$ rpki-client -vvf rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/A87AAC50C47711EDA3EF8884C4F9AE02.roa File: A87AAC50C47711EDA3EF8884C4F9AE02.roa (raw, json) Hash identifier: 3lZSxx68sa9F3NpHYLHcrr8xURg2K87eDqLstUvqgio= Subject key identifier: 7E:16:0D:E8:32:25:42:D9:CA:11:3A:60:00:CB:94:86:B7:25:D3:47 Certificate issuer: /CN=A91515BC/serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Certificate serial: 77 Authority key identifier: 4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/A87AAC50C47711EDA3EF8884C4F9AE02.roa Signing time: Tue 31 Oct 2023 05:15:38 +0000 ROA not before: Tue 31 Oct 2023 05:15:38 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 133730 IP address blocks: 103.39.55.0/24 maxlen: 24 103.39.84.0/23 maxlen: 24 103.208.155.0/24 maxlen: 24 137.59.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91515BC/serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Validity Not Before: Oct 31 05:15:38 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65408d7a-7e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:82:24:88:04:df:87:cf:df:02:69:dd:35: 23:b3:b2:a5:bb:17:11:54:38:81:c1:d8:22:2e:ae: 99:47:97:28:f2:85:d4:a8:5f:41:76:a9:91:9f:db: 17:a7:9e:fc:44:e3:a3:80:9e:5d:47:68:cd:65:6a: c5:fb:7f:5b:d9:64:c2:6a:75:5d:a5:ca:d4:98:7a: 87:fd:9d:34:9b:98:6e:a1:7a:54:c9:70:37:a1:8d: ac:0e:f9:18:a1:b5:ab:c1:36:8a:bb:d5:cd:aa:26: e3:d7:79:37:b6:47:6c:2a:2d:d7:14:cf:6a:58:f9: 8b:a7:72:8b:c3:6e:f6:97:28:22:03:4c:9c:80:ce: a4:0e:c4:c3:ee:bc:52:75:f3:3f:e9:f3:26:76:13: dc:2c:f7:18:10:99:44:9b:8a:09:ae:96:04:79:74: 33:96:27:bb:bf:c3:ca:86:cb:0c:7a:0a:2f:e8:4a: 0b:13:bb:07:56:75:16:d9:0c:fa:c5:55:58:fb:2f: 17:fe:10:83:ec:87:ff:82:fe:cc:e1:54:8a:28:f2: 4b:d3:83:a4:bb:03:87:80:f6:5f:f9:d0:8c:cf:bf: 7c:86:4a:9b:8d:59:1b:97:1e:04:a6:07:95:20:d9: 18:12:4b:9f:96:84:a2:6c:1c:b8:a5:64:46:fd:d6: 22:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:16:0D:E8:32:25:42:D9:CA:11:3A:60:00:CB:94:86:B7:25:D3:47 X509v3 Authority Key Identifier: keyid:4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/A87AAC50C47711EDA3EF8884C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.55.0/24 103.39.84.0/23 103.208.155.0/24 137.59.196.0/22 Signature Algorithm: sha256WithRSAEncryption a2:9a:4c:fe:00:2b:3d:c0:e4:45:67:29:8d:f5:5c:a4:e3:65: 1f:fa:f8:3c:6f:d9:8a:17:c9:35:03:76:8f:bd:9c:37:37:43: 