$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/1779BD7C3B2311EE91010B3EC4F9AE02.roa File: 1779BD7C3B2311EE91010B3EC4F9AE02.roa (raw, json) Hash identifier: J4G9DIu5Hso65OgE3YGy1W66Uc1WAcbFtVsy2iofxxo= Subject key identifier: 64:02:77:72:53:C4:25:1F:F4:B2:AB:98:96:F9:09:DF:E6:E5:14:A1 Certificate issuer: /CN=A91BB35A/serialNumber=1A60725AE4045896E304083003213EEA95267ECF Certificate serial: 2C Authority key identifier: 1A:60:72:5A:E4:04:58:96:E3:04:08:30:03:21:3E:EA:95:26:7E:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmByWuQEWJbjBAgwAyE-6pUmfs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/1779BD7C3B2311EE91010B3EC4F9AE02.roa Signing time: Sun 29 Oct 2023 05:57:21 +0000 ROA not before: Sun 29 Oct 2023 05:57:21 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132448 IP address blocks: 103.21.17.0/24 maxlen: 24 103.97.230.0/24 maxlen: 24 2001:df1:af00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.crl rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmByWuQEWJbjBAgwAyE-6pUmfs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB35A/serialNumber=1A60725AE4045896E304083003213EEA95267ECF Validity Not Before: Oct 29 05:57:21 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653df440-2b89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:8a:ea:f8:da:76:fd:df:61:51:ba:e6:dd: 22:39:1f:71:55:c2:23:42:9f:a0:44:91:3d:b2:08: a5:2b:02:db:7f:0a:75:fe:7d:36:aa:eb:09:e7:c7: 13:e7:46:1b:81:d4:ad:fa:7d:d2:8d:e7:c9:9d:f3: f7:2f:a6:ae:11:44:f8:64:66:e5:83:b1:94:ff:d7: 4b:5f:e4:08:e7:87:17:2d:70:03:49:87:de:17:3e: f0:5a:a5:ca:52:37:2a:5a:a2:ef:00:a7:2b:68:2f: 34:ce:f9:01:65:93:c1:37:e1:2a:8d:fa:c6:bc:14: 93:6b:53:82:30:bf:3c:6d:ae:f4:94:8c:06:ed:72: 46:27:d0:a8:e4:d1:9e:11:b1:f3:c6:bd:9d:c5:60: e0:93:d9:04:eb:c0:f7:ba:38:d9:4a:03:1a:49:fa: 99:35:5b:be:bd:2e:0b:da:ac:6e:c2:51:94:f3:cb: d7:e4:56:f9:b7:3f:92:55:b9:b8:41:fd:22:23:3d: 91:fe:0c:1b:9d:3f:2e:66:62:c7:ed:22:9b:bc:2b: bb:33:3c:6e:8e:91:b2:8a:49:2b:f1:2f:ea:25:52: 53:d1:0f:ed:8f:e8:93:dc:ee:cc:04:6b:29:9e:2f: 4c:fd:8f:87:1d:c7:dd:2e:00:74:aa:1d:d1:28:c9: 2f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:02:77:72:53:C4:25:1F:F4:B2:AB:98:96:F9:09:DF:E6:E5:14:A1 X509v3 Authority Key Identifier: keyid:1A:60:72:5A:E4:04:58:96:E3:04:08:30:03:21:3E:EA:95:26:7E:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmByWuQEWJbjBAgwAyE-6pUmfs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/1779BD7C3B2311EE91010B3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.17.0/24 103.97.230.0/24 IPv6: 