$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCDE1/29E0B442B50D11EAAC6C401FC4F9AE02/DCCD3774C4F811EAB8D31113C4F9AE02.roa File: DCCD3774C4F811EAB8D31113C4F9AE02.roa (raw, json) Hash identifier: /1fg74CV7Ld8WYQzWg3HmsFAyWMtdr+8M5+B1Kybzfc= Subject key identifier: 0A:FE:9D:A7:E5:8C:31:30:FE:94:98:1A:4B:4E:5E:BE:53:33:85:44 Certificate issuer: /CN=A91FCDE1/serialNumber=C2FF115D310BB9147CDDC74991CC1C471FBA1299 Certificate serial: 077A Authority key identifier: C2:FF:11:5D:31:0B:B9:14:7C:DD:C7:49:91:CC:1C:47:1F:BA:12:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wv8RXTELuRR83cdJkcwcRx-6Epk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCDE1/29E0B442B50D11EAAC6C401FC4F9AE02/DCCD3774C4F811EAB8D31113C4F9AE02.roa Signing time: Wed 02 Aug 2023 21:38:41 +0000 ROA not before: Wed 02 Aug 2023 21:38:41 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137443 IP address blocks: 103.152.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCDE1/29E0B442B50D11EAAC6C401FC4F9AE02/wv8RXTELuRR83cdJkcwcRx-6Epk.crl rsync://rpki.apnic.net/member_repository/A91FCDE1/29E0B442B50D11EAAC6C401FC4F9AE02/wv8RXTELuRR83cdJkcwcRx-6Epk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wv8RXTELuRR83cdJkcwcRx-6Epk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 22:04:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1914 (0x77a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCDE1/serialNumber=C2FF115D310BB9147CDDC74991CC1C471FBA1299 Validity Not Before: Aug 2 21:38:41 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cacce1-bae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ca:0a:8b:60:97:7f:d0:a7:8a:27:51:ad:7c: 3e:07:e7:f7:9b:5a:08:98:ab:5d:8c:bb:0c:42:9d: 88:23:f5:83:a6:2c:c1:de:e6:04:b4:4a:f8:92:11: e3:eb:4e:dd:58:ce:9b:59:7e:9e:5e:97:a9:d7:20: 34:2e:e1:4e:40:19:38:cd:8f:cd:7b:64:3a:39:33: b8:6a:fb:d4:6c:16:d7:ca:54:dc:8c:2b:26:50:16: e5:e5:db:52:7d:53:9b:b4:9a:ce:59:6e:18:f6:bc: 28:5e:85:3d:c7:f4:4c:8f:20:02:59:5b:92:7c:2e: 5a:e2:00:e8:8b:f4:c9:0a:bd:f7:24:42:e4:ca:b0: 0f:64:41:47:ea:b0:0b:0f:4f:4a:dc:1c:df:1d:5a: eb:a2:49:95:6d:54:df:dd:f9:b2:8c:90:84:c1:1e: 29:ba:6a:c7:19:86:61:a2:30:c6:c9:9c:4c:8e:a2: 5e:73:e4:99:18:6f:14:d7:93:44:c6:f5:ad:35:5d: b0:5f:30:bd:4d:b1:d2:0b:b1:e4:4c:b1:f0:6c:d1: 91:4a:87:55:05:26:f6:27:80:72:1c:98:b0:9c:fd: 8d:d8:65:70:cf:53:dc:2c:30:bc:43:b9:d1:8e:8d: 6d:46:85:52:fc:e6:16:36:e9:70:a8:ef:29:bf:1f: 79:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:FE:9D:A7:E5:8C:31:30:FE:94:98:1A:4B:4E:5E:BE:53:33:85:44 X509v3 Authority Key Identifier: