$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/90D368604AB811EC9FA7F33FC4F9AE02.roa File: 90D368604AB811EC9FA7F33FC4F9AE02.roa (raw, json) Hash identifier: yI5uYPc/JDrWARH2c+K7qRZTiLNzpj/RgVahynF5R6w= Subject key identifier: 39:EE:88:4E:D1:90:99:D6:67:F0:D7:01:F6:83:37:E4:64:F6:21:78 Certificate issuer: /CN=A91BF5C2/serialNumber=AB24AF5DBDC3AF0647853DAB199FA49FEB6D0735 Certificate serial: 06F4 Authority key identifier: AB:24:AF:5D:BD:C3:AF:06:47:85:3D:AB:19:9F:A4:9F:EB:6D:07:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qySvXb3DrwZHhT2rGZ-kn-ttBzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/90D368604AB811EC9FA7F33FC4F9AE02.roa Signing time: Mon 30 Oct 2023 22:09:59 +0000 ROA not before: Mon 30 Oct 2023 22:09:59 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 135542 IP address blocks: 103.129.196.0/24 maxlen: 24 103.129.197.0/24 maxlen: 24 103.129.198.0/24 maxlen: 24 103.129.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/qySvXb3DrwZHhT2rGZ-kn-ttBzU.crl rsync://rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/qySvXb3DrwZHhT2rGZ-kn-ttBzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qySvXb3DrwZHhT2rGZ-kn-ttBzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1780 (0x6f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C2/serialNumber=AB24AF5DBDC3AF0647853DAB199FA49FEB6D0735 Validity Not Before: Oct 30 22:09:59 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654029b7-7e37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:98:11:a2:6f:cd:d9:7d:04:4d:53:3a:68:e4: bc:32:8b:7c:ad:a4:d1:a5:ed:61:fd:29:8e:fc:03: 75:f4:ff:8a:72:86:d8:a6:a0:65:4e:87:15:e3:35: 04:2d:93:32:f2:36:83:86:a3:d5:ea:a5:3f:d6:8c: 6a:44:f7:02:ed:31:bf:cd:8f:54:fe:24:e9:6e:bd: 7f:a8:fe:e6:9f:e4:27:61:ed:f3:6e:d8:9f:51:be: 4f:08:0c:2a:1d:75:90:ec:3c:56:ce:b2:72:ed:ee: 45:2c:42:e7:af:35:a8:38:99:f0:d8:bc:0a:b4:7f: 2f:d3:b1:14:36:7c:62:09:6f:f3:38:cd:c3:53:46: 6d:1f:3c:f4:8d:1a:98:51:47:8e:9a:1a:0a:61:6e: 15:76:3e:0b:8d:08:7c:f6:54:a4:b7:22:1a:94:a5: 09:dc:39:a4:7f:42:b3:be:7a:65:3f:15:e2:10:3a: 44:dc:62:e2:0f:84:19:1e:15:a9:a7:b5:af:02:41: 3f:ad:88:2f:b3:bd:02:4b:b2:f7:59:8b:3a:a5:33: ec:cc:03:2c:18:d8:84:ce:d4:73:9a:47:fd:6c:a1: 1f:4b:fb:11:f7:8c:c0:bd:23:21:3f:d5:9d:e1:4c: 34:af:bb:23:ad:08:ac:19:eb:f5:4b:36:28:65:5c: 84:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:EE:88:4E:D1:90:99:D6:67:F0:D7:01:F6:83:37:E4:64:F6:21:78 X509v3 Authority Key Identifier: keyid:AB:24:AF:5D:BD:C3:AF:06:47:85:3D:AB:19:9F:A4:9F:EB:6D:07:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/qySvXb3DrwZHhT2rGZ-kn-ttBzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qySvXb3DrwZHhT2rGZ-kn-ttBzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C2/B37E3CA8E74C11EABF5CAA1EC4F9AE02/90D368604AB811EC9FA7F33FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.196.