$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5ADC170465DB11EDA2559051C4F9AE02.roa File: 5ADC170465DB11EDA2559051C4F9AE02.roa (raw, json) Hash identifier: D+NkGaNqamOWHmhvId4sdrQbm27pHc7J0tTSb2Wq8aI= Subject key identifier: 81:59:94:7E:EB:EB:61:5B:7C:AC:0C:6F:51:1C:77:0A:B4:47:C2:A0 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 426C Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5ADC170465DB11EDA2559051C4F9AE02.roa Signing time: Tue 02 Apr 2024 06:49:44 +0000 ROA not before: Tue 02 Apr 2024 06:49:44 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 149147 IP address blocks: 103.37.60.0/23 maxlen: 24 103.186.24.0/23 maxlen: 23 113.192.18.0/23 maxlen: 23 2401:5820::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17004 (0x426c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Apr 2 06:49:44 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=660baa88-363f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:35:96:66:24:0e:58:79:97:07:8e:21:92:a0: a0:6a:8b:c7:1e:4c:d1:10:d0:97:b3:7c:05:af:4b: c4:9d:95:0f:ea:cb:da:41:10:b4:a9:4e:45:ed:26: fb:b5:3a:f1:f9:9f:01:81:bb:da:24:87:23:12:4e: 50:fb:26:58:aa:ee:da:54:a0:06:13:05:ff:eb:4f: 6f:54:f7:50:0d:10:53:fa:54:3a:f9:c6:c1:06:fc: 5c:b1:d2:76:cc:5c:20:46:31:c7:e3:b4:be:6e:fe: 83:20:47:4b:e9:45:6e:c2:b1:d9:7c:ed:35:f2:2a: 5b:1f:81:dc:75:7e:79:e9:1a:e2:88:25:bf:86:f7: e3:7a:1b:9d:e5:60:b6:9e:4b:bc:c0:81:b4:89:a1: a5:9c:cc:1f:f4:90:07:83:48:c0:79:df:46:62:fb: f6:3d:09:94:8a:24:bb:ab:38:25:60:21:8b:f3:9c: 7c:c7:df:75:dd:d8:c0:5b:18:ec:34:d8:ea:f5:f5: 3a:22:0d:72:fb:a8:fa:17:56:f7:f7:d3:dc:36:f8: b9:ef:cb:78:4e:e7:a8:92:91:4b:6b:05:69:80:84: f2:dc:07:18:dc:3d:a1:02:3a:9c:f9:51:71:72:1e: 9b:92:59:af:1d:e0:ca:7e:09:e3:82:64:21:35:29: b2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:59:94:7E:EB:EB:61:5B:7C:AC:0C:6F:51:1C:77:0A:B4:47:C2:A0 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5ADC170465DB11EDA2559051C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.60.0/23 103.186.24.0/23 113.192.18.0/23 IPv6: 2401:5820::/48 Signature Algorithm: sha256WithRSAEncryption 37:0f:5d:2d:8c:45:43:57:b6:d7:4c:e0:e6:d5:65:27:e8:c8: b9:f9:b6:95:49:79:cd:d8:33:f2:64:8f:c4:7a:3c:b5:d9:fe: 25:24:db:31:78:3c:8d:ef:85:39:e2:b2:e8:ec:da:94:19:c2: 82:05:a5:65:21:a8:8a:7e:67:89:6c:12:70:e1:4e:27:38:4c: 22:e1:2d:0e:fe:df:7a:aa:99:6f:26:b2:19:8b:8c:25:61:38: 6c:5b:80:60:db:97:fb:9a:c0:01:7f:6f:5d:ba:52:5d:ff:e4: 42:36:fa:4e:a0:58:26:b6:d5:30:36:6c:e4:04:7b:34:57:3c: ee:d4:a7:8a:de:2b:fd:79:8f:ba:26:b9:50:f8:9c:57:da:fa: 6d:d3:f9:71:3c:23:10:64:b0:70:18:30:6c:fe:58:e1:6e:18: f3:b9:3c:32:6c:ce:88:48:c5:10:29:79:5e:5c:76:d7:16:79: 0c:b6:b6:6f:21:2e:5f:f7:d0:1f:32:c4:37:91:79:80:c1:fe: da:ce:fe:11:3e:81:e0:d1:fb:6a:8e:63:75:a8:20:66:62:b6: 27:71:d1:6d:64:3d:f1:e7:15:ac:31:c6:a8:97:45:dc:21:47: 81:05:9e:fc:70:bc:bc:04:93:f1:c8:9a:ed:5c:32:ea:ca:5c: 06:2a:0f:53 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICQmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwNDAyMDY0OTQ0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBiYWE4OC0zNjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDWWZiQOWHmXB44hkqCgaovHHkzRENCXs3wFr0vEnZUP6svaQRC0qU5F7Sb7 tTrx+Z8BgbvaJIcjEk5Q+yZYqu7aVKAGEwX/609vVPdQDRBT+lQ6+cbBBvxcsdJ2 zFwgRjHH47S+bv6DIEdL6UVuwrHZfO018ipbH4HcdX556RriiCW/hvfjehud5WC2 nku8wIG0iaGlnMwf9JAHg0jAed9GYvv2PQmUiiS7qzglYCGL85x8x9913djAWxjs NNjq9fU6Ig1y+6j6F1b399PcNvi578t4TueokpFLawVpgITy3AcY3D2hAjqc+VFx ch6bklmvHeDKfgnjgmQhNSmycQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFIFZlH7r 62FbfKwMb1Ecdwq0R8KgMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNUFEQzE3MDQ2 NURCMTFFREEyNTU5MDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAFnJTwDBAFnuhgDBAFxwBIwDwQCAAIwCQMHACQBWCAAADAN BgkqhkiG9w0BAQsFAAOCAQEANw9dLYxFQ1e210zg5tVlJ+jIufm2lUl5zdgz8mSP xHo8tdn+JSTbMXg8je+FOeKy6OzalBnCggWlZSGoin5niWwScOFOJzhMIuEtDv7f eqqZbyayGYuMJWE4bFuAYNuX+5rAAX9vXbpSXf/kQjb6TqBYJrbVMDZs5AR7NFc8 7tSnit4r/XmPuia5UPicV9r6bdP5cTwjEGSwcBgwbP5Y4W4Y87k8MmzOiEjFECl5 Xlx21xZ5DLa2byEuX/fQHzLEN5F5gMH+2s7+ET6B4NH7ao5jdaggZmK2J3HRbWQ9 8ecVrDHGqJdF3CFHgQWe/HC8vAST8cia7Vwy6spcBioPUw== -----END CERTIFICATE-----Generated at Fri May 31 16:41:40 2024 by rpki-client on console-ams.rpki-client.org