$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2695/BB87AC4A47F811E880E4F410C4F9AE02/6208BAD4499611E8B421BE5CC4F9AE02.roa File: 6208BAD4499611E8B421BE5CC4F9AE02.roa (raw, json) Hash identifier: j96PTlFpoRCT0sM9GV/HTNOgabv8BE28v1KYhTEUe9E= Subject key identifier: DE:0D:7A:CB:BE:D3:9E:B9:3F:5A:F7:3D:EC:7B:A9:F9:0A:9C:83:09 Certificate issuer: /CN=A91E2695/serialNumber=F4CFCA1D660BF161B3F409ADCB0C13C0FA822464 Certificate serial: 13C8 Authority key identifier: F4:CF:CA:1D:66:0B:F1:61:B3:F4:09:AD:CB:0C:13:C0:FA:82:24:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9M_KHWYL8WGz9AmtywwTwPqCJGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2695/BB87AC4A47F811E880E4F410C4F9AE02/6208BAD4499611E8B421BE5CC4F9AE02.roa Signing time: Wed 12 Jul 2023 17:14:01 +0000 ROA not before: Wed 12 Jul 2023 17:14:01 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 136558 IP address blocks: 103.92.208.0/24 maxlen: 24 103.101.53.0/24 maxlen: 24 103.101.54.0/23 maxlen: 23 103.101.54.0/24 maxlen: 24 103.101.55.0/24 maxlen: 24 2405:65c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2695/BB87AC4A47F811E880E4F410C4F9AE02/9M_KHWYL8WGz9AmtywwTwPqCJGQ.crl rsync://rpki.apnic.net/member_repository/A91E2695/BB87AC4A47F811E880E4F410C4F9AE02/9M_KHWYL8WGz9AmtywwTwPqCJGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9M_KHWYL8WGz9AmtywwTwPqCJGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5064 (0x13c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2695/serialNumber=F4CFCA1D660BF161B3F409ADCB0C13C0FA822464 Validity Not Before: Jul 12 17:14:01 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64aedf59-d623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:1e:c7:4f:8a:f2:cd:ef:a1:c0:33:63:e2:6e: b3:2c:e1:a7:a6:60:68:48:0b:4f:72:f1:47:71:8a: 4c:06:3a:e2:39:f4:e8:41:10:3d:8d:d9:3c:63:12: 7d:72:33:9a:0f:d7:b2:1f:ae:fb:13:55:f3:d9:2c: f7:33:a6:95:83:dd:bd:6c:5a:f7:49:c3:4b:46:e5: 3f:8a:92:2a:17:b4:0a:da:c1:2f:4a:c4:26:03:97: 27:4b:7c:68:87:86:8c:3b:b1:42:e8:8e:2d:49:fd: 97:6d:88:29:47:17:38:2e:bd:f3:b7:77:cd:bc:57: 14:fb:4a:fa:dc:2f:0e:88:0f:31:50:fd:d1:8a:3c: dc:6a:b7:a6:c3:e7:d8:2c:98:06:f5:b1:25:2d:a2: a4:7b:4b:64:c5:98:e1:ad:ef:76:d4:b0:bc:24:ea: d9:67:bf:e0:21:45:5d:00:55:78:f3:1a:51:fb:2a: a1:88:ed:dd:4b:7c:f6:40:28:7d:d9:ff:02:34:d7: 56:b0:39:5f:fe:92:00:0e:cc:83:5a:4d:1e:1b:0d: c2:8c:09:ee:14:1b:66:6c:cd:04:6f:a7:41:e1:d9: 13:ff:2e:be:b9:11:e4:2d:8d:c3:6c:7f:7a:0d:72: 03:d6:2f:e0:3a:6f:06:2b:ca:a1:20:48:d5:4f:86: 81:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0D:7A:CB:BE:D3:9E:B9:3F:5A:F7:3D:EC:7B:A9:F9:0A:9C:83:09 X509v3 Authority Key Identifier: keyid:F4:CF:CA:1D:66:0B:F1:61:B3:F4:09:AD:CB:0C:13:C0:FA:82:24:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2695/BB87AC4A47F811E880E4F410C4F9AE02/9M_KHWYL8WGz9AmtywwTwPqCJGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9M_KHWYL8WGz9AmtywwTwPqCJGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2695/BB87AC4A47F811E880E4F410C4F9AE02/6208BAD4499611E8B421BE5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.208.0/24 