$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0940732E0E6311EDB98DEA0DC4F9AE02.roa File: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (raw, json) Hash identifier: cnqEp1cVp+EDYuEpYVLYnMxBPESNI8OdRBHgH0PJrKA= Subject key identifier: B5:89:7A:AC:F5:FA:2F:B2:2E:A9:48:C2:A3:6A:81:4D:81:CE:67:4D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 05E5 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0940732E0E6311EDB98DEA0DC4F9AE02.roa Signing time: Thu 14 Sep 2023 23:00:30 +0000 ROA not before: Thu 14 Sep 2023 23:00:30 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136969 IP address blocks: 103.12.196.0/24 maxlen: 24 103.12.197.0/24 maxlen: 24 103.12.198.0/24 maxlen: 24 103.12.199.0/24 maxlen: 24 103.73.100.0/24 maxlen: 24 103.73.101.0/24 maxlen: 24 103.73.102.0/24 maxlen: 24 103.73.103.0/24 maxlen: 24 2406:f480::/32 maxlen: 32 2406:f480::/64 maxlen: 64 2406:f480:0:1::/64 maxlen: 64 2406:f480:0:2::/64 maxlen: 64 2406:f480:0:3::/64 maxlen: 64 2406:f480:800::/38 maxlen: 38 2406:f480:2000::/35 maxlen: 35 2406:f480:8000::/35 maxlen: 35 2406:f480:8000::/64 maxlen: 64 2406:f480:8000:40::/64 maxlen: 64 2406:f480:8000:41::/64 maxlen: 64 2406:f480:8000:42::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1509 (0x5e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Sep 14 23:00:30 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6503908e-c545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3b:9d:a9:2f:c6:12:5b:c4:ed:84:7e:54:61: 2e:9d:13:a5:1b:d7:a3:9e:7f:2c:9e:ad:3b:6a:f4: d1:b8:ae:45:1e:3d:2e:53:24:25:a1:61:5d:28:5e: 69:cb:df:d0:b0:fb:bb:ce:9e:17:c0:1f:2b:02:8f: db:22:0a:a2:cf:2b:26:53:59:48:b3:93:78:c5:3f: 07:1f:da:90:62:44:8a:63:ca:a7:d9:ce:ac:38:c7: d3:2a:2d:cd:02:8d:5d:af:f6:7a:1e:0e:e6:cd:7b: b8:01:71:1c:6b:73:77:6d:0c:0d:e7:88:bf:64:5b: 4f:f7:d6:31:f6:cf:d0:fe:89:25:b9:01:c9:8c:83: 91:a7:bc:ce:33:6b:b1:ed:43:0c:50:e0:11:9e:c0: b8:ad:05:73:e7:5a:9e:02:41:12:b9:80:dd:13:d5: 1f:52:79:18:4e:e4:90:ba:96:18:43:57:b8:8d:52: 7b:f7:6b:b5:f9:29:e3:93:f4:c5:a4:7a:ba:c6:c4: 0d:09:86:91:31:23:3b:e5:6d:a1:0c:03:7f:98:8a: f9:b4:e7:3b:43:54:d9:bf:d0:0f:e3:24:7a:d4:2f: df:dc:9c:8d:d5:63:c2:73:8b:5f:9c:fc:14:f8:66: 7e:5b:66:9a:d2:7e:83:ab:f0:a0:13:dd:01:f6:91: 42:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:89:7A:AC:F5:FA:2F:B2:2E:A9:48:C2:A3:6A:81:4D:81:CE:67:4D X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0940732E0E6311EDB98DEA0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.196.0/22 103.73.100.0/22 IPv6: 2406:f480::/32 Signature Algorithm: sha256WithRSAEncryption 67:3f:3a:aa:86:72:a4:32:ab:f7:e5:6f:df:2a:f6:f8:74:6c: f1:51:7c:22:1b:ea:57:c9:6b:07:b0:c7:a6:26:39:3b:c4:2b: 8c:3b:a2:77:e6:75:bc:ad:a4:82:21:4a:a1:3d:dd:92:a4:8c: 39:88:6b:71:d0:24:60:bf:11:0c:6c:86:7f:ca:34:9a:2e:05: 57:00:59:6f:44:91:82:ae:bc:ce:c6:72:33:e5:02:5e:df:8f: 30:8b:0b:8e:0d:cc:92:50:4f:4c:30:f6:86:08:c1:0b:a0:71: 68:2f:4d:2d:2f:0d:f7:d7:e1:e3:e4:46:27:8e:29:97:84:48: 3b:41:a8:8c:5b:2a:e2:6b:c5:d0:17:78:0e:e6:e9:ec:83:20: 2a:66:50:c8:72:e7:05:38:7f:ab:28:f9:ef:1e:10:af:0c:10: 65:61:49:91:bd:9f:95:70:dc:af:60:18:97:a5:d6:e0:cb:44: c0:a7:cf:10:51:e8:9f:1b:3d:bb:6d:87:2e:db:0e:05:3d:ef: ab:6f:49:06:5b:5d:e4:90:aa:ca:98:94:6b:d5:b3:54:40:46: c6:23:dd:58:25:b0:70:ce:54:12:f6:14:0b:fd:db:b2:2d:28: ad:cb:a9:24:cf:f3:bc:39:aa:e1:b5:1e:25:bd:a5:ee:3a:d2: 71:de:a3:c4 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjMwOTE0MjMwMDMwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAzOTA4ZS1jNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDudqS/GElvE7YR+VGEunROlG9ejnn8snq07avTRuK5FHj0uUyQloWFdKF5p y9/QsPu7zp4XwB8rAo/bIgqizysmU1lIs5N4xT8HH9qQYkSKY8qn2c6sOMfTKi3N Ao1dr/Z6Hg7mzXu4AXEca3N3bQwN54i/ZFtP99Yx9s/Q/okluQHJjIORp7zOM2ux 7UMMUOARnsC4rQVz51qeAkESuYDdE9UfUnkYTuSQupYYQ1e4jVJ792u1+Snjk/TF pHq6xsQNCYaRMSM75W2hDAN/mIr5tOc7Q1TZv9AP4yR61C/f3JyN1WPCc4tfnPwU +GZ+W2aa0n6Dq/CgE90B9pFCEQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLWJeqz1 +i+yLqlIwqNqgU2BzmdNMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1NEMvNTFBOUVBQ0M0MTYwMTFFQjkwODc0NDUwQzRGOUFFMDIvMDk0MDczMkUw RTYzMTFFREI5OERFQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnDMQDBAJnSWQwDQQCAAIwBwMFACQG9IAwDQYJKoZIhvcN AQELBQADggEBAGc/OqqGcqQyq/flb98q9vh0bPFRfCIb6lfJawewx6YmOTvEK4w7 onfmdbytpIIhSqE93ZKkjDmIa3HQJGC/EQxshn/KNJouBVcAWW9EkYKuvM7GcjPl Al7fjzCLC44NzJJQT0ww9oYIwQugcWgvTS0vDffX4ePkRieOKZeESDtBqIxbKuJr xdAXeA7m6eyDICpmUMhy5wU4f6so+e8eEK8MEGVhSZG9n5Vw3K9gGJel1uDLRMCn zxBR6J8bPbtthy7bDgU976tvSQZbXeSQqsqYlGvVs1RARsYj3VglsHDOVBL2FAv9 27ItKK3LqSTP87w5quG1HiW9pe460nHeo8Q= -----END CERTIFICATE-----Generated at Fri May 17 00:19:44 2024 by rpki-client on console-ams.rpki-client.org