$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/54467164E0A711EC8F4D5B5FC4F9AE02.roa File: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (raw, json) Hash identifier: snmiOD9hRhOSDM5RgdR8r+Gl6jhVAt26TT9eAVotwvs= Subject key identifier: 92:FE:55:61:62:99:F3:0C:10:13:5E:B4:5D:F1:3D:76:ED:A0:81:17 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 0181 Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/54467164E0A711EC8F4D5B5FC4F9AE02.roa Signing time: Tue 13 Jun 2023 05:27:03 +0000 ROA not before: Tue 13 Jun 2023 05:27:03 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149848 IP address blocks: 103.188.86.0/23 maxlen: 23 103.188.86.0/24 maxlen: 24 103.188.87.0/24 maxlen: 24 2400:a1a0::/32 maxlen: 32 2400:a1a0:1000::/36 maxlen: 36 2400:a1a0:2000::/36 maxlen: 36 2400:a1a0:3000::/36 maxlen: 36 2400:a1a0:4000::/36 maxlen: 36 2400:a1a0:5000::/36 maxlen: 36 2400:a1a0:6000::/36 maxlen: 36 2400:a1a0:8000::/36 maxlen: 36 2400:a1a0:9000::/36 maxlen: 36 2400:a1a0:a000::/36 maxlen: 36 2400:a1a0:b000::/36 maxlen: 36 2400:a1a0:c000::/36 maxlen: 36 2400:a1a0:d000::/36 maxlen: 36 2400:a1a0:e000::/36 maxlen: 36 2400:a1a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: Jun 13 05:27:03 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6487fe27-b0f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8d:70:38:2f:7f:c4:17:42:94:90:47:c0:90: 1c:ac:83:8c:3d:6d:5f:99:0f:57:2b:1b:a0:69:b4: 0b:c1:f8:2c:f9:7b:7c:b1:fa:37:91:d4:44:9b:2c: 39:70:20:31:27:44:1d:23:49:ba:91:1b:1b:2c:09: ad:46:65:4d:d2:7a:b2:d8:cd:51:81:c5:87:6e:73: b9:3e:b7:f3:67:94:bb:29:6e:82:3f:b5:26:a6:c4: 45:1d:3d:ef:b1:44:75:d0:26:01:5b:9c:ed:e0:dc: 18:1b:8d:7c:63:60:9f:e3:89:f5:0e:d7:6f:39:8b: 76:a6:43:5c:f2:a6:2c:e1:ef:bb:5d:b1:9c:30:40: 44:3b:bc:59:f2:c3:a6:71:d6:14:d7:85:08:d4:ae: c6:58:68:41:b5:a8:53:3b:42:00:24:8a:6e:70:a2: da:4a:1c:a3:64:9e:cf:46:d8:6c:0c:a0:82:7b:fb: 1a:77:59:20:14:40:d9:bc:1b:6f:af:3c:3c:cb:c5: 38:32:e5:27:b7:34:2d:2d:8c:50:23:66:72:73:2c: a0:2c:41:64:53:e0:0d:a6:f2:99:75:40:7d:62:8b: 0c:1b:a3:fb:6c:1a:8e:59:ab:08:34:42:9c:a5:c0: bf:87:3a:5b:f0:8f:70:ed:6d:c1:7f:d7:e3:0b:94: 01:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:FE:55:61:62:99:F3:0C:10:13:5E:B4:5D:F1:3D:76:ED:A0:81:17 X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/54467164E0A711EC8F4D5B5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.86.0/23 IPv6: 2400:a1a0::/32 Signature Algorithm: sha256WithRSAEncryption 26:f5:9f:dc:c1:ab:bb:f4:78:16:24:a6:d5:95:7f:e7:3d:59: 6a:19:63:2f:a0:f9:55:64:9f:8e:c1:c9:36:e7:09:89:2f:83: 54:4b:ca:cc:1f:09:56:41:95:d8:77:f7:41:4a:64:9b:8a:87: b9:ef:c5:32:81:e4:32:04:f4:0a:ac:a4:c5:0b:2a:58:81:d5: 64:40:79:ec:8c:94:4b:e2:4a:be:80:3a:e6:b6:93:b2:1a:ed: a7:a1:81:3a:ca:93:f8:b9:c7:eb:75:3a:1e:8f:69:93:cb:2f: 26:c2:70:b4:25:88:9a:12:f3:95:f7:50:cc:64:12:30:0c:23: 28:f6:2c:46:98:2a:91:5e:35:46:1b:ea:64:c9:06:73:bc:3c: 8f:3d:48:cb:cc:83:85:0a:20:1d:8a:d4:78:c7:42:8b:5f:eb: c6:98:5a:c4:41:0e:f2:bc:59:89:fc:08:72:73:6b:d0:86:28: e3:e6:1b:b5:2f:f8:19:3c:05:93:1a:66:a5:52:50:75:b2:a5: d1:b3:49:69:13:19:62:91:fc:92:7f:d5:59:bf:de:14:9f:73: c5:ae:a1:22:e4:22:5c:c8:a0:d5:0a:9a:d0:4a:34:0d:ed:45: 14:4e:64:fe:d7:1b:c1:b8:92:bf:75:49:ec:8d:1b:b3:8f:bc: a2:a6:e9:24 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjMwNjEzMDUyNzAzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg3ZmUyNy1iMGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvY1wOC9/xBdClJBHwJAcrIOMPW1fmQ9XKxugabQLwfgs+Xt8sfo3kdREmyw5 cCAxJ0QdI0m6kRsbLAmtRmVN0nqy2M1RgcWHbnO5PrfzZ5S7KW6CP7UmpsRFHT3v sUR10CYBW5zt4NwYG418Y2Cf44n1DtdvOYt2pkNc8qYs4e+7XbGcMEBEO7xZ8sOm cdYU14UI1K7GWGhBtahTO0IAJIpucKLaShyjZJ7PRthsDKCCe/sad1kgFEDZvBtv rzw8y8U4MuUntzQtLYxQI2ZycyygLEFkU+ANpvKZdUB9YosMG6P7bBqOWasINEKc pcC/hzpb8I9w7W3Bf9fjC5QBKwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJL+VWFi mfMMEBNetF3xPXbtoIEXMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJGODgvNEM3REEzQzBFMEEzMTFFQzhGOUMwRTU4QzRGOUFFMDIvNTQ0NjcxNjRF MEE3MTFFQzhGNEQ1QjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnvFYwDQQCAAIwBwMFACQAoaAwDQYJKoZIhvcNAQELBQAD ggEBACb1n9zBq7v0eBYkptWVf+c9WWoZYy+g+VVkn47ByTbnCYkvg1RLyswfCVZB ldh390FKZJuKh7nvxTKB5DIE9AqspMULKliB1WRAeeyMlEviSr6AOua2k7Ia7aeh gTrKk/i5x+t1Oh6PaZPLLybCcLQliJoS85X3UMxkEjAMIyj2LEaYKpFeNUYb6mTJ BnO8PI89SMvMg4UKIB2K1HjHQotf68aYWsRBDvK8WYn8CHJza9CGKOPmG7Uv+Bk8 BZMaZqVSUHWypdGzSWkTGWKR/JJ/1Vm/3hSfc8WuoSLkIlzIoNUKmtBKNA3tRRRO ZP7XG8G4kr91SeyNG7OPvKKm6SQ= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:23 2024 by rpki-client on console-ams.rpki-client.org