$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0C6/3FCEBD223FEC11EEADF5D338C4F9AE02/A915A3543FEC11EE99AC0F43C4F9AE02.roa File: A915A3543FEC11EE99AC0F43C4F9AE02.roa (raw, json) Hash identifier: Zcn6K1Xsm3ZgaUeGXnfJEHlcjqEmSwEDrqkEaYWqQ6k= Subject key identifier: 44:85:C1:43:DF:F7:EC:86:58:43:5B:7B:E0:C8:F8:38:01:D5:87:67 Certificate issuer: /CN=A91AF0C6/serialNumber=B86F2B5ED697A121F4F29D5820372CF14055120B Certificate serial: 71 Authority key identifier: B8:6F:2B:5E:D6:97:A1:21:F4:F2:9D:58:20:37:2C:F1:40:55:12:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uG8rXtaXoSH08p1YIDcs8UBVEgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0C6/3FCEBD223FEC11EEADF5D338C4F9AE02/A915A3543FEC11EE99AC0F43C4F9AE02.roa Signing time: Mon 18 Mar 2024 16:57:17 +0000 ROA not before: Mon 18 Mar 2024 16:57:17 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 151646 IP address blocks: 103.248.140.0/23 maxlen: 23 103.248.140.0/24 maxlen: 24 103.248.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0C6/3FCEBD223FEC11EEADF5D338C4F9AE02/uG8rXtaXoSH08p1YIDcs8UBVEgs.crl rsync://rpki.apnic.net/member_repository/A91AF0C6/3FCEBD223FEC11EEADF5D338C4F9AE02/uG8rXtaXoSH08p1YIDcs8UBVEgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uG8rXtaXoSH08p1YIDcs8UBVEgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:18:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0C6/serialNumber=B86F2B5ED697A121F4F29D5820372CF14055120B Validity Not Before: Mar 18 16:57:17 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65f8726d-94c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fc:d0:5f:6a:08:ad:b0:28:d0:5b:be:f5:20: 9b:17:17:e9:16:ac:7c:7d:9f:70:9a:91:e8:fd:46: c5:4c:9c:2f:80:2b:41:04:29:96:d8:f6:31:90:93: 49:05:a0:5d:c1:73:15:b1:39:1e:09:fe:78:b2:79: 20:1f:11:fc:73:45:03:83:a8:fd:47:b6:fb:f7:5b: 31:68:e4:d2:48:a7:4b:d0:ff:22:b6:0a:7d:7c:3b: 67:ad:d1:74:f1:4a:b0:61:02:69:fa:65:d8:3c:da: cd:88:2d:c2:1b:3c:ba:53:85:94:c4:e4:42:c0:8b: 2f:61:6e:f8:76:bd:a7:98:10:ef:5d:85:36:9f:92: 39:6a:3b:4b:49:5f:dc:42:7e:0c:47:58:01:6c:cc: ed:87:ff:9b:c4:a6:f3:ee:23:49:df:15:ce:17:9d: e9:40:e1:7c:ea:07:2b:0a:3d:16:8f:77:3c:c3:a8: bb:9e:1e:65:87:d9:9d:99:cf:2a:6e:40:b4:9a:7f: b9:a6:c9:01:bd:b6:71:77:9a:5e:f6:35:21:7f:e1: a5:0d:5d:67:96:a2:a7:0a:11:6c:8b:01:6c:d5:3d: 2b:41:47:60:71:97:0c:95:0f:bb:0c:e8:5e:68:13: 90:b7:ac:56:88:5c:dc:bf:b0:46:47:51:e7:e6:26: d9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:85:C1:43:DF:F7:EC:86:58:43:5B:7B:E0:C8:F8:38:01:D5:87:67 X509v3 Authority Key Identifier: