$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa File: E8542DEA6B8811ECAC731B4EC4F9AE02.roa (raw, json) Hash identifier: YKQmhWF4LdfCr3ZVAnFb8qB7B8eNPyHLEWquRARIzpo= Subject key identifier: 67:87:F8:1C:70:95:4F:7F:D8:FF:AB:86:3C:E8:34:6F:58:48:47:6C Certificate issuer: /CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Certificate serial: 0528 Authority key identifier: EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa Signing time: Wed 29 May 2024 01:37:09 +0000 ROA not before: Wed 29 May 2024 01:37:09 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134143 IP address blocks: 103.4.55.0/24 maxlen: 24 103.55.92.0/24 maxlen: 24 103.55.93.0/24 maxlen: 24 103.55.94.0/24 maxlen: 24 103.55.95.0/24 maxlen: 24 2405:e180::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:05:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Validity Not Before: May 29 01:37:09 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665686c5-bae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e6:24:c1:c3:62:a8:b4:e3:85:c9:93:01:fa: 0a:40:45:c2:88:ad:4a:b1:51:d0:dc:20:66:14:17: 6d:5e:31:a3:6f:82:ce:44:b4:38:09:42:46:b3:c9: cc:d4:18:bb:50:38:15:26:f3:88:a2:d7:e2:db:50: 75:cd:96:fc:7b:cd:7f:db:17:e2:34:0b:2d:92:bc: a3:37:3d:ee:cd:f8:8a:a6:67:dc:12:0b:0e:55:1b: cd:de:7f:05:ad:30:c5:63:ea:8a:9d:c2:86:cc:c1: 7a:af:6a:36:31:fb:1a:97:6a:d8:53:12:91:ce:c2: 24:a5:94:26:28:67:e5:bf:e2:0f:9c:21:d6:4d:33: 2f:1d:05:d0:1b:83:f2:2a:d8:a6:b4:a6:a1:3d:bd: d4:07:60:81:98:a5:a1:c8:dc:c1:25:0d:4b:46:d6: 2b:43:02:51:42:4a:63:9d:24:ee:17:f4:c5:2e:6a: 9c:3c:b9:ea:77:12:72:ce:a4:d3:78:94:a2:db:bc: 4a:a7:ab:bb:32:4a:78:51:a4:c4:c3:49:ed:19:5a: 4c:3d:18:14:cc:f5:cf:b2:c6:7b:9c:98:dc:4d:fa: ac:09:34:ca:c4:dc:b2:d5:9d:3b:55:59:ed:b2:f5: 78:cd:7d:61:51:5c:d4:ed:8c:6e:17:49:d1:21:64: 35:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:87:F8:1C:70:95:4F:7F:D8:FF:AB:86:3C:E8:34:6F:58:48:47:6C X509v3 Authority Key Identifier: keyid:EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.4.55.0/24 103.55.92.0/22 IPv6: 2405:e180::/32 Signature Algorithm: sha256WithRSAEncryption 0d:ec:99:6a:a5:e0:83:fa:c0:d5:ff:9b:d1:bb:57:a8:85:b5: 1c:80:3b:b9:9e:2d:00:38:3b:06:0a:77:84:65:8a:fd:b4:53: 8a:df:95:1b:f1:01:62:31:19:94:26:56:f8:f1:4d:f9:82:05: f5:c7:51:7d:78:7e:f9:55:ac:75:9d:53:b2:bc:3b:1c:67:31: 5c:72:cd:fe:7b:aa:6c:21:e3:f8:9c:1a:61:a5:5d:25:df:d2: e1:5d:ae:d0:dd:d2:5b:a1:34:6e:d3:86:04:13:6e:19:d6:6e: ff:2c:71:18:92:3d:5e:1f:a9:f8:a0:18:48:5f:70:41:c1:39: 6e:f0:9d:fb:35:67:dc:72:3d:6e:80:8b:76:74:1f:15:f5:e3: 43:b1:68:fe:ed:2b:8b:bf:ff:7f:bc:13:ff:d1:0e:f7:e1:57: e4:9d:9a:70:70:44:60:f9:74:82:a4:7a:77:6b:53:51:12:f8: ff:6a:df:34:35:5a:95:2a:ac:a5:1c:79:3e:9b:07:c0:ad:2d: d7:09:1b:f9:f0:08:61:80:78:8b:49:4a:b3:0c:55:a3:3a:15: f3:6a:45:0c:11:2e:d4:15:95:8f:5b:d4:72:dd:e3:c1:82:f2: 4a:d0:b1:c7:ff:66:df:90:ce:b5:08:57:e3:b8:b7:aa:6b:aa: 7e:46:b1:d9 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc1NzgxMTAvBgNVBAUTKEVDMzZBRjU5NzkwOTFDNkJGQTU4MEVBM0JBMjI1Nzc5 MzU3NTcwRDcwHhcNMjQwNTI5MDEzNzA5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2ODZjNS1iYWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+YkwcNiqLTjhcmTAfoKQEXCiK1KsVHQ3CBmFBdtXjGjb4LORLQ4CUJGs8nM 1Bi7UDgVJvOIotfi21B1zZb8e81/2xfiNAstkryjNz3uzfiKpmfcEgsOVRvN3n8F rTDFY+qKncKGzMF6r2o2Mfsal2rYUxKRzsIkpZQmKGflv+IPnCHWTTMvHQXQG4Py KtimtKahPb3UB2CBmKWhyNzBJQ1LRtYrQwJRQkpjnSTuF/TFLmqcPLnqdxJyzqTT eJSi27xKp6u7Mkp4UaTEw0ntGVpMPRgUzPXPssZ7nJjcTfqsCTTKxNyy1Z07VVnt svV4zX1hUVzU7YxuF0nRIWQ1PwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGeH+Bxw lU9/2P+rhjzoNG9YSEdsMB8GA1UdIwQYMBaAFOw2r1l5CRxr+lgOo7oiV3k1dXDX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzU3OC9EM0MwMTkwQ0JC OUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhHdjZXQTZqdWlKWGVUVjFj TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEYXZXWGtKSEd2NldBNmp1aUpYZVRWMWNOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc1NzgvRDNDMDE5MENCQjlEMTFFQjg0RjczQjNBQzRGOUFFMDIvRTg1NDJERUE2 Qjg4MTFFQ0FDNzMxQjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnBDcDBAJnN1wwDQQCAAIwBwMFACQF4YAwDQYJKoZIhvcN AQELBQADggEBAA3smWql4IP6wNX/m9G7V6iFtRyAO7meLQA4OwYKd4Rliv20U4rf lRvxAWIxGZQmVvjxTfmCBfXHUX14fvlVrHWdU7K8OxxnMVxyzf57qmwh4/icGmGl XSXf0uFdrtDd0luhNG7ThgQTbhnWbv8scRiSPV4fqfigGEhfcEHBOW7wnfs1Z9xy PW6Ai3Z0HxX140OxaP7tK4u//3+8E//RDvfhV+SdmnBwRGD5dIKkendrU1ES+P9q 3zQ1WpUqrKUceT6bB8CtLdcJG/nwCGGAeItJSrMMVaM6FfNqRQwRLtQVlY9b1HLd 48GC8krQscf/Zt+QzrUIV+O4t6prqn5Gsdk= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:31 2024 by rpki-client on console-ams.rpki-client.org