$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5553B5FEE90E11EA998F5735C4F9AE02.roa File: 5553B5FEE90E11EA998F5735C4F9AE02.roa (raw, json) Hash identifier: pEgR/uaJ2DZe31/ENqWmV9FilCTqUVShs1Pbvv7fnEo= Subject key identifier: 24:12:CB:A5:19:96:FA:C3:AE:1A:77:46:FE:D6:F9:11:65:41:13:AF Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 341F Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5553B5FEE90E11EA998F5735C4F9AE02.roa Signing time: Mon 02 Oct 2023 15:10:57 +0000 ROA not before: Mon 02 Oct 2023 15:10:57 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 3356 IP address blocks: 103.230.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 14:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13343 (0x341f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Oct 2 15:10:57 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651add80-ee9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d5:12:77:2a:55:84:91:18:d3:dc:77:43:a5: 0f:cd:ff:72:6b:44:04:8e:c3:1f:b8:81:7a:8a:e6: 81:b6:9e:7a:7e:e1:1a:34:35:2c:2c:ac:6d:39:b5: 5a:fb:be:0a:d0:c2:d9:bf:f1:4d:4c:cc:09:54:53: b8:a0:ad:6f:69:d8:4a:e3:93:9a:e1:f0:2f:e5:c1: 97:f0:07:82:34:3a:9d:fd:09:17:24:b0:0d:2a:a9: 6a:02:11:1e:05:83:e3:7c:07:55:0a:5b:08:dd:c2: 15:76:19:6d:f4:56:f2:3a:cf:9c:3e:7b:fa:77:50: 0a:eb:b2:7e:a3:53:48:51:22:18:ad:97:7a:9f:5b: 19:3b:a5:10:7e:2e:c3:92:a7:c0:8c:39:f5:44:c0: 36:8e:8b:d4:fd:f5:d2:00:ca:3c:3c:7a:98:a9:96: f1:b9:a9:a3:fa:92:37:84:5b:71:a6:4d:35:74:42: 96:92:74:1b:f1:38:fc:09:0e:f8:9e:cd:78:db:65: d2:ad:2b:a3:c0:f4:be:7f:4f:b8:bb:9b:32:3a:cc: 6e:3e:d6:79:34:ee:49:a2:9a:2b:6a:2f:5c:97:00: 54:ea:cf:7d:b2:16:73:a1:f8:d5:75:38:93:93:81: f4:dc:b0:f4:0d:34:3d:88:f4:36:ca:74:b9:69:de: 5e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:12:CB:A5:19:96:FA:C3:AE:1A:77:46:FE:D6:F9:11:65:41:13:AF X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5553B5FEE90E11EA998F5735C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.68.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:c1:ef:23:1e:7c:1a:2a:eb:ba:c7:ad:67:55:54:58:27:c4: 2a:08:48:bd:77:02:9d:10:7b:5c:38:d5:bc:cf:8d:36:7d:e0: e4:aa:d7:db:f3:90:4e:f2:c9:5b:c5:db:dd:d3:3b:b7:ce:dc: 12:b8:69:b6:89:fe:4b:06:0b:96:90:51:01:92:3b:ad:f6:3e: 48:0c:db:04:50:1f:00:18:f2:90:04:c2:8d:63:16:21:ae:dc: b0:79:63:13:d6:54:37:43:2b:42:de:4b:fd:f6:af:5e:f0:ea: 69:c9:de:83:36:1f:08:75:73:31:cc:fc:02:a9:4a:92:53:7b: c9:1c:5b:66:8f:f7:4b:14:e8:cb:0f:d3:ed:6c:5f:86:eb:35: a0:ae:e6:2a:2a:22:4b:a3:65:ea:cf:51:9a:86:d5:3b:95:67: 39:0c:72:94:97:5b:20:86:23:e4:05:ea:9e:88:ab:36:8d:dc: 94:74:c2:18:0b:21:65:92:e6:bd:e0:ba:b9:66:61:3c:13:da: c4:e9:5c:78:27:58:cd:0a:18:8a:a9:1a:1a:50:fc:89:16:66: ce:46:ee:04:22:96:a3:b0:20:75:91:23:2f:73:40:55:81:6f: 56:e8:d2:b3:ba:74:96:c5:b8:a8:1a:0b:08:d3:62:c3:c7:2f: 3b:ae:99:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjMxMDAyMTUxMDU3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZGQ4MC1lZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudUSdypVhJEY09x3Q6UPzf9ya0QEjsMfuIF6iuaBtp56fuEaNDUsLKxtObVa +74K0MLZv/FNTMwJVFO4oK1vadhK45Oa4fAv5cGX8AeCNDqd/QkXJLANKqlqAhEe BYPjfAdVClsI3cIVdhlt9FbyOs+cPnv6d1AK67J+o1NIUSIYrZd6n1sZO6UQfi7D kqfAjDn1RMA2jovU/fXSAMo8PHqYqZbxuamj+pI3hFtxpk01dEKWknQb8Tj8CQ74 ns1422XSrSujwPS+f0+4u5syOsxuPtZ5NO5Joporai9clwBU6s99shZzofjVdTiT k4H03LD0DTQ9iPQ2ynS5ad5eEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCQSy6UZ lvrDrhp3Rv7W+RFlQROvMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvNTU1M0I1RkVF OTBFMTFFQTk5OEY1NzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5kQwDQYJKoZIhvcNAQELBQADggEBAIrB7yMefBoq67rH rWdVVFgnxCoISL13Ap0Qe1w41bzPjTZ94OSq19vzkE7yyVvF293TO7fO3BK4abaJ /ksGC5aQUQGSO632PkgM2wRQHwAY8pAEwo1jFiGu3LB5YxPWVDdDK0LeS/32r17w 6mnJ3oM2Hwh1czHM/AKpSpJTe8kcW2aP90sU6MsP0+1sX4brNaCu5ioqIkujZerP UZqG1TuVZzkMcpSXWyCGI+QF6p6IqzaN3JR0whgLIWWS5r3gurlmYTwT2sTpXHgn WM0KGIqpGhpQ/IkWZs5G7gQilqOwIHWRIy9zQFWBb1bo0rO6dJbFuKgaCwjTYsPH Lzuumfc= -----END CERTIFICATE-----Generated at Thu Apr 18 17:44:24 2024 by rpki-client on console-ams.rpki-client.org