$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/1A15CABE7DD111ECBB4A7D84C4F9AE02.roa File: 1A15CABE7DD111ECBB4A7D84C4F9AE02.roa (raw, json) Hash identifier: zz2Bw66bfqL3b1K/2KDRvrvXLAcxtClotk8fBB8gWgU= Subject key identifier: 4E:2B:AF:91:DF:F9:FD:85:5D:D5:C0:5D:FA:79:30:A8:A0:29:43:D2 Certificate issuer: /CN=A91DBD27/serialNumber=F214EDD7EF8D006F82A227FCE65BC5F3E648A3FA Certificate serial: 0313 Authority key identifier: F2:14:ED:D7:EF:8D:00:6F:82:A2:27:FC:E6:5B:C5:F3:E6:48:A3:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/1A15CABE7DD111ECBB4A7D84C4F9AE02.roa Signing time: Wed 03 Apr 2024 03:35:17 +0000 ROA not before: Wed 03 Apr 2024 03:35:17 +0000 ROA not after: Thu 01 Aug 2024 00:00:00 +0000 asID: 149441 IP address blocks: 103.179.133.0/24 maxlen: 24 2001:df0:4e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.crl rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBD27/serialNumber=F214EDD7EF8D006F82A227FCE65BC5F3E648A3FA Validity Not Before: Apr 3 03:35:17 2024 GMT Not After : Aug 1 00:00:00 2024 GMT Subject: CN=660cce75-d58b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:02:3a:14:c2:f7:cb:7e:3e:26:e4:d4:fa:32: e2:b1:7f:89:56:d6:a8:3b:9f:e4:69:7c:bc:df:71: 1f:fa:78:55:fd:22:6d:57:37:9d:86:3c:fb:70:29: 68:6a:e8:db:93:47:57:51:77:7a:1d:eb:ed:c8:34: a8:cb:dd:48:82:48:8a:84:69:50:73:22:e5:ca:8c: 90:54:bc:cd:f1:a4:68:94:a6:f2:53:f0:61:41:ac: 56:92:b7:31:fe:90:b9:1d:06:91:00:64:75:74:ad: bc:d4:1a:5b:19:e5:79:e0:7f:b5:df:3d:0c:8a:b2: e7:bc:fd:f3:2a:44:94:94:4f:f0:5a:a4:28:79:9c: 8a:6a:61:83:c9:d5:c9:76:fb:73:94:a3:65:90:c4: e5:00:93:f0:91:67:7e:21:ee:5b:b4:f2:ec:8d:fb: 68:82:cc:1c:a2:4e:ea:af:08:75:b3:82:55:0b:c8: c3:86:03:57:da:a2:75:02:bd:5e:c5:1f:c5:9b:b8: 2c:33:5c:2a:ca:60:33:76:c9:9f:91:b5:d2:2d:ae: fe:b1:1d:5c:ea:60:cf:97:43:30:fe:83:7e:2a:07: 83:cd:a9:b7:78:4b:2d:20:7a:af:5d:34:bc:8d:4a: cb:34:a8:97:d3:ab:cc:7a:15:8d:15:2b:36:53:3b: e5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2B:AF:91:DF:F9:FD:85:5D:D5:C0:5D:FA:79:30:A8:A0:29:43:D2 X509v3 Authority Key Identifier: keyid:F2:14:ED:D7:EF:8D:00:6F:82:A2:27:FC:E6:5B:C5:F3:E6:48:A3:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/1A15CABE7DD111ECBB4A7D84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.133.0/24 IPv6: 2001:df0:4e40::/48 Signature Algorithm: sha256WithRSAEncryption 15:1b:de:74:26:10:95:24:e8:ac:40:26:6c:9b:f3:19:17:f8: ea:be:d9:3e:e3:3b:b0:2d:df:5b:63:fd:28:37:e1:41:cf:77: bd:59:90:bf:89:b8:78:ec:05:e7:d6:08:31:0f:ff:be:24:c8: 21:ac:74:99:86:8d:81:1b:57:51:4b:84:71:9e:c9:2c:2e:68: 02:71:c5:86:71:92:21:c7:4c:d3:5d:ff:e8:d8:2b:57:ff:50: 36:bf:99:aa:2b:9f:48:9b:9b:cf:e1:c7:2c:c8:52:55:45:19: 07:33:0a:98:fe:af:0b:9b:c9:2a:c8:87:7a:ec:3b:44:ed:c6: da:9f:9e:5a:9d:11:64:90:eb:ec:33:c6:c7:2a:95:c1:0f:aa: 25:bb:94:bd:8d:2b:4e:1b:62:61:30:00:03:1a:75:f2:cb:0e: 68:50:38:a1:28:9b:92:37:94:0d:7c:c7:fd:de:84:00:0f:cc: 81:32:c7:aa:0e:ac:5f:2e:d1:5c:d1:39:24:c2:cc:48:5f:79: ac:42:f2:2f:e1:e9:0b:10:ea:57:1b:76:36:fc:e3:f8:af:80: 30:05:7d:09:58:4c:fe:f5:ba:02:f1:0c:af:36:a9:58:c9:57: d7:d7:cf:44:97:f0:59:b8:c7:45:42:a8:1f:bc:76:5c:94:b1: a8:a2:74:33 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJEMjcxMTAvBgNVBAUTKEYyMTRFREQ3RUY4RDAwNkY4MkEyMjdGQ0U2NUJDNUYz RTY0OEEzRkEwHhcNMjQwNDAzMDMzNTE3WhcNMjQwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjY2U3NS1kNThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwI6FML3y34+JuTU+jLisX+JVtaoO5/kaXy833Ef+nhV/SJtVzedhjz7cClo aujbk0dXUXd6HevtyDSoy91IgkiKhGlQcyLlyoyQVLzN8aRolKbyU/BhQaxWkrcx /pC5HQaRAGR1dK281BpbGeV54H+13z0MirLnvP3zKkSUlE/wWqQoeZyKamGDydXJ dvtzlKNlkMTlAJPwkWd+Ie5btPLsjftogswcok7qrwh1s4JVC8jDhgNX2qJ1Ar1e xR/Fm7gsM1wqymAzdsmfkbXSLa7+sR1c6mDPl0Mw/oN+KgeDzam3eEstIHqvXTS8 jUrLNKiX06vMehWNFSs2UzvlrwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFE4rr5Hf +f2FXdXAXfp5MKigKUPSMB8GA1UdIwQYMBaAFPIU7dfvjQBvgqIn/OZbxfPmSKP6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkQyNy9ERTVFNzc0RTdE Q0QxMUVDQTZCRDlEMzJDNEY5QUUwMi84aFR0MS0tTkFHLUNvaWY4NWx2RjgtWklv X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhoVHQxLS1OQUctQ29pZjg1bHZGOC1aSW9fby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJEMjcvREU1RTc3NEU3RENEMTFFQ0E2QkQ5RDMyQzRGOUFFMDIvMUExNUNBQkU3 REQxMTFFQ0JCNEE3RDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABns4UwDwQCAAIwCQMHACABDfBOQDANBgkqhkiG9w0BAQsF AAOCAQEAFRvedCYQlSTorEAmbJvzGRf46r7ZPuM7sC3fW2P9KDfhQc93vVmQv4m4 eOwF59YIMQ//viTIIax0mYaNgRtXUUuEcZ7JLC5oAnHFhnGSIcdM013/6NgrV/9Q Nr+ZqiufSJubz+HHLMhSVUUZBzMKmP6vC5vJKsiHeuw7RO3G2p+eWp0RZJDr7DPG xyqVwQ+qJbuUvY0rThtiYTAAAxp18ssOaFA4oSibkjeUDXzH/d6EAA/MgTLHqg6s Xy7RXNE5JMLMSF95rELyL+HpCxDqVxt2Nvzj+K+AMAV9CVhM/vW6AvEMrzapWMlX 19fPRJfwWbjHRUKoH7x2XJSxqKJ0Mw== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:28 2024 by rpki-client on console-ams.rpki-client.org