$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/5A395E26E2DB11EB8608EA87C4F9AE02.roa File: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (raw, json) Hash identifier: HyiCAmkoy6Q9nHEPOoty8ar1ahmNO63ScaKha2Rnj6o= Subject key identifier: 14:EE:B6:55:91:AE:F0:AC:9F:E8:DD:B6:6C:3A:34:4C:86:B4:E9:AD Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0BE1 Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/5A395E26E2DB11EB8608EA87C4F9AE02.roa Signing time: Tue 26 Dec 2023 19:06:42 +0000 ROA not before: Tue 26 Dec 2023 19:06:42 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24496 IP address blocks: 103.236.194.0/23 maxlen: 24 202.180.216.0/21 maxlen: 24 2407:3680::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Dec 26 19:06:42 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658b2442-44a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:37:c0:0a:c8:fa:d6:c6:4a:fb:49:37:4d:83: 37:3c:dc:0e:51:3e:75:18:51:fc:81:e7:bb:7f:11: 0a:94:86:ce:9e:bd:d7:8e:22:7f:29:13:7c:d1:84: 56:22:32:f9:1b:05:6d:af:6c:4c:ab:5b:d8:cf:c9: fb:4d:45:1d:53:c7:c1:09:a7:60:ec:88:65:fd:e6: bb:df:d9:6e:e8:fc:ab:22:e2:aa:35:98:8c:08:29: 42:c8:f4:e0:b6:4c:a9:15:f2:9c:00:23:98:03:9c: 71:e6:04:22:78:8a:d5:e6:da:b8:89:f0:9b:ba:09: 33:07:0d:2d:a1:52:21:dd:9d:44:8f:de:ae:d2:4c: 9d:d2:c1:32:51:fe:86:20:69:ca:e4:96:9c:af:d2: be:23:53:e3:54:66:33:9f:65:da:f5:0a:7a:5a:65: 04:e0:cd:4a:d8:9f:63:78:a9:06:da:74:fd:c4:c5: ca:af:8b:10:de:20:d7:fc:1b:8b:85:c6:39:3b:9b: 6d:00:b9:1c:01:0b:b5:d9:b1:cf:83:c8:1e:e9:60: ef:73:c7:e9:11:d1:71:9c:17:e4:8c:48:14:17:ee: f7:e4:1a:e8:84:5c:54:4f:ab:e5:7c:2f:cb:50:bb: 72:1b:0f:7c:02:dd:e4:ff:63:1d:6c:53:5a:42:da: 0d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:EE:B6:55:91:AE:F0:AC:9F:E8:DD:B6:6C:3A:34:4C:86:B4:E9:AD X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/5A395E26E2DB11EB8608EA87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.236.194.0/23 202.180.216.0/21 IPv6: 2407:3680::/32 Signature Algorithm: sha256WithRSAEncryption 35:2c:6c:41:d2:d2:5c:e7:69:76:4a:4b:d8:9d:0d:77:5f:a1: 67:74:66:49:c7:64:93:99:15:d1:8c:c4:3b:a7:69:e7:a9:ab: 9f:be:33:e5:84:81:52:2c:23:60:b8:bc:7f:32:a6:2d:a5:c1: 81:8a:80:4a:dd:12:77:c8:3f:7e:a3:56:06:c4:a0:e3:a7:61: 01:9b:ec:e8:8c:c6:ce:86:b1:1c:22:41:8c:5b:6c:93:5d:d4: 23:e6:fd:66:34:6b:f0:5c:b0:e7:c5:c6:44:5a:bd:3a:17:5d: cc:77:bf:9e:99:ef:07:55:c1:fb:61:b7:a8:9a:cc:3d:31:21: 4a:8d:e3:37:2d:5d:9f:83:36:6e:81:03:29:f0:31:1c:27:de: e0:c2:32:0a:6e:2d:3e:20:f2:19:fd:81:9e:b9:54:77:70:a1: fc:35:92:d4:29:1a:8a:ae:d7:6c:c1:7e:72:b2:ed:88:d1:24: 71:df:4f:10:07:65:c8:81:61:02:35:ad:c6:ac:2d:7a:fa:d8: df:b5:b7:57:23:ed:df:56:3c:9b:9b:b4:6f:62:7b:34:a1:3b: 48:c7:ef:b9:5d:80:86:ec:d0:68:24:78:35:6c:51:3e:f8:6a: d4:d3:aa:9f:e2:8f:42:a9:4f:32:f5:9c:90:84:72:32:04:a6: 1d:e2:bb:a9 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjMxMjI2MTkwNjQyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThiMjQ0Mi00NGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DfACsj61sZK+0k3TYM3PNwOUT51GFH8gee7fxEKlIbOnr3XjiJ/KRN80YRW IjL5GwVtr2xMq1vYz8n7TUUdU8fBCadg7Ihl/ea739lu6PyrIuKqNZiMCClCyPTg tkypFfKcACOYA5xx5gQieIrV5tq4ifCbugkzBw0toVIh3Z1Ej96u0kyd0sEyUf6G IGnK5Jacr9K+I1PjVGYzn2Xa9Qp6WmUE4M1K2J9jeKkG2nT9xMXKr4sQ3iDX/BuL hcY5O5ttALkcAQu12bHPg8ge6WDvc8fpEdFxnBfkjEgUF+735BrohFxUT6vlfC/L ULtyGw98At3k/2MdbFNaQtoNkwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBTutlWR rvCsn+jdtmw6NEyGtOmtMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0M1NjEvODZDMzA0ODJFNzM0MTFFOTlEOEVBRjQ3QzRGOUFFMDIvNUEzOTVFMjZF MkRCMTFFQjg2MDhFQTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFn7MIDBAPKtNgwDQQCAAIwBwMFACQHNoAwDQYJKoZIhvcN AQELBQADggEBADUsbEHS0lznaXZKS9idDXdfoWd0ZknHZJOZFdGMxDunaeepq5++ M+WEgVIsI2C4vH8ypi2lwYGKgErdEnfIP36jVgbEoOOnYQGb7OiMxs6GsRwiQYxb bJNd1CPm/WY0a/BcsOfFxkRavToXXcx3v56Z7wdVwftht6iazD0xIUqN4zctXZ+D Nm6BAynwMRwn3uDCMgpuLT4g8hn9gZ65VHdwofw1ktQpGoqu12zBfnKy7YjRJHHf TxAHZciBYQI1rcasLXr62N+1t1cj7d9WPJubtG9iezShO0jH77ldgIbs0GgkeDVs UT74atTTqp/ij0KpTzL1nJCEcjIEph3iu6k= -----END CERTIFICATE-----Generated at Fri May 31 20:34:15 2024 by rpki-client on console-ams.rpki-client.org