85:ee:f7:9f:a5:5f:98:54:8a:50:ed:59:fb:89:6e:19:91:e6: 1b:d9:91:5c:8e:53:1a:b3:b6:bd:7e:84:02:6c:bb:cf:27:58: 3b:e2:b9:70:5c:8a:68:db:b9:18:91:5c:84:d4:2f:00:a5:c6: 61:2f:da:5f:7d:99:a9:2c:eb:36:d8:c6:e9:b4:71:6c:12:08: 4a:5b:a9:c1:4b:ce:e9:a6:9e:6c:0d:c7:63:f0:88:fb:10:0c: a4:00:2f:1f:4c:dd:10:b8:70:57:0e:ce:3b:90:32:4e:82:29: 6b:e1:f4:68:b3:e8:a3:82:48:8d:39:af:12:9d:a4:47:c7:a0: 56:b8:8c:a7:bd:b2:51:a6:11:a3:4c:7a:db:5c:3b:a3:24:a9: b4:14:fe:6d:0e:c3:16:44:81:82:79:4f:f9:f9:42:ab:75:d0: e9:5b:f4:43:39:00:c8:15:ec:54:68:ac:9e:7a:28:d5:09:f4: 07:d0:a9:f6:3a:e0:55:2a:d1:61:d2:f9:9b:eb:63:9e:ab:20: 8a:01:10:15:1d:b8:f6:77:7a:9b:01:d7:38:0e:90:59:e5:cc: 19:fd:cd:75 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTVCQzExMC8GA1UEBRMoNENBODkwMzY3QjFFQTQ5RUJDRjk0MDJDODYyMDBEQ0Q3 NDQ2QjZDMDAeFw0yMzEwMzEwNTE1MzhaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDA4ZDdhLTdlMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwy4IkiATfh8/fAmndNSOzsqW7FxFUOIHB2CIurplHlyjyhdSoX0F2qZGf2xen nvxE46OAnl1HaM1lasX7f1vZZMJqdV2lytSYeof9nTSbmG6helTJcDehjawO+Rih tavBNoq71c2qJuPXeTe2R2wqLdcUz2pY+YuncovDbvaXKCIDTJyAzqQOxMPuvFJ1 8z/p8yZ2E9ws9xgQmUSbigmulgR5dDOWJ7u/w8qGywx6Ci/oSgsTuwdWdRbZDPrF VVj7Lxf+EIPsh/+C/szhVIoo8kvTg6S7A4eA9l/50IzPv3yGSpuNWRuXHgSmB5Ug 2RgSS5+WhKJsHLilZEb91iLrAgMBAAGjggKnMIICozAdBgNVHQ4EFgQUfhYN6DIl QtnKETpgAMuUhrcl00cwHwYDVR0jBBgwFoAUTKiQNnsepJ68+UAshiANzXRGtsAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxNUJDLzE2NEQ5MkIyQzQ3 MTExRURBOUM1Q0I2MEM0RjlBRTAyL1RLaVFObnNlcEo2OC1VQXNoaUFOelhSR3Rz QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVEtpUU5uc2VwSjY4LVVBc2hpQU56WFJHdHNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTVCQy8xNjREOTJCMkM0NzExMUVEQTlDNUNCNjBDNEY5QUUwMi9BODdBQUM1MEM0 NzcxMUVEQTNFRjg4ODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAGcnNwMEAWcnVAMEAGfQmwMEAok7xDANBgkqhkiG9w0BAQsF AAOCAQEAoppM/gArPcDkRWcpjfVcpONlH/r4PG/ZihfJNQN2j72cNzdDhe73n6Vf mFSKUO1Z+4luGZHmG9mRXI5TGrO2vX6EAmy7zydYO+K5cFyKaNu5GJFchNQvAKXG YS/aX32ZqSzrNtjG6bRxbBIISlupwUvO6aaebA3HY/CI+xAMpAAvH0zdELhwVw7O O5AyToIpa+H0aLPoo4JIjTmvEp2kR8egVriMp72yUaYRo0x621w7oySptBT+bQ7D FkSBgnlP+flCq3XQ6Vv0QzkAyBXsVGisnnoo1Qn0B9Cp9jrgVSrRYdL5m+tjnqsg igEQFR249nd6mwHXOA6QWeXMGf3NdQ== -----END CERTIFICATE-----Generated at Fri May 17 08:13:50 2024 by rpki-client on console-fra.rpki-client.org