$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF849/C42A4AD838BC11EDB0AFB864C4F9AE02/A5D6438038C011ED8D00366CC4F9AE02.roa File: A5D6438038C011ED8D00366CC4F9AE02.roa (raw, json) Hash identifier: s15M0vkeJCzeAMtmlM+l1juodIEn43o4axBJIZ7Crds= Subject key identifier: 14:55:9A:BD:88:40:33:1C:E4:A1:7F:D1:95:9C:A1:CF:21:31:B6:C2 Certificate issuer: /CN=A91BF849/serialNumber=801BAD8CB22641DDEDE4DBD39F4BE7F4D8CAEA55 Certificate serial: C1 Authority key identifier: 80:1B:AD:8C:B2:26:41:DD:ED:E4:DB:D3:9F:4B:E7:F4:D8:CA:EA:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gButjLImQd3t5NvTn0vn9NjK6lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF849/C42A4AD838BC11EDB0AFB864C4F9AE02/A5D6438038C011ED8D00366CC4F9AE02.roa Signing time: Wed 09 Aug 2023 03:43:59 +0000 ROA not before: Wed 09 Aug 2023 03:43:59 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135549 IP address blocks: 103.65.184.0/22 maxlen: 22 103.65.184.0/23 maxlen: 23 103.65.184.0/24 maxlen: 24 103.65.185.0/24 maxlen: 24 103.65.186.0/23 maxlen: 23 103.65.186.0/24 maxlen: 24 103.65.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF849/C42A4AD838BC11EDB0AFB864C4F9AE02/gButjLImQd3t5NvTn0vn9NjK6lU.crl rsync://rpki.apnic.net/member_repository/A91BF849/C42A4AD838BC11EDB0AFB864C4F9AE02/gButjLImQd3t5NvTn0vn9NjK6lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gButjLImQd3t5NvTn0vn9NjK6lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF849/serialNumber=801BAD8CB22641DDEDE4DBD39F4BE7F4D8CAEA55 Validity Not Before: Aug 9 03:43:59 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d30b7f-c257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7a:a2:37:44:97:fa:8c:1d:41:62:e9:2a:5b: 3a:e8:0c:35:de:67:46:be:ad:c8:e9:c4:ab:c6:24: 05:28:90:dc:f1:6a:3d:40:7c:20:82:8f:cf:e8:44: 84:a2:71:71:6f:ab:86:3b:b0:32:46:cd:69:fd:46: 0f:11:aa:16:57:ac:d2:a4:82:96:e4:d0:49:04:f5: 89:7e:47:e7:c7:77:81:8f:fd:8e:17:4a:66:24:96: 34:1b:9d:36:79:ea:ae:f5:30:28:8d:fc:1d:28:ef: 05:1a:e6:38:a2:b4:17:49:92:0f:81:44:63:5d:b0: 85:a1:c7:ec:54:9b:7f:b6:4c:16:9a:d1:cc:eb:33: fb:11:84:17:50:08:e4:88:df:5c:81:f8:87:05:d9: 59:75:9c:1f:02:21:a4:6f:59:74:75:3b:39:52:ea: 3e:b9:cd:ef:9f:ff:ca:19:1d:22:21:a1:8b:8c:df: 14:bb:b7:28:01:1a:34:67:33:d8:fb:37:4e:dd:5a: 8f:92:0f:5c:4b:36:37:29:6d:70:b1:70:d5:82:ad: 5a:33:7f:a5:01:a4:50:b7:77:6a:a9:51:28:98:5c: 81:00:f1:4e:4d:95:f4:4c:a5:59:fe:ac:e5:e2:ca: 73:de:24:39:86:9a:93:19:8f:84:9f:1a:0a:a1:5d: 41:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:55:9A:BD:88:40:33:1C:E4:A1:7F:D1:95:9C:A1:CF:21:31:B6:C2 X509v3 Authority Key Identifier: