$ rpki-client -vvf rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/25C61AECB7ED11ED9CF6A63EC4F9AE02.roa File: 25C61AECB7ED11ED9CF6A63EC4F9AE02.roa (raw, json) Hash identifier: F+NKv1+QLpZkyoToey6zxPzR2KWP15IIWzcg2dMx2EQ= Subject key identifier: 1B:D5:67:0D:82:ED:D3:36:C0:9D:AC:39:B0:B4:98:5E:94:1F:65:B4 Certificate issuer: /CN=A91376FB/serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Certificate serial: 028C Authority key identifier: 88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/25C61AECB7ED11ED9CF6A63EC4F9AE02.roa Signing time: Thu 03 Aug 2023 02:23:13 +0000 ROA not before: Thu 03 Aug 2023 02:23:13 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 131306 IP address blocks: 103.47.230.0/24 maxlen: 24 103.47.231.0/24 maxlen: 24 103.69.108.0/24 maxlen: 24 103.152.9.0/24 maxlen: 24 2001:df3:3a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91376FB/serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Validity Not Before: Aug 3 02:23:13 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cb0f91-a68c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:48:60:99:71:75:51:12:5d:86:af:d0:7c:af: 66:92:ed:a9:54:33:5a:08:99:e5:e9:a4:78:68:38: 1b:c7:86:bf:18:ab:08:62:3a:9a:6a:19:75:cd:55: 15:20:a8:12:a3:3a:1e:76:91:a7:01:19:f7:04:04: 68:03:28:10:f9:7a:a1:9b:b5:41:33:84:ac:a6:93: 5d:15:e8:74:1a:d8:03:18:dc:c1:2f:17:80:f2:92: 41:cf:88:5b:63:9e:b2:e7:f4:f4:0b:e7:1b:39:1b: db:d0:9e:c4:3c:b0:4e:06:81:15:c8:68:ba:b9:44: 42:95:47:05:dd:b8:fb:9d:0a:b7:07:a6:d1:69:45: 5c:56:f9:0a:01:1f:67:ab:16:07:4c:15:1d:42:0a: f7:bd:ab:1a:39:16:b5:e4:f6:c6:b5:81:61:62:29: 3e:b7:ac:a7:17:19:58:be:cd:c7:c9:38:42:14:a5: d7:e8:e4:72:bf:4e:84:df:93:77:71:97:8d:d9:17: 72:f8:6d:24:ad:ae:cc:4d:f8:78:b2:ec:60:bb:12: 9f:ef:a5:08:3d:6e:6d:5f:5a:5e:f2:04:7b:47:4d: 19:a9:bb:c9:4e:26:49:19:0c:c7:3a:58:d1:ce:32: 9b:35:6c:7b:a0:81:97:b8:ae:e6:49:a5:4c:bd:c6: 72:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D5:67:0D:82:ED:D3:36:C0:9D:AC:39:B0:B4:98:5E:94:1F:65:B4 X509v3 Authority Key Identifier: keyid:88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/25C61AECB7ED11ED9CF6A63EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.47.230.0/23 103.69.108.0/24 103.152.9.0/24 IPv6: 2001:df3:3a00::/48 Signature Algorithm: sha256WithRSAEncryption 77:28:23:74:cb:a8:a7:4e:90:c3:fc:1c:f3:52:22:aa:b8:c8: 1e:28:19:6a:ae:47:cc:cc:33:ba:c2:87:14:46:a7:7d:c3:44: db:8f:43:69:b9:6f:6b:30:1c:33:00:4f:76:3a:d4:8a:fe:cb: d8:90:b1:82:80:89:44:83:39:f7:30:8b:b9:67:de:a5:70:d4: 45:82:4a:35:b4:16:f7:0b:f6:39:89:cc:13:78:f9:dc:ec:36: 21:f9:31:82:10:32:58:2a:dc:12:bb:eb:6b:f4:2c:0f:85:bc: a3:30:bd:99:98:f7:bc:cf:01:d0:82:fb:ae:16:7d:f4:21:16: 6c:64:49:b4:66:f4:48:6e:aa:65:cd:fa:5d:ef:93:da:2d:10: 8f:d7:2f:47:46:d4:4b:93:46:35:d5:87:d2:30:94:f9:2f:a2: e7:29:f4:0b:41:be:00:d6:bc:35:47:fa:3e:30:39:a6:76:c5: cf:34:ee:04:be:dd:4e:bb:23:55:87:be:82:d9:5b:f2:c6:e0: ec:17:b2:f8:78:58:7b:eb:3f:af:76:cc:e5:fd:bb:d5:5a:ef: 7d:ca:f9:d3:1d:1a:89:b2:17:fe:25:81:51:6d:55:d1:3a:a7: 93:8c:ce:6a:72:a1:ec:86:c9:99:2f:13:e8:17:18:37:2e:72: c0:26:84:f8 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc2RkIxMTAvBgNVBAUTKDg4NkEwRUU2QkM3QUJEQzA5RkE4MjJFMTE0REY0MzVG MEIwRTg2NUEwHhcNMjMwODAzMDIyMzEzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNiMGY5MS1hNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EhgmXF1URJdhq/QfK9mku2pVDNaCJnl6aR4aDgbx4a/GKsIYjqaahl1zVUV IKgSozoedpGnARn3BARoAygQ+Xqhm7VBM4SsppNdFeh0GtgDGNzBLxeA8pJBz4hb Y56y5/T0C+cbORvb0J7EPLBOBoEVyGi6uURClUcF3bj7nQq3B6bRaUVcVvkKAR9n qxYHTBUdQgr3vasaORa15PbGtYFhYik+t6ynFxlYvs3HyThCFKXX6ORyv06E35N3 cZeN2Rdy+G0kra7MTfh4suxguxKf76UIPW5tX1pe8gR7R00ZqbvJTiZJGQzHOljR zjKbNWx7oIGXuK7mSaVMvcZyzQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFBvVZw2C 7dM2wJ2sObC0mF6UH2W0MB8GA1UdIwQYMBaAFIhqDua8er3An6gi4RTfQ18LDoZa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzZGQi85MkZCNzFBMDgz RjIxMUVDQkIyNTE5ODVDNEY5QUUwMi9pR29PNXJ4NnZjQ2ZxQ0xoRk45RFh3c09o bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lHb081cng2dmNDZnFDTGhGTjlEWHdzT2hsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzc2RkIvOTJGQjcxQTA4M0YyMTFFQ0JCMjUxOTg1QzRGOUFFMDIvMjVDNjFBRUNC N0VEMTFFRDlDRjZBNjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAFnL+YDBABnRWwDBABnmAkwDwQCAAIwCQMHACABDfM6ADAN BgkqhkiG9w0BAQsFAAOCAQEAdygjdMuop06Qw/wc81IiqrjIHigZaq5HzMwzusKH FEanfcNE249DablvazAcMwBPdjrUiv7L2JCxgoCJRIM59zCLuWfepXDURYJKNbQW 9wv2OYnME3j53Ow2IfkxghAyWCrcErvra/QsD4W8ozC9mZj3vM8B0IL7rhZ99CEW bGRJtGb0SG6qZc36Xe+T2i0Qj9cvR0bUS5NGNdWH0jCU+S+i5yn0C0G+ANa8NUf6 PjA5pnbFzzTuBL7dTrsjVYe+gtlb8sbg7Bey+HhYe+s/r3bM5f271Vrvfcr50x0a ibIX/iWBUW1V0Tqnk4zOanKh7IbJmS8T6BcYNy5ywCaE+A== -----END CERTIFICATE-----Generated at Tue May 7 03:49:58 2024 by rpki-client on console-ams.rpki-client.org