$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/599F65C652C011EEAAE0CD34C4F9AE02.roa File: 599F65C652C011EEAAE0CD34C4F9AE02.roa (raw, json) Hash identifier: YUSUdSQGsAYrkhG5r+Ikfnd8mpcwF6T3vxWqRkOzHrA= Subject key identifier: 5B:46:89:54:64:30:DE:A4:9C:28:6B:F4:27:0E:A2:02:5C:40:F4:A0 Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 5D Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/599F65C652C011EEAAE0CD34C4F9AE02.roa Signing time: Thu 29 Feb 2024 06:48:21 +0000 ROA not before: Thu 29 Feb 2024 06:48:21 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 58610 IP address blocks: 103.76.205.0/24 maxlen: 24 103.76.247.0/24 maxlen: 24 103.77.4.0/23 maxlen: 23 116.12.56.0/21 maxlen: 21 116.12.56.0/24 maxlen: 24 116.12.57.0/24 maxlen: 24 116.12.58.0/24 maxlen: 24 116.12.59.0/24 maxlen: 24 116.12.60.0/24 maxlen: 24 116.12.61.0/24 maxlen: 24 116.12.62.0/24 maxlen: 24 116.12.63.0/24 maxlen: 24 116.206.160.0/22 maxlen: 22 116.206.160.0/23 maxlen: 23 116.206.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: Feb 29 06:48:21 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e028b5-0ae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:98:c8:df:40:29:14:74:e6:5c:2c:9f:ae:b5: af:1b:be:a4:65:22:0c:80:51:70:44:98:f8:44:27: 78:ce:3e:53:85:b5:40:82:ec:4b:8c:19:44:29:11: 76:c6:fe:ad:03:00:ae:46:98:56:03:3a:b3:45:d9: 5a:e6:9b:de:ce:8b:eb:2f:6f:1e:36:60:b4:de:a1: 7c:14:ee:c4:ee:45:61:0c:5e:39:7a:dc:4e:63:e8: 7c:03:b7:cb:9d:b8:0d:08:13:68:a3:92:c8:79:dd: d9:cc:e0:f2:d2:90:fa:a9:e4:ca:1c:bd:33:af:0f: 9f:4d:23:e2:34:3a:58:62:b4:a1:e6:07:bd:dc:4c: 18:c4:ea:c0:77:15:08:0a:33:dd:5e:11:b0:b3:4f: 3e:54:bc:00:5c:94:6e:2c:b6:81:cd:f0:0f:b3:cd: 82:9c:0b:fc:a9:8d:2a:68:00:dc:fd:4d:0e:20:54: ad:83:e7:8c:2f:58:f7:2e:7d:e3:2f:d6:ef:c1:d7: 71:88:46:14:95:6e:04:f9:d6:09:35:43:43:7b:5e: 15:85:de:b4:bd:a8:33:07:61:b3:ce:b5:65:5b:29: 0a:9b:87:00:ac:3d:03:5f:ff:94:f3:97:1d:6b:dc: ec:7f:ad:a1:de:31:30:f8:df:fc:2a:7c:da:af:e9: 64:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:46:89:54:64:30:DE:A4:9C:28:6B:F4:27:0E:A2:02:5C:40:F4:A0 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/599F65C652C011EEAAE0CD34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.205.0/24 103.76.247.0/24 103.77.4.0/23 116.12.56.0/21 116.206.160.0/22 Signature Algorithm: sha256WithRSAEncryption 94:94:8c:51:ec:30:56:3a:73:0b:f0:17:17:f2:61:76:eb:8d: fb:44:f7:b5:de:ac:aa:c3:7d:8d:42:51:a0:58:9d:e7:a2:3f: 17:42:12:5c:0a:0a:44:ed:80:94:72:a7:d4:e2:85:f3:cc:da: f9:4e:ff:a8:e0:d1:94:60:ef:63:3b:f0:25:eb:4f:d1:93:b4: 36:ca:5b:07:ce:2a:5a:b4:71:1e:72:53:59:dc:be:66:3b:8a: 66:2f:47:2a:18:21:1a:d0:56:58:5f:6a:23:0f:29:c6:10:82: 28:17:22:a5:6f:14:63:8a:08:5e:62:5e:26:ae:b5:d0:1f:15: b8:09:2d:a1:74:4f:ad:3d:ea:7b:95:04:64:59:ec:10:aa:b7: 82:7b:bc:49:f2:ae:1c:de:7c:c8:2b:f3:31:6d:16:fd:fe:43: e1:a3:b0:fb:20:42:45:8a:44:eb:3d:39:d5:f8:16:5f:09:3b: 36:3d:78:a6:a9:ed:f5:0e:ca:72:9e:bf:de:39:6c:e4:47:51: 3d:3b:d7:ba:05:c0:39:34:f3:b7:76:1d:9c:f8:06:44:f6:b6: 15:61:a2:a4:e8:e8:75:a6:ae:ae:dd:83:3c:b1:fd:b3:94:14: a1:0d:d3:e1:ad:d7:2f:fc:4b:25:83:87:0e:75:94:cc:8f:78: 0f:ef:dd:18 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTgwNDExMC8GA1UEBRMoQTBGQTY2RjY5MzRBQTI4MTNFMUExRjAwNzM5NTkwQzYz NTdENDBEQTAeFw0yNDAyMjkwNjQ4MjFaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTAyOGI1LTBhZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzmMjfQCkUdOZcLJ+uta8bvqRlIgyAUXBEmPhEJ3jOPlOFtUCC7EuMGUQpEXbG /q0DAK5GmFYDOrNF2Vrmm97Oi+svbx42YLTeoXwU7sTuRWEMXjl63E5j6HwDt8ud uA0IE2ijksh53dnM4PLSkPqp5MocvTOvD59NI+I0OlhitKHmB73cTBjE6sB3FQgK M91eEbCzTz5UvABclG4stoHN8A+zzYKcC/ypjSpoANz9TQ4gVK2D54wvWPcufeMv 1u/B13GIRhSVbgT51gk1Q0N7XhWF3rS9qDMHYbPOtWVbKQqbhwCsPQNf/5Tzlx1r 3Ox/raHeMTD43/wqfNqv6WQBAgMBAAGjggKtMIICqTAdBgNVHQ4EFgQUW0aJVGQw 3qScKGv0Jw6iAlxA9KAwHwYDVR0jBBgwFoAUoPpm9pNKooE+Gh8Ac5WQxjV9QNow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1ODA0L0MyMTM4RDQwNTJC RjExRUU4RTQ0QUExQkM0RjlBRTAyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFO by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1BwbTlwTktvb0UtR2g4QWM1V1F4alY5UU5vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi81OTlGNjVDNjUy QzAxMUVFQUFFMENEMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA3BggrBgEFBQcBBwEB/wQo MCYwJAQCAAEwHgMEAGdMzQMEAGdM9wMEAWdNBAMEA3QMOAMEAnTOoDANBgkqhkiG 9w0BAQsFAAOCAQEAlJSMUewwVjpzC/AXF/JhduuN+0T3td6sqsN9jUJRoFid56I/ F0ISXAoKRO2AlHKn1OKF88za+U7/qODRlGDvYzvwJetP0ZO0NspbB84qWrRxHnJT Wdy+ZjuKZi9HKhghGtBWWF9qIw8pxhCCKBcipW8UY4oIXmJeJq610B8VuAktoXRP rT3qe5UEZFnsEKq3gnu8SfKuHN58yCvzMW0W/f5D4aOw+yBCRYpE6z051fgWXwk7 Nj14pqnt9Q7Kcp6/3jls5EdRPTvXugXAOTTzt3YdnPgGRPa2FWGipOjodaaurt2D PLH9s5QUoQ3T4a3XL/xLJYOHDnWUzI94D+/dGA== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:39 2024 by rpki-client on console-fra.rpki-client.org