$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa File: AF91ADB42CE211EC8664D47EC4F9AE02.roa (raw, json) Hash identifier: Wn0MVgMwMs2RB0Rd+sm8BzCBL7NOaKO7j/pzgseZR4o= Subject key identifier: 52:0F:DD:97:2A:52:1F:B6:A3:12:DB:F5:41:8C:92:2D:6E:8E:9A:3D Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 0373 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa Signing time: Sun 13 Aug 2023 01:22:45 +0000 ROA not before: Sun 13 Aug 2023 01:22:45 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.70.49.0/24 maxlen: 24 103.70.51.0/24 maxlen: 24 182.54.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:15:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 883 (0x373) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Aug 13 01:22:45 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d83065-330e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1a:4b:f0:cf:7c:63:8c:da:69:5e:43:9a:28: e2:d7:af:1e:6f:c9:b5:11:0c:f5:8e:fd:ce:9c:14: f6:54:8f:45:00:76:a2:8f:c1:66:00:49:49:4e:6b: 7e:11:87:5d:0f:1a:db:b0:1b:9e:0a:6c:50:db:6b: 7c:52:43:49:4d:b6:5a:01:23:fa:eb:8e:d0:3b:63: cc:9f:a7:d9:e5:d4:16:55:b2:5a:62:7a:72:9a:0b: 41:d3:0b:b8:1c:34:97:71:20:fa:af:fe:1d:10:69: 8b:9a:a7:b4:2f:55:19:3e:60:2f:ff:32:e4:c4:d8: 24:66:38:33:ea:d5:78:8d:9a:11:5d:b1:8f:44:26: 2c:53:05:c4:ce:65:fc:d1:e0:ea:30:fa:0b:45:64: b2:84:40:14:56:84:e1:88:43:1d:d7:89:4e:4e:9a: bd:66:b3:f2:28:12:2e:f4:67:19:08:af:53:3a:60: 35:31:36:80:a0:d7:b9:ff:33:30:80:16:4d:77:d5: 38:ae:72:5f:90:c7:7d:9b:db:5b:f1:5a:8a:96:4f: cf:f6:ea:ed:00:28:29:9e:df:f9:5c:95:67:79:f2: d2:83:b7:2f:0b:5d:d9:09:39:52:93:00:f8:ec:1e: 42:9a:53:7d:ea:eb:a5:0f:8f:4a:a5:aa:4a:e3:d6: 1c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0F:DD:97:2A:52:1F:B6:A3:12:DB:F5:41:8C:92:2D:6E:8E:9A:3D X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.49.0/24 103.70.51.0/24 182.54.135.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:c3:60:c3:c4:1c:7b:2c:5b:cd:e7:9b:fe:53:25:c9:e9:a6: 81:a0:69:f8:fc:33:3a:0c:d9:55:74:6d:5f:0f:59:44:7d:e8: 5a:59:47:79:d0:a2:bb:4c:7c:57:d3:78:17:70:37:26:6c:0d: e7:96:c1:8f:9d:f0:90:d5:9f:bb:52:d5:39:65:00:5e:92:1c: 3f:00:60:e1:fd:49:fb:0c:16:75:84:1a:65:f6:a7:c7:86:95: ff:1a:12:2b:ea:61:47:08:83:6a:3b:97:7a:17:23:e2:02:b5: 3f:1e:0b:db:bb:bd:5f:2a:f2:2e:fa:84:dd:30:29:ac:07:c4: e1:c7:9a:76:a1:27:6b:1c:81:0b:cc:28:40:d7:ea:a1:ec:9b: 40:69:52:12:25:36:d6:1b:03:23:81:0b:3c:40:2e:d7:9a:b9: 6a:d7:cb:c1:f7:8e:35:59:13:aa:c8:91:1a:5a:ea:70:7a:00: cf:8b:a7:e8:a1:76:68:ed:83:96:a6:cd:7d:4c:21:58:39:eb: e3:3b:cb:ee:56:71:49:88:29:a8:f6:d5:68:7e:79:04:e0:73: c7:78:21:60:5e:be:0f:6f:a4:4c:eb:03:3a:a1:fd:5b:19:2d: 74:b7:95:d4:8c:34:62:7f:94:f2:4b:f9:24:f8:7d:36:62:8f: 1f:a1:2e:84 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjMwODEzMDEyMjQ1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ4MzA2NS0zMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxpL8M98Y4zaaV5Dmiji168eb8m1EQz1jv3OnBT2VI9FAHaij8FmAElJTmt+ EYddDxrbsBueCmxQ22t8UkNJTbZaASP6647QO2PMn6fZ5dQWVbJaYnpymgtB0wu4 HDSXcSD6r/4dEGmLmqe0L1UZPmAv/zLkxNgkZjgz6tV4jZoRXbGPRCYsUwXEzmX8 0eDqMPoLRWSyhEAUVoThiEMd14lOTpq9ZrPyKBIu9GcZCK9TOmA1MTaAoNe5/zMw gBZNd9U4rnJfkMd9m9tb8VqKlk/P9urtACgpnt/5XJVnefLSg7cvC13ZCTlSkwD4 7B5CmlN96uulD49KpapK49YclwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFIP3Zcq Uh+2oxLb9UGMki1ujpo9MB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvQUY5MUFEQjQy Q0UyMTFFQzg2NjRENDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnRjEDBABnRjMDBAC2NocwDQYJKoZIhvcNAQELBQADggEB AFvDYMPEHHssW83nm/5TJcnppoGgafj8MzoM2VV0bV8PWUR96FpZR3nQortMfFfT eBdwNyZsDeeWwY+d8JDVn7tS1TllAF6SHD8AYOH9SfsMFnWEGmX2p8eGlf8aEivq YUcIg2o7l3oXI+ICtT8eC9u7vV8q8i76hN0wKawHxOHHmnahJ2scgQvMKEDX6qHs m0BpUhIlNtYbAyOBCzxALteauWrXy8H3jjVZE6rIkRpa6nB6AM+Lp+ihdmjtg5am zX1MIVg56+M7y+5WcUmIKaj21Wh+eQTgc8d4IWBevg9vpEzrAzqh/VsZLXS3ldSM NGJ/lPJL+ST4fTZijx+hLoQ= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:30 2024 by rpki-client on console-ams.rpki-client.org