4:00:8c:9e:d7: 2a:44:99:72:77:4d:3a:80:da:b8:91:78:1a:a1:2e:d5:c5:e0: 00:39:69:d1:6e:db:e2:39:cb:37:84:05:40:3f:15:0b:56:6a: 6d:60:78:7b:1e:6d:f9:9f:e9:61:c1:db:9e:65:f2:76:a9:bf: f9:64:66:9f:de:83:e4:86:81:11:cd:f6:d0:be:72:8b:a3:66: 4c:36:87:2d:17:1e:23:8c:ad:75:68:4c:11:48:87:28:66:04: 70:5d:10:a9:83:c7:fa:30:46:6f:5f:4e:ac:5c:18:4e:30:bd: 7c:bb:c7:14:22:eb:9d:a0:1a:64:b9:45:8f:21:71:c2:7c:93: 16:f5:09:cc:2e:20:a5:0c:2b:ba:52:67:77:1e:26:ff:c1:4e: 5f:6a:e9:f6:ef:b1:f3:16:ab:4e:d4:b2:80:cd:84:83:d8:dc: 06:f0:61:f3 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc3QUQxMTAvBgNVBAUTKDdDOUY3MjIyOUVEMTEyNTk0Qzc3MjJEM0MyMUI1MTA1 RTI5RkM0OEEwHhcNMjQwNDMwMTI0OTE2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMwZThjYy0wNDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwli9AfDomAkimUcjavjUrQaYTSNktzMwfd80/j871JiH/PO0U5sGX5kWKsrr 3xcKUDYXvi6Viqc4yP0NfpqwVAIf2MRg/g7OCPJpqVR1PsWI9rIzgLM9y9wTUhPX jonP5YVib1pWochweQBnHX1dbk3koLXnu3+zTHJkbYaXfFfb+DxVQUJL3k1f7Pwh Hz9DpV8p+tRtUwv+EmAaNbjq7hAFiKADn/PXTky9op3GXWdhoreMCI/LjlQYRMrr 4V9bJzjvEGdSObi+HD9uPqNV/CeykMM6H8Ia0XFLB/Tabrf80UmJ4fsuTdlMkQDw 3iaXeZj6tNhx6wEDGa7yNxfzZwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEwp549y 8kUyide+NX1En4LqOW2VMB8GA1UdIwQYMBaAFHyfciKe0RJZTHci08IbUQXin8SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzdBRC9DRTZDMjM3QTIw QTgxMUVFOTg2MzdGMjNDNEY5QUUwMi9mSjl5SXA3UkVsbE1keUxUd2h0UkJlS2Z4 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZKOXlJcDdSRWxsTWR5TFR3aHRSQmVLZnhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjc3QUQvQ0U2QzIzN0EyMEE4MTFFRTk4NjM3RjIzQzRGOUFFMDIvMEQ5OTMxOTAw NkYwMTFFRkE4QzhENDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnRLwDBAFnkzAwDQQCAAIwBwMFACQFqcAwDQYJKoZIhvcN AQELBQADggEBABb1sNcdHJaoa+B89AC5L6w5lGt5OGyT57itS4r8/qxEyweKr/Jg eVEykmwBruMbUMb7AoQFoe7vwfqBUmTE5oxDSX7r3ZI/cy9uJpQ6jqYWHw+UqEXU AIye1ypEmXJ3TTqA2riReBqhLtXF4AA5adFu2+I5yzeEBUA/FQtWam1geHsebfmf 6WHB255l8napv/lkZp/eg+SGgRHN9tC+coujZkw2hy0XHiOMrXVoTBFIhyhmBHBd EKmDx/owRm9fTqxcGE4wvXy7xxQi652gGmS5RY8hccJ8kxb1CcwuIKUMK7pSZ3ce Jv/BTl9q6fbvsfMWq07UsoDNhIPY3AbwYfM= -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:36 2024 by rpki-client on console-ams.rpki-client.org