$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/08CA5724E2B111E9A73CAB51C4F9AE02.roa File: 08CA5724E2B111E9A73CAB51C4F9AE02.roa (raw, json) Hash identifier: pNPxUMy2/VunrfLvQ92c5waT/3TRukkJAsSNmyuJB20= Subject key identifier: B1:1F:87:26:24:FC:38:9B:15:F2:2D:37:F5:61:18:F4:2B:4B:47:F8 Certificate issuer: /CN=A91F1B61/serialNumber=728A824092E5741254BB92D597723361A04BF292 Certificate serial: 0BA9 Authority key identifier: 72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/08CA5724E2B111E9A73CAB51C4F9AE02.roa Signing time: Wed 02 Aug 2023 18:56:23 +0000 ROA not before: Wed 02 Aug 2023 18:56:23 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132341 IP address blocks: 103.14.73.0/24 maxlen: 24 103.59.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.crl rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2985 (0xba9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B61/serialNumber=728A824092E5741254BB92D597723361A04BF292 Validity Not Before: Aug 2 18:56:23 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64caa6d6-5c99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6b:2a:a8:3d:bc:c9:ba:f1:e3:18:75:a5:2e: 50:5c:69:92:f3:89:fc:42:3e:7b:1f:dc:5d:e2:8e: 6d:63:5e:76:29:bd:5f:38:0c:0a:78:c2:14:81:e0: 8d:7d:0c:a0:63:f9:77:31:b5:71:ed:34:62:5f:dc: f0:fa:17:ca:2f:3b:ac:09:55:a1:1d:e9:73:2c:f5: f5:d2:6b:58:14:04:b0:7f:e7:c7:8b:03:f6:fc:d2: 7d:dd:99:6f:25:44:f7:7f:b8:9b:68:95:70:2d:21: 23:b3:e6:c9:cb:80:46:6a:c4:87:b2:f2:92:c0:87: cf:13:77:79:59:6c:93:10:58:bf:26:c8:80:b0:2f: 00:2e:77:84:8c:50:d1:54:f9:e2:0f:d7:27:9c:83: 37:48:77:44:f0:a0:d9:6a:81:83:db:92:49:12:c3: 2b:28:d2:9e:f4:b1:cc:4b:c3:0f:0d:a0:4c:83:0b: 44:93:a0:96:12:52:84:7a:ca:9c:8a:35:bc:db:af: 40:15:00:14:50:6d:3c:07:26:2c:9f:ae:c8:08:fb: 46:d9:8e:ed:28:9e:c6:8a:2f:93:4d:8f:ec:48:63: 74:53:ba:6d:3d:92:10:d0:a4:b4:f1:99:2a:6e:35: 04:f9:21:5b:d7:ba:19:52:36:5b:cd:ec:e8:98:13: 6e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1F:87:26:24:FC:38:9B:15:F2:2D:37:F5:61:18:F4:2B:4B:47:F8 X509v3 Authority Key Identifier: keyid:72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/08CA5724E2B111E9A73CAB51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.73.0/24 103.59.233.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:09:97:56:13:c8:95:6e:50:12:6f:3d:e1:97:08:3f:a1:ad: 8b:e1:22:f7:51:8d:cd:76:5e:14:ed:e9:a6:00:35:da:bc:4e: e5:b9:85:31:d0:4f:c4:f9:f9:5d:dc:1f:e2:ca:06:e2:39:0a: da:c5:29:ac:03:58:43:1f:7f:0a:23:55:1b:f3:9c:68:28:8d: 60:63:86:e3:ae:37:c4:78:a5:00:c0:99:13:a6:21:98:a7:21: b2:1b:af:57:6b:da:78:75:df:de:a4:1e:88:15:bb:02:e7:82: 2c:ef:b7:69:11:aa:a0:39:72:3e:36:d6:2c:14:1b:d2:0d:8c: 37:75:f8:01:30:38:0a:ab:df:be:d2:c9:fe:62:3f:68:0c:6b: 31:82:88:fb:ec:29:df:7c:1a:f2:49:bb:cd:21:77:cb:d4:1f: 25:90:23:53:8c:f7:07:1e:11:02:c9:74:8d:8a:7a:03:2b:f9: 2a:f7:44:43:00:3c:b4:13:5b:6f:5b:15:4b:69:d2:22:d3:c2: 16:63:19:80:0d:7c:ea:99:60:32:e2:28:0b:c0:78:ee:ee:08: 7c:46:fa:d4:cb:20:05:4f:68:dc:74:a0:89:16:a9:42:64:49: 7a:aa:74:08:12:95:86:e2:b2:5c:38:39:90:ec:c4:ab:7e:2f: cc:be:28:c6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCNjExMTAvBgNVBAUTKDcyOEE4MjQwOTJFNTc0MTI1NEJCOTJENTk3NzIzMzYx QTA0QkYyOTIwHhcNMjMwODAyMTg1NjIzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhYTZkNi01Yzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGsqqD28ybrx4xh1pS5QXGmS84n8Qj57H9xd4o5tY152Kb1fOAwKeMIUgeCN fQygY/l3MbVx7TRiX9zw+hfKLzusCVWhHelzLPX10mtYFASwf+fHiwP2/NJ93Zlv JUT3f7ibaJVwLSEjs+bJy4BGasSHsvKSwIfPE3d5WWyTEFi/JsiAsC8ALneEjFDR VPniD9cnnIM3SHdE8KDZaoGD25JJEsMrKNKe9LHMS8MPDaBMgwtEk6CWElKEesqc ijW8269AFQAUUG08ByYsn67ICPtG2Y7tKJ7Gii+TTY/sSGN0U7ptPZIQ0KS08Zkq bjUE+SFb17oZUjZbzezomBNuuwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLEfhyYk /DibFfItN/VhGPQrS0f4MB8GA1UdIwQYMBaAFHKKgkCS5XQSVLuS1ZdyM2GgS/KS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUI2MS8zRjAwRDc1Q0Uy QUYxMUU5QkIwMUZDNERDNEY5QUUwMi9jb3FDUUpMbGRCSlV1NUxWbDNJellhQkw4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NvcUNRSkxsZEJKVXU1TFZsM0l6WWFCTDhwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFCNjEvM0YwMEQ3NUNFMkFGMTFFOUJCMDFGQzREQzRGOUFFMDIvMDhDQTU3MjRF MkIxMTFFOUE3M0NBQjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnDkkDBABnO+kwDQYJKoZIhvcNAQELBQADggEBAJwJl1YT yJVuUBJvPeGXCD+hrYvhIvdRjc12XhTt6aYANdq8TuW5hTHQT8T5+V3cH+LKBuI5 CtrFKawDWEMffwojVRvznGgojWBjhuOuN8R4pQDAmROmIZinIbIbr1dr2nh1396k HogVuwLngizvt2kRqqA5cj421iwUG9INjDd1+AEwOAqr377Syf5iP2gMazGCiPvs Kd98GvJJu80hd8vUHyWQI1OM9wceEQLJdI2KegMr+Sr3REMAPLQTW29bFUtp0iLT whZjGYANfOqZYDLiKAvAeO7uCHxG+tTLIAVPaNx0oIkWqUJkSXqqdAgSlYbislw4 OZDsxKt+L8y+KMY= -----END CERTIFICATE-----Generated at Fri May 31 20:34:19 2024 by rpki-client on console-ams.rpki-client.org