$ rpki-client -vvf rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/305A9890EAEF11EDBBFC2B0BC4F9AE02.roa File: 305A9890EAEF11EDBBFC2B0BC4F9AE02.roa (raw, json) Hash identifier: wZF81TeqE9+3m7KVgaYki8lXtSLHdUSt6oH/T/Yvsv8= Subject key identifier: A9:C0:CC:03:AB:F4:D9:CA:88:0A:F5:66:FD:DA:D3:0E:1B:07:29:D3 Certificate issuer: /CN=A91672E3/serialNumber=8EE5226E057A65442422EAFED9C62E290DF3248A Certificate serial: 08 Authority key identifier: 8E:E5:22:6E:05:7A:65:44:24:22:EA:FE:D9:C6:2E:29:0D:F3:24:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/juUibgV6ZUQkIur-2cYuKQ3zJIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/305A9890EAEF11EDBBFC2B0BC4F9AE02.roa Signing time: Sat 06 May 2023 03:07:05 +0000 ROA not before: Sat 06 May 2023 03:07:05 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151197 IP address blocks: 103.140.194.0/23 maxlen: 23 103.140.194.0/25 maxlen: 25 103.140.194.128/25 maxlen: 25 103.140.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/juUibgV6ZUQkIur-2cYuKQ3zJIo.crl rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/juUibgV6ZUQkIur-2cYuKQ3zJIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/juUibgV6ZUQkIur-2cYuKQ3zJIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 06:26:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91672E3/serialNumber=8EE5226E057A65442422EAFED9C62E290DF3248A Validity Not Before: May 6 03:07:05 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6455c459-5759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:40:96:c9:68:ab:6c:21:e6:17:ef:2e:93:19: 94:01:08:3a:36:33:44:0f:fd:1d:39:62:c6:be:9e: c8:73:c8:87:a2:78:61:b0:f5:9d:8a:dd:bc:6c:b7: d1:94:55:4c:38:6e:47:d6:30:ae:ac:97:4b:cf:db: 27:3e:81:70:92:3d:58:41:6d:8a:4a:df:07:dd:43: f5:61:1f:6f:ce:a4:03:48:f4:48:89:5e:87:9c:f1: fc:1c:68:a4:66:27:2c:1d:07:3f:65:ca:85:30:97: dd:b2:56:87:62:0f:20:c7:ea:ae:64:9a:be:79:e0: b7:e0:21:dc:c0:d5:db:de:4e:50:86:90:53:07:d9: 41:3f:b6:8b:53:35:2c:04:9a:34:74:d4:59:f8:d7: ba:17:a8:74:e6:af:00:50:8b:d1:0b:ad:02:9a:f5: 37:0d:88:3b:21:24:8f:d2:c2:95:71:71:60:de:a6: ba:b0:20:b7:be:ab:d9:77:81:5d:9a:fc:59:07:eb: 84:32:78:64:96:98:2c:92:30:d3:01:fd:3f:0b:a4: d2:1c:b2:7b:16:e0:f5:95:0b:a6:d1:df:10:8e:bd: 0b:b9:2d:4b:e3:cc:39:af:3f:5e:1e:7f:46:91:df: 26:af:f2:01:77:32:0b:db:4b:30:47:3e:6b:de:a6: 61:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C0:CC:03:AB:F4:D9:CA:88:0A:F5:66:FD:DA:D3:0E:1B:07:29:D3 X509v3 Authority Key Identifier: keyid:8E:E5:22:6E:05:7A:65:44:24:22:EA:FE:D9:C6:2E:29:0D:F3:24:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/juUibgV6ZUQkIur-2cYuKQ3zJIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/juUibgV6ZUQkIur-2cYuKQ3zJIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/305A9890EAEF11EDBBFC2B0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.194.0/23 