keyid:C2:FF:11:5D:31:0B:B9:14:7C:DD:C7:49:91:CC:1C:47:1F:BA:12:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCDE1/29E0B442B50D11EAAC6C401FC4F9AE02/wv8RXTELuRR83cdJkcwcRx-6Epk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wv8RXTELuRR83cdJkcwcRx-6Epk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCDE1/29E0B442B50D11EAAC6C401FC4F9AE02/DCCD3774C4F811EAB8D31113C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.132.0/23 Signature Algorithm: sha256WithRSAEncryption 29:7b:c0:00:30:1c:d8:9f:9d:64:e5:c7:db:fa:dd:4c:87:47: ec:08:06:69:40:65:6b:e4:b2:ed:6c:de:24:f9:06:35:c4:95: 7b:56:9a:63:62:bc:e5:71:fc:dc:38:62:d7:44:ea:19:a9:7c: 8f:79:34:b5:6b:c5:37:aa:f0:44:b6:6a:56:e4:af:f3:08:d5: f0:c9:5c:06:4e:bc:cd:15:ef:fa:31:14:2c:36:2b:cd:8b:05: 5d:a4:fc:d4:6f:4c:da:50:19:64:d3:42:79:52:64:ce:ad:42: aa:b0:d7:00:f9:96:84:08:96:e0:d7:1c:ef:e9:a5:0f:59:b1: 8d:8e:fa:47:07:b6:af:b2:58:06:23:74:3b:8e:16:9b:b1:be: f8:d1:85:f6:ce:c7:2d:b7:bd:1a:17:a9:cb:7d:9c:ec:71:c9: d3:46:d0:97:42:14:42:5a:77:2d:8b:dd:eb:d7:6f:e6:57:da: 2b:99:d6:ab:dc:02:dc:33:db:4f:e2:21:f0:6c:a6:08:e4:b8: b3:a4:18:27:17:e0:9e:0b:52:91:82:75:d4:4f:3b:28:af:06: 81:59:d0:a0:83:9e:00:ad:01:f3:8a:7f:08:11:57:80:02:7b: 37:83:be:40:c5:78:be:17:c8:7a:34:93:ea:bd:63:9c:18:ed: c1:7f:1e:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNERTExMTAvBgNVBAUTKEMyRkYxMTVEMzEwQkI5MTQ3Q0REQzc0OTkxQ0MxQzQ3 MUZCQTEyOTkwHhcNMjMwODAyMjEzODQxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhY2NlMS1iYWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8oKi2CXf9CniidRrXw+B+f3m1oImKtdjLsMQp2II/WDpizB3uYEtEr4khHj 607dWM6bWX6eXpep1yA0LuFOQBk4zY/Ne2Q6OTO4avvUbBbXylTcjCsmUBbl5dtS fVObtJrOWW4Y9rwoXoU9x/RMjyACWVuSfC5a4gDoi/TJCr33JELkyrAPZEFH6rAL D09K3BzfHVrrokmVbVTf3fmyjJCEwR4pumrHGYZhojDGyZxMjqJec+SZGG8U15NE xvWtNV2wXzC9TbHSC7HkTLHwbNGRSodVBSb2J4ByHJiwnP2N2GVwz1PcLDC8Q7nR jo1tRoVS/OYWNulwqO8pvx95qQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAr+nafl jDEw/pSYGktOXr5TM4VEMB8GA1UdIwQYMBaAFML/EV0xC7kUfN3HSZHMHEcfuhKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0RFMS8yOUUwQjQ0MkI1 MEQxMUVBQUM2QzQwMUZDNEY5QUUwMi93djhSWFRFTHVSUjgzY2RKa2N3Y1J4LTZF cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2OFJYVEVMdVJSODNjZEprY3djUngtNkVway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkNERTEvMjlFMEI0NDJCNTBEMTFFQUFDNkM0MDFGQzRGOUFFMDIvRENDRDM3NzRD NEY4MTFFQUI4RDMxMTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmIQwDQYJKoZIhvcNAQELBQADggEBACl7wAAwHNifnWTl x9v63UyHR+wIBmlAZWvksu1s3iT5BjXElXtWmmNivOVx/Nw4YtdE6hmpfI95NLVr xTeq8ES2albkr/MI1fDJXAZOvM0V7/oxFCw2K82LBV2k/NRvTNpQGWTTQnlSZM6t Qqqw1wD5loQIluDXHO/ppQ9ZsY2O+kcHtq+yWAYjdDuOFpuxvvjRhfbOxy23vRoX qct9nOxxydNG0JdCFEJady2L3evXb+ZX2iuZ1qvcAtwz20/iIfBspgjkuLOkGCcX 4J4LUpGCddRPOyivBoFZ0KCDngCtAfOKfwgRV4ACezeDvkDFeL4XyHo0k+q9Y5wY 7cF/HlE= -----END CERTIFICATE-----Generated at Tue Apr 23 18:45:11 2024 by rpki-client on console-ams.rpki-client.org