$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7B81/49C8925E772411ECA7659060C4F9AE02/B4C25A82772811ECA418E366C4F9AE02.roa File: B4C25A82772811ECA418E366C4F9AE02.roa (raw, json) Hash identifier: EKuSr6xrMHZxpxLfZOybmh4VB2CPt6owkfHEiLPoYtE= Subject key identifier: A1:44:80:C4:FA:35:0E:39:08:F2:3B:24:68:96:AD:F4:F7:DC:CC:8F Certificate issuer: /CN=A91F7B81/serialNumber=F4157F744C4210C3FF46AAF0E022DEE689F46E3F Certificate serial: 02AE Authority key identifier: F4:15:7F:74:4C:42:10:C3:FF:46:AA:F0:E0:22:DE:E6:89:F4:6E:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BV_dExCEMP_Rqrw4CLe5on0bj8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7B81/49C8925E772411ECA7659060C4F9AE02/B4C25A82772811ECA418E366C4F9AE02.roa Signing time: Mon 21 Aug 2023 02:03:05 +0000 ROA not before: Mon 21 Aug 2023 02:03:05 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 138693 IP address blocks: 103.170.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7B81/49C8925E772411ECA7659060C4F9AE02/9BV_dExCEMP_Rqrw4CLe5on0bj8.crl rsync://rpki.apnic.net/member_repository/A91F7B81/49C8925E772411ECA7659060C4F9AE02/9BV_dExCEMP_Rqrw4CLe5on0bj8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BV_dExCEMP_Rqrw4CLe5on0bj8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7B81/serialNumber=F4157F744C4210C3FF46AAF0E022DEE689F46E3F Validity Not Before: Aug 21 02:03:05 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e2c5d9-ed05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:64:9e:a3:12:11:19:06:71:65:d3:c9:97:eb: 26:b5:ec:87:d9:fe:70:27:3a:76:b6:fb:8c:98:39: 67:4a:12:73:59:4a:eb:39:86:ff:a4:31:5b:f0:4e: 53:57:ed:38:fc:f8:8b:ff:23:93:be:c2:31:7a:6e: 20:5f:fb:47:46:28:46:0e:e6:9d:c2:a6:23:9a:f6: 00:06:5a:74:16:1a:a9:86:79:49:aa:6b:aa:dc:82: 5d:e1:cc:f0:02:3e:3f:33:4c:bd:30:ee:72:09:62: 57:83:ca:98:e8:7f:56:91:43:d8:f4:da:7c:d0:c0: 9e:4a:5e:00:b1:c7:0b:ed:f4:22:e8:b5:45:51:6e: aa:f3:ab:e9:bc:1f:6c:f8:e9:7d:ea:c3:63:7d:25: c8:ff:07:52:ec:ce:d0:4b:50:27:1c:50:1e:e8:04: ba:6f:f7:35:8a:24:1c:17:e0:61:78:11:73:60:ba: 15:f7:a3:c1:2b:fa:49:ef:1b:ee:68:36:2d:6e:bf: 37:e2:b6:0e:0c:c8:d1:c5:48:5b:41:54:4f:33:28: 84:bb:fb:c2:3c:8e:e1:27:d5:c1:11:86:6a:fb:46: a6:b2:1e:72:89:33:87:74:51:10:98:bd:79:0d:c1: c6:42:4d:1d:cc:c8:c2:0e:bb:34:2d:96:5d:57:d2: 54:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:44:80:C4:FA:35:0E:39:08:F2:3B:24:68:96:AD:F4:F7:DC:CC:8F X509v3 Authority Key Identifier: keyid:F4:15:7F:74:4C:42:10:C3:FF:46:AA:F0:E0:22:DE:E6:89:F4:6E:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7B81/49C8925E772411ECA7659060C4F9AE02/9BV_dExCEMP_Rqrw4CLe5on0bj8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BV_dExCEMP_Rqrw4CLe5on0bj8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7B81/49C8925E772411ECA7659060C4F9AE02/B4C25A82772811ECA418E366C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.94.0/23 