$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa File: B502B0AE799311EE87452E15C4F9AE02.roa (raw, json) Hash identifier: ByMMTLJARN5yjX3wqklaZy/AwqiPVmKjwk/JcHsDM+4= Subject key identifier: 13:EE:24:81:D2:77:99:57:50:A0:B6:33:A6:A4:C9:54:47:F6:C1:70 Certificate issuer: /CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Certificate serial: 0154 Authority key identifier: 8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa Signing time: Thu 02 Nov 2023 15:23:00 +0000 ROA not before: Thu 02 Nov 2023 15:23:00 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 24499 IP address blocks: 103.154.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Validity Not Before: Nov 2 15:23:00 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6543bed4-a8ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b3:0c:e6:0a:e2:4d:6c:68:7c:62:cd:79:1b: 84:e2:e0:6d:b3:81:ff:6d:b7:6f:eb:20:3c:01:b4: e1:3e:2a:2b:60:62:f8:2f:6c:46:f5:91:49:e9:d8: cd:ce:c0:a4:96:f1:81:3d:ac:db:da:be:72:7b:50: 89:74:71:c9:8a:92:5e:62:ca:93:6a:0e:99:31:fc: 41:eb:14:b0:a4:3c:c3:91:16:6d:04:3c:a5:b9:b2: ae:78:2e:b7:1f:e3:09:f6:23:79:0f:17:38:41:da: cc:c8:70:ee:99:7c:b3:ec:b5:0a:9e:fd:4a:38:ab: 93:97:d9:3f:01:b7:28:4c:59:38:b2:95:24:c7:e2: 10:eb:37:3d:71:b1:8f:20:f8:32:03:d7:65:32:af: 84:a3:2e:24:d9:70:b5:70:1a:95:e3:8d:c4:74:67: bf:b3:e2:b7:06:b8:3b:b2:1c:98:62:a3:1c:af:6c: fd:fe:c7:9a:74:c7:8d:cb:80:ad:36:a1:cc:cd:27: 4b:62:1b:40:d1:ad:19:90:d8:3f:2d:c1:32:fa:a3: 23:bb:07:cc:4c:8f:36:88:78:5c:94:49:75:fd:9b: 05:48:c1:13:66:df:d4:5e:83:fc:b5:40:b9:98:15: a9:62:39:4f:b8:e6:0e:4e:18:ed:0a:2c:64:b2:94: 4d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:EE:24:81:D2:77:99:57:50:A0:B6:33:A6:A4:C9:54:47:F6:C1:70 X509v3 Authority Key Identifier: keyid:8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.64.0/24 Signature Algorithm: sha256WithRSAEncryption 76:8a:b9:d6:f8:cd:85:a5:ea:99:62:be:64:62:87:91:36:de: 25:03:be:e1:a0:04:88:a8:98:c9:65:8d:fb:a4:f9:e7:41:77: 0a:ff:e4:d5:e0:d7:38:91:b0:a2:1b:96:94:be:48:a8:5b:dd: e2:be:bf:87:f6:20:5d:bd:ca:58:ba:e7:98:b9:37:1f:b2:9c: a7:b8:c8:91:8e:fd:18:f2:d9:a6:e2:7b:fe:0b:e4:b9:c5:69: 88:a2:4b:01:95:12:68:a4:8c:c6:65:2e:26:8d:ef:4f:33:f6: 01:9e:93:7b:e9:29:42:2c:5d:b4:52:16:d1:03:78:e6:19:f1: 06:fe:6b:9b:37:1b:4b:8f:ec:e5:c0:cc:3c:30:fb:fb:f9:60: 71:aa:30:1e:e8:ef:4e:52:0a:b8:fa:3e:58:b1:4a:7b:62:a2: c8:6d:a9:8f:62:ec:a4:0b:a0:e4:51:1c:cb:90:08:8b:f6:8c: aa:f2:26:06:1a:56:b1:02:27:3a:d3:ae:77:52:c5:29:60:d0: b2:eb:2e:98:36:b4:1c:90:54:0e:66:18:44:00:89:a4:41:93: 61:44:4a:99:22:35:83:62:48:d4:10:76:cd:fa:ce:b2:da:63: c3:a9:6b:94:d4:99:d1:cb:b4:a8:02:14:b0:47:6a:10:01:50: 2d:3b:fe:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE4RTgxMTAvBgNVBAUTKDhEQTE5RkNFMEVGQUUwMjJCQkE4RjhFMEMxMjM3QkVE QkVCRTNFRjMwHhcNMjMxMTAyMTUyMzAwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQzYmVkNC1hOGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rMM5griTWxofGLNeRuE4uBts4H/bbdv6yA8AbThPiorYGL4L2xG9ZFJ6djN zsCklvGBPazb2r5ye1CJdHHJipJeYsqTag6ZMfxB6xSwpDzDkRZtBDylubKueC63 H+MJ9iN5Dxc4QdrMyHDumXyz7LUKnv1KOKuTl9k/AbcoTFk4spUkx+IQ6zc9cbGP IPgyA9dlMq+Eoy4k2XC1cBqV443EdGe/s+K3Brg7shyYYqMcr2z9/seadMeNy4Ct NqHMzSdLYhtA0a0ZkNg/LcEy+qMjuwfMTI82iHhclEl1/ZsFSMETZt/UXoP8tUC5 mBWpYjlPuOYOThjtCixkspRNYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBPuJIHS d5lXUKC2M6akyVRH9sFwMB8GA1UdIwQYMBaAFI2hn84O+uAiu6j44MEje+2+vj7z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQThFOC85MDM5NzgzMDEw RDkxMUVEODBCODBEMjlDNEY5QUUwMi9qYUdmemc3NjRDSzdxUGpnd1NONzdiNi1Q dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2phR2Z6Zzc2NENLN3FQamd3U043N2I2LVB2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE4RTgvOTAzOTc4MzAxMEQ5MTFFRDgwQjgwRDI5QzRGOUFFMDIvQjUwMkIwQUU3 OTkzMTFFRTg3NDUyRTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmkAwDQYJKoZIhvcNAQELBQADggEBAHaKudb4zYWl6pli vmRih5E23iUDvuGgBIiomMlljfuk+edBdwr/5NXg1ziRsKIblpS+SKhb3eK+v4f2 IF29yli655i5Nx+ynKe4yJGO/Rjy2abie/4L5LnFaYiiSwGVEmikjMZlLiaN708z 9gGek3vpKUIsXbRSFtEDeOYZ8Qb+a5s3G0uP7OXAzDww+/v5YHGqMB7o705SCrj6 PlixSntioshtqY9i7KQLoORRHMuQCIv2jKryJgYaVrECJzrTrndSxSlg0LLrLpg2 tByQVA5mGEQAiaRBk2FESpkiNYNiSNQQds36zrLaY8Opa5TUmdHLtKgCFLBHahAB UC07/uI= -----END CERTIFICATE-----Generated at Wed May 1 05:55:47 2024 by rpki-client on console-ams.rpki-client.org