$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa File: EFB54FEC42D211EE9D8A0832C4F9AE02.roa (raw, json) Hash identifier: sa5RzcxUnwYh4Sc0qjOs54hFuG3B/OqKRSDlh83844g= Subject key identifier: D8:77:65:7D:FB:EA:3C:68:12:68:47:37:0A:C1:7B:84:E8:A1:54:8B Certificate issuer: /CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Certificate serial: 02 Authority key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa Signing time: Thu 24 Aug 2023 23:07:03 +0000 ROA not before: Thu 24 Aug 2023 23:07:03 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 4768 IP address blocks: 203.99.66.0/24 maxlen: 24 203.99.67.0/24 maxlen: 24 203.99.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Validity Not Before: Aug 24 23:07:03 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64e7e297-c64f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:37:66:4d:a0:2b:b0:30:b3:85:34:4c:3b:e6: f6:ba:15:93:b0:40:bf:d2:07:a3:71:17:ad:ef:a1: cb:ec:c8:28:d7:9d:87:9f:d4:1a:ce:da:27:a8:f6: d2:21:27:93:4d:55:1c:09:c7:9f:d6:81:6a:b0:25: b0:c4:64:b0:7c:9c:80:90:b3:ff:23:fe:f6:77:eb: ad:8c:99:0e:d6:42:db:78:59:93:33:1c:b7:59:6d: 81:aa:2c:87:aa:ae:6f:0d:34:31:58:68:a4:1c:66: d6:99:39:37:a5:78:ff:72:4b:35:58:0b:3a:0d:50: 1e:61:4d:64:c0:50:45:19:15:b1:6b:e9:5e:32:60: fa:41:04:06:b7:ce:1e:fb:9d:c9:86:2e:71:c6:53: 18:00:8a:3e:28:c6:d1:2c:dd:51:79:60:eb:f2:37: b0:6e:23:bb:00:f2:49:11:8a:d7:13:f7:56:8d:94: d6:6b:7e:74:f6:ce:d0:d5:2b:fd:1c:09:de:c1:f1: 87:ba:d8:d5:ae:d5:ae:dc:67:26:72:de:d7:6e:4f: 78:2d:2c:04:91:46:83:9c:ec:17:cf:cf:9d:80:53: 90:8b:e9:f8:be:68:b9:7e:9f:a5:c2:57:62:7d:26: 90:5d:4c:8e:a6:53:c7:87:b5:c0:9c:f3:f6:77:2c: 60:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:77:65:7D:FB:EA:3C:68:12:68:47:37:0A:C1:7B:84:E8:A1:54:8B X509v3 Authority Key Identifier: keyid:AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.66.0/23 203.99.69.0/24 Signature Algorithm: sha256WithRSAEncryption 91:8f:e3:3f:99:2e:ff:b7:17:f9:1f:70:ce:5f:e3:dc:73:94: 66:d3:02:36:8d:4a:cb:52:0c:fc:f2:2e:fa:e6:37:f6:3c:69: b8:1c:7e:c6:4f:76:69:b2:62:74:81:19:26:5c:c7:77:70:c3: 8b:9a:00:a7:ed:c5:40:8d:a8:96:3c:25:c3:65:79:ec:45:d2: ee:3c:68:43:67:74:e4:50:c3:d0:b4:02:01:5a:f5:54:28:75: 51:cc:02:06:3b:dd:a9:9b:e0:fb:3d:b2:31:f8:33:e8:d1:8e: 7f:0f:31:8e:e1:4d:b4:5b:85:7b:dc:a1:7f:f1:b5:e6:92:c7: f3:a9:b2:5c:13:88:17:cb:2f:fb:a5:21:4e:2e:1c:16:9f:71: a8:2e:cc:b9:75:8b:da:c6:87:11:55:bc:bc:1e:a9:fe:1c:c3: c0:ec:97:d1:26:3f:f1:05:88:4c:4e:db:5f:b7:90:a5:d6:01: f8:0c:7c:2e:4d:0e:c8:83:c3:cb:05:e5:36:8a:29:d3:2f:d7: 66:b1:33:0b:da:96:58:07:c3:30:eb:a9:c4:47:33:0f:b8:3e: 5e:5e:39:16:e4:56:82:d5:f5:d2:0b:29:a0:75:fb:1c:dc:a5: 10:91:a3:d0:55:b2:6b:92:25:cb:ac:77:87:64:fb:e0:e8:bb: 64:a5:01:53 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzEwMzExMC8GA1UEBRMoQURBN0IzRTY0Mjg0NDBFNTI0REEwNjgzODZBMUVERjMy MUY4ODExRTAeFw0yMzA4MjQyMzA3MDNaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZTdlMjk3LWM2NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkN2ZNoCuwMLOFNEw75va6FZOwQL/SB6NxF63vocvsyCjXnYef1BrO2ieo9tIh J5NNVRwJx5/WgWqwJbDEZLB8nICQs/8j/vZ3662MmQ7WQtt4WZMzHLdZbYGqLIeq rm8NNDFYaKQcZtaZOTeleP9ySzVYCzoNUB5hTWTAUEUZFbFr6V4yYPpBBAa3zh77 ncmGLnHGUxgAij4oxtEs3VF5YOvyN7BuI7sA8kkRitcT91aNlNZrfnT2ztDVK/0c Cd7B8Ye62NWu1a7cZyZy3tduT3gtLASRRoOc7BfPz52AU5CL6fi+aLl+n6XCV2J9 JpBdTI6mU8eHtcCc8/Z3LGDtAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU2Hdlffvq PGgSaEc3CsF7hOihVIswHwYDVR0jBBgwFoAUraez5kKEQOUk2gaDhqHt8yH4gR4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3MTAzLzdBQjgxMTJBNDJE MjExRUVCN0M0RDAxRUM0RjlBRTAyL3JhZXo1a0tFUU9VazJnYURocUh0OHlINGdS NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcmFlejVrS0VRT1VrMmdhRGhxSHQ4eUg0Z1I0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzEwMy83QUI4MTEyQTQyRDIxMUVFQjdDNEQwMUVDNEY5QUUwMi9FRkI1NEZFQzQy RDIxMUVFOUQ4QTA4MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEActjQgMEAMtjRTANBgkqhkiG9w0BAQsFAAOCAQEAkY/jP5ku /7cX+R9wzl/j3HOUZtMCNo1Ky1IM/PIu+uY39jxpuBx+xk92abJidIEZJlzHd3DD i5oAp+3FQI2oljwlw2V57EXS7jxoQ2d05FDD0LQCAVr1VCh1UcwCBjvdqZvg+z2y Mfgz6NGOfw8xjuFNtFuFe9yhf/G15pLH86myXBOIF8sv+6UhTi4cFp9xqC7MuXWL 2saHEVW8vB6p/hzDwOyX0SY/8QWITE7bX7eQpdYB+Ax8Lk0OyIPDywXlNoop0y/X ZrEzC9qWWAfDMOupxEczD7g+Xl45FuRWgtX10gspoHX7HNylEJGj0FWya5Ily6x3 h2T74Oi7ZKUBUw== -----END CERTIFICATE-----Generated at Fri May 31 10:02:44 2024 by rpki-client on console-ams.rpki-client.org