$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/591A8C06BE4D11EC8DADB22CC4F9AE02.roa File: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (raw, json) Hash identifier: TnhvZ0VFGTx0Tr/xnOEZWoxZ1LhtDqsEDoaY/RfN4rk= Subject key identifier: 17:44:E3:B8:6E:A5:30:3A:63:48:1F:A9:63:2A:18:73:B1:C5:BB:52 Certificate issuer: /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Certificate serial: 0211 Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/591A8C06BE4D11EC8DADB22CC4F9AE02.roa Signing time: Sat 07 Oct 2023 02:43:47 +0000 ROA not before: Sat 07 Oct 2023 02:43:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 8849 IP address blocks: 103.172.116.0/23 maxlen: 24 2407:d140::/32 maxlen: 32 2407:d140::/36 maxlen: 36 2407:d140:1000::/36 maxlen: 36 2407:d140:2000::/36 maxlen: 36 2407:d140:3000::/36 maxlen: 36 2407:d140:4000::/35 maxlen: 36 2407:d140:6000::/36 maxlen: 36 2407:d140:7000::/36 maxlen: 36 2407:d140:8000::/34 maxlen: 34 2407:d140:8000::/36 maxlen: 36 2407:d140:9000::/36 maxlen: 36 2407:d140:a000::/36 maxlen: 36 2407:d140:b000::/36 maxlen: 36 2407:d140:c000::/36 maxlen: 36 2407:d140:d000::/36 maxlen: 36 2407:d140:e000::/36 maxlen: 36 2407:d140:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Validity Not Before: Oct 7 02:43:47 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6520c5e2-02aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f1:17:8f:fc:38:e2:c2:2e:28:72:06:22:61: 3c:68:91:c7:d1:e6:dc:41:73:77:6c:2b:29:c3:1c: 54:66:bb:95:93:80:97:cd:2f:be:08:1f:c6:89:0d: bf:cb:44:d8:70:10:a5:c9:00:aa:39:68:43:77:b7: 98:0b:6f:36:c2:1e:bc:29:05:bd:2c:34:e6:4f:88: a9:73:7a:83:fc:fd:87:43:8e:da:04:b8:4e:c5:8b: c3:8b:81:f1:aa:7a:20:3b:f4:4c:19:09:09:03:6d: b9:44:b3:bb:7d:13:1d:93:d8:59:d5:fd:29:2c:7c: 9a:15:1b:e2:7d:14:2d:46:9f:ac:ea:63:77:95:ba: 42:3c:da:bd:8b:e7:c0:37:76:d7:18:b3:27:09:b8: b0:3d:02:a8:7a:75:4e:5a:d5:8d:99:63:8e:09:17: 73:f4:29:76:66:7e:a1:77:c0:ae:32:cc:af:e3:04: a0:3e:03:1e:94:17:a5:0d:70:4f:7e:8d:da:68:e3: 7c:80:0c:60:33:0f:9a:b5:29:27:32:e5:78:8c:d8: d3:d9:b7:9b:59:77:91:34:4f:ab:8b:cb:d6:6f:94: 83:a0:b1:8c:95:ce:cc:16:f9:8d:fb:74:8b:a4:ba: b3:bb:7a:2b:e8:35:cf:24:e5:cf:f8:74:fd:73:ab: a2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:44:E3:B8:6E:A5:30:3A:63:48:1F:A9:63:2A:18:73:B1:C5:BB:52 X509v3 Authority Key Identifier: keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/591A8C06BE4D11EC8DADB22CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.116.0/23 IPv6: 2407:d140::/32 Signature Algorithm: sha256WithRSAEncryption 49:03:a7:f7:84:48:66:80:b6:35:fa:e9:ee:16:cb:a2:dc:08: ea:d4:72:98:35:d0:1d:d2:38:38:0d:db:af:d9:3b:03:9c:79: 14:dd:0a:5b:cd:35:11:a8:b0:df:be:39:22:7b:d7:8e:13:f3: a7:88:ee:c6:5a:bc:da:78:fe:fd:fa:9f:62:88:d5:42:84:4b: 9c:38:f2:0d:77:7f:0f:79:ae:c7:65:91:f7:1f:07:d2:a6:c8: 57:fa:f9:9d:5f:05:81:60:8d:d3:b8:8b:68:d6:c7:0c:77:dd: 4c:c3:d5:a4:90:b2:8f:cc:1e:32:a0:0b:82:3e:0d:ab:d2:42: db:cf:12:53:de:0a:cf:e1:a4:ea:8b:e8:ce:10:97:0e:0d:e0: 7c:0c:2e:81:4a:65:6a:2f:de:72:05:e6:69:1e:fd:e1:e0:b5: 83:fc:32:7b:f6:12:f1:f1:ed:0d:47:41:17:b7:bf:93:92:df: 0c:9f:25:c3:72:b3:3b:4c:81:42:65:9d:ed:d0:df:3f:d5:32: 01:d2:d8:e1:fe:83:43:bb:52:b9:23:10:44:e4:a9:9b:ba:f1: 34:2d:4f:ee:28:1f:28:5e:e6:ca:67:ff:c1:a6:cc:3d:ba:38: 2f:e2:81:36:9d:0e:74:c7:fc:6d:a3:f7:83:a0:f0:95:a5:1c: 9c:20:da:33 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG OEJENjBDMTAwHhcNMjMxMDA3MDI0MzQ3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwYzVlMi0wMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPEXj/w44sIuKHIGImE8aJHH0ebcQXN3bCspwxxUZruVk4CXzS++CB/GiQ2/ y0TYcBClyQCqOWhDd7eYC282wh68KQW9LDTmT4ipc3qD/P2HQ47aBLhOxYvDi4Hx qnogO/RMGQkJA225RLO7fRMdk9hZ1f0pLHyaFRvifRQtRp+s6mN3lbpCPNq9i+fA N3bXGLMnCbiwPQKoenVOWtWNmWOOCRdz9Cl2Zn6hd8CuMsyv4wSgPgMelBelDXBP fo3aaON8gAxgMw+atSknMuV4jNjT2bebWXeRNE+ri8vWb5SDoLGMlc7MFvmN+3SL pLqzu3or6DXPJOXP+HT9c6uiWwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBdE47hu pTA6Y0gfqWMqGHOxxbtSMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY2RjgvQTQyNDM5NzBCRTRBMTFFQ0IyNzk1NTJBQzRGOUFFMDIvNTkxQThDMDZC RTREMTFFQzhEQURCMjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrHQwDQQCAAIwBwMFACQH0UAwDQYJKoZIhvcNAQELBQAD ggEBAEkDp/eESGaAtjX66e4Wy6LcCOrUcpg10B3SODgN26/ZOwOceRTdClvNNRGo sN++OSJ7144T86eI7sZavNp4/v36n2KI1UKES5w48g13fw95rsdlkfcfB9KmyFf6 +Z1fBYFgjdO4i2jWxwx33UzD1aSQso/MHjKgC4I+DavSQtvPElPeCs/hpOqL6M4Q lw4N4HwMLoFKZWov3nIF5mke/eHgtYP8Mnv2EvHx7Q1HQRe3v5OS3wyfJcNysztM gUJlne3Q3z/VMgHS2OH+g0O7UrkjEETkqZu68TQtT+4oHyhe5spn/8GmzD26OC/i gTadDnTH/G2j94Og8JWlHJwg2jM= -----END CERTIFICATE-----Generated at Sun May 19 04:20:42 2024 by rpki-client on console-ams.rpki-client.org