Signature Algorithm: sha256WithRSAEncryption 13:c3:cb:f1:f0:80:ad:d8:bd:83:01:12:ae:7c:d0:fe:20:3b: e7:5a:13:fb:3f:76:dd:5d:d1:90:1d:3c:3a:c8:ab:d5:ad:f7: 53:1f:31:72:7a:19:5d:f0:41:9d:f6:d7:4c:c2:e9:d4:6d:2f: d3:73:d5:44:32:c3:b0:66:dd:47:a4:07:80:91:fc:ba:1f:fa: 9f:2c:ea:52:da:3d:67:81:68:bf:fe:0b:45:11:1e:71:0e:79: dc:22:75:ea:0a:68:e4:4e:2c:6f:fa:99:ca:5f:09:2d:97:de: 4a:e9:f5:9c:ca:57:8a:29:81:62:06:d1:b2:47:b5:f2:56:3a: d1:29:56:d7:1b:67:b2:c2:36:2f:a4:79:59:b6:93:4e:70:ee: ee:ad:0f:12:21:10:cb:fe:ae:42:91:19:9c:17:e6:3c:79:21: 7c:1c:58:24:7d:84:91:ef:36:80:47:1c:c0:b6:dc:ce:39:3e: 57:c0:0e:f7:1d:10:6f:0b:d9:48:d6:97:22:7f:12:cb:7d:4f: 0f:7b:aa:01:a4:3e:0e:f5:17:bf:de:08:d0:d0:9b:9f:02:d0: 87:2e:b3:fd:3e:55:4d:75:15:9c:78:31:21:99:78:51:71:fe: 40:04:15:9e:36:32:39:ff:81:ee:21:6a:14:5c:2b:b5:2e:24: c1:5d:fb:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdCODExMTAvBgNVBAUTKEY0MTU3Rjc0NEM0MjEwQzNGRjQ2QUFGMEUwMjJERUU2 ODlGNDZFM0YwHhcNMjMwODIxMDIwMzA1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGUyYzVkOS1lZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2SeoxIRGQZxZdPJl+smteyH2f5wJzp2tvuMmDlnShJzWUrrOYb/pDFb8E5T V+04/PiL/yOTvsIxem4gX/tHRihGDuadwqYjmvYABlp0FhqphnlJqmuq3IJd4czw Aj4/M0y9MO5yCWJXg8qY6H9WkUPY9Np80MCeSl4AsccL7fQi6LVFUW6q86vpvB9s +Ol96sNjfSXI/wdS7M7QS1AnHFAe6AS6b/c1iiQcF+BheBFzYLoV96PBK/pJ7xvu aDYtbr834rYODMjRxUhbQVRPMyiEu/vCPI7hJ9XBEYZq+0amsh5yiTOHdFEQmL15 DcHGQk0dzMjCDrs0LZZdV9JUuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKFEgMT6 NQ45CPI7JGiWrfT33MyPMB8GA1UdIwQYMBaAFPQVf3RMQhDD/0aq8OAi3uaJ9G4/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0I4MS80OUM4OTI1RTc3 MjQxMUVDQTc2NTkwNjBDNEY5QUUwMi85QlZfZEV4Q0VNUF9ScXJ3NENMZTVvbjBi ajguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlCVl9kRXhDRU1QX1Jxcnc0Q0xlNW9uMGJqOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdCODEvNDlDODkyNUU3NzI0MTFFQ0E3NjU5MDYwQzRGOUFFMDIvQjRDMjVBODI3 NzI4MTFFQ0E0MThFMzY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnql4wDQYJKoZIhvcNAQELBQADggEBABPDy/HwgK3YvYMB Eq580P4gO+daE/s/dt1d0ZAdPDrIq9Wt91MfMXJ6GV3wQZ3210zC6dRtL9Nz1UQy w7Bm3UekB4CR/Lof+p8s6lLaPWeBaL/+C0URHnEOedwideoKaOROLG/6mcpfCS2X 3krp9ZzKV4opgWIG0bJHtfJWOtEpVtcbZ7LCNi+keVm2k05w7u6tDxIhEMv+rkKR GZwX5jx5IXwcWCR9hJHvNoBHHMC23M45PlfADvcdEG8L2UjWlyJ/Est9Tw97qgGk Pg71F7/eCNDQm58C0Icus/0+VU11FZx4MSGZeFFx/kAEFZ42Mjn/ge4hahRcK7Uu JMFd+0I= -----END CERTIFICATE-----Generated at Wed May 29 06:12:29 2024 by rpki-client on console-ams.rpki-client.org