$ rpki-client -vvf rpki.apnic.net/member_repository/A91883AD/BA0B0938CAAA11EB93CE215CC4F9AE02/BF21361ECAAE11EBA95C5E64C4F9AE02.roa File: BF21361ECAAE11EBA95C5E64C4F9AE02.roa (raw, json) Hash identifier: MYCCiu6e9PE4f1QOosX9SyDJZv0Bu9U/citZrevd2VM= Subject key identifier: 0F:1D:58:8C:BB:ED:80:0D:96:19:2D:20:51:59:D9:B4:5D:18:99:7E Certificate issuer: /CN=A91883AD/serialNumber=0ADA8A7658C749BCA9004786959BC686207BAA9E Certificate serial: 046B Authority key identifier: 0A:DA:8A:76:58:C7:49:BC:A9:00:47:86:95:9B:C6:86:20:7B:AA:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CtqKdljHSbypAEeGlZvGhiB7qp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91883AD/BA0B0938CAAA11EB93CE215CC4F9AE02/BF21361ECAAE11EBA95C5E64C4F9AE02.roa Signing time: Thu 31 Aug 2023 00:51:53 +0000 ROA not before: Thu 31 Aug 2023 00:51:53 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140966 IP address blocks: 103.153.232.0/23 maxlen: 23 103.153.232.0/24 maxlen: 24 103.153.233.0/24 maxlen: 24 2406:4e40::/32 maxlen: 32 2406:4e40:5::/48 maxlen: 48 2406:4e40:100::/48 maxlen: 48 2406:4e40:200::/48 maxlen: 48 2406:4e40:300::/48 maxlen: 48 2406:4e40:400::/48 maxlen: 48 2406:4e40:500::/48 maxlen: 48 2406:4e40:600::/48 maxlen: 48 2406:4e40:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91883AD/BA0B0938CAAA11EB93CE215CC4F9AE02/CtqKdljHSbypAEeGlZvGhiB7qp4.crl rsync://rpki.apnic.net/member_repository/A91883AD/BA0B0938CAAA11EB93CE215CC4F9AE02/CtqKdljHSbypAEeGlZvGhiB7qp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CtqKdljHSbypAEeGlZvGhiB7qp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91883AD/serialNumber=0ADA8A7658C749BCA9004786959BC686207BAA9E Validity Not Before: Aug 31 00:51:53 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64efe429-1d13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ef:8a:c2:cd:90:5e:4e:a2:5e:32:d8:b2:ce: a7:83:c9:36:11:c7:36:1f:db:c5:4d:44:55:b4:27: 09:c0:7e:08:be:fa:71:ed:31:24:cd:c6:bf:3b:a5: 51:a3:b9:a2:26:b6:5b:2d:9c:31:d8:52:fe:85:aa: 1b:21:b6:5d:63:15:87:73:73:2f:36:14:10:9c:cb: 62:aa:77:c8:19:f6:30:bb:f2:61:e5:e9:02:d3:73: 22:7e:c0:16:c5:36:22:79:6d:f5:35:06:28:bc:5f: 80:f1:36:bf:4c:5c:db:a9:84:39:80:6b:b3:35:94: 1b:cc:02:f6:b2:fe:75:0b:01:06:89:6d:7d:86:65: 90:8c:d5:09:23:26:15:4e:01:4e:92:2a:20:63:fd: 3b:78:38:f0:b4:62:3a:6c:a7:b6:47:c0:03:7d:67: 1b:1b:2c:da:69:a9:5d:b7:cf:88:d0:f6:a2:fc:a8: ff:d7:e7:b7:5b:68:6e:17:57:ad:4a:f8:9c:bf:75: 09:16:18:91:e8:3f:57:89:ff:30:83:58:aa:5f:7a: c0:a0:f3:e8:e3:06:70:0d:05:46:e0:eb:95:2d:d4: 17:ed:73:9b:fe:b8:b1:2d:32:e3:95:64:81:df:6b: 2b:7a:d1:bb:69:b3:0f:aa:00:0a:10:e1:7f:82:c9: 65:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1D:58:8C:BB:ED:80:0D:96:19:2D:20:51:59:D9:B4:5D:18:99:7E X509v3 Authority Key Identifier: keyid:0A:DA:8A:76:58:C7:49:BC:A9:00:47:86:95:9B:C6:86:20:7B:AA:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91883AD/BA0B0938CAAA11EB93CE215CC4F9AE02/CtqKdljHSbypAEeGlZvGhiB7qp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CtqKdljHSbypAEeGlZvGhiB7qp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91883AD/BA0B0938CAAA11EB93CE215CC4F9AE02/BF21361ECAAE11EBA95C5E64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.232.0/23 IPv6: 2406:4e40::/32 Signature Algorithm: sha256WithRSAEncryption 86:c1:c7:1f:17:6e:78:53:8c:25:67:a0:4d:3d:66:aa:b4:e1: b6:b9:81:73:53:d1:dd:d5:32:64:d5:f4:0f:e3:3e:94:c1:11: 10:b3:be:7d:2a:9d:42:c4:ca:2c:54:5b:71:17:64:c9:e0:78: e2:86:8a:14:32:7f:a7:72:26:0e:05:77:2f:4a:18:5d:c8:a4: 66:78:5b:fd:be:89:60:6e:77:b7:f1:5a:ff:70:fa:33:83:b8: f8:2b:7b:37:24:ba:83:8f:1d:d0:a3:8c:e5:f0:12:63:5b:bf: 21:eb:b6:3f:71:77:d6:e8:95:98:f3:67:79:bb:65:64:a2:ad: ae:fa:61:54:23:ca:3c:b5:e6:4d:ff:29:23:02:d7:ac:6a:73: 95:23:54:be:a2:54:dc:b9:3c:44:97:67:2a:f2:4a:7d:5f:b2: 01:8b:36:76:9f:72:d9:ff:ca:eb:82:3d:68:01:2e:dd:7d:37: 5b:e2:29:45:08:c1:bf:66:7a:d5:82:7b:a7:8d:a0:d5:b2:1d: cc:6a:ca:e0:90:46:ff:85:34:cd:99:a3:f3:ab:36:9b:eb:80: 2a:b9:81:4d:43:2a:24:81:43:a0:0e:36:8b:55:05:1f:d5:1f: 20:17:42:86:b2:78:37:60:d3:cc:81:a6:8d:ae:08:d6:fa:99: fc:b5:08:6c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODgzQUQxMTAvBgNVBAUTKDBBREE4QTc2NThDNzQ5QkNBOTAwNDc4Njk1OUJDNjg2 MjA3QkFBOUUwHhcNMjMwODMxMDA1MTUzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVmZTQyOS0xZDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxe+Kws2QXk6iXjLYss6ng8k2Ecc2H9vFTURVtCcJwH4Ivvpx7TEkzca/O6VR o7miJrZbLZwx2FL+haobIbZdYxWHc3MvNhQQnMtiqnfIGfYwu/Jh5ekC03MifsAW xTYieW31NQYovF+A8Ta/TFzbqYQ5gGuzNZQbzAL2sv51CwEGiW19hmWQjNUJIyYV TgFOkiogY/07eDjwtGI6bKe2R8ADfWcbGyzaaaldt8+I0Pai/Kj/1+e3W2huF1et Svicv3UJFhiR6D9Xif8wg1iqX3rAoPPo4wZwDQVG4OuVLdQX7XOb/rixLTLjlWSB 32sretG7abMPqgAKEOF/gsllywIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFA8dWIy7 7YANlhktIFFZ2bRdGJl+MB8GA1UdIwQYMBaAFArainZYx0m8qQBHhpWbxoYge6qe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODNBRC9CQTBCMDkzOENB QUExMUVCOTNDRTIxNUNDNEY5QUUwMi9DdHFLZGxqSFNieXBBRWVHbFp2R2hpQjdx cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N0cUtkbGpIU2J5cEFFZUdsWnZHaGlCN3FwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODgzQUQvQkEwQjA5MzhDQUFBMTFFQjkzQ0UyMTVDQzRGOUFFMDIvQkYyMTM2MUVD QUFFMTFFQkE5NUM1RTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnmegwDQQCAAIwBwMFACQGTkAwDQYJKoZIhvcNAQELBQAD ggEBAIbBxx8XbnhTjCVnoE09Zqq04ba5gXNT0d3VMmTV9A/jPpTBERCzvn0qnULE yixUW3EXZMngeOKGihQyf6dyJg4Fdy9KGF3IpGZ4W/2+iWBud7fxWv9w+jODuPgr ezckuoOPHdCjjOXwEmNbvyHrtj9xd9bolZjzZ3m7ZWSira76YVQjyjy15k3/KSMC 16xqc5UjVL6iVNy5PESXZyrySn1fsgGLNnafctn/yuuCPWgBLt19N1viKUUIwb9m etWCe6eNoNWyHcxqyuCQRv+FNM2Zo/OrNpvrgCq5gU1DKiSBQ6AONotVBR/VHyAX QoayeDdg08yBpo2uCNb6mfy1CGw= -----END CERTIFICATE-----Generated at Fri May 17 02:01:42 2024 by rpki-client on console-ams.rpki-client.org