$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/F85A5EB6C33911E9A9463781C4F9AE02.roa File: F85A5EB6C33911E9A9463781C4F9AE02.roa (raw, json) Hash identifier: CelzmOchlP2Dz3iFKVdh7oENQi8hit0fX11PwKxvru4= Subject key identifier: 7E:77:BE:31:49:79:AB:81:B9:1E:9F:4B:69:DC:90:7B:0A:EE:B5:83 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 1016 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/F85A5EB6C33911E9A9463781C4F9AE02.roa Signing time: Sun 04 Jun 2023 18:27:58 +0000 ROA not before: Sun 04 Jun 2023 18:27:58 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 134221 IP address blocks: 103.59.48.0/22 maxlen: 22 103.59.48.0/24 maxlen: 24 103.59.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:20:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4118 (0x1016) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Jun 4 18:27:58 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647cd7ae-3d2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0a:34:73:e5:39:08:4d:dc:0c:43:ea:85:7e: 36:ac:ca:f7:af:37:36:71:f9:6f:6f:73:8d:e6:8c: 1d:cc:de:dc:51:d3:7a:75:3a:89:90:24:f2:ae:a6: 23:a0:95:15:dc:be:a0:b5:c0:45:3b:2e:78:3b:d9: 6a:9a:5e:69:34:4b:60:ff:1f:23:2f:aa:33:9d:0d: f7:4b:b0:11:bb:61:df:e1:ea:6c:18:4c:11:b7:7b: 9b:c8:c0:84:bc:f4:fc:7f:73:bb:7a:7e:10:e5:4c: 56:0a:32:ed:e8:a9:13:c3:08:17:a1:16:68:c9:44: d6:4a:92:b3:22:51:10:34:1b:ef:0b:b0:8b:84:75: 66:fc:a3:65:50:12:22:46:76:b5:40:67:3d:dd:9c: a1:0f:72:2a:ee:51:c4:6e:5c:b7:2c:60:d7:f6:38: 78:c3:72:f4:12:34:fb:22:d3:0f:bd:3e:e7:69:09: e0:24:09:23:26:96:fd:75:cf:c5:2a:5a:f2:26:4d: 07:5b:18:38:79:00:7b:3a:a4:17:59:0e:42:4f:62: fe:0c:79:7f:20:51:4e:32:44:7a:89:41:fd:13:21: e1:6c:20:f0:b2:4b:51:33:14:83:9c:5f:95:ea:db: 4a:fa:2a:47:d5:14:85:a9:b2:b0:fc:62:61:05:28: ad:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:77:BE:31:49:79:AB:81:B9:1E:9F:4B:69:DC:90:7B:0A:EE:B5:83 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/F85A5EB6C33911E9A9463781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.59.48.0/22 Signature Algorithm: sha256WithRSAEncryption 88:22:68:21:43:15:70:2c:05:6f:b0:93:30:e3:53:1c:b7:37: 01:9c:63:e9:ed:7f:61:a5:8b:12:5a:ad:c8:d9:98:3c:b5:23: a2:17:42:0f:5c:05:18:d2:35:1d:bc:d5:be:6f:45:e2:94:e8: 23:34:f3:39:4e:48:df:bd:49:56:78:e3:a1:09:b5:09:10:50: ed:a0:d7:31:60:d2:7f:3d:6f:8a:20:b8:26:6d:f9:3b:7b:f9: 8e:c6:ee:3e:18:92:d9:c4:32:ea:16:7f:d1:5f:26:20:77:77: f0:fc:0b:1b:5d:54:c4:a2:c3:05:59:af:5d:ef:14:d4:df:5b: 6e:eb:67:f5:51:c0:4b:3f:9f:59:b5:1b:06:d6:20:bb:97:e3: 30:9b:9d:7c:11:62:2a:ec:71:01:fd:76:f4:8b:26:66:e1:b9: d1:e8:08:c8:15:c4:22:6b:7b:07:4f:ed:b1:47:72:08:d7:2b: bc:43:51:47:b8:67:2c:6b:65:9a:d1:b8:07:7a:00:60:75:24: f5:9e:88:17:8e:12:56:38:cc:ff:ef:88:51:88:0c:37:f0:8c: 26:aa:fc:1a:4f:07:ca:3a:d4:44:61:95:b1:d2:16:23:dc:4e: 15:6f:cc:b6:88:09:f2:ee:0a:02:33:8e:51:e6:e3:d0:7a:50: 41:5c:42:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjMwNjA0MTgyNzU4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdjZDdhZS0zZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQo0c+U5CE3cDEPqhX42rMr3rzc2cflvb3ON5owdzN7cUdN6dTqJkCTyrqYj oJUV3L6gtcBFOy54O9lqml5pNEtg/x8jL6oznQ33S7ARu2Hf4epsGEwRt3ubyMCE vPT8f3O7en4Q5UxWCjLt6KkTwwgXoRZoyUTWSpKzIlEQNBvvC7CLhHVm/KNlUBIi Rna1QGc93ZyhD3Iq7lHEbly3LGDX9jh4w3L0EjT7ItMPvT7naQngJAkjJpb9dc/F KlryJk0HWxg4eQB7OqQXWQ5CT2L+DHl/IFFOMkR6iUH9EyHhbCDwsktRMxSDnF+V 6ttK+ipH1RSFqbKw/GJhBSitLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH53vjFJ eauBuR6fS2nckHsK7rWDMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEyQkMvRUJDRjE2ODIwNEY4MTFFOUJBNTAyNDMxQzRGOUFFMDIvRjg1QTVFQjZD MzM5MTFFOUE5NDYzNzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnOzAwDQYJKoZIhvcNAQELBQADggEBAIgiaCFDFXAsBW+w kzDjUxy3NwGcY+ntf2GlixJarcjZmDy1I6IXQg9cBRjSNR281b5vReKU6CM08zlO SN+9SVZ446EJtQkQUO2g1zFg0n89b4oguCZt+Tt7+Y7G7j4YktnEMuoWf9FfJiB3 d/D8CxtdVMSiwwVZr13vFNTfW27rZ/VRwEs/n1m1GwbWILuX4zCbnXwRYirscQH9 dvSLJmbhudHoCMgVxCJrewdP7bFHcgjXK7xDUUe4ZyxrZZrRuAd6AGB1JPWeiBeO ElY4zP/viFGIDDfwjCaq/BpPB8o61ERhlbHSFiPcThVvzLaICfLuCgIzjlHm49B6 UEFcQk8= -----END CERTIFICATE-----Generated at Fri May 31 20:33:56 2024 by rpki-client on console-ams.rpki-client.org