$ rpki-client -vvf rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/C22EEEAA00C311ECA542BE87C4F9AE02.roa File: C22EEEAA00C311ECA542BE87C4F9AE02.roa (raw, json) Hash identifier: qn7dntcvJsUzGewQHSLfmzXiQsa45mbpXFIq/3spaRQ= Subject key identifier: 49:A2:BF:6D:21:7D:37:0D:75:E5:D1:6F:0D:C0:FF:77:7E:97:F0:E4 Certificate issuer: /CN=A91D795B/serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Certificate serial: 03E5 Authority key identifier: 05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/C22EEEAA00C311ECA542BE87C4F9AE02.roa Signing time: Thu 21 Sep 2023 01:02:53 +0000 ROA not before: Thu 21 Sep 2023 01:02:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 142623 IP address blocks: 103.171.36.0/23 maxlen: 23 103.171.36.0/24 maxlen: 24 103.171.37.0/24 maxlen: 24 2001:df7:3580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 997 (0x3e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D795B/serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Validity Not Before: Sep 21 01:02:53 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650b963c-92ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f0:59:c4:9d:da:fe:cd:97:8a:d2:2f:ca:90: a4:8b:24:bf:b8:3d:8e:17:3a:3b:86:d1:06:73:72: e2:1a:6c:0f:d9:16:60:70:2c:2e:83:69:0e:c4:e0: de:10:d5:7a:ef:fd:0c:d2:cd:3f:82:5c:d5:34:90: 79:18:19:d6:39:85:db:89:f5:b1:45:27:2a:48:48: 54:ec:c6:66:35:3c:61:74:18:a0:30:52:fa:56:ed: ba:ac:c7:85:3d:83:9b:25:4c:71:7a:ef:f9:99:de: 68:ca:96:0b:23:61:2e:b6:47:e0:fc:08:b6:79:81: b3:56:20:6e:a5:82:d7:11:ec:ed:33:04:e2:fd:2d: 9e:f7:03:57:43:00:db:da:68:cc:f0:0d:55:32:5f: cf:d5:ac:b7:25:77:0e:29:be:db:9c:bb:3a:df:44: e6:d6:e6:46:7d:03:68:39:c6:39:a7:c2:23:5c:82: 78:a8:2a:a5:c6:d4:5e:81:f1:1b:3d:c0:15:53:45: e6:12:a8:6e:11:86:7a:13:4b:c1:4b:5c:2c:bc:8a: 11:cc:62:f2:c0:8f:23:52:2f:7c:dd:ca:a5:49:e7: 25:66:b9:66:84:02:64:21:30:47:04:56:be:16:58: bb:9b:84:d3:77:60:d0:07:7d:cf:85:b3:4e:30:7c: 25:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A2:BF:6D:21:7D:37:0D:75:E5:D1:6F:0D:C0:FF:77:7E:97:F0:E4 X509v3 Authority Key Identifier: keyid:05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/C22EEEAA00C311ECA542BE87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.36.0/23 IPv6: 2001:df7:3580::/48 Signature Algorithm: sha256WithRSAEncryption 2c:f2:5f:62:fe:b4:c7:52:b1:b0:91:e4:cd:59:bb:f5:9a:c5: 1b:43:3f:59:57:bf:ac:c5:6e:13:9f:7c:d2:21:ae:14:c7:8b: cc:70:46:0f:31:5d:c1:05:dd:06:a4:8c:d2:7f:29:4c:e4:ee: 46:2c:df:00:42:ff:5f:b6:58:aa:78:08:20:76:4f:ce:7e:20: b6:de:b0:91:0a:2d:eb:42:30:44:f4:cb:38:4b:34:f4:19:a9: 9b:84:ad:3f:f8:d7:33:a1:91:b7:52:fd:c5:e5:14:7f:7d:e3: 16:ce:a9:fb:63:71:eb:ba:c4:1c:b5:81:83:5c:ea:f3:d8:59: 14:ad:bc:aa:f0:93:d1:d1:72:e6:43:78:9b:31:3b:7b:e6:f1: 30:c8:8c:a3:01:c1:64:58:c1:20:f5:67:2c:d2:07:9a:33:2d: a1:06:6f:5c:5e:29:50:09:c1:01:cf:31:90:c6:0d:71:0c:69: 66:cd:40:9e:cb:df:d3:fd:e1:62:6e:ba:88:ea:46:1d:e3:a1: f0:71:c3:8a:73:c2:a4:8b:71:e8:c4:fe:06:72:ed:54:04:80: 6e:b8:e1:4f:57:07:7a:d3:af:4f:40:15:b7:62:cc:bf:87:04: 9e:52:a7:cc:20:1c:c0:3b:49:a8:8a:82:41:6f:9c:33:6b:67: 16:6a:1c:cc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc5NUIxMTAvBgNVBAUTKDA1QkVGM0I3NjQ2MzU2Q0U0MDlGQzU2M0YyQTY5MDc4 Njc3OTVFRjcwHhcNMjMwOTIxMDEwMjUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBiOTYzYy05MmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvBZxJ3a/s2XitIvypCkiyS/uD2OFzo7htEGc3LiGmwP2RZgcCwug2kOxODe ENV67/0M0s0/glzVNJB5GBnWOYXbifWxRScqSEhU7MZmNTxhdBigMFL6Vu26rMeF PYObJUxxeu/5md5oypYLI2Eutkfg/Ai2eYGzViBupYLXEeztMwTi/S2e9wNXQwDb 2mjM8A1VMl/P1ay3JXcOKb7bnLs630Tm1uZGfQNoOcY5p8IjXIJ4qCqlxtRegfEb PcAVU0XmEqhuEYZ6E0vBS1wsvIoRzGLywI8jUi983cqlSeclZrlmhAJkITBHBFa+ Fli7m4TTd2DQB33PhbNOMHwlUQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEmiv20h fTcNdeXRbw3A/3d+l/DkMB8GA1UdIwQYMBaAFAW+87dkY1bOQJ/FY/KmkHhneV73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzk1Qi9BODhGQjNFMjAw QzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJSalZzNUFuOFZqOHFhUWVHZDVY dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JiN3p0MlJqVnM1QW44Vmo4cWFRZUdkNVh2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc5NUIvQTg4RkIzRTIwMEMwMTFFQzk2QzJENTgzQzRGOUFFMDIvQzIyRUVFQUEw MEMzMTFFQ0E1NDJCRTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqyQwDwQCAAIwCQMHACABDfc1gDANBgkqhkiG9w0BAQsF AAOCAQEALPJfYv60x1KxsJHkzVm79ZrFG0M/WVe/rMVuE5980iGuFMeLzHBGDzFd wQXdBqSM0n8pTOTuRizfAEL/X7ZYqngIIHZPzn4gtt6wkQot60IwRPTLOEs09Bmp m4StP/jXM6GRt1L9xeUUf33jFs6p+2Nx67rEHLWBg1zq89hZFK28qvCT0dFy5kN4 mzE7e+bxMMiMowHBZFjBIPVnLNIHmjMtoQZvXF4pUAnBAc8xkMYNcQxpZs1Ansvf 0/3hYm66iOpGHeOh8HHDinPCpItx6MT+BnLtVASAbrjhT1cHetOvT0AVt2LMv4cE nlKnzCAcwDtJqIqCQW+cM2tnFmoczA== -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:31 2024 by rpki-client on console-ams.rpki-client.org