$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6A5/4A93F6422C3111EE9CE4FF6DC4F9AE02/AE8AEA702C3111EE94A5056FC4F9AE02.roa File: AE8AEA702C3111EE94A5056FC4F9AE02.roa (raw, json) Hash identifier: cAWcl90qX5LgvbTQqYzXpZ/JrQ2ME6XuMgDUMfAGsq8= Subject key identifier: F0:9D:F3:28:2D:5A:EE:76:C0:B8:E8:20:3A:16:30:6A:D7:AB:DE:76 Certificate issuer: /CN=A91EB6A5/serialNumber=D65AA955D7E62C71C5AB2BB71A0C9DC272AA9465 Certificate serial: 12 Authority key identifier: D6:5A:A9:55:D7:E6:2C:71:C5:AB:2B:B7:1A:0C:9D:C2:72:AA:94:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqpVdfmLHHFqyu3GgydwnKqlGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6A5/4A93F6422C3111EE9CE4FF6DC4F9AE02/AE8AEA702C3111EE94A5056FC4F9AE02.roa Signing time: Thu 17 Aug 2023 05:45:33 +0000 ROA not before: Thu 17 Aug 2023 05:45:33 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139304 IP address blocks: 103.140.253.0/24 maxlen: 24 2001:df0:e580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6A5/4A93F6422C3111EE9CE4FF6DC4F9AE02/1lqpVdfmLHHFqyu3GgydwnKqlGU.crl rsync://rpki.apnic.net/member_repository/A91EB6A5/4A93F6422C3111EE9CE4FF6DC4F9AE02/1lqpVdfmLHHFqyu3GgydwnKqlGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqpVdfmLHHFqyu3GgydwnKqlGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6A5/serialNumber=D65AA955D7E62C71C5AB2BB71A0C9DC272AA9465 Validity Not Before: Aug 17 05:45:33 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ddb3fd-0904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3c:db:4e:ef:c0:7e:64:a2:9b:38:3c:42:5b: c6:13:ea:17:27:2e:3d:9d:07:2c:e7:d1:9d:0b:70: 05:34:dc:3d:a1:56:69:78:e9:de:8b:fc:31:55:4b: cf:3d:cc:5c:24:b0:fb:d9:4b:33:ff:b6:0b:b9:5f: f6:e1:36:dc:00:3b:96:9a:1c:c7:99:a7:08:b2:80: 5f:ab:8b:46:f0:d4:ff:17:fe:59:c9:e2:be:60:21: 6f:5f:6d:bb:fe:3c:8f:72:ce:31:ab:f3:2f:19:0a: 2f:c5:46:30:75:df:5d:a4:91:6a:29:5f:66:9a:5f: 15:ca:3c:45:fd:8c:43:38:52:98:c8:aa:6f:4e:06: d0:e6:91:35:a8:bb:47:29:af:d6:71:46:ab:83:92: ba:15:f9:48:bc:51:d9:a8:bc:42:9d:b4:ee:85:06: 6d:5b:f4:8d:90:bd:ed:a5:80:c4:90:fc:16:ba:95: ae:7e:2a:60:17:0a:94:f0:2c:20:e5:e8:2a:aa:6e: 0f:60:28:8a:91:39:50:92:ec:22:83:17:42:bd:b7: d5:18:79:d0:a0:f6:94:b5:a2:36:d4:21:01:14:b1: 3b:86:d7:9e:5a:21:83:e5:e0:c8:cb:8f:eb:e4:66: b9:3e:40:fd:f6:bd:9f:11:ce:7d:ac:8c:d2:d6:14: be:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:9D:F3:28:2D:5A:EE:76:C0:B8:E8:20:3A:16:30:6A:D7:AB:DE:76 X509v3 Authority Key Identifier: keyid:D6:5A:A9:55:D7:E6:2C:71:C5:AB:2B:B7:1A:0C:9D:C2:72:AA:94:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6A5/4A93F6422C3111EE9CE4FF6DC4F9AE02/1lqpVdfmLHHFqyu3GgydwnKqlGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqpVdfmLHHFqyu3GgydwnKqlGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6A5/4A93F6422C3111EE9CE4FF6DC4F9AE02/AE8AEA702C3111EE94A5056FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.253.0/24 