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:de:78:19:ae:6a:1b:0d:4b:ee:9b:39:be:bf:b1:c5:64:1f: 76:ca:19:a0:68:2e:b4:8e:56:15:4f:c4:12:e7:ef:71:a4:5c: 4f:01:2a:36:7f:82:27:ed:44:b4:91:b6:5d:fa:ca:34:19:e7: ae:80:9d:fc:bd:6c:b0:45:cd:d8:a4:4d:b3:37:25:a3:df:6e: 64:22:66:5d:8b:2e:83:e4:d5:f7:04:ae:85:a3:6c:f9:63:00: 09:56:02:48:64:ac:62:bc:f2:89:54:c9:67:8e:db:0b:00:2e: ac:af:28:d0:2d:62:4d:4d:0d:c3:de:e9:51:20:fe:78:b9:11: e1:4b:88:a7:8d:61:4c:a1:b7:a0:81:5f:56:23:86:96:68:0a: 05:4b:ff:df:17:e6:c0:59:14:f5:e5:cc:81:59:2d:71:6a:2a: a0:e1:0d:1a:a1:a6:ce:fc:ef:51:10:9e:ae:37:95:06:e3:cd: fd:3a:1f:e0:f5:93:cf:ef:b7:41:f5:d7:1b:5d:d0:d4:b9:1e: aa:42:fe:66:d9:c2:e9:61:02:2d:45:9b:90:7e:30:39:ab:4a: a7:46:c2:70:37:ef:77:b9:5d:b7:90:dd:e4:16:c8:c3:4f:3f: 16:9b:98:b8:d1:ed:10:03:9f:16:f0:f9:8e:71:c5:b0:c4:8f: 3d:ba:3e:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzIxMTAvBgNVBAUTKEFCMjRBRjVEQkRDM0FGMDY0Nzg1M0RBQjE5OUZBNDlG RUI2RDA3MzUwHhcNMjMxMDMwMjIwOTU5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQwMjliNy03ZTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZgRom/N2X0ETVM6aOS8Mot8raTRpe1h/SmO/AN19P+KcobYpqBlTocV4zUE LZMy8jaDhqPV6qU/1oxqRPcC7TG/zY9U/iTpbr1/qP7mn+QnYe3zbtifUb5PCAwq HXWQ7DxWzrJy7e5FLELnrzWoOJnw2LwKtH8v07EUNnxiCW/zOM3DU0ZtHzz0jRqY UUeOmhoKYW4Vdj4LjQh89lSktyIalKUJ3Dmkf0KzvnplPxXiEDpE3GLiD4QZHhWp p7WvAkE/rYgvs70CS7L3WYs6pTPszAMsGNiEztRzmkf9bKEfS/sR94zAvSMhP9Wd 4Uw0r7sjrQisGev1SzYoZVyEvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDnuiE7R kJnWZ/DXAfaDN+Rk9iF4MB8GA1UdIwQYMBaAFKskr129w68GR4U9qxmfpJ/rbQc1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMi9CMzdFM0NBOEU3 NEMxMUVBQkY1Q0FBMUVDNEY5QUUwMi9xeVN2WGIzRHJ3WkhoVDJyR1ota24tdHRC elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F5U3ZYYjNEcndaSGhUMnJHWi1rbi10dEJ6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY1QzIvQjM3RTNDQThFNzRDMTFFQUJGNUNBQTFFQzRGOUFFMDIvOTBEMzY4NjA0 QUI4MTFFQzlGQTdGMzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngcQwDQYJKoZIhvcNAQELBQADggEBAA7eeBmuahsNS+6b Ob6/scVkH3bKGaBoLrSOVhVPxBLn73GkXE8BKjZ/giftRLSRtl36yjQZ566Anfy9 bLBFzdikTbM3JaPfbmQiZl2LLoPk1fcEroWjbPljAAlWAkhkrGK88olUyWeO2wsA LqyvKNAtYk1NDcPe6VEg/ni5EeFLiKeNYUyht6CBX1YjhpZoCgVL/98X5sBZFPXl zIFZLXFqKqDhDRqhps7871EQnq43lQbjzf06H+D1k8/vt0H11xtd0NS5HqpC/mbZ wulhAi1Fm5B+MDmrSqdGwnA373e5XbeQ3eQWyMNPPxabmLjR7RADnxbw+Y5xxbDE jz26Pk8= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:27 2024 by rpki-client on console-ams.rpki-client.org