$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/354314309C0F11EBAEFB6225C4F9AE02.roa File: 354314309C0F11EBAEFB6225C4F9AE02.roa (raw, json) Hash identifier: l8yMQCAOI71rosaQOxXK+tpCnt6OEc8F8/U+nk/Ch4Y= Subject key identifier: 4E:B3:C0:D4:55:69:51:A9:55:02:64:2E:1A:C3:A4:CB:13:40:3A:0F Certificate issuer: /CN=A91F59DF/serialNumber=609A3126E2369A97D47FD64498D8165E21E525C5 Certificate serial: 04D9 Authority key identifier: 60:9A:31:26:E2:36:9A:97:D4:7F:D6:44:98:D8:16:5E:21:E5:25:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/354314309C0F11EBAEFB6225C4F9AE02.roa Signing time: Sun 13 Aug 2023 00:01:16 +0000 ROA not before: Sun 13 Aug 2023 00:01:16 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135345 IP address blocks: 103.214.12.0/24 maxlen: 24 103.214.13.0/24 maxlen: 24 103.214.14.0/24 maxlen: 24 103.214.15.0/24 maxlen: 24 115.42.120.0/24 maxlen: 24 115.42.121.0/24 maxlen: 24 115.42.122.0/24 maxlen: 24 115.42.123.0/24 maxlen: 24 115.42.124.0/24 maxlen: 24 115.42.125.0/24 maxlen: 24 115.42.126.0/24 maxlen: 24 115.42.127.0/24 maxlen: 24 144.48.28.0/24 maxlen: 24 144.48.29.0/24 maxlen: 24 144.48.30.0/24 maxlen: 24 144.48.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.crl rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 01:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1241 (0x4d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59DF/serialNumber=609A3126E2369A97D47FD64498D8165E21E525C5 Validity Not Before: Aug 13 00:01:16 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d81d4c-7e82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:31:30:7b:f1:ee:a8:ba:3a:41:11:26:6d:2e: e9:28:86:b8:4f:ad:ba:45:b7:56:0f:60:86:ba:7b: 4b:29:5a:0c:0b:6a:83:f6:73:67:36:3f:5e:69:30: 03:49:80:88:b5:e3:17:0c:2b:4f:0f:18:df:6b:07: dc:eb:78:11:f8:1f:bf:29:18:be:4d:5c:70:d8:2d: 3d:b0:a7:3b:eb:c4:5d:4c:11:6f:f7:bc:ce:da:41: 38:f8:ea:ab:9b:a3:29:52:d8:1e:7c:34:b9:dd:b6: 31:35:e8:4c:d4:8c:54:f4:2a:54:07:eb:8c:a7:b0: de:2a:58:14:e1:98:d1:26:8e:5d:e7:46:11:dc:39: 51:3c:ec:8b:32:4a:5a:e5:d5:7e:a8:30:79:32:89: 6c:b9:2a:67:eb:0d:d2:f3:80:7b:72:af:fd:31:71: 0e:e7:9c:93:1a:60:1a:cc:0c:45:89:fd:27:1a:1b: 8e:06:f0:e1:28:3b:1d:3e:73:ac:7d:96:ab:d9:3c: b0:22:82:2b:fa:4a:6a:3d:cb:71:49:a2:34:bc:12: 58:af:81:2d:a8:95:9f:46:21:2e:19:1f:a6:f6:08: 88:79:b6:de:a9:19:6e:e9:ba:de:7c:5b:9e:05:e5: b5:c7:bb:a1:0d:92:b4:34:8c:bc:69:ba:85:ba:10: 2a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B3:C0:D4:55:69:51:A9:55:02:64:2E:1A:C3:A4:CB:13:40:3A:0F X509v3 Authority Key Identifier: