$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/920126A625F011E7AB40BB69C4F9AE02.roa File: 920126A625F011E7AB40BB69C4F9AE02.roa (raw, json) Hash identifier: 0hZ3+OpFZYBUYKTlpJLUadJMlerF9D86c90f8Z02T0c= Subject key identifier: ED:69:98:21:C1:D4:5B:12:37:F9:A2:9E:74:6E:23:EF:C2:98:19:E9 Certificate issuer: /CN=A91DC4E1/serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Certificate serial: 1A8F Authority key identifier: DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/920126A625F011E7AB40BB69C4F9AE02.roa Signing time: Thu 02 May 2024 17:04:51 +0000 ROA not before: Thu 02 May 2024 17:04:51 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 64269 IP address blocks: 103.89.140.0/22 maxlen: 22 103.89.140.0/24 maxlen: 24 103.89.141.0/24 maxlen: 24 103.89.142.0/24 maxlen: 24 103.89.143.0/24 maxlen: 24 202.14.204.0/22 maxlen: 22 202.14.204.0/24 maxlen: 24 202.14.205.0/24 maxlen: 24 202.14.206.0/24 maxlen: 24 202.14.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6799 (0x1a8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC4E1/serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Validity Not Before: May 2 17:04:51 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6633c7b3-c3fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b0:95:19:9e:d9:b5:77:30:c7:9f:ad:dc:23: a8:cb:e0:fd:a1:74:c1:6c:ff:5d:79:80:2a:4d:b6: 45:c3:86:ee:f7:62:ca:1b:98:c5:98:45:75:44:95: 31:bb:75:8e:87:63:9c:44:8f:4a:92:2b:40:8a:39: a2:98:24:73:fd:a4:b0:57:a7:89:df:9f:9f:16:7d: 8b:0f:82:5f:11:9b:bc:ee:3c:e8:56:ca:75:43:26: 82:86:fd:e1:e4:8e:9e:0e:78:8e:94:05:96:96:c0: 4f:f6:ba:fc:42:4e:6a:5c:ea:fd:e9:b2:82:b6:4b: 7d:f1:7c:62:fd:f5:c2:6c:2a:1d:3d:07:59:06:83: 59:c4:2b:33:4d:4c:8d:55:b1:3d:8a:8c:7d:23:71: 35:4c:a1:50:88:ca:58:4b:83:ae:0b:76:20:3b:3e: bd:f1:72:7b:88:ed:57:4a:4a:66:d2:2d:8f:59:f0: 59:07:7f:7f:05:ee:75:71:07:af:8c:73:e7:7c:a9: de:cf:01:e9:47:57:30:55:6a:75:f6:1d:e5:ff:c4: 0f:05:70:1d:5f:fd:0e:de:e8:b6:bf:87:60:54:fd: 90:56:df:78:ca:1c:d6:af:61:25:b0:9f:08:4e:23: f8:8e:a1:23:32:00:42:ff:42:1b:1a:f6:e9:44:22: 42:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:69:98:21:C1:D4:5B:12:37:F9:A2:9E:74:6E:23:EF:C2:98:19:E9 X509v3 Authority Key Identifier: keyid:DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/920126A625F011E7AB40BB69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.140.0/22 202.14.204.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:1d:11:1d:89:54:80:8e:96:ed:ab:11:01:36:f6:89:c7:6b: 45:8c:94:cf:02:5c:75:26:37:11:26:57:fc:52:1e:94:be:bc: ed:43:85:96:7d:e4:e6:31:aa:35:84:35:f6:1a:11:78:db:3d: 7c:a4:11:c8:98:e2:e4:30:8f:df:1f:13:a2:e8:37:f2:0e:72: 95:d4:42:bc:b5:d5:d6:71:73:12:74:df:1a:de:69:8f:76:0c: 4b:7f:39:af:ee:92:63:fd:ba:53:70:37:6c:97:47:ea:49:f9: 81:65:3a:99:ba:4b:45:e0:87:34:bc:a9:a6:9f:ec:dd:82:0f: 2c:f6:6e:6c:b2:1a:9b:c0:a2:10:da:81:c8:c8:5e:f7:72:6f: 46:1e:e9:4a:36:5c:76:1e:68:f0:92:1d:27:82:a9:64:93:1c: 9d:49:32:fd:99:7e:d7:ca:4a:21:6e:e4:70:9d:9f:37:da:9b: 68:37:3d:54:32:3c:e0:36:2a:b6:3c:ef:f5:35:8b:3e:fe:5b: d7:d3:1b:e7:c1:00:5b:68:30:5e:70:71:fa:0a:26:f2:8d:99: 5d:71:be:7e:1a:2e:82:35:b8:c9:8b:5e:e2:72:7a:c8:6d:df: 34:5b:d3:77:c9:3d:15:50:77:fd:15:79:b5:ff:ee:4c:62:55: c5:5c:ac:45 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0RTExMTAvBgNVBAUTKERDMUIzOUI1NEY2MDg5MUFDNzc4QTkzMTZENzFCMEJF ODAwNjM5NkUwHhcNMjQwNTAyMTcwNDUxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzYzdiMy1jM2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLCVGZ7ZtXcwx5+t3COoy+D9oXTBbP9deYAqTbZFw4bu92LKG5jFmEV1RJUx u3WOh2OcRI9KkitAijmimCRz/aSwV6eJ35+fFn2LD4JfEZu87jzoVsp1QyaChv3h 5I6eDniOlAWWlsBP9rr8Qk5qXOr96bKCtkt98Xxi/fXCbCodPQdZBoNZxCszTUyN VbE9iox9I3E1TKFQiMpYS4OuC3YgOz698XJ7iO1XSkpm0i2PWfBZB39/Be51cQev jHPnfKnezwHpR1cwVWp19h3l/8QPBXAdX/0O3ui2v4dgVP2QVt94yhzWr2ElsJ8I TiP4jqEjMgBC/0IbGvbpRCJCyQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO1pmCHB 1FsSN/minnRuI+/CmBnpMB8GA1UdIwQYMBaAFNwbObVPYIkax3ipMW1xsL6ABjlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzRFMS8yMDA0RjE0NDE2 MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lSckhlS2t4YlhHd3ZvQUdP VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCczV0VTlnaVJySGVLa3hiWEd3dm9BR09XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM0RTEvMjAwNEYxNDQxNjAxMTFFN0E4QUMyMjVEQzRGOUFFMDIvOTIwMTI2QTYy NUYwMTFFN0FCNDBCQjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnWYwDBALKDswwDQYJKoZIhvcNAQELBQADggEBAE0dER2J VICOlu2rEQE29onHa0WMlM8CXHUmNxEmV/xSHpS+vO1DhZZ95OYxqjWENfYaEXjb PXykEciY4uQwj98fE6LoN/IOcpXUQry11dZxcxJ03xreaY92DEt/Oa/ukmP9ulNw N2yXR+pJ+YFlOpm6S0XghzS8qaaf7N2CDyz2bmyyGpvAohDagcjIXvdyb0Ye6Uo2 XHYeaPCSHSeCqWSTHJ1JMv2ZftfKSiFu5HCdnzfam2g3PVQyPOA2KrY87/U1iz7+ W9fTG+fBAFtoMF5wcfoKJvKNmV1xvn4aLoI1uMmLXuJyesht3zRb03fJPRVQd/0V ebX/7kxiVcVcrEU= -----END CERTIFICATE-----Generated at Fri May 31 20:34:18 2024 by rpki-client on console-ams.rpki-client.org