$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6D28/61D453101D9211E29C5F3AF508B02CD2/E1F7FE5C091C11EABCF80D55C4F9AE02.roa File: E1F7FE5C091C11EABCF80D55C4F9AE02.roa (raw, json) Hash identifier: BcTRn5EfUdghEYe/YZiNeeDPqkT/Bf8AcojVAkwa34A= Subject key identifier: 4C:D4:B3:1E:1D:59:04:99:E3:4E:2B:B4:BE:3D:68:91:EC:6A:F1:40 Certificate issuer: /CN=A91B6D28/serialNumber=9A4DAF8FCA85E193D34EA49597996DED17CBDF1E Certificate serial: 334C Authority key identifier: 9A:4D:AF:8F:CA:85:E1:93:D3:4E:A4:95:97:99:6D:ED:17:CB:DF:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mk2vj8qF4ZPTTqSVl5lt7RfL3x4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6D28/61D453101D9211E29C5F3AF508B02CD2/E1F7FE5C091C11EABCF80D55C4F9AE02.roa Signing time: Thu 31 Aug 2023 15:00:43 +0000 ROA not before: Thu 31 Aug 2023 15:00:43 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38592 IP address blocks: 101.2.160.0/21 maxlen: 24 103.5.232.0/22 maxlen: 24 119.10.168.0/22 maxlen: 22 119.10.168.0/24 maxlen: 24 119.10.169.0/24 maxlen: 24 119.10.170.0/24 maxlen: 24 119.10.171.0/24 maxlen: 24 119.10.172.0/22 maxlen: 24 163.47.84.0/22 maxlen: 24 202.65.168.0/21 maxlen: 24 203.80.188.0/22 maxlen: 24 2402:2300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6D28/61D453101D9211E29C5F3AF508B02CD2/mk2vj8qF4ZPTTqSVl5lt7RfL3x4.crl rsync://rpki.apnic.net/member_repository/A91B6D28/61D453101D9211E29C5F3AF508B02CD2/mk2vj8qF4ZPTTqSVl5lt7RfL3x4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mk2vj8qF4ZPTTqSVl5lt7RfL3x4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13132 (0x334c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6D28/serialNumber=9A4DAF8FCA85E193D34EA49597996DED17CBDF1E Validity Not Before: Aug 31 15:00:43 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0ab1b-fdb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bb:a6:2f:26:06:27:5c:41:73:57:6d:f8:05: a5:4c:75:50:ed:bc:1b:3d:df:c9:03:08:3c:09:ab: 13:55:8a:b9:54:47:3d:c7:2d:a0:c9:2a:83:c7:7e: 8d:08:a7:96:37:f0:65:ac:99:52:16:45:1f:84:73: b9:be:55:a3:f6:97:3c:cf:ac:40:c6:aa:86:f1:c4: c7:ff:33:49:f6:74:6c:fa:a0:ea:40:49:b5:ec:9c: 61:2a:21:e9:99:1d:57:3d:68:92:a0:f7:f2:cc:8d: 84:af:0a:78:bb:bb:bc:e6:64:1c:09:05:a0:a5:42: b4:5e:5f:bc:60:a9:5e:d3:c4:88:ba:88:a3:bd:bf: 1a:a8:b3:9c:45:88:93:24:98:52:da:3a:cd:09:fe: 8f:49:7e:b2:d7:5c:3e:4e:47:dc:45:32:e0:76:f9: 90:af:64:98:84:d0:77:e6:92:d8:7c:f9:05:ff:4f: 72:48:0c:07:88:40:c0:32:20:de:6e:b4:a1:68:2d: 39:14:76:da:7c:de:02:e4:fd:4d:59:1b:54:9e:d6: e4:51:24:f8:7d:5d:d3:2f:09:0d:6d:3f:f5:10:11: 9f:e6:4c:eb:25:b3:d8:0a:05:9a:b0:f6:95:3e:7c: ef:b6:7a:65:49:44:18:b4:5b:94:c1:03:d2:bb:dd: 75:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D4:B3:1E:1D:59:04:99:E3:4E:2B:B4:BE:3D:68:91:EC:6A:F1:40 X509v3 Authority Key Identifier: keyid:9A:4D:AF:8F:CA:85:E1:93:D3:4E:A4:95:97:99:6D:ED:17:CB:DF:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6D28/61D453101D9211E29C5F3AF508B02CD2/mk2vj8qF4ZPTTqSVl5lt7RfL3x4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mk2vj8qF4ZPTTqSVl5lt7RfL3x4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6D28/61D453101D9211E29C5F3AF508B02CD2/E1F7FE5C091C11EABCF80D55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.2.160.0/21 103.5.232.0/22 119.10.168.0/21 163.47.84.0/22 202.65.168.0/21 203.80.188.0/22 IPv6: 2402:2300::/32 Signature Algorithm: sha256WithRSAEncryption b6:22:a9:fd:8e:cc:06:7c:30:02:01:4e:85:95:a2:59:27:ed: 45:10:01:63:0e:e6:96:11:20:48:a7:15:21:a6:6e:47:d3:d3: 31:b4:2b:df:0c:91:13:f4:3a:e7:45:f7:9e:cc:58:91:70:a7: 8d:35:c0:7c:58:d3:af:79:6c:d6:5b:26:44:1e:80:75:18:21: 81:ff:85:2b:04:f8:b9:0a:d8:2a:51:93:9e:da:46:0f:67:e1: f8:cd:ee:0e:6f:ab:59:eb:e2:8c:46:56:6d:52:e5:4f:09:73: 66:c5:e5:56:84:08:04:45:f1:95:6a:1f:19:33:d2:b8:1d:04: c7:66:fa:3d:1e:80:a7:1f:cd:f3:1c:6d:04:54:30:6d:11:3a: 4a:11:3d:48:70:21:b6:b4:d7:68:c4:20:a5:aa:fe:4f:d0:29: 3e:c7:29:83:9a:f7:8a:79:c1:e2:c6:0e:d2:b9:6e:85:c3:78: 04:e9:c1:71:61:a8:f3:a3:24:c1:1e:52:9c:0b:b0:0f:44:f1: 7a:cb:91:9b:56:23:8b:25:4d:25:ca:bc:96:21:06:66:55:ce: f9:85:f5:ad:93:b8:ae:41:25:23:fe:e1:c7:36:6d:36:18:6d: eb:6b:2b:96:2b:ea:97:57:18:b9:0c:8c:3e:cb:a2:dd:04:9d: 88:13:a2:3c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICM0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZEMjgxMTAvBgNVBAUTKDlBNERBRjhGQ0E4NUUxOTNEMzRFQTQ5NTk3OTk2REVE MTdDQkRGMUUwHhcNMjMwODMxMTUwMDQzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwYWIxYi1mZGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbumLyYGJ1xBc1dt+AWlTHVQ7bwbPd/JAwg8CasTVYq5VEc9xy2gySqDx36N CKeWN/BlrJlSFkUfhHO5vlWj9pc8z6xAxqqG8cTH/zNJ9nRs+qDqQEm17JxhKiHp mR1XPWiSoPfyzI2Erwp4u7u85mQcCQWgpUK0Xl+8YKle08SIuoijvb8aqLOcRYiT JJhS2jrNCf6PSX6y11w+TkfcRTLgdvmQr2SYhNB35pLYfPkF/09ySAwHiEDAMiDe brShaC05FHbafN4C5P1NWRtUntbkUST4fV3TLwkNbT/1EBGf5kzrJbPYCgWasPaV PnzvtnplSUQYtFuUwQPSu911/QIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFEzUsx4d WQSZ404rtL49aJHsavFAMB8GA1UdIwQYMBaAFJpNr4/KheGT006klZeZbe0Xy98e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkQyOC82MUQ0NTMxMDFE OTIxMUUyOUM1RjNBRjUwOEIwMkNEMi9tazJ2ajhxRjRaUFRUcVNWbDVsdDdSZkwz eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21rMnZqOHFGNFpQVFRxU1ZsNWx0N1JmTDN4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZEMjgvNjFENDUzMTAxRDkyMTFFMjlDNUYzQUY1MDhCMDJDRDIvRTFGN0ZFNUMw OTFDMTFFQUJDRjgwRDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBANlAqADBAJnBegDBAN3CqgDBAKjL1QDBAPKQagDBALLULww DQQCAAIwBwMFACQCIwAwDQYJKoZIhvcNAQELBQADggEBALYiqf2OzAZ8MAIBToWV olkn7UUQAWMO5pYRIEinFSGmbkfT0zG0K98MkRP0OudF957MWJFwp401wHxY0695 bNZbJkQegHUYIYH/hSsE+LkK2CpRk57aRg9n4fjN7g5vq1nr4oxGVm1S5U8Jc2bF 5VaECARF8ZVqHxkz0rgdBMdm+j0egKcfzfMcbQRUMG0ROkoRPUhwIba012jEIKWq /k/QKT7HKYOa94p5weLGDtK5boXDeATpwXFhqPOjJMEeUpwLsA9E8XrLkZtWI4sl TSXKvJYhBmZVzvmF9a2TuK5BJSP+4cc2bTYYbetrK5Yr6pdXGLkMjD7Lot0EnYgT ojw= -----END CERTIFICATE-----Generated at Fri May 31 16:41:42 2024 by rpki-client on console-ams.rpki-client.org