2001:df1:af00::/48 Signature Algorithm: sha256WithRSAEncryption 8f:8d:0a:c6:d8:63:37:00:19:b5:33:e0:f3:cc:80:8a:7d:55: 5a:0d:61:3c:f2:09:9b:76:37:bc:4c:a4:83:89:49:38:dc:5c: 6a:84:5e:d7:0e:e5:2b:d6:72:ed:f0:72:fa:d5:8f:67:af:cb: 19:bc:43:8a:5e:68:ad:47:92:ce:64:77:ba:b2:87:48:ea:3d: a8:ee:eb:88:ba:af:4e:48:6f:25:0a:d2:80:b0:a0:af:a8:53: 48:26:fe:61:4a:5a:aa:71:c7:94:64:06:90:dd:d1:a2:c6:4a: 43:cf:92:e9:37:8f:c5:3a:a2:6b:f6:28:7a:85:96:ac:ba:ac: 8a:f0:81:f6:5f:d8:10:98:b2:13:32:fb:9b:0f:33:15:08:7d: 27:fa:33:f6:fd:40:96:90:82:2b:d1:12:c7:a4:70:b4:69:9e: e2:51:82:d3:72:d6:4b:bd:56:fb:d1:c7:49:48:ae:66:eb:6b: f8:4c:53:65:86:b8:1a:94:04:6b:37:fb:2b:22:d7:7d:94:f2: 9f:9c:b2:79:6d:40:9f:12:14:9f:02:b0:6c:cf:a4:ff:f0:28: 17:21:43:10:89:6b:bd:96:9c:ff:1a:c5:90:81:ab:b1:8c:f4: 72:97:b1:b3:3c:e1:d2:ee:e7:73:93:8d:8e:d7:d5:a3:12:16: 8f:80:f6:72 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjM1QTExMC8GA1UEBRMoMUE2MDcyNUFFNDA0NTg5NkUzMDQwODMwMDMyMTNFRUE5 NTI2N0VDRjAeFw0yMzEwMjkwNTU3MjFaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1M2RmNDQwLTJiODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtU4rq+Np2/d9hUbrm3SI5H3FVwiNCn6BEkT2yCKUrAtt/CnX+fTaq6wnnxxPn RhuB1K36fdKN58md8/cvpq4RRPhkZuWDsZT/10tf5AjnhxctcANJh94XPvBapcpS Nypaou8ApytoLzTO+QFlk8E34SqN+sa8FJNrU4IwvzxtrvSUjAbtckYn0Kjk0Z4R sfPGvZ3FYOCT2QTrwPe6ONlKAxpJ+pk1W769LgvarG7CUZTzy9fkVvm3P5JVubhB /SIjPZH+DBudPy5mYsftIpu8K7szPG6OkbKKSSvxL+olUlPRD+2P6JPc7swEayme L0z9j4cdx90uAHSqHdEoyS87AgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUZAJ3clPE JR/0squYlvkJ3+blFKEwHwYDVR0jBBgwFoAUGmByWuQEWJbjBAgwAyE+6pUmfs8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCMzVBLzAwNkNEOTRBM0Iy MTExRUU4MDRDNjM4M0M0RjlBRTAyL0dtQnlXdVFFV0piakJBZ3dBeUUtNnBVbWZz OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR21CeVd1UUVXSmJqQkFnd0F5RS02cFVtZnM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjM1QS8wMDZDRDk0QTNCMjExMUVFODA0QzYzODNDNEY5QUUwMi8xNzc5QkQ3QzNC MjMxMUVFOTEwMTBCM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAGcVEQMEAGdh5jAPBAIAAjAJAwcAIAEN8a8AMA0GCSqGSIb3 DQEBCwUAA4IBAQCPjQrG2GM3ABm1M+DzzICKfVVaDWE88gmbdje8TKSDiUk43Fxq hF7XDuUr1nLt8HL61Y9nr8sZvEOKXmitR5LOZHe6sodI6j2o7uuIuq9OSG8lCtKA sKCvqFNIJv5hSlqqcceUZAaQ3dGixkpDz5LpN4/FOqJr9ih6hZasuqyK8IH2X9gQ mLITMvubDzMVCH0n+jP2/UCWkIIr0RLHpHC0aZ7iUYLTctZLvVb70cdJSK5m62v4 TFNlhrgalARrN/srItd9lPKfnLJ5bUCfEhSfArBsz6T/8CgXIUMQiWu9lpz/GsWQ gauxjPRyl7GzPOHS7udzk42O19WjEhaPgPZy -----END CERTIFICATE-----Generated at Fri Jun 7 09:41:06 2024 by rpki-client on console-ams.rpki-client.org