$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/17ABE41ACAF611EE894A2D50C4F9AE02.roa File: 17ABE41ACAF611EE894A2D50C4F9AE02.roa (raw, json) Hash identifier: ENs5h3d3/0FRfpleT1ZWwfZ58WpuD7RI9PwpHA3W3eE= Subject key identifier: 95:36:D2:66:52:1C:12:13:F0:82:BD:95:08:85:EA:06:FA:30:C3:9A Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Certificate serial: 035F Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/17ABE41ACAF611EE894A2D50C4F9AE02.roa Signing time: Wed 28 Feb 2024 05:52:45 +0000 ROA not before: Wed 28 Feb 2024 05:52:45 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 147182 IP address blocks: 103.96.26.0/24 maxlen: 24 123.253.193.0/24 maxlen: 24 123.253.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 863 (0x35f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Validity Not Before: Feb 28 05:52:45 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65deca2c-da63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:77:f0:63:97:59:1f:c2:2b:80:3e:16:ea:e5: cf:35:a7:9a:07:cf:cb:5c:08:4d:3e:9a:dc:13:d5: 40:57:cc:58:ac:db:74:49:d0:e4:fa:d8:f3:8e:15: 35:54:93:58:66:e8:9b:a7:c6:a1:be:4c:29:b8:6c: e0:2e:6e:7f:69:74:fe:b7:04:87:23:3e:4c:95:37: 00:c7:b8:6a:04:85:3c:3c:8c:52:87:2b:3e:f3:8b: 41:83:5c:98:11:12:46:6c:2e:3a:1d:7b:c2:49:20: ad:06:04:60:66:b3:d9:e9:ec:80:c6:12:7e:c9:38: 38:c5:89:d8:89:2d:d7:ed:a7:94:4e:4e:53:64:9c: 8f:82:69:30:2b:98:f2:98:e6:70:98:fa:ff:f2:b1: b6:0b:bf:2e:8d:a5:db:10:90:88:48:7f:e3:c5:2e: 3a:40:b5:a6:a4:60:95:c2:a0:0f:3a:37:a7:91:69: 0a:1c:c4:f5:bb:a3:c0:1f:af:db:8b:48:81:f2:cd: d3:83:17:d8:66:21:63:a2:15:2d:4c:5a:fa:27:06: ac:e9:f9:98:0e:ba:fc:18:57:f8:94:34:ef:19:8c: c9:a1:5c:af:58:33:d3:fc:2a:e2:6f:bc:db:2e:dd: 84:7e:0d:93:92:d5:bf:a5:27:dd:02:09:22:5a:13: 57:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:36:D2:66:52:1C:12:13:F0:82:BD:95:08:85:EA:06:FA:30:C3:9A X509v3 Authority Key Identifier: keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/17ABE41ACAF611EE894A2D50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.26.0/24 123.253.193.0-123.253.195.255 Signature Algorithm: sha256WithRSAEncryption 53:1a:97:1d:76:92:a1:23:79:3e:c1:de:ab:1f:bc:fb:05:78: d5:be:b6:52:da:7a:48:60:fc:58:a3:14:ee:82:95:63:b3:72: 53:c3:23:a6:78:46:89:e8:6f:c0:9e:6c:be:4a:23:69:da:ef: 8e:d1:48:dd:0d:1a:82:c0:0a:fb:ee:9b:61:e8:86:32:56:31: 17:9a:f7:51:76:a8:d6:af:cf:95:f2:ca:4d:01:e4:62:8b:0b: 61:d4:e0:b0:26:21:57:ca:84:33:a3:91:52:27:2b:46:b6:81: ff:32:bd:1e:8a:92:de:f8:6f:1e:71:c6:f7:19:94:6a:f8:4a: 7d:32:95:d2:7c:d9:e3:fc:82:4b:25:84:8f:3f:fc:e9:44:28: 91:15:92:c9:64:2d:4c:77:ce:38:0e:ee:3c:24:fb:92:ce:f1: 48:b9:f1:65:fc:b4:aa:b4:29:a9:0d:b8:7a:1c:d2:b7:be:74: 8f:32:da:6e:4a:ca:4a:60:bc:83:6f:27:8f:93:6d:26:99:9c: 69:1d:af:09:1b:3e:c1:77:ba:75:a0:04:da:f7:56:86:9e:5c: 2a:00:2c:87:ec:ae:a6:e6:b5:7e:81:f6:91:42:b6:5b:fb:ec: 57:6e:96:d9:14:c6:81:1e:3d:45:d0:5e:4e:94:ee:c7:44:2d: 7d:10:f9:e9 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICA18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJBMUYxMTAvBgNVBAUTKDY5MzlGQzA0MERBNUMzMEI3NjZEQzc5NEY5Q0E0QzJG NDFBQ0FFRUEwHhcNMjQwMjI4MDU1MjQ1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRlY2EyYy1kYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHfwY5dZH8IrgD4W6uXPNaeaB8/LXAhNPprcE9VAV8xYrNt0SdDk+tjzjhU1 VJNYZuibp8ahvkwpuGzgLm5/aXT+twSHIz5MlTcAx7hqBIU8PIxShys+84tBg1yY ERJGbC46HXvCSSCtBgRgZrPZ6eyAxhJ+yTg4xYnYiS3X7aeUTk5TZJyPgmkwK5jy mOZwmPr/8rG2C78ujaXbEJCISH/jxS46QLWmpGCVwqAPOjenkWkKHMT1u6PAH6/b i0iB8s3TgxfYZiFjohUtTFr6Jwas6fmYDrr8GFf4lDTvGYzJoVyvWDPT/Crib7zb Lt2Efg2TktW/pSfdAgkiWhNXWQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFJU20mZS HBIT8IK9lQiF6gb6MMOaMB8GA1UdIwQYMBaAFGk5/AQNpcMLdm3HlPnKTC9BrK7q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkExRi8xRUNGRkM0QzYy MTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3dDJiY2VVLWNwTUwwR3Ny dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUbjhCQTJsd3d0MmJjZVUtY3BNTDBHc3J1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJBMUYvMUVDRkZDNEM2MjE5MTFFQzk5QTU1RjNFQzRGOUFFMDIvMTdBQkU0MUFD QUY2MTFFRTg5NEEyRDUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnYBowDAMEAHv9wQMEAnv9wDANBgkqhkiG9w0BAQsFAAOC AQEAUxqXHXaSoSN5PsHeqx+8+wV41b62Utp6SGD8WKMU7oKVY7NyU8MjpnhGiehv wJ5svkojadrvjtFI3Q0agsAK++6bYeiGMlYxF5r3UXao1q/PlfLKTQHkYosLYdTg sCYhV8qEM6ORUicrRraB/zK9HoqS3vhvHnHG9xmUavhKfTKV0nzZ4/yCSyWEjz/8 6UQokRWSyWQtTHfOOA7uPCT7ks7xSLnxZfy0qrQpqQ24ehzSt750jzLabkrKSmC8 g28nj5NtJpmcaR2vCRs+wXe6daAE2vdWhp5cKgAsh+yupua1foH2kUK2W/vsV26W 2RTGgR49RdBeTpTux0QtfRD56Q== -----END CERTIFICATE-----Generated at Sat May 11 03:51:29 2024 by rpki-client on console-ams.rpki-client.org