$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/C458350E979C11EC8E769C43C4F9AE02.roa File: C458350E979C11EC8E769C43C4F9AE02.roa (raw, json) Hash identifier: pRD2/Xc09WMuV5T/BVjU3glttxFS+epAFpK+qxSMCsQ= Subject key identifier: B4:54:AB:CC:B7:FE:70:BE:23:BF:5A:B3:4F:59:4E:A2:04:EE:53:88 Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 027F Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/C458350E979C11EC8E769C43C4F9AE02.roa Signing time: Tue 17 Oct 2023 14:48:01 +0000 ROA not before: Tue 17 Oct 2023 14:48:01 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 139659 IP address blocks: 103.143.80.0/24 maxlen: 24 103.143.81.0/24 maxlen: 24 2001:df1:7880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Oct 17 14:48:01 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652e9ea1-4eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fd:3b:77:57:58:60:ab:ec:7b:18:15:fd:3a: 88:97:10:3d:91:5e:58:7f:c7:b9:78:1e:85:1a:67: 9e:7f:69:db:00:e8:45:99:72:ec:67:72:61:f4:bc: dc:52:dc:97:da:22:94:c8:92:ab:8b:23:3c:2b:33: d6:8f:89:b8:ca:bb:52:4f:a6:ff:96:5b:04:a0:93: 2a:07:c0:88:3f:43:5f:2f:14:65:69:27:ce:83:55: 06:4b:95:94:1e:d9:58:95:35:88:0a:ae:49:02:14: 6c:d1:9e:13:35:b3:26:16:d4:b1:6d:75:95:2a:b0: 72:09:b4:67:38:ed:bd:14:90:00:cd:2b:5d:4a:36: 34:47:c5:7c:b0:76:66:4d:86:5e:b9:29:c0:fb:83: 73:f3:0b:ec:c6:fd:3d:bf:02:b6:04:14:f2:be:94: 97:09:4b:7e:11:9a:25:87:01:59:14:ec:df:7f:0a: 56:6b:49:38:99:e0:fd:5e:00:5b:d2:75:74:4e:d8: 00:9e:f9:66:17:a8:60:5c:84:1f:52:f2:f8:05:bd: 28:4c:27:b6:9f:55:27:d8:8e:36:5d:a0:fd:c7:ea: 9d:78:ae:17:33:8e:1b:81:1b:31:65:05:a3:66:e5: 5b:05:28:83:ee:e2:b3:18:e3:6b:e2:63:7d:11:81: cf:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:54:AB:CC:B7:FE:70:BE:23:BF:5A:B3:4F:59:4E:A2:04:EE:53:88 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/C458350E979C11EC8E769C43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.80.0/23 IPv6: 2001:df1:7880::/48 Signature Algorithm: sha256WithRSAEncryption 9b:a4:34:c3:06:e9:39:e9:70:64:d5:74:ab:84:91:b4:d5:ab: 5f:de:6c:02:d8:ec:b9:ff:c8:8a:6d:00:bf:b7:09:94:f5:74: 1f:85:65:2b:84:a6:06:3f:3d:a1:e0:42:3a:9f:b3:99:6d:ce: 17:ef:62:5d:09:6c:aa:ea:b2:99:0c:c9:f6:f9:27:d8:18:9d: f2:48:ae:b4:93:a0:6b:47:ab:6f:24:67:0b:8b:2c:29:78:9f: a6:ba:1d:24:dc:41:8f:28:0b:f2:8c:ec:d9:bd:05:f5:e2:c5: 8b:5c:3f:58:dc:01:20:de:51:cc:f5:79:e5:5d:81:28:76:77: 3f:9f:4f:e8:f9:ff:83:39:9b:10:47:a8:1e:c0:b2:5a:8f:00: f3:69:a8:94:7a:a0:f0:9a:50:70:45:37:fb:29:88:74:e2:30: 2c:83:66:b4:0b:40:59:42:6f:6d:22:d3:56:fd:2a:8f:4f:4e: ac:d7:33:57:da:fa:dc:46:db:d8:2e:f9:6e:18:67:3a:89:04: 32:47:4e:4b:4d:bb:ec:3f:c7:44:a8:af:c6:c0:a5:78:3b:b1: ca:9e:d9:74:27:77:6f:9f:aa:74:b4:b0:0d:fb:fc:eb:e2:22: a5:8e:33:76:75:a0:1f:9f:14:2c:95:3e:1f:ca:5d:b6:c1:58: 50:df:96:cf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjMxMDE3MTQ0ODAxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJlOWVhMS00ZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApf07d1dYYKvsexgV/TqIlxA9kV5Yf8e5eB6FGmeef2nbAOhFmXLsZ3Jh9Lzc UtyX2iKUyJKriyM8KzPWj4m4yrtST6b/llsEoJMqB8CIP0NfLxRlaSfOg1UGS5WU HtlYlTWICq5JAhRs0Z4TNbMmFtSxbXWVKrByCbRnOO29FJAAzStdSjY0R8V8sHZm TYZeuSnA+4Nz8wvsxv09vwK2BBTyvpSXCUt+EZolhwFZFOzffwpWa0k4meD9XgBb 0nV0TtgAnvlmF6hgXIQfUvL4Bb0oTCe2n1Un2I42XaD9x+qdeK4XM44bgRsxZQWj ZuVbBSiD7uKzGONr4mN9EYHPRQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLRUq8y3 /nC+I79as09ZTqIE7lOIMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ2MzYvMkM5QkMzM0M5Nzk5MTFFQ0JFNzI1QTNDQzRGOUFFMDIvQzQ1ODM1MEU5 NzlDMTFFQzhFNzY5QzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnj1AwDwQCAAIwCQMHACABDfF4gDANBgkqhkiG9w0BAQsF AAOCAQEAm6Q0wwbpOelwZNV0q4SRtNWrX95sAtjsuf/Iim0Av7cJlPV0H4VlK4Sm Bj89oeBCOp+zmW3OF+9iXQlsquqymQzJ9vkn2Bid8kiutJOga0erbyRnC4ssKXif prodJNxBjygL8ozs2b0F9eLFi1w/WNwBIN5RzPV55V2BKHZ3P59P6Pn/gzmbEEeo HsCyWo8A82molHqg8JpQcEU3+ymIdOIwLINmtAtAWUJvbSLTVv0qj09OrNczV9r6 3Ebb2C75bhhnOokEMkdOS0277D/HRKivxsCleDuxyp7ZdCd3b5+qdLSwDfv86+Ii pY4zdnWgH58ULJU+H8pdtsFYUN+Wzw== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:28 2024 by rpki-client on console-ams.rpki-client.org