$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa File: AEFA3DD02CE211EC8664D47EC4F9AE02.roa (raw, json) Hash identifier: BJQEkBd6t7VbphH51tJLVCWI+17DBqRUmsn76+E+W7Q= Subject key identifier: D1:5D:D4:02:D3:2A:58:F2:2A:31:E0:9C:65:22:65:DF:0F:B8:4D:B6 Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 0372 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa Signing time: Sun 13 Aug 2023 01:22:44 +0000 ROA not before: Sun 13 Aug 2023 01:22:44 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.70.49.0/24 maxlen: 24 103.70.51.0/24 maxlen: 24 182.54.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 882 (0x372) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Aug 13 01:22:44 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d83064-f056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fb:d9:86:20:bb:92:d0:98:2b:5b:da:b8:12: 33:01:ff:49:73:3a:68:a6:1a:8a:0f:11:04:e8:95: 28:65:ba:d1:4b:1c:41:bb:50:47:4c:da:fb:f7:4a: 8a:0b:0b:b9:dc:cd:1a:56:06:a3:a3:66:e7:21:20: 11:78:ad:63:e2:1e:6b:b0:61:37:14:9e:7a:81:18: ad:8e:df:09:92:08:1b:61:f2:65:66:b6:06:83:c6: 6e:26:bc:fb:01:ae:f8:97:ee:f5:75:b1:4c:fa:1e: c5:a1:0c:58:00:b9:e7:9b:1e:ff:23:22:dd:4c:44: ba:03:6b:2d:41:f8:10:9e:1a:61:38:fd:5b:d9:1a: 9a:0b:e1:ae:36:33:6c:55:43:17:99:c1:24:05:69: 64:c4:0c:8e:a2:6c:73:b3:d0:5d:bc:14:cc:ca:d3: 53:e1:0c:08:0e:a6:4d:d0:d5:06:79:d7:5c:1c:c1: 28:05:69:be:8b:66:04:dc:b1:96:a0:d0:bc:d4:4a: d7:40:6b:b9:a6:e5:7d:41:fe:71:37:39:9d:b7:23: 00:1d:de:1e:37:2b:60:8d:cb:de:b6:62:4d:53:88: 3b:7d:57:a2:98:ea:71:74:56:8e:88:35:b1:0f:36: 61:31:a0:55:74:bb:27:ef:e1:b3:fd:1b:ad:f3:f1: f5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:5D:D4:02:D3:2A:58:F2:2A:31:E0:9C:65:22:65:DF:0F:B8:4D:B6 X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.49.0/24 103.70.51.0/24 182.54.135.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:ec:ab:59:f6:d7:b1:a6:a0:b3:16:66:f4:67:fc:f4:31:89: 2b:d6:87:43:05:3e:b8:cd:57:48:cb:7b:5f:db:c0:61:9c:85: d1:11:36:ca:b4:03:1d:6b:c3:87:72:c5:bc:2a:74:93:4c:a7: d5:8f:39:f0:81:21:91:00:a3:b5:05:b6:16:54:0b:eb:13:cd: 93:73:11:56:d7:41:62:27:3f:da:74:1c:51:2f:0f:e9:2a:73: 71:d0:4e:c4:93:ea:67:d5:9b:34:ba:8f:29:74:ee:23:d9:4e: 85:d6:f7:82:5f:aa:6e:bc:6f:f0:31:3f:c3:6e:ea:f7:9f:7c: cb:38:a1:1b:32:6d:5b:d0:25:f3:ed:01:bb:dd:2b:5d:d7:3b: 0e:d9:58:58:dc:9b:c0:32:17:90:a0:87:af:8e:b0:d6:fc:92: e4:33:a7:e9:3d:4d:00:95:bc:5d:36:1e:63:75:cb:24:80:c1: a6:ac:db:8b:91:54:b3:b9:be:86:8d:e3:88:0f:0d:fa:d6:00: 69:d9:28:d2:cf:d0:78:6b:71:d7:89:1d:32:a3:28:09:3f:aa: c3:10:84:bc:32:cd:91:b8:4b:86:9d:2c:a5:f6:fb:db:32:1a: c6:41:9f:7f:c6:8d:9f:bb:c4:23:76:54:6a:bf:38:12:79:b0: 93:9c:02:a0 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjMwODEzMDEyMjQ0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ4MzA2NC1mMDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvvZhiC7ktCYK1vauBIzAf9JczpophqKDxEE6JUoZbrRSxxBu1BHTNr790qK Cwu53M0aVgajo2bnISAReK1j4h5rsGE3FJ56gRitjt8JkggbYfJlZrYGg8ZuJrz7 Aa74l+71dbFM+h7FoQxYALnnmx7/IyLdTES6A2stQfgQnhphOP1b2RqaC+GuNjNs VUMXmcEkBWlkxAyOomxzs9BdvBTMytNT4QwIDqZN0NUGeddcHMEoBWm+i2YE3LGW oNC81ErXQGu5puV9Qf5xNzmdtyMAHd4eNytgjcvetmJNU4g7fVeimOpxdFaOiDWx DzZhMaBVdLsn7+Gz/Rut8/H1kwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNFd1ALT KljyKjHgnGUiZd8PuE22MB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvQUVGQTNERDAy Q0UyMTFFQzg2NjRENDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnRjEDBABnRjMDBAC2NocwDQYJKoZIhvcNAQELBQADggEB AFvsq1n217GmoLMWZvRn/PQxiSvWh0MFPrjNV0jLe1/bwGGchdERNsq0Ax1rw4dy xbwqdJNMp9WPOfCBIZEAo7UFthZUC+sTzZNzEVbXQWInP9p0HFEvD+kqc3HQTsST 6mfVmzS6jyl07iPZToXW94Jfqm68b/AxP8Nu6veffMs4oRsybVvQJfPtAbvdK13X Ow7ZWFjcm8AyF5Cgh6+OsNb8kuQzp+k9TQCVvF02HmN1yySAwaas24uRVLO5voaN 44gPDfrWAGnZKNLP0HhrcdeJHTKjKAk/qsMQhLwyzZG4S4adLKX2+9syGsZBn3/G jZ+7xCN2VGq/OBJ5sJOcAqA= -----END CERTIFICATE-----Generated at Tue Apr 23 18:33:35 2024 by rpki-client on console-fra.rpki-client.org