$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F7422058327711EDA26C6B10C4F9AE02.roa File: F7422058327711EDA26C6B10C4F9AE02.roa (raw, json) Hash identifier: 1GaEAJ3VRmHtu6ppRBLFmheNDPZhDLwfCvk/se9x3Es= Subject key identifier: 86:BA:09:95:F2:52:63:1F:60:D1:21:04:85:B3:BA:9E:75:19:78:F5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3F3B Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F7422058327711EDA26C6B10C4F9AE02.roa Signing time: Tue 12 Sep 2023 02:44:26 +0000 ROA not before: Tue 12 Sep 2023 02:44:26 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 63760 IP address blocks: 103.110.84.0/22 maxlen: 22 103.221.220.0/22 maxlen: 22 116.118.48.0/22 maxlen: 24 116.118.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16187 (0x3f3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:44:26 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffd08a-ef6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9b:5e:46:24:65:40:b6:25:be:68:31:91:c2: af:a2:50:31:17:2f:60:1d:8e:4f:04:13:01:85:c3: ea:65:db:d0:6f:8f:b9:3b:a4:c4:83:67:1b:18:23: fd:e2:a3:be:55:2b:5c:a0:b3:88:7e:51:b6:b6:e3: 95:c2:cc:80:3c:3f:33:36:3e:73:f9:a5:d5:ce:3f: e1:c5:d3:4a:b9:12:d7:09:b9:f6:d4:aa:b6:4f:99: 4d:11:cd:8b:5d:7b:92:47:f8:21:bd:c1:53:99:28: 41:04:d2:bd:ba:42:c1:8c:4a:64:b8:7f:a0:f7:c3: 60:7d:bf:1e:f7:58:4e:10:1f:b0:aa:41:42:6d:29: 22:6c:25:fb:61:32:71:63:40:2d:07:cd:fe:14:43: 14:93:1d:41:9c:15:99:a7:95:da:ff:55:76:56:cc: 47:d3:81:13:87:6a:c7:f3:bb:92:d4:9a:af:0a:3c: da:95:43:09:af:82:f1:a1:03:28:2c:d8:39:9c:0b: b3:4a:42:87:7e:a4:2c:fd:d1:62:22:58:30:91:0a: 6e:cf:91:c1:f7:20:7c:e3:a3:cd:2e:d8:51:73:9a: 32:cf:b3:da:c5:df:c3:f1:07:2d:01:ca:12:41:c2: 9f:19:9a:4f:25:32:4c:a7:4d:2c:57:07:64:82:81: d3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:BA:09:95:F2:52:63:1F:60:D1:21:04:85:B3:BA:9E:75:19:78:F5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/F7422058327711EDA26C6B10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.84.0/22 103.221.220.0/22 116.118.48.0/22 116.118.84.0/22 Signature Algorithm: sha256WithRSAEncryption 46:70:9e:34:9a:ee:56:62:31:1a:98:2e:e5:14:53:ef:8a:80: 5f:6c:d1:4e:ff:9f:32:0a:29:ee:7c:da:32:67:0b:56:91:11: 60:f1:a4:49:76:7f:6e:3d:a5:14:cb:83:ce:5b:0c:94:68:6f: 78:4d:e7:d1:b5:a5:4e:5f:f2:af:47:c4:76:d0:2b:5e:d5:80: c5:b9:bd:39:3f:40:7e:04:28:96:f1:eb:83:25:31:5f:0f:0d: 67:dc:5a:b7:52:df:cf:4c:fa:1a:de:fe:32:d6:45:a3:ad:71: 00:7d:73:8e:08:d5:e5:0f:9d:1b:92:85:38:67:27:1b:a5:56: 40:55:8e:a8:98:62:d5:b2:b7:44:d9:c8:a9:86:38:42:2f:c4: c7:dc:45:98:81:c5:b7:39:1b:11:92:d1:ee:65:39:2c:4d:55: e4:0a:db:4b:db:3a:13:60:67:d9:32:a2:f2:ec:1f:a8:fd:d5: 06:af:02:70:a3:fc:36:e0:9a:5d:b5:ec:4f:e2:ce:51:aa:d9: 56:82:a1:f8:95:4e:c4:3b:3e:93:c4:15:64:d9:ae:ec:38:7b: 40:67:cb:62:38:6a:1d:25:9e:d3:67:ed:f4:7d:9a:81:c7:62: 80:e1:bc:61:55:a8:0f:67:ba:10:8c:1c:bb:f7:1d:17:56:00: 60:81:62:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICPzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0NDI2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmZDA4YS1lZjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5teRiRlQLYlvmgxkcKvolAxFy9gHY5PBBMBhcPqZdvQb4+5O6TEg2cbGCP9 4qO+VStcoLOIflG2tuOVwsyAPD8zNj5z+aXVzj/hxdNKuRLXCbn21Kq2T5lNEc2L XXuSR/ghvcFTmShBBNK9ukLBjEpkuH+g98Ngfb8e91hOEB+wqkFCbSkibCX7YTJx Y0AtB83+FEMUkx1BnBWZp5Xa/1V2VsxH04ETh2rH87uS1JqvCjzalUMJr4LxoQMo LNg5nAuzSkKHfqQs/dFiIlgwkQpuz5HB9yB846PNLthRc5oyz7Paxd/D8QctAcoS QcKfGZpPJTJMp00sVwdkgoHTOQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFIa6CZXy UmMfYNEhBIWzup51GXj1MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRjc0MjIwNTgz Mjc3MTFFREEyNkM2QjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJnblQDBAJn3dwDBAJ0djADBAJ0dlQwDQYJKoZIhvcNAQEL BQADggEBAEZwnjSa7lZiMRqYLuUUU++KgF9s0U7/nzIKKe582jJnC1aREWDxpEl2 f249pRTLg85bDJRob3hN59G1pU5f8q9HxHbQK17VgMW5vTk/QH4EKJbx64MlMV8P DWfcWrdS389M+hre/jLWRaOtcQB9c44I1eUPnRuShThnJxulVkBVjqiYYtWyt0TZ yKmGOEIvxMfcRZiBxbc5GxGS0e5lOSxNVeQK20vbOhNgZ9kyovLsH6j91QavAnCj /Dbgml217E/izlGq2VaCofiVTsQ7PpPEFWTZruw4e0Bny2I4ah0lntNn7fR9moHH YoDhvGFVqA9nuhCMHLv3HRdWAGCBYjI= -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org