$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/A4B89C5082B111EEB427125DC4F9AE02.roa File: A4B89C5082B111EEB427125DC4F9AE02.roa (raw, json) Hash identifier: ZGdA796ml3VKylLB4w8czh682N3cMD4buo243Xsl1pA= Subject key identifier: 62:A2:4B:50:BC:75:54:25:97:23:1F:DC:F9:CF:56:E0:5A:F4:64:10 Certificate issuer: /CN=A91DCDB3/serialNumber=63A29ABD87F4A1FE55CBF2A0F409750AC34AC235 Certificate serial: 06 Authority key identifier: 63:A2:9A:BD:87:F4:A1:FE:55:CB:F2:A0:F4:09:75:0A:C3:4A:C2:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/A4B89C5082B111EEB427125DC4F9AE02.roa Signing time: Tue 14 Nov 2023 05:50:59 +0000 ROA not before: Tue 14 Nov 2023 05:50:59 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 9651 IP address blocks: 103.29.104.0/23 maxlen: 23 103.29.104.0/24 maxlen: 24 103.29.105.0/24 maxlen: 24 103.250.42.0/23 maxlen: 23 103.250.42.0/24 maxlen: 24 103.250.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.crl rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCDB3/serialNumber=63A29ABD87F4A1FE55CBF2A0F409750AC34AC235 Validity Not Before: Nov 14 05:50:59 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65530ac3-7168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e5:64:8d:9f:ef:9c:25:a1:26:ea:06:d2:75: 48:7f:51:68:7a:7d:61:99:8f:4f:89:87:86:94:4e: b1:37:dd:b0:dd:4f:6e:ae:e8:06:9d:1d:19:79:b5: 3c:b8:3b:24:9e:1a:0b:20:fd:ad:84:19:09:95:58: f9:02:1a:56:43:6b:d5:6e:ad:49:47:be:3d:06:82: d6:7a:ec:0f:92:76:57:ab:b8:39:fa:82:f7:af:eb: 85:51:78:4d:cf:51:27:13:25:8e:7d:37:2f:8b:40: b5:04:2c:b9:e8:13:8b:1d:bd:08:5d:de:3f:a6:94: af:08:dc:db:08:d3:75:9b:e8:d9:96:0a:00:81:0b: a0:a0:4a:fb:63:dc:0a:8e:12:bb:ba:fe:7f:c1:8e: 46:47:5b:d5:3e:1a:3c:9b:d0:d7:56:69:46:a4:a6: e8:e6:c1:87:ac:0e:9e:db:30:ba:d8:28:99:94:47: 90:54:2b:a2:2a:7e:7c:35:e0:98:79:f8:e8:cc:62: 17:cb:8e:41:d6:1f:df:da:f1:b5:04:5f:40:40:e5: df:c2:84:d9:f5:e9:cf:65:e6:6b:54:21:3f:c2:53: d8:cb:08:2b:00:74:60:0f:a6:37:64:76:22:dd:f0: 76:0b:cf:ce:85:d2:62:d9:77:fe:a1:f3:7e:91:da: 53:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A2:4B:50:BC:75:54:25:97:23:1F:DC:F9:CF:56:E0:5A:F4:64:10 X509v3 Authority Key Identifier: keyid:63:A2:9A:BD:87:F4:A1:FE:55:CB:F2:A0:F4:09:75:0A:C3:4A:C2:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/A4B89C5082B111EEB427125DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.104.0/23 103.250.42.0/23 Signature Algorithm: sha256WithRSAEncryption 