$ rpki-client -vvf rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/3A84FA5A01E711EDB2C82D0FC4F9AE02.roa File: 3A84FA5A01E711EDB2C82D0FC4F9AE02.roa (raw, json) Hash identifier: x4ZEI1/oN7zeGVnSfu0nnPCt20waWeVh+pcZZP/qEoY= Subject key identifier: BD:A5:1C:7C:E3:8B:49:F4:97:74:E6:A3:1E:C9:D6:6B:68:F5:76:17 Certificate issuer: /CN=A91546FB/serialNumber=DA5C8F2728408FEEF8256E20388DEB9601E5B510 Certificate serial: 011B Authority key identifier: DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/3A84FA5A01E711EDB2C82D0FC4F9AE02.roa Signing time: Sat 13 May 2023 06:25:25 +0000 ROA not before: Sat 13 May 2023 06:25:25 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 59215 IP address blocks: 103.227.156.0/24 maxlen: 24 103.227.157.0/24 maxlen: 24 103.227.158.0/24 maxlen: 24 103.227.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.crl rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91546FB/serialNumber=DA5C8F2728408FEEF8256E20388DEB9601E5B510 Validity Not Before: May 13 06:25:25 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645f2d55-84dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:85:f0:db:bd:f7:ec:7f:d1:7a:e7:f8:f0:ed: 2e:50:5f:e7:08:90:eb:ca:24:e6:b6:00:0b:ab:78: cd:b1:72:a4:58:09:74:88:69:d8:0e:62:bb:e6:d0: fc:91:16:d6:f0:0f:00:9a:2c:35:4a:4a:9f:e2:4b: 5f:60:91:e8:e0:e8:0d:cf:7d:98:46:35:95:0e:de: 42:82:49:14:42:93:39:c5:b0:85:8e:2c:3e:53:5b: be:bb:df:86:fd:e3:51:a1:50:c1:03:f7:6b:3d:4b: dc:d1:03:f0:1f:77:d8:4e:ab:22:da:21:66:3a:fc: 09:8f:a3:a9:c3:bd:b1:b1:f3:bd:e0:83:b2:37:02: f7:5e:65:7a:31:90:43:e0:b0:64:77:34:9c:79:a7: e9:3e:9a:70:bf:21:16:2c:f5:8c:04:c2:47:10:94: 72:4c:fd:f2:43:a9:6f:02:83:4d:da:6b:f1:2d:dc: 93:f4:5d:ef:d7:bc:59:0c:de:57:91:9b:d7:24:ce: 88:5e:21:e6:25:87:1d:36:00:f4:c2:1b:0a:43:c8: 4a:10:98:c4:49:32:61:39:51:f2:52:1f:da:20:67: 4a:b8:38:9f:5c:b1:3b:48:d7:b7:ee:ed:ed:cd:fe: b2:35:22:80:fa:06:d7:d7:98:fa:57:f7:86:4c:84: d1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A5:1C:7C:E3:8B:49:F4:97:74:E6:A3:1E:C9:D6:6B:68:F5:76:17 X509v3 Authority Key Identifier: keyid:DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/3A84FA5A01E711EDB2C82D0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.227.156.0/22 Signature Algorithm: sha256WithRSAEncryption 17:52:61:00:d0:4b:1e:90:f5:c2:e0:1d:50:f8:6e:76:53:dc: eb:19:13:4c:4d:e4:d8:22:f2:3a:b1:28:b7:e3:b1:7b:bf:dd: f7:b6:bd:ec:76:0e:c9:65:8f:16:ff:22:e9:00:d9:09:f1:5a: 43:50:3b:c6:37:9c:e9:03:3a:9f:d6:eb:84:83:72:0c:21:0f: e4:29:e4:33:fd:0e:5f:5c:8b:19:9a:9d:14:ca:05:56:c2:b1: 92:36:25:42:11:34:fa:87:3e:05:2d:f3:ba:0f:5d:c7:80:a3: 56:f4:b6:b4:90:ad:fc:f3:55:fb:5f:9f:2b:11:7e:72:ff:60: 68:7a:b3:06:6d:f5:f7:45:72:2d:d5:30:fe:c2:68:00:b6:6d: 0a:ca:9d:85:b5:30:9b:29:25:b7:74:50:26:7a:b9:02:19:ed: 19:22:b8:ed:d8:d2:6b:2d:1b:06:bb:80:df:12:b7:a3:67:6b: 25:02:2c:eb:c0:57:47:7f:e5:44:cb:1d:db:b0:52:40:2e:f8: 2e:f9:50:2f:4c:f7:50:57:fe:88:cd:6f:55:c6:7e:e6:21:67: c6:55:60:17:7d:b5:4e:a5:2a:6d:8e:16:68:c4:68:14:0c:2e: a6:25:5c:27:80:39:d7:44:da:ae:da:d4:cd:04:75:d5:48:e4: 74:d2:ad:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2RkIxMTAvBgNVBAUTKERBNUM4RjI3Mjg0MDhGRUVGODI1NkUyMDM4OERFQjk2 MDFFNUI1MTAwHhcNMjMwNTEzMDYyNTI1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDVmMmQ1NS04NGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIXw27337H/Reuf48O0uUF/nCJDryiTmtgALq3jNsXKkWAl0iGnYDmK75tD8 kRbW8A8Amiw1Skqf4ktfYJHo4OgNz32YRjWVDt5CgkkUQpM5xbCFjiw+U1u+u9+G /eNRoVDBA/drPUvc0QPwH3fYTqsi2iFmOvwJj6Opw72xsfO94IOyNwL3XmV6MZBD 4LBkdzSceafpPppwvyEWLPWMBMJHEJRyTP3yQ6lvAoNN2mvxLdyT9F3v17xZDN5X kZvXJM6IXiHmJYcdNgD0whsKQ8hKEJjESTJhOVHyUh/aIGdKuDifXLE7SNe37u3t zf6yNSKA+gbX15j6V/eGTITRKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL2lHHzj i0n0l3Tmox7J1mto9XYXMB8GA1UdIwQYMBaAFNpcjycoQI/u+CVuIDiN65YB5bUQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDZGQi8xRTVDOTM4QTAx RTUxMUVEQkE3QkE5MEVDNEY5QUUwMi8ybHlQSnloQWotNzRKVzRnT0kzcmxnSGx0 UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJseVBKeWhBai03NEpXNGdPSTNybGdIbHRSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2RkIvMUU1QzkzOEEwMUU1MTFFREJBN0JBOTBFQzRGOUFFMDIvM0E4NEZBNUEw MUU3MTFFREIyQzgyRDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn45wwDQYJKoZIhvcNAQELBQADggEBABdSYQDQSx6Q9cLg HVD4bnZT3OsZE0xN5Ngi8jqxKLfjsXu/3fe2vex2Dslljxb/IukA2QnxWkNQO8Y3 nOkDOp/W64SDcgwhD+Qp5DP9Dl9cixmanRTKBVbCsZI2JUIRNPqHPgUt87oPXceA o1b0trSQrfzzVftfnysRfnL/YGh6swZt9fdFci3VMP7CaAC2bQrKnYW1MJspJbd0 UCZ6uQIZ7RkiuO3Y0mstGwa7gN8St6NnayUCLOvAV0d/5UTLHduwUkAu+C75UC9M 91BX/ojNb1XGfuYhZ8ZVYBd9tU6lKm2OFmjEaBQMLqYlXCeAOddE2q7a1M0EddVI 5HTSre4= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:16 2024 by rpki-client on console-ams.rpki-client.org