$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/C8FB0DB8616D11EB928F0250C4F9AE02.roa File: C8FB0DB8616D11EB928F0250C4F9AE02.roa (raw, json) Hash identifier: raDf5nI3V68JBmmz083l3v3O8PqUVHaJvJzKxBye3rU= Subject key identifier: 5B:DF:1B:62:88:96:1F:CC:E4:68:77:DC:3D:61:C0:0A:50:AB:52:EB Certificate issuer: /CN=A91B3062/serialNumber=E44659EA6FDCD343C6C1E7FFD014A5B07818968B Certificate serial: 058B Authority key identifier: E4:46:59:EA:6F:DC:D3:43:C6:C1:E7:FF:D0:14:A5:B0:78:18:96:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/C8FB0DB8616D11EB928F0250C4F9AE02.roa Signing time: Sun 22 Oct 2023 23:31:35 +0000 ROA not before: Sun 22 Oct 2023 23:31:35 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141231 IP address blocks: 103.156.222.0/23 maxlen: 23 103.156.222.0/24 maxlen: 24 103.156.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.crl rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1419 (0x58b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3062/serialNumber=E44659EA6FDCD343C6C1E7FFD014A5B07818968B Validity Not Before: Oct 22 23:31:35 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6535b0d6-3b9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:26:fc:48:d9:34:5d:e7:47:ed:8f:35:84:41: 4d:b2:64:b8:43:d8:c0:91:dc:d8:a4:c3:e9:fc:96: 42:a3:86:ea:63:82:11:c5:0a:04:76:53:ab:6d:22: 50:b1:b7:bb:ef:8d:c3:52:9a:17:50:dd:a9:1a:f6: ac:3c:f9:80:17:9d:d3:c6:2d:7c:9c:37:46:8f:49: 37:e6:bd:af:c5:cd:30:5a:c8:1c:78:55:3b:b3:5b: 48:ec:2c:ec:a5:9d:71:92:c3:1c:b3:85:0d:5d:1c: 5d:e4:eb:e4:17:c9:1f:a9:84:ce:38:a0:10:f0:7d: f6:52:8b:37:1c:4e:42:ec:7b:4d:95:23:13:07:65: 2e:a6:62:d7:ad:9e:43:5f:0d:88:a5:12:a4:d2:55: cc:5a:64:df:19:5f:f2:79:24:89:e7:84:6b:f0:79: a4:45:fd:1d:c2:47:e6:30:90:99:96:47:87:90:34: 8f:34:31:c3:31:85:c7:fb:9c:eb:f7:25:a1:1c:49: c6:76:13:e9:bc:2b:ba:d8:2c:11:66:c9:74:d2:b4: 92:a9:a9:5a:22:63:a2:4d:8a:f3:46:5f:fc:76:39: cc:90:b6:63:ee:2c:61:3e:af:a3:3e:60:4e:62:91: 0f:7d:71:51:57:4a:ce:90:8c:cd:ce:39:2c:7b:9a: 9b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:DF:1B:62:88:96:1F:CC:E4:68:77:DC:3D:61:C0:0A:50:AB:52:EB X509v3 Authority Key Identifier: keyid:E4:46:59:EA:6F:DC:D3:43:C6:C1:E7:FF:D0:14:A5:B0:78:18:96:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/C8FB0DB8616D11EB928F0250C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.222.