$ rpki-client -vvf rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/1F99EBD4C66F11EAA0B1B019C4F9AE02.roa File: 1F99EBD4C66F11EAA0B1B019C4F9AE02.roa (raw, json) Hash identifier: aS2kJAIgKwjVL628c62JVjCg9McuhuvLe2rzzSlBMa8= Subject key identifier: 3A:7D:51:AF:F3:D0:5C:21:37:09:F9:A0:1A:7B:C9:D8:0D:89:28:56 Certificate issuer: /CN=A91B653B/serialNumber=BCAE5732EF219732B49AC8284DB1814E92C86B11 Certificate serial: 070F Authority key identifier: BC:AE:57:32:EF:21:97:32:B4:9A:C8:28:4D:B1:81:4E:92:C8:6B:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/1F99EBD4C66F11EAA0B1B019C4F9AE02.roa Signing time: Tue 06 Jun 2023 23:35:33 +0000 ROA not before: Tue 06 Jun 2023 23:35:33 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.150.161.0/24 maxlen: 24 103.161.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.crl rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1807 (0x70f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B653B/serialNumber=BCAE5732EF219732B49AC8284DB1814E92C86B11 Validity Not Before: Jun 6 23:35:33 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647fc2c4-ab3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fd:c1:8e:7a:d0:79:a2:da:5b:3e:00:64:d6: b4:8e:34:10:f1:b7:f5:63:5f:a6:9f:c2:b7:8d:61: 9c:bf:bf:1e:62:16:46:67:b6:9d:26:f0:1c:e8:73: fc:50:0e:88:f5:52:31:08:1e:34:f5:37:01:22:a0: 03:e2:0e:3b:de:db:f2:64:bf:81:22:0e:26:a1:bd: 47:a3:fc:00:3e:a1:9e:3d:d8:1a:19:4f:07:4c:26: bc:08:16:bf:92:35:fb:68:ca:7b:74:90:98:3f:9e: 85:2c:8d:59:4b:9b:1f:ef:1f:74:a3:46:8e:f4:1f: 2a:72:79:db:a5:58:93:16:5c:42:0a:4a:2d:9b:30: 7b:06:c0:52:50:23:45:06:fc:ef:2f:35:2e:3d:a8: ff:99:c6:9d:cd:fd:8e:af:3c:b1:c5:37:5e:59:b7: 0c:ba:32:01:a1:89:19:d8:14:ac:00:28:99:6c:2c: bc:b7:db:60:e9:3a:17:b3:76:5b:1f:08:cc:da:16: 04:a3:53:c3:62:53:ea:ff:f7:9b:90:39:0d:25:d7: 31:bf:4d:04:43:aa:17:46:e8:d1:92:b7:b9:6f:62: 5a:0e:04:a5:2e:51:84:63:30:98:f7:0e:3e:46:3a: 88:2e:61:86:08:a5:ac:8f:74:a9:27:9e:27:ca:e8: cd:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:7D:51:AF:F3:D0:5C:21:37:09:F9:A0:1A:7B:C9:D8:0D:89:28:56 X509v3 Authority Key Identifier: keyid:BC:AE:57:32:EF:21:97:32:B4:9A:C8:28:4D:B1:81:4E:92:C8:6B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/1F99EBD4C66F11EAA0B1B019C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.161.0/24 103.161.77.