$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E5C9B0541B3E11EBBC57067AC4F9AE02.roa File: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (raw, json) Hash identifier: 0WIkVZHvHbfmhmhB6oHd8+/9+OomrnZmxz2SYuZCV+g= Subject key identifier: 2A:D1:B7:0C:3E:3B:34:37:EB:1D:57:20:12:55:9D:8D:CB:63:FD:D8 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0A8A Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E5C9B0541B3E11EBBC57067AC4F9AE02.roa Signing time: Mon 18 Sep 2023 19:36:50 +0000 ROA not before: Mon 18 Sep 2023 19:36:50 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136905 IP address blocks: 103.98.128.0/24 maxlen: 24 103.98.129.0/24 maxlen: 24 103.98.130.0/24 maxlen: 24 103.98.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Sep 18 19:36:50 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6508a6d2-66e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4e:79:11:1c:6d:ae:20:c6:dd:51:ef:7e:fb: 05:fe:38:e0:6a:c0:9a:b9:75:40:e1:86:67:51:b4: 54:57:9a:4d:27:13:06:58:c1:c2:f5:3e:36:e9:82: 77:be:c2:7d:db:6e:64:dd:62:87:f1:d4:fc:5b:d7: b2:fe:af:ec:82:6b:e5:ad:bf:73:be:61:7c:66:e3: 68:8b:33:b5:f0:d9:99:0e:4d:6d:33:4c:5f:0f:18: 42:b2:a0:92:22:0e:3c:6d:8e:dc:7c:09:27:ac:79: 90:1f:ee:04:ad:3f:5e:88:6e:30:35:40:8f:ff:df: 83:33:16:d7:15:c9:3d:25:68:81:25:1d:48:6c:59: 48:80:5e:2a:0c:a9:e5:c1:d3:78:01:6c:8b:e3:0b: 8c:2e:56:e8:ea:23:e7:53:18:43:43:31:e0:a5:5c: 32:7e:4d:86:00:ce:d8:90:11:e1:c6:eb:b7:d0:22: 43:86:61:56:fc:10:27:2b:66:5c:13:d3:00:90:ea: ee:44:cd:96:bb:10:ef:dd:07:41:fb:09:79:1f:8e: eb:7f:aa:41:af:6f:d1:d5:ac:4d:71:9d:ba:55:e4: 6d:2d:37:75:d6:bd:af:b4:c9:b4:8a:56:5e:db:a2: ea:8b:f8:68:99:dd:12:c0:26:7d:b5:8e:c5:6f:ee: 1a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D1:B7:0C:3E:3B:34:37:EB:1D:57:20:12:55:9D:8D:CB:63:FD:D8 X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E5C9B0541B3E11EBBC57067AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.128.0/22 Signature Algorithm: sha256WithRSAEncryption a2:fe:96:4c:91:24:2e:6d:9a:df:df:11:4d:26:e6:ff:a5:25: cc:67:88:7c:28:52:e5:4f:b0:6a:39:bf:19:a1:da:2e:5d:95: 19:b3:1f:6a:14:9d:5c:6a:49:54:1a:d1:5c:a0:c6:73:2e:37: a0:ac:fb:dc:34:9f:e3:98:4b:bf:d3:81:de:74:e2:f1:e6:23: 9b:f8:c8:6a:aa:cd:97:30:88:57:0a:a2:9e:8b:25:72:12:6e: e1:36:07:b6:04:ef:22:70:8d:2a:3b:8c:38:fa:f3:c1:57:4f: aa:9a:51:20:b1:cb:c6:68:85:b4:81:4e:dc:91:69:ac:99:e8: 54:5c:3c:51:b8:f6:b2:38:eb:5d:af:1d:0d:0a:da:1b:be:3f: d8:d6:0e:e1:18:25:20:a2:5a:52:44:1b:c0:5c:2e:00:d1:b5: 3a:84:cc:6f:12:fc:82:cd:49:55:31:58:68:7b:94:af:d9:35: de:f7:d6:79:a1:fe:2f:f2:ef:5c:fb:7e:a3:08:6f:37:8c:8e: 16:fc:ab:88:46:51:ec:5b:6e:e5:fc:7b:64:cd:16:0f:12:df: 1b:14:fb:7c:3a:e2:25:d9:9c:c8:ef:84:9a:b4:fc:ec:cd:01: b3:c5:94:44:da:1f:dd:79:2a:ab:cc:65:70:0a:b0:08:e5:6c: 9a:e8:e8:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjMwOTE4MTkzNjUwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA4YTZkMi02NmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4U55ERxtriDG3VHvfvsF/jjgasCauXVA4YZnUbRUV5pNJxMGWMHC9T426YJ3 vsJ9225k3WKH8dT8W9ey/q/sgmvlrb9zvmF8ZuNoizO18NmZDk1tM0xfDxhCsqCS Ig48bY7cfAknrHmQH+4ErT9eiG4wNUCP/9+DMxbXFck9JWiBJR1IbFlIgF4qDKnl wdN4AWyL4wuMLlbo6iPnUxhDQzHgpVwyfk2GAM7YkBHhxuu30CJDhmFW/BAnK2Zc E9MAkOruRM2WuxDv3QdB+wl5H47rf6pBr2/R1axNcZ26VeRtLTd11r2vtMm0ilZe 26Lqi/homd0SwCZ9tY7Fb+4atwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCrRtww+ OzQ36x1XIBJVnY3LY/3YMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZBMTUvNzAxRjUzRDIxRDg3MTFFQUE4MTY5QjZDQzRGOUFFMDIvRTVDOUIwNTQx QjNFMTFFQkJDNTcwNjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYoAwDQYJKoZIhvcNAQELBQADggEBAKL+lkyRJC5tmt/f EU0m5v+lJcxniHwoUuVPsGo5vxmh2i5dlRmzH2oUnVxqSVQa0VygxnMuN6Cs+9w0 n+OYS7/Tgd504vHmI5v4yGqqzZcwiFcKop6LJXISbuE2B7YE7yJwjSo7jDj688FX T6qaUSCxy8ZohbSBTtyRaayZ6FRcPFG49rI4612vHQ0K2hu+P9jWDuEYJSCiWlJE G8BcLgDRtTqEzG8S/ILNSVUxWGh7lK/ZNd731nmh/i/y71z7fqMIbzeMjhb8q4hG UexbbuX8e2TNFg8S3xsU+3w64iXZnMjvhJq0/OzNAbPFlETaH915KqvMZXAKsAjl bJro6NU= -----END CERTIFICATE-----Generated at Thu May 16 22:34:56 2024 by rpki-client on console-ams.rpki-client.org