IPv6: 2001:df0:e580::/48 Signature Algorithm: sha256WithRSAEncryption b6:1b:b7:b0:24:5b:a9:87:ab:ed:37:f6:10:b0:b7:64:22:ea: da:b5:ed:b8:7e:72:95:0e:59:5e:aa:c8:07:43:2d:09:ae:31: 64:04:69:04:b7:7a:94:c7:99:cb:6a:88:5d:ee:1e:f2:2a:31: aa:a2:3e:77:9a:fa:0e:47:02:6f:74:2a:09:f3:c0:e8:a3:da: 36:6e:a7:cf:65:3b:64:ca:f6:53:a1:ac:07:5d:5c:c2:7c:4f: cf:85:98:23:c2:0e:8c:f8:24:58:e4:4b:d0:48:f7:c9:c1:f3: a1:cb:1e:70:83:22:7e:1e:ae:76:83:5d:1c:77:6a:b9:95:47: 27:a3:57:79:41:bd:9d:3b:1e:a9:44:01:1f:c9:63:8c:36:69: cd:f4:38:79:53:91:21:b0:09:53:d7:8a:ff:2a:ff:d5:62:7a: 82:5c:8d:76:57:ee:30:e3:e5:89:5b:c4:ea:1c:1b:b4:2e:93: 4d:81:83:d5:d6:08:d7:de:30:7c:8a:37:de:a3:f1:8b:bb:49: 66:a6:47:5e:cf:34:f0:93:37:0d:7d:4f:34:fa:c1:e0:95:d2: c5:b3:68:39:22:f4:52:9b:7e:e7:7f:33:f0:b0:9d:f7:80:f8: b0:7b:fd:2c:fa:b4:7a:a0:43:2f:61:8f:97:96:a2:f0:40:c0: f9:6c:7e:5f -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QjZBNTExMC8GA1UEBRMoRDY1QUE5NTVEN0U2MkM3MUM1QUIyQkI3MUEwQzlEQzI3 MkFBOTQ2NTAeFw0yMzA4MTcwNTQ1MzNaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZGRiM2ZkLTA5MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIPNtO78B+ZKKbODxCW8YT6hcnLj2dByzn0Z0LcAU03D2hVml46d6L/DFVS889 zFwksPvZSzP/tgu5X/bhNtwAO5aaHMeZpwiygF+ri0bw1P8X/lnJ4r5gIW9fbbv+ PI9yzjGr8y8ZCi/FRjB1312kkWopX2aaXxXKPEX9jEM4UpjIqm9OBtDmkTWou0cp r9ZxRquDkroV+Ui8UdmovEKdtO6FBm1b9I2Qve2lgMSQ/Ba6la5+KmAXCpTwLCDl 6Cqqbg9gKIqROVCS7CKDF0K9t9UYedCg9pS1ojbUIQEUsTuG155aIYPl4MjLj+vk Zrk+QP32vZ8Rzn2sjNLWFL4hAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU8J3zKC1a 7nbAuOggOhYwater3nYwHwYDVR0jBBgwFoAU1lqpVdfmLHHFqyu3GgydwnKqlGUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCNkE1LzRBOTNGNjQyMkMz MTExRUU5Q0U0RkY2REM0RjlBRTAyLzFscXBWZGZtTEhIRnF5dTNHZ3lkd25LcWxH VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWxxcFZkZm1MSEhGcXl1M0dneWR3bktxbEdVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBNS80QTkzRjY0MjJDMzExMUVFOUNFNEZGNkRDNEY5QUUwMi9BRThBRUE3MDJD MzExMUVFOTRBNTA1NkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeM/TAPBAIAAjAJAwcAIAEN8OWAMA0GCSqGSIb3DQEBCwUA A4IBAQC2G7ewJFuph6vtN/YQsLdkIurate24fnKVDlleqsgHQy0JrjFkBGkEt3qU x5nLaohd7h7yKjGqoj53mvoORwJvdCoJ88Doo9o2bqfPZTtkyvZToawHXVzCfE/P hZgjwg6M+CRY5EvQSPfJwfOhyx5wgyJ+Hq52g10cd2q5lUcno1d5Qb2dOx6pRAEf yWOMNmnN9Dh5U5EhsAlT14r/Kv/VYnqCXI12V+4w4+WJW8TqHBu0LpNNgYPV1gjX 3jB8ijfeo/GLu0lmpkdezzTwkzcNfU80+sHgldLFs2g5IvRSm37nfzPwsJ33gPiw e/0s+rR6oEMvYY+XlqLwQMD5bH5f -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:35 2024 by rpki-client on console-ams.rpki-client.org