$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/AFCD8352557E11EBACB5CE3BC4F9AE02.roa File: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (raw, json) Hash identifier: wglThLfIXyQfKwluHMXUowgJMi2IuZWgRZX/TjV84sY= Subject key identifier: D3:AB:C6:1E:64:40:72:C3:12:A7:D1:67:70:96:0A:C9:C8:92:E2:BA Certificate issuer: /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Certificate serial: 05E3 Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/AFCD8352557E11EBACB5CE3BC4F9AE02.roa Signing time: Tue 06 Feb 2024 23:51:43 +0000 ROA not before: Tue 06 Feb 2024 23:51:43 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 137967 IP address blocks: 103.161.68.0/23 maxlen: 23 103.161.68.0/24 maxlen: 24 103.161.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 00:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Validity Not Before: Feb 6 23:51:43 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c2c60f-c9c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:51:04:3a:67:91:c7:58:d5:39:2c:eb:7f:77: b6:bc:dc:52:5a:d9:fa:cf:0b:64:7a:f9:6e:4b:dd: 77:ad:f9:59:19:d8:d0:51:8c:41:68:2a:f0:d3:9a: 03:cb:7d:d5:b5:ce:4f:ba:cf:71:dc:4c:f7:43:4b: 3c:7a:7a:4f:6f:15:0c:72:bf:68:75:9f:a8:43:0b: 0d:74:56:90:eb:c7:2a:53:df:4d:dc:cb:64:5a:65: 67:b7:60:1f:1f:11:e3:2c:43:96:51:f2:78:83:f3: 17:bf:9b:ea:28:45:eb:d6:27:11:e1:b4:1f:3e:6a: 7d:e7:30:1b:1e:91:c8:cd:f9:5b:ad:0a:a1:df:62: 0c:46:56:6a:e5:3e:d2:29:40:a1:36:7d:34:c8:46: 23:02:cd:ba:d8:71:7a:22:83:03:07:50:ac:52:28: 49:fb:16:2b:4c:9c:c1:8f:c7:c7:6e:09:a2:5e:53: 14:4d:c7:f5:5e:8d:62:3c:78:35:a0:dd:b5:b9:1d: 4f:1a:2b:2a:f6:cc:86:5b:03:b8:31:63:a7:35:1d: c2:4d:1c:3b:a1:5a:f8:cb:02:42:6a:ef:6d:0d:c6: fd:1b:d3:f1:c5:71:fb:37:78:d3:6d:05:b4:3d:09: 3c:bb:f1:57:98:a3:d2:16:24:fe:81:dd:43:af:d1: 78:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AB:C6:1E:64:40:72:C3:12:A7:D1:67:70:96:0A:C9:C8:92:E2:BA X509v3 Authority Key Identifier: keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/AFCD8352557E11EBACB5CE3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.68.0/23 Signature Algorithm: sha256WithRSAEncryption 00:21:61:d6:06:48:c4:51:a2:9c:2a:37:80:ba:8d:e2:3b:d1: 2b:47:0e:6e:b8:94:cd:36:7d:ca:e6:24:7c:f5:47:8d:81:56: f5:ef:ae:72:a9:1a:f6:85:b9:24:70:6f:06:6c:1c:8a:5d:2b: 5c:e6:cb:3e:97:84:c1:06:29:96:b0:39:d3:bd:d9:71:94:82: 78:2d:7d:3f:3a:8a:5b:4a:13:61:19:15:11:2f:9a:90:01:5d: 8d:56:63:e9:61:ee:5c:0a:93:3d:aa:62:a9:f4:ed:a5:8b:4d: 04:69:ba:e2:40:6e:2e:2d:93:75:be:23:4b:33:43:b1:4e:8d: 20:c7:17:96:1a:47:8b:8e:9d:33:76:2b:d1:2c:f1:f7:09:ff: 38:ca:e5:1b:dc:d7:e7:28:77:fd:00:34:39:4b:74:ed:ca:1c: 9c:8b:3c:1e:8b:c5:0b:e8:99:2b:d8:c5:58:cf:ad:c6:2e:87: c6:8a:81:1c:82:36:07:38:ff:bf:26:ca:f2:f3:2b:1f:7d:55: 55:91:5a:88:56:1d:4a:c1:35:6a:6f:6e:0e:df:1f:08:1b:1e: ab:c7:b6:5d:ee:43:7e:03:79:31:9f:0b:17:fe:5d:b9:99:57: 05:4e:6c:04:e4:14:b1:d8:cc:31:98:dc:77:ef:10:35:3e:ae: 62:c2:72:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0REQxMTAvBgNVBAUTKDkwQzNEODM1MTcyNkE4QjkxREUyNkQ0NjgxMTI4MzQz NUNDNTI2MjMwHhcNMjQwMjA2MjM1MTQzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyYzYwZi1jOWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFEEOmeRx1jVOSzrf3e2vNxSWtn6zwtkevluS913rflZGdjQUYxBaCrw05oD y33Vtc5Pus9x3Ez3Q0s8enpPbxUMcr9odZ+oQwsNdFaQ68cqU99N3MtkWmVnt2Af HxHjLEOWUfJ4g/MXv5vqKEXr1icR4bQfPmp95zAbHpHIzflbrQqh32IMRlZq5T7S KUChNn00yEYjAs262HF6IoMDB1CsUihJ+xYrTJzBj8fHbgmiXlMUTcf1Xo1iPHg1 oN21uR1PGisq9syGWwO4MWOnNR3CTRw7oVr4ywJCau9tDcb9G9PxxXH7N3jTbQW0 PQk8u/FXmKPSFiT+gd1Dr9F48QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNOrxh5k QHLDEqfRZ3CWCsnIkuK6MB8GA1UdIwQYMBaAFJDD2DUXJqi5HeJtRoESg0NcxSYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzRERC9CODhDMjI0QzU1 N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFMa2Q0bTFHZ1JLRFExekZK aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNUFlOUmNtcUxrZDRtMUdnUktEUTF6RkppTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM0REQvQjg4QzIyNEM1NTdEMTFFQkI0OTBCNTNCQzRGOUFFMDIvQUZDRDgzNTI1 NTdFMTFFQkFDQjVDRTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoUQwDQYJKoZIhvcNAQELBQADggEBAAAhYdYGSMRRopwq N4C6jeI70StHDm64lM02fcrmJHz1R42BVvXvrnKpGvaFuSRwbwZsHIpdK1zmyz6X hMEGKZawOdO92XGUgngtfT86iltKE2EZFREvmpABXY1WY+lh7lwKkz2qYqn07aWL TQRpuuJAbi4tk3W+I0szQ7FOjSDHF5YaR4uOnTN2K9Es8fcJ/zjK5Rvc1+cod/0A NDlLdO3KHJyLPB6LxQvomSvYxVjPrcYuh8aKgRyCNgc4/78myvLzKx99VVWRWohW HUrBNWpvbg7fHwgbHqvHtl3uQ34DeTGfCxf+XbmZVwVObATkFLHYzDGY3HfvEDU+ rmLCchQ= -----END CERTIFICATE-----Generated at Fri Jun 7 03:19:15 2024 by rpki-client on console-ams.rpki-client.org