keyid:80:1B:AD:8C:B2:26:41:DD:ED:E4:DB:D3:9F:4B:E7:F4:D8:CA:EA:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF849/C42A4AD838BC11EDB0AFB864C4F9AE02/gButjLImQd3t5NvTn0vn9NjK6lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gButjLImQd3t5NvTn0vn9NjK6lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF849/C42A4AD838BC11EDB0AFB864C4F9AE02/A5D6438038C011ED8D00366CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.184.0/22 Signature Algorithm: sha256WithRSAEncryption 08:e5:d5:47:ae:d0:49:73:d2:09:6e:dd:90:6a:0d:34:e6:fe: 55:57:63:21:dc:4d:8b:cb:12:90:af:d8:a6:53:d8:ab:16:c7: cd:74:31:72:db:ff:53:d7:2a:b5:2c:7d:ae:dc:29:82:dc:cf: 03:fd:91:ca:f8:bb:eb:70:9f:e4:cd:dd:e7:03:23:19:c5:4a: c3:ca:19:f2:ac:8b:fb:39:17:9a:76:48:32:dd:5b:85:a5:e1: 56:ec:81:4f:94:bf:f6:81:d3:bf:d3:f5:a7:f9:17:47:ad:1a: c8:af:17:82:75:08:80:6a:1d:9f:7f:55:ce:06:a9:af:2f:16: 72:e4:cb:c7:2a:ca:0f:9d:9a:6c:38:b8:c0:fe:44:c8:92:95: 50:94:fa:a1:15:04:d3:f0:d4:77:a8:77:39:73:8a:81:70:6a: 62:90:6b:77:7b:9f:2f:82:68:5a:c8:82:45:a5:86:1c:b9:e0: 0f:61:c9:a9:68:b8:49:24:17:f7:6e:28:66:e9:11:ac:d8:57: 4a:9b:a9:1b:60:ac:69:bc:6d:c0:78:c9:81:ae:0a:86:75:3b: 9b:ae:23:d0:6a:f5:ff:ea:d1:78:59:ef:c0:ca:a8:49:e2:97: f0:e5:bc:e5:ff:d8:14:6e:42:fc:23:67:09:e7:3b:04:62:7f: b2:2a:25:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4NDkxMTAvBgNVBAUTKDgwMUJBRDhDQjIyNjQxRERFREU0REJEMzlGNEJFN0Y0 RDhDQUVBNTUwHhcNMjMwODA5MDM0MzU5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQzMGI3Zi1jMjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XqiN0SX+owdQWLpKls66Aw13mdGvq3I6cSrxiQFKJDc8Wo9QHwggo/P6ESE onFxb6uGO7AyRs1p/UYPEaoWV6zSpIKW5NBJBPWJfkfnx3eBj/2OF0pmJJY0G502 eequ9TAojfwdKO8FGuY4orQXSZIPgURjXbCFocfsVJt/tkwWmtHM6zP7EYQXUAjk iN9cgfiHBdlZdZwfAiGkb1l0dTs5Uuo+uc3vn//KGR0iIaGLjN8Uu7coARo0ZzPY +zdO3VqPkg9cSzY3KW1wsXDVgq1aM3+lAaRQt3dqqVEomFyBAPFOTZX0TKVZ/qzl 4spz3iQ5hpqTGY+EnxoKoV1BbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBRVmr2I QDMc5KF/0ZWcoc8hMbbCMB8GA1UdIwQYMBaAFIAbrYyyJkHd7eTb059L5/TYyupV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjg0OS9DNDJBNEFEODM4 QkMxMUVEQjBBRkI4NjRDNEY5QUUwMi9nQnV0akxJbVFkM3Q1TnZUbjB2bjlOaks2 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dCdXRqTEltUWQzdDVOdlRuMHZuOU5qSzZsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY4NDkvQzQyQTRBRDgzOEJDMTFFREIwQUZCODY0QzRGOUFFMDIvQTVENjQzODAz OEMwMTFFRDhEMDAzNjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnQbgwDQYJKoZIhvcNAQELBQADggEBAAjl1Ueu0Elz0glu 3ZBqDTTm/lVXYyHcTYvLEpCv2KZT2KsWx810MXLb/1PXKrUsfa7cKYLczwP9kcr4 u+twn+TN3ecDIxnFSsPKGfKsi/s5F5p2SDLdW4Wl4VbsgU+Uv/aB07/T9af5F0et GsivF4J1CIBqHZ9/Vc4Gqa8vFnLky8cqyg+dmmw4uMD+RMiSlVCU+qEVBNPw1Heo dzlzioFwamKQa3d7ny+CaFrIgkWlhhy54A9hyalouEkkF/duKGbpEazYV0qbqRtg rGm8bcB4yYGuCoZ1O5uuI9Bq9f/q0XhZ78DKqEnil/DlvOX/2BRuQvwjZwnnOwRi f7IqJRo= -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:21 2024 by rpki-client on console-fra.rpki-client.org