keyid:60:9A:31:26:E2:36:9A:97:D4:7F:D6:44:98:D8:16:5E:21:E5:25:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/354314309C0F11EBAEFB6225C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.12.0/22 115.42.120.0/21 144.48.28.0/22 Signature Algorithm: sha256WithRSAEncryption 10:9a:08:64:52:0a:89:25:00:f2:3a:a4:a2:9a:71:93:bd:6e: 53:23:d5:08:b2:4e:91:15:89:a3:20:e5:e5:e8:3e:73:6f:2e: 8d:6c:02:e7:61:80:69:e6:2b:65:99:03:43:81:99:bb:7a:5b: 31:60:6b:40:9f:1e:4b:79:43:ad:3a:7e:1a:4b:c5:4f:94:b6: a0:92:85:3d:59:98:5d:9b:e6:21:42:4e:1e:a3:08:70:f4:72: 84:af:29:24:e4:4f:85:cb:5b:ae:5d:4a:1f:bb:74:c0:98:14: 35:e0:7d:a9:6e:19:71:c1:3e:e0:32:05:cd:63:49:e9:82:0f: c8:37:e4:f4:be:c1:e5:87:ac:58:e6:4f:e2:47:c2:ee:c7:aa: 87:d0:e4:99:b6:74:8e:49:aa:8a:50:8f:a9:32:a5:75:17:2c: 36:db:6f:31:22:12:8a:3d:85:98:8a:4d:9c:f7:55:0c:f0:b9: bc:5f:e7:f6:c4:84:88:0c:4f:91:5d:bd:18:dd:c8:95:a2:45: 83:8f:99:e9:e9:63:ce:fb:1c:e8:f6:f4:a9:75:3d:d8:12:73: e5:43:0d:51:d6:e0:14:79:e6:ae:a5:4f:1d:12:a8:2c:5d:09: 49:54:d8:ac:37:98:63:b3:33:22:d3:8b:d9:d1:bd:ed:6b:29: f7:d4:ad:42 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5REYxMTAvBgNVBAUTKDYwOUEzMTI2RTIzNjlBOTdENDdGRDY0NDk4RDgxNjVF MjFFNTI1QzUwHhcNMjMwODEzMDAwMTE2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ4MWQ0Yy03ZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TEwe/HuqLo6QREmbS7pKIa4T626RbdWD2CGuntLKVoMC2qD9nNnNj9eaTAD SYCIteMXDCtPDxjfawfc63gR+B+/KRi+TVxw2C09sKc768RdTBFv97zO2kE4+Oqr m6MpUtgefDS53bYxNehM1IxU9CpUB+uMp7DeKlgU4ZjRJo5d50YR3DlRPOyLMkpa 5dV+qDB5MolsuSpn6w3S84B7cq/9MXEO55yTGmAazAxFif0nGhuOBvDhKDsdPnOs fZar2TywIoIr+kpqPctxSaI0vBJYr4EtqJWfRiEuGR+m9giIebbeqRlu6brefFue BeW1x7uhDZK0NIy8abqFuhAqFQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFE6zwNRV aVGpVQJkLhrDpMsTQDoPMB8GA1UdIwQYMBaAFGCaMSbiNpqX1H/WRJjYFl4h5SXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlERi9CQjUyRjRBQzlD MEQxMUVCQUVEODRCMjRDNEY5QUUwMi9ZSm94SnVJMm1wZlVmOVpFbU5nV1hpSGxK Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKb3hKdUkybXBmVWY5WkVtTmdXWGlIbEpjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU5REYvQkI1MkY0QUM5QzBEMTFFQkFFRDg0QjI0QzRGOUFFMDIvMzU0MzE0MzA5 QzBGMTFFQkFFRkI2MjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJn1gwDBANzKngDBAKQMBwwDQYJKoZIhvcNAQELBQADggEB ABCaCGRSCoklAPI6pKKacZO9blMj1QiyTpEViaMg5eXoPnNvLo1sAudhgGnmK2WZ A0OBmbt6WzFga0CfHkt5Q606fhpLxU+UtqCShT1ZmF2b5iFCTh6jCHD0coSvKSTk T4XLW65dSh+7dMCYFDXgfaluGXHBPuAyBc1jSemCD8g35PS+weWHrFjmT+JHwu7H qofQ5Jm2dI5JqopQj6kypXUXLDbbbzEiEoo9hZiKTZz3VQzwubxf5/bEhIgMT5Fd vRjdyJWiRYOPmenpY877HOj29Kl1PdgSc+VDDVHW4BR55q6lTx0SqCxdCUlU2Kw3 mGOzMyLTi9nRve1rKffUrUI= -----END CERTIFICATE-----Generated at Fri Jun 7 03:19:16 2024 by rpki-client on console-ams.rpki-client.org