$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B54202E2BDF511EBA9CAA245C4F9AE02.roa File: B54202E2BDF511EBA9CAA245C4F9AE02.roa (raw, json) Hash identifier: Hs5gxJr6JbA3nsy8HG2Xu+w8/b79H6Npdq3QUR6ExTg= Subject key identifier: 32:D8:66:3A:9F:8E:E7:7B:93:40:0C:E9:E7:EF:47:82:5C:62:96:58 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4113 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B54202E2BDF511EBA9CAA245C4F9AE02.roa Signing time: Tue 05 Dec 2023 09:41:48 +0000 ROA not before: Tue 05 Dec 2023 09:41:48 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 63730 IP address blocks: 36.50.28.0/23 maxlen: 23 103.161.174.0/23 maxlen: 23 103.185.184.0/23 maxlen: 24 2400:69e0::/48 maxlen: 48 2401:53e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16659 (0x4113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Dec 5 09:41:48 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=656ef05c-bc0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:fd:96:2a:41:da:06:9c:89:53:76:2d:3d:d7: 7b:ae:57:03:ad:09:84:d2:32:fb:ca:b0:a1:50:0b: 9d:37:85:36:98:03:db:23:9b:b1:3d:ec:33:c9:bc: 65:85:57:8e:86:b2:6e:1c:83:f4:c5:78:e5:ab:f4: b3:79:37:6c:64:30:0f:06:b9:41:65:e6:10:4b:58: b8:f9:78:dc:78:79:07:46:aa:60:fa:59:60:20:36: 56:fa:24:77:75:0d:b0:05:da:70:b2:69:9a:f6:c2: 9e:2e:15:0f:a8:3c:97:90:3f:5b:78:aa:6a:2f:61: 1a:f2:6a:c7:b8:17:98:bf:b5:ff:79:bf:98:43:09: 44:8d:b1:a5:41:a4:49:8a:ee:4b:c4:a2:ab:4b:6c: 50:22:3a:61:7f:cb:52:d5:43:3a:a9:19:ab:4f:fe: 30:90:27:85:b8:37:d0:7e:c1:f4:e3:c4:86:aa:4a: 5e:95:c3:47:ac:79:7f:da:10:50:e1:83:61:15:2f: 3f:57:61:b5:a4:ab:3d:4a:05:f2:c1:87:bf:98:4e: b1:3c:d2:6f:66:d7:a7:49:8b:2c:86:d9:49:c4:f9: f1:aa:fa:29:f3:4d:46:4f:7f:92:60:88:18:51:f5: 3a:2b:06:8a:20:5c:0c:ae:b5:9d:50:c1:38:0d:a1: 69:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D8:66:3A:9F:8E:E7:7B:93:40:0C:E9:E7:EF:47:82:5C:62:96:58 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B54202E2BDF511EBA9CAA245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.28.0/23 103.161.174.0/23 103.185.184.0/23 IPv6: 2400:69e0::/48 2401:53e0::/48 Signature Algorithm: sha256WithRSAEncryption 8b:ca:19:4c:65:ec:9b:19:2a:08:2a:97:de:9a:42:7e:98:1d: 27:e0:aa:16:6f:b8:34:58:df:ec:76:33:43:48:6b:2a:df:53: 95:da:03:7e:af:43:09:f5:03:fe:d8:57:4a:b1:e2:2e:33:6c: 6f:db:b5:b9:17:ec:b5:1f:c8:c0:3e:09:6a:fe:58:db:9c:d9: 2f:70:56:af:e1:f2:f2:3c:d1:42:00:40:af:97:23:87:c1:72: e1:e5:05:28:29:b5:49:db:16:ad:99:93:87:8f:48:3a:21:f5: 5f:61:ea:50:d7:17:7d:8e:3b:a4:7e:1b:56:92:70:b8:26:c4: 54:96:e7:c8:f6:7a:30:5d:28:07:bc:1b:67:76:1e:d6:92:d1: 76:1e:c6:fe:0d:b4:a6:fa:f6:73:c5:13:52:43:30:22:6f:55: 19:19:2f:4c:4f:c1:28:e6:de:f9:05:83:0f:64:32:5e:24:82: ee:9c:33:ea:5a:7c:27:89:ce:e5:30:9b:29:f4:6f:df:dc:ce: 0a:31:61:d6:a6:a4:83:90:1d:b3:69:66:5e:a9:df:ab:6d:f9: 7e:c3:f1:cf:82:91:71:72:05:75:22:db:dc:20:a3:f6:3c:b3: ad:90:0c:26:54:f9:08:33:1e:9a:3c:16:0f:a0:d7:9e:a7:f3: c7:b9:98:b3 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICQRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMxMjA1MDk0MTQ4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlZjA1Yy1iYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlv2WKkHaBpyJU3YtPdd7rlcDrQmE0jL7yrChUAudN4U2mAPbI5uxPewzybxl hVeOhrJuHIP0xXjlq/SzeTdsZDAPBrlBZeYQS1i4+XjceHkHRqpg+llgIDZW+iR3 dQ2wBdpwsmma9sKeLhUPqDyXkD9beKpqL2Ea8mrHuBeYv7X/eb+YQwlEjbGlQaRJ iu5LxKKrS2xQIjphf8tS1UM6qRmrT/4wkCeFuDfQfsH048SGqkpelcNHrHl/2hBQ 4YNhFS8/V2G1pKs9SgXywYe/mE6xPNJvZtenSYsshtlJxPnxqvop801GT3+SYIgY UfU6KwaKIFwMrrWdUME4DaFphwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFDLYZjqf jud7k0AM6efvR4JcYpZYMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQjU0MjAyRTJC REY1MTFFQkE5Q0FBMjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAEkMhwDBAFnoa4DBAFnubgwGAQCAAIwEgMHACQAaeAAAAMH ACQBU+AAADANBgkqhkiG9w0BAQsFAAOCAQEAi8oZTGXsmxkqCCqX3ppCfpgdJ+Cq Fm+4NFjf7HYzQ0hrKt9TldoDfq9DCfUD/thXSrHiLjNsb9u1uRfstR/IwD4Jav5Y 25zZL3BWr+Hy8jzRQgBAr5cjh8Fy4eUFKCm1SdsWrZmTh49IOiH1X2HqUNcXfY47 pH4bVpJwuCbEVJbnyPZ6MF0oB7wbZ3Ye1pLRdh7G/g20pvr2c8UTUkMwIm9VGRkv TE/BKObe+QWDD2QyXiSC7pwz6lp8J4nO5TCbKfRv39zOCjFh1qakg5Ads2lmXqnf q235fsPxz4KRcXIFdSLb3CCj9jyzrZAMJlT5CDMemjwWD6DXnqfzx7mYsw== -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org