$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/92DBB0469A8D11EEBCC9CE5EC4F9AE02.roa File: 92DBB0469A8D11EEBCC9CE5EC4F9AE02.roa (raw, json) Hash identifier: TFXpItBJFWZURltjl+fKIXBVSe8jDaxe2voVS4Tzt28= Subject key identifier: 1A:26:66:93:88:95:D0:DE:9D:A4:C2:DB:57:FF:2B:1D:ED:19:33:CD Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4142 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/92DBB0469A8D11EEBCC9CE5EC4F9AE02.roa Signing time: Thu 14 Dec 2023 14:35:02 +0000 ROA not before: Thu 14 Dec 2023 14:35:02 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135921 IP address blocks: 103.45.232.0/22 maxlen: 24 103.69.188.0/22 maxlen: 22 103.98.148.0/22 maxlen: 22 2407:f1c0::/36 maxlen: 48 2407:f1c0:1000::/36 maxlen: 48 2407:f1c0:2000::/36 maxlen: 48 2407:f1c0:3000::/36 maxlen: 48 2407:f1c0:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16706 (0x4142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Dec 14 14:35:02 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=657b1296-d961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:eb:64:fa:2c:1f:9c:55:59:88:be:aa:1b: 73:0f:b5:9a:84:3b:9d:95:01:89:10:14:c9:f0:c0: 19:04:e4:51:be:2c:cb:01:48:ff:0b:8c:fc:f8:71: 98:65:72:6a:f8:45:22:70:77:8b:d0:53:65:ff:3a: cf:eb:18:bf:dc:f4:14:43:0e:cc:3b:d7:17:de:98: 2c:b6:09:b6:22:73:36:64:51:58:52:fa:dd:2f:f1: e2:d0:dc:bf:a0:31:53:63:a3:7e:1b:15:6c:41:7b: bc:1f:0e:68:8a:fc:4b:0e:8a:6f:1b:14:01:fc:16: ed:79:ad:89:29:de:db:1e:d2:d2:d8:a7:3f:60:f5: 29:3e:bf:d6:5b:44:fe:d2:b9:85:06:be:29:e2:c6: 4c:57:9a:f0:71:24:48:f9:3c:61:0e:d6:f1:1a:80: bc:c7:96:d3:bb:f1:6c:67:35:58:6e:71:3e:be:6d: bb:e7:ac:81:de:9a:8e:1f:63:86:24:cd:4b:87:75: d8:b5:7b:e8:d2:cc:6a:9f:27:84:82:bf:a5:2b:e8: d3:d9:03:2b:8a:8d:20:0a:5b:ec:a6:cc:1f:63:18: 34:8a:9a:eb:97:30:6d:52:e6:3b:a3:bb:66:c3:40: 0b:ee:75:1e:10:53:0e:de:c6:1b:57:72:c2:2f:c8: 7b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:26:66:93:88:95:D0:DE:9D:A4:C2:DB:57:FF:2B:1D:ED:19:33:CD X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/92DBB0469A8D11EEBCC9CE5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.45.232.0/22 103.69.188.0/22 103.98.148.0/22 IPv6: 2407:f1c0::-2407:f1c0:4fff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 75:32:bd:be:46:11:f0:24:d1:57:16:8a:61:7b:bb:18:fa:ed: bc:7f:fa:08:6f:2e:c6:47:3d:35:6c:ac:56:50:2d:9c:1b:54: 73:d0:86:eb:61:5b:9d:bb:9c:e1:c8:92:9a:bc:a1:09:4c:10: 6a:15:a1:5d:e7:3b:f6:a9:75:8c:dd:d8:79:b4:ab:be:58:c7: da:7e:6d:af:a3:bf:2f:54:d0:ae:ab:c8:20:24:f0:27:f8:98: aa:49:1c:64:af:16:f2:07:ac:8f:71:a4:33:25:45:e2:86:d5: ca:0f:69:69:60:e1:2f:35:70:68:61:6a:49:89:42:cc:67:d2: b0:59:43:df:c2:fb:12:b1:07:99:9d:cb:4c:a7:9e:b9:18:62: d2:e5:67:e5:a7:93:23:d0:6f:41:02:87:5a:fb:41:66:08:16: 9f:4b:7a:77:f9:1c:e5:8b:18:55:28:86:db:80:12:91:53:33: cf:87:88:4d:a2:b3:fd:66:26:c8:2d:87:9c:07:53:27:39:51: 29:c6:09:de:73:16:be:da:e1:cd:4d:8b:5f:99:c3:e7:1b:bc: 70:1b:bd:56:c4:9c:a7:65:dd:99:77:13:a5:b0:dc:2d:e1:0c: 6b:a4:7b:d9:74:e7:12:b6:0e:9f:a8:22:1c:39:1c:23:c4:8b: 9f:fe:df:e1 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICQUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMxMjE0MTQzNTAyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiMTI5Ni1kOTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv63rZPosH5xVWYi+qhtzD7WahDudlQGJEBTJ8MAZBORRvizLAUj/C4z8+HGY ZXJq+EUicHeL0FNl/zrP6xi/3PQUQw7MO9cX3pgstgm2InM2ZFFYUvrdL/Hi0Ny/ oDFTY6N+GxVsQXu8Hw5oivxLDopvGxQB/Bbtea2JKd7bHtLS2Kc/YPUpPr/WW0T+ 0rmFBr4p4sZMV5rwcSRI+TxhDtbxGoC8x5bTu/FsZzVYbnE+vm2756yB3pqOH2OG JM1Lh3XYtXvo0sxqnyeEgr+lK+jT2QMrio0gClvspswfYxg0iprrlzBtUuY7o7tm w0AL7nUeEFMO3sYbV3LCL8h7uwIDAQABo4ICujCCArYwHQYDVR0OBBYEFBomZpOI ldDenaTC21f/Kx3tGTPNMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTJEQkIwNDY5 QThEMTFFRUJDQzlDRTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMBgEAgABMBIDBAJnLegDBAJnRbwDBAJnYpQwFwQCAAIwETAPAwUGJAfxwAMG BCQH8cBAMA0GCSqGSIb3DQEBCwUAA4IBAQB1Mr2+RhHwJNFXFophe7sY+u28f/oI by7GRz01bKxWUC2cG1Rz0IbrYVudu5zhyJKavKEJTBBqFaFd5zv2qXWM3dh5tKu+ WMfafm2vo78vVNCuq8ggJPAn+JiqSRxkrxbyB6yPcaQzJUXihtXKD2lpYOEvNXBo YWpJiULMZ9KwWUPfwvsSsQeZnctMp565GGLS5Wflp5Mj0G9BAoda+0FmCBafS3p3 +RzlixhVKIbbgBKRUzPPh4hNorP9ZibILYecB1MnOVEpxgnecxa+2uHNTYtfmcPn G7xwG71WxJynZd2ZdxOlsNwt4QxrpHvZdOcStg6fqCIcORwjxIuf/t/h -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org