Signature Algorithm: sha256WithRSAEncryption 85:c0:7b:b0:ce:c8:7c:12:2a:56:83:09:a6:fa:1a:1e:49:be: 86:11:09:a5:ee:5c:7d:70:a4:47:e1:c2:74:5f:fe:15:19:a7: 02:2f:0f:77:de:57:7e:6f:8e:34:84:d1:91:9f:44:67:59:34: 3c:bd:56:7d:67:d2:47:f1:df:81:56:ba:5c:6d:7f:86:5b:e3: bb:eb:da:05:2e:48:6e:93:17:fb:3b:d8:98:39:81:d8:06:1d: 62:97:2a:20:fb:da:d7:e2:9a:99:7c:30:35:b5:d9:f9:35:31: b7:24:bf:d3:3e:59:d2:18:e5:c7:9a:18:aa:0f:6d:f8:12:25: 4a:72:ff:b6:99:a9:21:00:ce:2d:fe:87:87:90:00:7b:77:02: 8c:7c:d5:38:41:a5:0a:3d:04:5d:11:1b:38:96:93:9b:02:8d: c7:46:d5:b1:fa:c5:b4:96:d1:91:1e:9e:6c:6a:fd:a7:12:37: 27:22:a9:b4:95:f6:1c:2f:42:d7:6f:c7:3a:e6:cb:c4:c8:f3: 40:e6:ac:1c:48:c9:93:15:34:96:3f:f1:fd:ac:35:2b:11:bd: 4b:52:7f:1c:f5:de:0c:94:6c:91:0f:d6:26:44:35:e5:b9:7e: 2f:60:05:f5:55:b4:d3:4b:d1:ad:b5:02:78:d9:ef:f7:1b:c8: 53:0d:09:61 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NzJFMzExMC8GA1UEBRMoOEVFNTIyNkUwNTdBNjU0NDI0MjJFQUZFRDlDNjJFMjkw REYzMjQ4QTAeFw0yMzA1MDYwMzA3MDVaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NTVjNDU5LTU3NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8QJbJaKtsIeYX7y6TGZQBCDo2M0QP/R05Ysa+nshzyIeieGGw9Z2K3bxst9GU VUw4bkfWMK6sl0vP2yc+gXCSPVhBbYpK3wfdQ/VhH2/OpANI9EiJXoec8fwcaKRm JywdBz9lyoUwl92yVodiDyDH6q5kmr554LfgIdzA1dveTlCGkFMH2UE/totTNSwE mjR01Fn417oXqHTmrwBQi9ELrQKa9TcNiDshJI/SwpVxcWDeprqwILe+q9l3gV2a /FkH64QyeGSWmCySMNMB/T8LpNIcsnsW4PWVC6bR3xCOvQu5LUvjzDmvP14ef0aR 3yav8gF3MgvbSzBHPmvepmEtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUqcDMA6v0 2cqICvVm/drTDhsHKdMwHwYDVR0jBBgwFoAUjuUibgV6ZUQkIur+2cYuKQ3zJIow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3MkUzL0M2QjUwMTNDRUFF OTExRUQ4NzVBMkQ1MUM0RjlBRTAyL2p1VWliZ1Y2WlVRa0l1ci0yY1l1S1EzekpJ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvanVVaWJnVjZaVVFrSXVyLTJjWXVLUTN6SklvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzJFMy9DNkI1MDEzQ0VBRTkxMUVEODc1QTJENTFDNEY5QUUwMi8zMDVBOTg5MEVB RUYxMUVEQkJGQzJCMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeMwjANBgkqhkiG9w0BAQsFAAOCAQEAhcB7sM7IfBIqVoMJ pvoaHkm+hhEJpe5cfXCkR+HCdF/+FRmnAi8Pd95Xfm+ONITRkZ9EZ1k0PL1WfWfS R/HfgVa6XG1/hlvju+vaBS5IbpMX+zvYmDmB2AYdYpcqIPva1+KamXwwNbXZ+TUx tyS/0z5Z0hjlx5oYqg9t+BIlSnL/tpmpIQDOLf6Hh5AAe3cCjHzVOEGlCj0EXREb OJaTmwKNx0bVsfrFtJbRkR6ebGr9pxI3JyKptJX2HC9C12/HOubLxMjzQOasHEjJ kxU0lj/x/aw1KxG9S1J/HPXeDJRskQ/WJkQ15bl+L2AF9VW000vRrbUCeNnv9xvI Uw0JYQ== -----END CERTIFICATE-----Generated at Mon May 27 08:08:01 2024 by rpki-client on console-ams.rpki-client.org