keyid:B8:6F:2B:5E:D6:97:A1:21:F4:F2:9D:58:20:37:2C:F1:40:55:12:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0C6/3FCEBD223FEC11EEADF5D338C4F9AE02/uG8rXtaXoSH08p1YIDcs8UBVEgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uG8rXtaXoSH08p1YIDcs8UBVEgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0C6/3FCEBD223FEC11EEADF5D338C4F9AE02/A915A3543FEC11EE99AC0F43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.140.0/23 Signature Algorithm: sha256WithRSAEncryption b8:6d:bc:4f:95:55:47:23:a1:b1:a6:76:fd:96:3a:0a:e2:fc: 4c:29:42:2c:55:83:da:a5:77:bc:1d:c7:b5:12:8d:ff:db:5d: 51:e8:8f:d2:2a:ca:02:a6:ad:b0:d9:96:22:0b:c2:1b:e3:c0: a1:58:ae:05:5f:81:21:b5:69:92:6b:9e:9c:7e:fe:78:df:57: 8c:38:42:95:f7:8a:f3:9c:8d:a6:ff:f7:06:3c:dd:f5:b4:1b: 0a:34:d0:5e:a5:32:75:fa:f8:54:f2:ea:ba:12:3d:50:cb:a3: 47:d4:59:91:b1:12:bf:28:2a:5e:11:d3:91:97:0e:ad:6c:26: f6:7b:ed:51:cb:c2:2b:90:74:bd:9b:94:b8:77:18:30:ac:f4: d7:70:4d:b6:cf:a0:55:9c:65:05:73:68:31:6b:be:ab:a3:cb: 3c:7e:a7:3d:08:76:36:bd:7b:2e:13:64:f8:a3:8f:3e:03:9a: c2:5e:9d:3b:e3:c2:1d:b5:00:7c:b7:07:3b:83:60:59:3e:ae: 28:84:20:6d:ba:fa:88:73:96:43:24:95:9a:4a:1e:79:9b:5f: 82:08:c4:26:0d:7c:07:c9:01:d8:77:4b:39:d0:f7:fd:74:fb: 51:3f:35:56:61:8c:0d:fd:ec:a5:59:67:8f:44:e4:38:39:23: 27:4d:82:57 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RjBDNjExMC8GA1UEBRMoQjg2RjJCNUVENjk3QTEyMUY0RjI5RDU4MjAzNzJDRjE0 MDU1MTIwQjAeFw0yNDAzMTgxNjU3MTdaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Zjg3MjZkLTk0YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP/NBfagitsCjQW771IJsXF+kWrHx9n3Cakej9RsVMnC+AK0EEKZbY9jGQk0kF oF3BcxWxOR4J/niyeSAfEfxzRQODqP1Htvv3WzFo5NJIp0vQ/yK2Cn18O2et0XTx SrBhAmn6Zdg82s2ILcIbPLpThZTE5ELAiy9hbvh2vaeYEO9dhTafkjlqO0tJX9xC fgxHWAFszO2H/5vEpvPuI0nfFc4XnelA4XzqBysKPRaPdzzDqLueHmWH2Z2Zzypu QLSaf7mmyQG9tnF3ml72NSF/4aUNXWeWoqcKEWyLAWzVPStBR2BxlwyVD7sM6F5o E5C3rFaIXNy/sEZHUefmJtnXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURIXBQ9/3 7IZYQ1t74Mj4OAHVh2cwHwYDVR0jBBgwFoAUuG8rXtaXoSH08p1YIDcs8UBVEgsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGMEM2LzNGQ0VCRDIyM0ZF QzExRUVBREY1RDMzOEM0RjlBRTAyL3VHOHJYdGFYb1NIMDhwMVlJRGNzOFVCVkVn cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdUc4clh0YVhvU0gwOHAxWUlEY3M4VUJWRWdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBDNi8zRkNFQkQyMjNGRUMxMUVFQURGNUQzMzhDNEY5QUUwMi9BOTE1QTM1NDNG RUMxMUVFOTlBQzBGNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWf4jDANBgkqhkiG9w0BAQsFAAOCAQEAuG28T5VVRyOhsaZ2 /ZY6CuL8TClCLFWD2qV3vB3HtRKN/9tdUeiP0irKAqatsNmWIgvCG+PAoViuBV+B IbVpkmuenH7+eN9XjDhClfeK85yNpv/3Bjzd9bQbCjTQXqUydfr4VPLquhI9UMuj R9RZkbESvygqXhHTkZcOrWwm9nvtUcvCK5B0vZuUuHcYMKz013BNts+gVZxlBXNo MWu+q6PLPH6nPQh2Nr17LhNk+KOPPgOawl6dO+PCHbUAfLcHO4NgWT6uKIQgbbr6 iHOWQySVmkoeeZtfggjEJg18B8kB2HdLOdD3/XT7UT81VmGMDf3spVlnj0TkODkj J02CVw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:30 2024 by rpki-client on console-ams.rpki-client.org