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:34:39:53:96:49:89:d6:03:28:13:59:66:23:c9:94:f1:19: 48:90:07:2f:bf:4a:7f:57:df:b6:b3:0a:71:07:96:b0:6d:57: 3a:68:8c:42:3a:40:98:fd:f6:97:96:4d:cd:05:36:77:3d:b4: a0:07:f1:f0:68:6a:ba:89:46:4d:cb:b6:b4:ff:f9:4f:15:ac: 84:15:2b:15:a6:8e:49:d5:1a:93:78:1a:c9:08:5b:f5:9d:cd: 09:05:9f:84:16:b7:7b:b7:8b:05:58:44:34:c6:47:4a:c7:1b: df:ba:aa:b3:cc:b6:88:4b:6a:ad:7b:2d:f9:9c:77:ab:78:62: 94:31:ce:48:f7:da:ee:5d:99:a8:89:8f:51:41:5f:4f:54:52: bd:a7:91:62:5f:33:48:44:1c:e5:e9:54:94:a4:5b:a9:43:42: 4f:a6:9f:a1:73:ce:a3:0e:ab:79:e1:d7:3f:08:47:fd:ed:e9: c6:aa:8d:56:5f:93:9b:71:71:9f:a8:a8:ec:be:f3:1c:3b:9b: ee:b5:c9:26:88:64:41:bc:23:b6:50:6f:64:a6:b7:2b:ad:c2: 3e:4d:63:a5:a5:f4:5a:94:30:fa:7e:49:ba:82:40:e4:cb:ab: 5e:11:9b:d8:29:b4:85:39:b5:2c:a9:8c:ea:1f:93:50:24:8a: 6a:35:d9:54 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1M0IxMTAvBgNVBAUTKEJDQUU1NzMyRUYyMTk3MzJCNDlBQzgyODREQjE4MTRF OTJDODZCMTEwHhcNMjMwNjA2MjMzNTMzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdmYzJjNC1hYjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1P3BjnrQeaLaWz4AZNa0jjQQ8bf1Y1+mn8K3jWGcv78eYhZGZ7adJvAc6HP8 UA6I9VIxCB409TcBIqAD4g473tvyZL+BIg4mob1Ho/wAPqGePdgaGU8HTCa8CBa/ kjX7aMp7dJCYP56FLI1ZS5sf7x90o0aO9B8qcnnbpViTFlxCCkotmzB7BsBSUCNF BvzvLzUuPaj/mcadzf2OrzyxxTdeWbcMujIBoYkZ2BSsACiZbCy8t9tg6ToXs3Zb HwjM2hYEo1PDYlPq//ebkDkNJdcxv00EQ6oXRujRkre5b2JaDgSlLlGEYzCY9w4+ RjqILmGGCKWsj3SpJ54nyujNQwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDp9Ua/z 0FwhNwn5oBp7ydgNiShWMB8GA1UdIwQYMBaAFLyuVzLvIZcytJrIKE2xgU6SyGsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjUzQi8yOTM4M0NERUMy MEMxMUVBQjgxMkEwMUFDNEY5QUUwMi92SzVYTXU4aGx6SzBtc2dvVGJHQlRwTElh eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZLNVhNdThobHpLMG1zZ29UYkdCVHBMSWF4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1M0IvMjkzODNDREVDMjBDMTFFQUI4MTJBMDFBQzRGOUFFMDIvMUY5OUVCRDRD NjZGMTFFQUEwQjFCMDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnlqEDBABnoU0wDQYJKoZIhvcNAQELBQADggEBAD00OVOW SYnWAygTWWYjyZTxGUiQBy+/Sn9X37azCnEHlrBtVzpojEI6QJj99peWTc0FNnc9 tKAH8fBoarqJRk3LtrT/+U8VrIQVKxWmjknVGpN4GskIW/WdzQkFn4QWt3u3iwVY RDTGR0rHG9+6qrPMtohLaq17Lfmcd6t4YpQxzkj32u5dmaiJj1FBX09UUr2nkWJf M0hEHOXpVJSkW6lDQk+mn6FzzqMOq3nh1z8IR/3t6caqjVZfk5txcZ+oqOy+8xw7 m+61ySaIZEG8I7ZQb2Smtyutwj5NY6Wl9FqUMPp+SbqCQOTLq14Rm9gptIU5tSyp jOofk1Akimo12VQ= -----END CERTIFICATE-----Generated at Wed Apr 24 23:34:30 2024 by rpki-client on console-ams.rpki-client.org