$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/42EE36A240EC11EA875BC545C4F9AE02.roa File: 42EE36A240EC11EA875BC545C4F9AE02.roa (raw, json) Hash identifier: I/qPuyUkKtwnXgFp3BLtqWc/cf44Yyk2LIv/V8g+A9s= Subject key identifier: 75:28:39:71:47:A8:D9:5D:2D:9F:96:4A:CB:6D:66:DF:33:2A:67:CC Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 09BB Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/42EE36A240EC11EA875BC545C4F9AE02.roa Signing time: Mon 31 Jul 2023 20:17:23 +0000 ROA not before: Mon 31 Jul 2023 20:17:23 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139239 IP address blocks: 103.140.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 20:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2491 (0x9bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: Jul 31 20:17:23 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c816d3-78c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1c:12:29:ad:4d:02:c2:9d:2d:29:59:9b:89: 00:51:4f:01:41:38:91:88:f0:2b:41:7b:27:45:65: f7:0e:b6:fc:04:bf:15:e5:93:25:f8:f2:c9:a3:b1: 4b:b8:4d:cd:d2:1f:f8:d5:fb:6f:a1:d2:10:ee:42: 74:87:fa:0d:41:b1:ce:ba:a9:df:ae:b3:fe:2d:4e: 2a:cc:33:ba:a3:57:44:a9:66:05:44:da:c1:14:71: e4:23:11:5f:43:ee:c1:54:97:95:98:6b:03:0b:88: 59:31:97:27:af:bf:de:84:0c:1e:aa:b7:fe:73:5f: e6:94:54:9d:5a:f5:b0:fb:df:5a:f8:8e:04:75:e5: 3c:53:d4:bb:e2:0b:90:97:8d:32:d1:56:f3:67:44: 88:f3:0b:0b:98:5e:91:ed:2a:42:79:ba:fc:bb:34: 9e:08:5c:1e:3a:6a:30:45:c5:42:35:bb:ac:f6:13: fa:d8:dc:db:f7:3e:08:52:b9:ba:b5:c2:b0:1b:1d: 8a:d3:ec:e1:66:d4:b5:fa:f3:04:35:9f:b8:ca:59: 71:74:18:fb:d7:b0:1d:33:43:45:31:c2:66:af:c8: db:1b:43:16:db:5b:c0:53:36:7e:df:24:d7:24:e7: 7d:77:16:d4:fc:ce:c6:49:0b:85:10:3a:ac:fb:4a: ce:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:28:39:71:47:A8:D9:5D:2D:9F:96:4A:CB:6D:66:DF:33:2A:67:CC X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/42EE36A240EC11EA875BC545C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.62.0/23 Signature Algorithm: sha256WithRSAEncryption c3:35:bb:b4:fd:23:6f:d6:20:78:63:4b:19:b9:28:29:fb:a3: 68:62:f8:cf:fd:d9:01:99:c3:26:36:03:bd:fd:07:7f:31:96: 75:2d:b2:89:2a:02:b0:cb:00:ed:f5:6e:2d:9a:ff:b3:81:5d: c6:a4:66:b6:71:33:ba:38:10:23:3d:6d:45:bf:3a:6d:71:89: 55:7c:3e:fb:3f:9f:f5:c6:84:a6:68:f7:e9:d2:9a:38:22:37: 3b:6b:82:b6:60:86:ba:87:c7:1d:f9:d3:80:42:6a:d8:e0:28: 86:6c:6f:45:ab:44:13:94:0c:75:8f:01:ed:29:ce:d1:0f:eb: 44:d4:09:3b:9e:ac:42:5c:eb:df:a7:df:aa:93:61:e7:5b:17: e6:09:dd:ad:2d:02:b1:f5:62:9d:8a:8c:02:b7:a6:0f:2b:20: f8:51:38:44:69:3d:6f:64:90:0e:96:0d:97:49:59:07:29:54: cd:09:b4:57:0a:bd:2c:16:3d:52:4e:c6:28:18:54:8d:00:74: 9b:ce:9e:ec:58:79:5b:57:7a:86:fd:e2:9c:ca:fd:b7:1f:23: 89:91:8e:fc:7b:b7:91:08:7d:6d:1c:07:ec:01:f1:bf:00:5e: 14:97:69:e1:ef:f9:9d:cb:6a:7f:86:9b:8a:fa:77:be:e9:29: de:02:59:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjMwNzMxMjAxNzIzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4MTZkMy03OGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxwSKa1NAsKdLSlZm4kAUU8BQTiRiPArQXsnRWX3Drb8BL8V5ZMl+PLJo7FL uE3N0h/41ftvodIQ7kJ0h/oNQbHOuqnfrrP+LU4qzDO6o1dEqWYFRNrBFHHkIxFf Q+7BVJeVmGsDC4hZMZcnr7/ehAweqrf+c1/mlFSdWvWw+99a+I4EdeU8U9S74guQ l40y0VbzZ0SI8wsLmF6R7SpCebr8uzSeCFweOmowRcVCNbus9hP62Nzb9z4IUrm6 tcKwGx2K0+zhZtS1+vMENZ+4yllxdBj717AdM0NFMcJmr8jbG0MW21vAUzZ+3yTX JOd9dxbU/M7GSQuFEDqs+0rO6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHUoOXFH qNldLZ+WSsttZt8zKmfMMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTE4RkEvOTg0MjQ0OUM0MEVBMTFFQUJCMDFCRDQyQzRGOUFFMDIvNDJFRTM2QTI0 MEVDMTFFQTg3NUJDNTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjD4wDQYJKoZIhvcNAQELBQADggEBAMM1u7T9I2/WIHhj Sxm5KCn7o2hi+M/92QGZwyY2A739B38xlnUtsokqArDLAO31bi2a/7OBXcakZrZx M7o4ECM9bUW/Om1xiVV8Pvs/n/XGhKZo9+nSmjgiNztrgrZghrqHxx3504BCatjg KIZsb0WrRBOUDHWPAe0pztEP60TUCTuerEJc69+n36qTYedbF+YJ3a0tArH1Yp2K jAK3pg8rIPhROERpPW9kkA6WDZdJWQcpVM0JtFcKvSwWPVJOxigYVI0AdJvOnuxY eVtXeob94pzK/bcfI4mRjvx7t5EIfW0cB+wB8b8AXhSXaeHv+Z3Lan+Gm4r6d77p Kd4CWQQ= -----END CERTIFICATE-----Generated at Tue May 28 22:51:15 2024 by rpki-client on console-ams.rpki-client.org