85:9e:c1:96:2e:87:0a:16:b7:bb:3d:93:4c:19:62:ac:28:9d: 79:e4:87:e0:b4:21:59:2e:f2:88:17:a4:3f:04:c2:f9:df:c5: 53:82:3f:9e:01:3b:79:9f:88:8f:e9:42:65:8b:01:4e:65:e6: 95:c3:05:ff:64:12:2c:70:70:f1:e7:7b:25:14:cf:98:20:a8: 81:d3:5a:fe:d0:7e:72:42:51:a5:f9:dd:b9:c0:e2:9c:c7:e9: 3f:1a:a7:96:47:7b:29:18:95:df:02:99:03:af:23:c0:69:38: 67:22:a7:b1:37:38:81:c0:b0:e1:e8:a0:f1:c6:48:e8:72:3f: fc:9d:2a:fa:e7:d2:12:16:19:1e:4e:00:84:4c:2e:62:59:80: 8c:76:f1:8d:83:12:91:1b:71:21:20:6b:f6:a0:71:87:2b:e1: 16:12:85:87:c9:7c:eb:e3:8e:06:d3:f7:65:8a:66:4e:a5:a1: b9:49:d8:d0:04:e6:d8:2f:4b:c8:6b:0f:ca:ab:50:80:75:3c: be:2d:24:27:f0:54:ed:b5:98:e7:e3:f6:7d:f8:7d:71:d9:d9: 97:47:8e:93:83:5c:69:cf:97:ce:16:07:73:f0:9e:ce:eb:b0: 0a:84:2d:98:82:be:3f:53:c9:40:18:c6:cb:9c:ea:2d:f2:1e: a2:dc:1c:a8 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Q0RCMzExMC8GA1UEBRMoNjNBMjlBQkQ4N0Y0QTFGRTU1Q0JGMkEwRjQwOTc1MEFD MzRBQzIzNTAeFw0yMzExMTQwNTUwNTlaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NTMwYWMzLTcxNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDm5WSNn++cJaEm6gbSdUh/UWh6fWGZj0+Jh4aUTrE33bDdT26u6AadHRl5tTy4 OySeGgsg/a2EGQmVWPkCGlZDa9VurUlHvj0GgtZ67A+SdleruDn6gvev64VReE3P UScTJY59Ny+LQLUELLnoE4sdvQhd3j+mlK8I3NsI03Wb6NmWCgCBC6CgSvtj3AqO Eru6/n/BjkZHW9U+Gjyb0NdWaUakpujmwYesDp7bMLrYKJmUR5BUK6Iqfnw14Jh5 +OjMYhfLjkHWH9/a8bUEX0BA5d/ChNn16c9l5mtUIT/CU9jLCCsAdGAPpjdkdiLd 8HYLz86F0mLZd/6h836R2lORAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUYqJLULx1 VCWXIx/c+c9W4Fr0ZBAwHwYDVR0jBBgwFoAUY6KavYf0of5Vy/Kg9Al1CsNKwjUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDREIzLzkzMDVEMkUwODJB RjExRUVCRUM1OTc1OUM0RjlBRTAyL1k2S2F2WWYwb2Y1VnlfS2c5QWwxQ3NOS3dq VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTZLYXZZZjBvZjVWeV9LZzlBbDFDc05Ld2pVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0RCMy85MzA1RDJFMDgyQUYxMUVFQkVDNTk3NTlDNEY5QUUwMi9BNEI4OUM1MDgy QjExMUVFQjQyNzEyNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAWcdaAMEAWf6KjANBgkqhkiG9w0BAQsFAAOCAQEAhZ7Bli6H Cha3uz2TTBlirCideeSH4LQhWS7yiBekPwTC+d/FU4I/ngE7eZ+Ij+lCZYsBTmXm lcMF/2QSLHBw8ed7JRTPmCCogdNa/tB+ckJRpfnducDinMfpPxqnlkd7KRiV3wKZ A68jwGk4ZyKnsTc4gcCw4eig8cZI6HI//J0q+ufSEhYZHk4AhEwuYlmAjHbxjYMS kRtxISBr9qBxhyvhFhKFh8l86+OOBtP3ZYpmTqWhuUnY0ATm2C9LyGsPyqtQgHU8 vi0kJ/BU7bWY5+P2ffh9cdnZl0eOk4Ncac+XzhYHc/CezuuwCoQtmIK+P1PJQBjG y5zqLfIeotwcqA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:34 2024 by rpki-client on console-ams.rpki-client.org