$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa File: 765DBCFEEC1A11EAA8520072C4F9AE02.roa (raw, json) Hash identifier: lhZUDh4Rvf4Y58Q2rsrWHao3VBnul+/t2RVDWYP1xTI= Subject key identifier: 4D:F1:48:79:31:CD:3C:13:6B:F9:38:C1:86:A3:92:71:B4:68:62:A5 Certificate issuer: /CN=A91FD609/serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Certificate serial: 06D0 Authority key identifier: 07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa Signing time: Wed 06 Dec 2023 22:30:03 +0000 ROA not before: Wed 06 Dec 2023 22:30:03 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 64049 IP address blocks: 59.153.104.0/22 maxlen: 22 59.153.104.0/24 maxlen: 24 59.153.106.0/24 maxlen: 24 59.153.107.0/24 maxlen: 24 103.198.140.0/22 maxlen: 22 103.198.140.0/24 maxlen: 24 103.198.141.0/24 maxlen: 24 103.198.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 22:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD609/serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Validity Not Before: Dec 6 22:30:03 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6570f5ea-e0f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ac:79:68:0e:69:d8:29:64:9b:f9:58:8a:96: 33:29:02:61:8f:e7:8c:58:d5:8f:5b:66:ed:af:02: f6:85:19:46:e6:c9:47:4b:12:16:78:7d:65:36:1d: 22:7a:ba:68:1d:29:c4:a6:14:7c:db:5a:02:ed:2b: 00:b3:78:4f:4b:90:bd:e0:fd:92:f6:d7:a6:8d:ae: 41:92:1b:0f:9f:59:99:51:9e:ea:4e:86:25:63:02: a0:d3:ef:62:fa:76:b3:2f:02:74:36:37:bc:29:42: 4d:63:fc:52:f5:92:6a:75:a9:e6:e8:88:19:3c:9f: 74:0f:39:93:72:fe:d9:86:27:7e:95:6a:bd:2d:af: 79:41:8f:ea:9a:7f:c5:3b:1c:84:ed:81:b1:70:20: ae:7c:61:96:50:20:95:29:18:04:40:77:46:aa:7b: f6:d4:72:16:d2:c1:36:1a:0f:7e:ae:53:2b:fb:b5: d5:04:15:c1:b2:c7:be:03:45:00:da:86:29:b0:a3: 8f:c4:8f:b7:49:e8:d7:44:75:70:08:46:4f:ff:d4: 72:67:65:7d:8c:fd:56:4c:91:07:ac:85:73:24:5d: ec:60:e4:07:ab:e4:ea:89:99:c3:38:bb:e5:7c:c6: 2d:1f:49:4c:bd:68:9e:cb:6d:0e:d4:61:87:dc:f5: 31:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F1:48:79:31:CD:3C:13:6B:F9:38:C1:86:A3:92:71:B4:68:62:A5 X509v3 Authority Key Identifier: keyid:07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.104.0/22 103.198.140.0/22 Signature Algorithm: sha256WithRSAEncryption ac:90:c0:4e:71:f8:b0:ac:10:f5:8a:10:09:eb:2d:78:37:01: 02:3c:81:49:63:64:08:1a:0c:e7:5b:0d:e6:44:39:58:22:bf: 1e:f7:9f:f9:3c:1a:48:cc:d0:b9:e0:ad:df:78:5d:ce:b8:59: ab:35:fe:2d:41:9e:61:17:80:02:7d:62:f9:dc:fb:a7:f1:cf: 6b:8d:ae:24:9e:e2:ed:de:8d:e5:3a:23:e2:66:be:93:d3:b4: d9:6f:6d:c9:f7:41:b9:ee:ca:b3:61:9c:6c:bd:1b:4c:0c:8a: 79:37:54:8e:69:f0:bc:6d:cb:cd:9d:09:d3:52:29:b0:bc:31: 58:d0:b0:6f:3f:4f:5d:68:0e:95:2d:b0:22:7f:e2:d5:c5:42: 8b:28:85:db:ec:08:df:40:fd:51:68:30:c2:df:02:1e:c6:17: 6e:6a:a8:8c:0e:0f:18:f3:8c:8e:ff:fb:ab:f7:ba:e2:74:41: f3:42:ae:b4:d5:c6:6a:e4:3b:5e:56:e6:7d:e3:0d:30:69:01: d2:23:b8:cf:bc:6e:aa:ea:5f:da:c8:d8:44:54:98:75:a2:3d: 72:e7:d2:23:0b:22:2b:f2:5b:19:7d:11:d8:05:e3:bd:3f:5e: 98:53:04:42:5a:a4:37:7e:c6:88:d8:64:83:23:ec:e9:e7:f1: 40:c0:1b:26 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2MDkxMTAvBgNVBAUTKDA3Q0Q5RDMxRUQ2MTg2MkFGNTAzRTUyMDk0MjhDN0NC MjdFQTg4MUYwHhcNMjMxMjA2MjIzMDAzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcwZjVlYS1lMGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKx5aA5p2Clkm/lYipYzKQJhj+eMWNWPW2btrwL2hRlG5slHSxIWeH1lNh0i erpoHSnEphR821oC7SsAs3hPS5C94P2S9temja5BkhsPn1mZUZ7qToYlYwKg0+9i +nazLwJ0Nje8KUJNY/xS9ZJqdanm6IgZPJ90DzmTcv7Zhid+lWq9La95QY/qmn/F OxyE7YGxcCCufGGWUCCVKRgEQHdGqnv21HIW0sE2Gg9+rlMr+7XVBBXBsse+A0UA 2oYpsKOPxI+3SejXRHVwCEZP/9RyZ2V9jP1WTJEHrIVzJF3sYOQHq+TqiZnDOLvl fMYtH0lMvWiey20O1GGH3PUx0wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFE3xSHkx zTwTa/k4wYajknG0aGKlMB8GA1UdIwQYMBaAFAfNnTHtYYYq9QPlIJQox8sn6ogf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDYwOS8wQzYwOUI5Q0VD MTkxMUVBOTI1REZDNkZDNEY5QUUwMi9CODJkTWUxaGhpcjFBLVVnbENqSHl5ZnFp QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I4MmRNZTFoaGlyMUEtVWdsQ2pIeXlmcWlCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQ2MDkvMEM2MDlCOUNFQzE5MTFFQTkyNURGQzZGQzRGOUFFMDIvNzY1REJDRkVF QzFBMTFFQUE4NTIwMDcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAI7mWgDBAJnxowwDQYJKoZIhvcNAQELBQADggEBAKyQwE5x +LCsEPWKEAnrLXg3AQI8gUljZAgaDOdbDeZEOVgivx73n/k8GkjM0Lngrd94Xc64 Was1/i1BnmEXgAJ9Yvnc+6fxz2uNriSe4u3ejeU6I+JmvpPTtNlvbcn3QbnuyrNh nGy9G0wMink3VI5p8Lxty82dCdNSKbC8MVjQsG8/T11oDpUtsCJ/4tXFQosohdvs CN9A/VFoMMLfAh7GF25qqIwODxjzjI7/+6v3uuJ0QfNCrrTVxmrkO15W5n3jDTBp AdIjuM+8bqrqX9rI2ERUmHWiPXLn0iMLIivyWxl9EdgF470/XphTBEJapDd+xojY ZIMj7Onn8UDAGyY= -----END CERTIFICATE-----Generated at Fri Jun 7 00:12:19 2024 by rpki-client on console-ams.rpki-client.org