103.101.53.0-103.101.55.255 IPv6: 2405:65c0::/32 Signature Algorithm: sha256WithRSAEncryption 19:10:06:91:db:6f:e7:93:62:f3:63:0b:e1:54:a4:01:c4:e1: d5:14:95:05:74:5c:7f:73:3e:b4:cb:ae:58:18:a1:de:20:db: af:74:21:f7:0b:1a:4e:d7:4d:f9:ec:c4:d7:66:4c:b0:9f:6c: 9d:74:5d:cd:ab:17:cf:34:03:0c:85:be:57:a6:af:d9:78:50: 5a:b1:97:ac:0b:7e:e6:82:88:31:6d:b5:33:4a:f7:de:ed:36: f5:3d:75:e2:bf:57:2e:38:0b:1a:01:15:ef:12:50:99:6a:6e: 1f:08:c8:96:e9:7f:27:1f:df:f5:cc:e2:cb:5c:a9:ff:e0:47: a4:d8:59:15:85:0c:9b:f5:bb:7c:72:c1:3f:d0:4c:43:f3:26: c5:0e:42:69:82:5c:58:22:23:9a:7d:fd:57:ea:41:7a:d4:1b: c6:82:35:3d:6c:45:33:43:59:88:83:d7:78:41:e4:bf:c7:43: 83:6c:26:40:9b:c5:14:50:cd:47:63:19:21:31:ba:fa:e5:e8: d3:63:2a:2b:bd:03:ae:af:bb:4a:6e:23:36:da:2d:8a:38:33: be:ad:c9:ab:bb:f3:44:70:52:ad:de:73:2e:39:9b:0e:08:bd: 5e:e8:60:c8:7a:86:c6:47:39:46:17:ab:e5:78:29:3f:e4:0c: d9:c3:0a:47 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICE8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI2OTUxMTAvBgNVBAUTKEY0Q0ZDQTFENjYwQkYxNjFCM0Y0MDlBRENCMEMxM0Mw RkE4MjI0NjQwHhcNMjMwNzEyMTcxNDAxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFlZGY1OS1kNjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6x7HT4ryze+hwDNj4m6zLOGnpmBoSAtPcvFHcYpMBjriOfToQRA9jdk8YxJ9 cjOaD9eyH677E1Xz2Sz3M6aVg929bFr3ScNLRuU/ipIqF7QK2sEvSsQmA5cnS3xo h4aMO7FC6I4tSf2XbYgpRxc4Lr3zt3fNvFcU+0r63C8OiA8xUP3Rijzcaremw+fY LJgG9bElLaKke0tkxZjhre921LC8JOrZZ7/gIUVdAFV48xpR+yqhiO3dS3z2QCh9 2f8CNNdWsDlf/pIADsyDWk0eGw3CjAnuFBtmbM0Eb6dB4dkT/y6+uRHkLY3DbH96 DXID1i/gOm8GK8qhIEjVT4aBxwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFN4Nesu+ 0565P1r3Pex7qfkKnIMJMB8GA1UdIwQYMBaAFPTPyh1mC/Fhs/QJrcsME8D6giRk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjY5NS9CQjg3QUM0QTQ3 RjgxMUU4ODBFNEY0MTBDNEY5QUUwMi85TV9LSFdZTDhXR3o5QW10eXd3VHdQcUNK R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNX0tIV1lMOFdHejlBbXR5d3dUd1BxQ0pHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI2OTUvQkI4N0FDNEE0N0Y4MTFFODgwRTRGNDEwQzRGOUFFMDIvNjIwOEJBRDQ0 OTk2MTFFOEI0MjFCRTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBoEAgABMBQDBABnXNAwDAMEAGdlNQMEA2dlMDANBAIAAjAHAwUAJAVlwDAN BgkqhkiG9w0BAQsFAAOCAQEAGRAGkdtv55Ni82ML4VSkAcTh1RSVBXRcf3M+tMuu WBih3iDbr3Qh9wsaTtdN+ezE12ZMsJ9snXRdzasXzzQDDIW+V6av2XhQWrGXrAt+ 5oKIMW21M0r33u029T114r9XLjgLGgEV7xJQmWpuHwjIlul/Jx/f9cziy1yp/+BH pNhZFYUMm/W7fHLBP9BMQ/MmxQ5CaYJcWCIjmn39V+pBetQbxoI1PWxFM0NZiIPX eEHkv8dDg2wmQJvFFFDNR2MZITG6+uXo02MqK70Drq+7Sm4jNtotijgzvq3Jq7vz RHBSrd5zLjmbDgi9XuhgyHqGxkc5Rher5XgpP+QM2cMKRw== -----END CERTIFICATE-----Generated at Fri May 31 20:34:18 2024 by rpki-client on console-ams.rpki-client.org