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:a7:d1:fe:97:73:5f:7d:4e:25:52:a1:13:eb:56:f3:6a:43: 53:08:d9:1d:8d:e3:b0:49:04:86:97:f7:a3:c6:f0:e1:4c:69: d0:8a:c4:66:30:e3:f9:de:fa:d8:50:e3:c5:04:c0:85:d3:b7: de:c0:d1:74:1e:a7:8a:1a:6d:ff:2a:81:d5:a2:12:2f:93:55: 6f:27:29:11:10:f8:86:b8:f8:bd:09:54:fc:c9:2c:65:63:a8: b4:ca:64:3c:2e:eb:77:f1:85:05:bd:87:8d:2f:82:99:28:56: f7:fd:e4:05:f1:2b:1a:90:01:77:d5:cb:fb:e1:d6:0d:67:66: 20:e1:01:e5:f7:3a:33:ba:93:8d:89:6a:b5:58:b2:4e:51:60: e9:e6:bd:76:2c:92:84:5a:d4:18:da:1a:66:3e:a0:a5:3a:4d: 4d:58:24:7a:53:fc:9e:cc:1c:e6:00:64:07:57:49:65:dd:94: 6b:94:28:3b:9c:e3:71:a9:5d:44:3b:3c:04:15:c9:a0:50:cf: 24:8e:b4:d9:25:62:61:61:30:79:8d:75:aa:8f:32:68:d7:e0: 36:dc:fb:15:0c:ab:7e:aa:92:53:94:f2:3a:54:de:f5:cd:18: d1:e1:33:27:a4:e5:e4:81:ea:67:df:0f:41:73:eb:52:b8:f0: 25:a5:e3:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMwNjIxMTAvBgNVBAUTKEU0NDY1OUVBNkZEQ0QzNDNDNkMxRTdGRkQwMTRBNUIw NzgxODk2OEIwHhcNMjMxMDIyMjMzMTM1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM1YjBkNi0zYjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Sb8SNk0XedH7Y81hEFNsmS4Q9jAkdzYpMPp/JZCo4bqY4IRxQoEdlOrbSJQ sbe7743DUpoXUN2pGvasPPmAF53Txi18nDdGj0k35r2vxc0wWsgceFU7s1tI7Czs pZ1xksMcs4UNXRxd5OvkF8kfqYTOOKAQ8H32Uos3HE5C7HtNlSMTB2UupmLXrZ5D Xw2IpRKk0lXMWmTfGV/yeSSJ54Rr8HmkRf0dwkfmMJCZlkeHkDSPNDHDMYXH+5zr 9yWhHEnGdhPpvCu62CwRZsl00rSSqalaImOiTYrzRl/8djnMkLZj7ixhPq+jPmBO YpEPfXFRV0rOkIzNzjkse5qbcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFvfG2KI lh/M5Gh33D1hwApQq1LrMB8GA1UdIwQYMBaAFORGWepv3NNDxsHn/9AUpbB4GJaL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzA2Mi85ODgwODlFNDYx NkIxMUVCQTY0Nzg3NEFDNEY5QUUwMi81RVpaNm1fYzAwUEd3ZWZfMEJTbHNIZ1ls b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVFWlo2bV9jMDBQR3dlZl8wQlNsc0hnWWxvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjMwNjIvOTg4MDg5RTQ2MTZCMTFFQkE2NDc4NzRBQzRGOUFFMDIvQzhGQjBEQjg2 MTZEMTFFQjkyOEYwMjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnN4wDQYJKoZIhvcNAQELBQADggEBAD6n0f6Xc199TiVS oRPrVvNqQ1MI2R2N47BJBIaX96PG8OFMadCKxGYw4/ne+thQ48UEwIXTt97A0XQe p4oabf8qgdWiEi+TVW8nKREQ+Ia4+L0JVPzJLGVjqLTKZDwu63fxhQW9h40vgpko Vvf95AXxKxqQAXfVy/vh1g1nZiDhAeX3OjO6k42JarVYsk5RYOnmvXYskoRa1Bja GmY+oKU6TU1YJHpT/J7MHOYAZAdXSWXdlGuUKDuc43GpXUQ7PAQVyaBQzySOtNkl YmFhMHmNdaqPMmjX4Dbc+xUMq36qklOU8jpU3vXNGNHhMyek5eSB6mffD0Fz61K4 8CWl4+o= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:18 2024 by rpki-client on console-ams.rpki-client.org