$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/13C88472A8C311EC8F560C42C4F9AE02.roa File: 13C88472A8C311EC8F560C42C4F9AE02.roa (raw, json) Hash identifier: mFSjyrBiexuKlhoPZDMwCMeHSlUDIw/6s51zo6As5aw= Subject key identifier: 9F:D7:95:88:F3:CF:1E:38:2D:42:49:3F:C8:BF:42:E3:08:96:CC:83 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3E44 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/13C88472A8C311EC8F560C42C4F9AE02.roa Signing time: Tue 12 Sep 2023 02:40:49 +0000 ROA not before: Tue 12 Sep 2023 02:40:49 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 131367 IP address blocks: 45.118.148.0/22 maxlen: 24 103.20.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15940 (0x3e44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:40:49 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffcfb1-cdb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f8:14:85:7e:d9:4a:57:2b:94:e0:f4:e4:4b: bb:aa:64:ac:46:4c:16:0d:8c:cc:1c:e1:b2:d1:57: 64:e4:99:40:39:6e:2a:9e:ef:54:32:bd:b8:04:85: ac:0f:ee:0a:a8:96:d1:20:0a:a8:d0:e0:fa:79:81: 40:e2:64:13:a5:e4:f1:6d:5e:00:ca:e5:92:79:42: 82:fa:f0:a8:57:62:8c:e6:db:f6:ff:73:be:e1:6a: 72:15:b5:c1:99:a5:83:53:77:7f:2d:b6:1f:9a:29: 4c:b6:b4:23:60:28:e1:c1:31:48:c9:4b:58:f2:8b: 6d:9a:d9:c4:e4:2b:12:d9:2a:4f:78:43:5f:77:5c: 8d:5f:7c:68:10:1f:df:89:f0:4f:fa:de:99:13:95: b0:09:96:9b:8e:d0:cc:68:68:3c:b7:8c:59:de:d1: b4:af:48:5e:df:49:57:a5:93:8b:90:ed:9b:1a:af: 1a:e0:89:59:e4:8e:3a:b2:f1:5a:0c:50:58:98:0e: 8a:ff:bb:1f:6a:16:76:13:56:0a:8e:50:38:68:a6: 8b:f2:f7:3b:64:d3:71:f6:01:88:a8:d2:01:2e:41: cd:ba:ab:f0:f1:40:25:c4:b1:01:50:b7:41:ce:0c: 6a:0f:bd:23:f7:24:12:5a:95:e6:b0:90:71:be:ba: 38:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D7:95:88:F3:CF:1E:38:2D:42:49:3F:C8:BF:42:E3:08:96:CC:83 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/13C88472A8C311EC8F560C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.118.148.0/22 103.20.148.0/22 Signature Algorithm: sha256WithRSAEncryption 19:27:53:51:a0:a8:bc:fb:b0:36:d1:b6:35:ef:63:ab:f4:b8: 59:c2:14:08:be:57:39:5c:7c:27:af:87:22:15:79:46:e4:76: 1b:a8:58:ad:9f:6b:e5:4b:1f:9f:d4:f9:82:d5:09:8e:eb:c6: fb:6a:a9:ad:c2:77:42:ad:d1:76:d2:e2:56:9d:d3:f5:1e:b7: b3:c7:b7:68:20:43:74:63:72:c4:7e:ae:98:fc:9e:30:9f:41: cd:d5:68:a4:70:10:ab:50:62:ef:1d:58:a5:f3:42:71:6c:da: 88:d0:27:68:5f:93:67:33:72:d1:03:9a:90:cc:d6:8d:87:d0: e3:e1:51:4b:89:64:3c:69:84:08:4b:97:38:7b:47:0b:13:d3: 0f:d5:1c:43:63:51:e6:60:2a:dc:03:b0:30:14:9a:5a:14:45: cc:02:ef:7b:7e:a4:00:0a:d6:02:9a:33:55:65:23:29:22:46: 79:e9:83:48:e2:e9:da:ec:50:11:78:e1:58:a8:07:72:87:5b: a7:19:91:f2:9c:ac:d2:07:ce:50:7b:f7:8d:7c:2c:be:47:2b: 5e:1c:bc:be:f7:45:c8:39:06:05:44:87:c7:1b:bb:68:a5:28: 67:b4:4d:e6:2e:2a:dc:2b:3c:51:84:15:a1:2a:3a:e1:43:07: 02:4c:0b:0f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICPkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MDQ5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmY2ZiMS1jZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPgUhX7ZSlcrlOD05Eu7qmSsRkwWDYzMHOGy0Vdk5JlAOW4qnu9UMr24BIWs D+4KqJbRIAqo0OD6eYFA4mQTpeTxbV4AyuWSeUKC+vCoV2KM5tv2/3O+4WpyFbXB maWDU3d/LbYfmilMtrQjYCjhwTFIyUtY8ottmtnE5CsS2SpPeENfd1yNX3xoEB/f ifBP+t6ZE5WwCZabjtDMaGg8t4xZ3tG0r0he30lXpZOLkO2bGq8a4IlZ5I46svFa DFBYmA6K/7sfahZ2E1YKjlA4aKaL8vc7ZNNx9gGIqNIBLkHNuqvw8UAlxLEBULdB zgxqD70j9yQSWpXmsJBxvro4HwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ/XlYjz zx44LUJJP8i/QuMIlsyDMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMTNDODg0NzJB OEMzMTFFQzhGNTYwQzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItdpQDBAJnFJQwDQYJKoZIhvcNAQELBQADggEBABknU1Gg qLz7sDbRtjXvY6v0uFnCFAi+VzlcfCevhyIVeUbkdhuoWK2fa+VLH5/U+YLVCY7r xvtqqa3Cd0Kt0XbS4lad0/Uet7PHt2ggQ3RjcsR+rpj8njCfQc3VaKRwEKtQYu8d WKXzQnFs2ojQJ2hfk2czctEDmpDM1o2H0OPhUUuJZDxphAhLlzh7RwsT0w/VHENj UeZgKtwDsDAUmloURcwC73t+pAAK1gKaM1VlIykiRnnpg0ji6drsUBF44VioB3KH W6cZkfKcrNIHzlB79418LL5HK14cvL73Rcg5BgVEh8cbu2ilKGe0TeYuKtwrPFGE FaEqOuFDBwJMCw8= -----END CERTIFICATE-----Generated at Fri May 31 16:41:39 2024 by rpki-client on console-ams.rpki-client.org