$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/5576D030D61711EEB983D919C4F9AE02.roa File: 5576D030D61711EEB983D919C4F9AE02.roa (raw, json) Hash identifier: GPWGbMrCh9nhUFFsTFy1v1Swe8iB5s0uxXd2oii56dc= Subject key identifier: 3A:DF:B4:A5:09:E0:1F:D3:A4:1D:BC:C6:11:AB:44:03:EC:B8:AD:AA Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: B7 Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/5576D030D61711EEB983D919C4F9AE02.roa Signing time: Wed 28 Feb 2024 08:57:00 +0000 ROA not before: Wed 28 Feb 2024 08:57:00 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 4618 IP address blocks: 103.125.92.0/22 maxlen: 22 103.125.92.0/24 maxlen: 24 103.125.93.0/24 maxlen: 24 103.125.94.0/24 maxlen: 24 103.125.95.0/24 maxlen: 24 2403:f040::/32 maxlen: 32 2403:f040:14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: Feb 28 08:57:00 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65def55c-2a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fc:1b:a2:a0:af:57:54:8c:32:e8:75:80:bb: 10:9d:11:9e:e3:71:d8:d6:05:33:4f:8c:67:b6:8a: 74:3d:42:fd:c8:cf:db:8c:83:16:29:15:b5:57:f9: 1c:96:58:ca:a2:3d:ae:43:b4:b9:55:17:b2:5d:fc: 7b:58:8b:d6:9a:77:d3:c7:1a:8f:d3:b6:c2:ab:51: 8c:ff:31:70:54:17:02:20:df:b7:9f:98:12:9a:b4: 74:d5:36:f9:33:dc:cf:37:5e:14:92:53:02:77:6c: 81:80:7f:8f:78:0a:26:04:b5:39:24:2e:ac:3b:55: f2:89:12:e2:97:36:bc:39:11:b7:db:54:1e:d4:a8: 45:23:2c:f5:94:31:8c:6c:5b:9c:85:82:69:38:1b: d7:76:c6:7a:e3:4b:df:bf:d4:6a:87:4e:7b:2d:20: f7:43:6f:1b:c4:e7:95:b9:7c:68:2c:69:f1:63:b7: 24:7e:8d:6e:45:74:2e:a9:f0:6e:f5:e5:d5:66:20: 9d:cb:0e:a8:fe:ab:e8:b9:83:3d:80:db:cd:aa:c4: ed:92:7b:99:b2:8e:de:a8:b1:a4:3e:bd:45:38:f7: 9f:32:80:3e:a4:d9:61:46:88:f6:c0:bd:f6:cf:73: b3:2e:10:93:06:1d:97:7c:1f:9d:1c:20:f1:9b:86: 30:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:DF:B4:A5:09:E0:1F:D3:A4:1D:BC:C6:11:AB:44:03:EC:B8:AD:AA X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/5576D030D61711EEB983D919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.92.0/22 IPv6: 2403:f040::/32 Signature Algorithm: sha256WithRSAEncryption 77:78:fc:21:14:11:36:ee:af:22:c3:6d:53:cc:58:ba:42:cf: e6:07:ab:2f:4f:1c:3d:d8:10:7e:92:86:2b:e3:ce:0d:f4:a7: c4:53:b8:fe:11:76:93:cc:c4:ca:c0:4c:8d:ac:f0:fc:56:b6: 4f:45:6c:11:dd:90:ee:bc:3f:d0:d3:96:04:a2:f6:f0:59:f7: 93:05:98:4c:e3:b0:f6:3a:a5:c9:b6:6e:f8:2d:10:11:bf:54: d9:7a:7a:ae:33:60:c9:97:67:67:a1:3c:57:da:f7:26:81:4b: fd:e6:4a:63:9d:41:0d:f2:80:10:08:67:cb:60:51:9a:d6:38: b9:76:7e:da:2f:03:e5:2e:2d:98:0b:e7:cc:82:ca:36:59:26: f0:f8:9c:4c:c2:54:a6:5b:27:08:9a:97:51:ed:10:92:c1:46: 03:b2:00:c2:11:b5:46:0b:8c:50:94:a4:8a:b8:ed:2a:da:92: 50:e8:6c:97:2f:30:d1:75:d6:0b:d8:ab:f7:5b:c3:a4:08:6a: c7:62:f3:b0:d2:e5:b2:90:57:1e:78:2a:4d:3f:cf:ff:34:48: 0d:85:3d:55:ac:3e:22:29:c0:f2:ba:ab:37:db:dd:d0:5e:b8: e6:37:c3:d0:09:f0:81:b4:ef:e5:8f:f2:36:2d:dc:67:8f:4e: 37:87:e9:ca -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjQwMjI4MDg1NzAwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRlZjU1Yy0yYTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvwboqCvV1SMMuh1gLsQnRGe43HY1gUzT4xntop0PUL9yM/bjIMWKRW1V/kc lljKoj2uQ7S5VReyXfx7WIvWmnfTxxqP07bCq1GM/zFwVBcCIN+3n5gSmrR01Tb5 M9zPN14UklMCd2yBgH+PeAomBLU5JC6sO1XyiRLilza8ORG321Qe1KhFIyz1lDGM bFuchYJpOBvXdsZ640vfv9Rqh057LSD3Q28bxOeVuXxoLGnxY7ckfo1uRXQuqfBu 9eXVZiCdyw6o/qvouYM9gNvNqsTtknuZso7eqLGkPr1FOPefMoA+pNlhRoj2wL32 z3OzLhCTBh2XfB+dHCDxm4YwQQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDrftKUJ 4B/TpB28xhGrRAPsuK2qMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU4QkUvN0M3RkIyRkVDMjE5MTFFRDgwMjU2RjRFQzRGOUFFMDIvNTU3NkQwMzBE NjE3MTFFRUI5ODNEOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfVwwDQQCAAIwBwMFACQD8EAwDQYJKoZIhvcNAQELBQAD ggEBAHd4/CEUETburyLDbVPMWLpCz+YHqy9PHD3YEH6Shivjzg30p8RTuP4RdpPM xMrATI2s8PxWtk9FbBHdkO68P9DTlgSi9vBZ95MFmEzjsPY6pcm2bvgtEBG/VNl6 eq4zYMmXZ2ehPFfa9yaBS/3mSmOdQQ3ygBAIZ8tgUZrWOLl2ftovA+UuLZgL58yC yjZZJvD4nEzCVKZbJwial1HtEJLBRgOyAMIRtUYLjFCUpIq47SraklDobJcvMNF1 1gvYq/dbw6QIasdi87DS5bKQVx54Kk0/z/80SA2FPVWsPiIpwPK6qzfb3dBeuOY3 w9AJ8IG07+WP8jYt3GePTjeH6co= -----END CERTIFICATE-----Generated at Fri May 17 06:46:25 2024 by rpki-client on console-ams.rpki-client.org