$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/182057F63ACE11EC8987F871C4F9AE02.roa File: 182057F63ACE11EC8987F871C4F9AE02.roa (raw, json) Hash identifier: /yUA18EbY34rtN5Siqyvkw233jzFwojqk/HqHecOdsc= Subject key identifier: 79:5C:21:28:4F:C8:CC:16:60:8B:3B:4B:CD:E1:6C:A4:52:B2:80:7A Certificate issuer: /CN=A91AB740/serialNumber=58A99587D5638D8688C25890C7841F3251B496D7 Certificate serial: 0557 Authority key identifier: 58:A9:95:87:D5:63:8D:86:88:C2:58:90:C7:84:1F:32:51:B4:96:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKmVh9VjjYaIwliQx4QfMlG0ltc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/182057F63ACE11EC8987F871C4F9AE02.roa Signing time: Mon 24 Jul 2023 16:12:20 +0000 ROA not before: Mon 24 Jul 2023 16:12:20 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 58926 IP address blocks: 103.248.236.0/22 maxlen: 22 103.248.236.0/22 maxlen: 24 103.248.236.0/23 maxlen: 23 103.248.236.0/24 maxlen: 24 103.248.237.0/24 maxlen: 24 103.248.238.0/23 maxlen: 23 103.248.238.0/24 maxlen: 24 103.248.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/WKmVh9VjjYaIwliQx4QfMlG0ltc.crl rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/WKmVh9VjjYaIwliQx4QfMlG0ltc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKmVh9VjjYaIwliQx4QfMlG0ltc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1367 (0x557) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB740/serialNumber=58A99587D5638D8688C25890C7841F3251B496D7 Validity Not Before: Jul 24 16:12:20 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64bea2e4-39bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:43:06:f5:10:6a:2e:a2:00:e9:ce:83:37:12: f3:42:53:a3:bc:2a:70:b3:e6:01:33:38:a9:04:40: b2:ca:1b:c3:8d:a8:57:cd:19:32:ff:a9:9f:24:8f: da:96:21:35:50:7f:c4:f2:dc:81:6d:0b:1b:81:14: 74:bf:b2:95:ab:01:7a:b9:bd:5e:a5:ec:66:fe:80: b5:d1:ff:03:b0:31:ce:94:c6:43:0d:31:06:92:3d: 6a:84:42:25:5b:8e:82:5c:03:e6:f8:6b:c5:8a:53: 21:90:94:a9:43:6c:4f:38:37:1c:f5:94:68:e7:f2: 59:a1:bc:a7:49:0b:a2:88:30:e6:35:93:db:a6:b6: 59:79:e8:2b:29:9e:da:89:8a:99:3f:65:6a:ca:f2: 3d:ac:6f:bf:50:cc:3a:73:92:a7:42:61:4f:5c:1f: 73:b9:7c:ed:af:50:59:b2:0b:9e:66:fe:a1:74:9b: 2e:d1:f3:a5:5e:d1:f1:5d:b0:67:dd:b4:0e:b3:e4: 00:8d:d2:a2:e5:b1:9a:2e:75:7a:95:c6:19:6f:d8: 10:8b:ce:d1:ff:af:89:51:35:15:b4:7f:b1:34:80: 0c:f1:c4:b6:4e:97:41:fe:5b:82:5a:37:38:73:6e: 5f:c6:94:84:b9:1a:4a:fd:65:ce:29:81:13:36:bd: 75:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5C:21:28:4F:C8:CC:16:60:8B:3B:4B:CD:E1:6C:A4:52:B2:80:7A X509v3 Authority Key Identifier: keyid:58:A9:95:87:D5:63:8D:86:88:C2:58:90:C7:84:1F:32:51:B4:96:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/WKmVh9VjjYaIwliQx4QfMlG0ltc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKmVh9VjjYaIwliQx4QfMlG0ltc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/182057F63ACE11EC8987F871C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.236.0/22 Signature Algorithm: sha256WithRSAEncryption 92:8e:30:62:75:35:a1:03:53:01:0f:dd:90:29:99:be:00:b4: 8b:75:4d:cf:26:7a:26:8d:48:5b:17:89:84:89:e3:ce:c6:5b: df:35:fc:ca:cd:07:2f:94:31:29:68:22:2f:e6:86:a5:c9:c7: 5d:50:0c:45:e4:25:e0:4f:d9:4f:17:21:10:0e:7e:e5:54:e8: 45:97:71:7e:c8:4e:7f:c8:81:be:36:13:39:8a:ff:4f:a9:e5: a3:b2:64:71:44:fc:e4:54:52:9c:3e:26:d5:17:34:c1:88:3f: e5:c1:a2:52:e6:39:dc:13:92:43:40:fc:43:5e:e6:86:33:41: e1:19:d0:26:84:40:15:d0:57:6e:d7:ef:36:32:c1:fb:77:22: bf:2b:03:76:e2:30:5c:61:73:1b:d1:4f:d6:1c:dc:58:d0:89: 70:1f:8d:4f:0f:75:eb:65:da:6b:1d:2c:ed:27:4c:48:3b:6b: 9f:95:d4:a1:ad:8a:36:6d:a3:9e:57:94:f9:77:b1:04:4c:6d: be:66:31:f0:a0:aa:84:c2:97:74:40:8b:3e:6a:50:db:f2:55: e4:91:d3:a9:11:f2:23:0f:ae:dd:4c:2b:52:64:47:c2:e7:ed: 5d:fa:48:04:51:63:24:7c:f2:1d:46:2e:51:62:32:70:6a:53: a1:a2:a8:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NDAxMTAvBgNVBAUTKDU4QTk5NTg3RDU2MzhEODY4OEMyNTg5MEM3ODQxRjMy NTFCNDk2RDcwHhcNMjMwNzI0MTYxMjIwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGJlYTJlNC0zOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkMG9RBqLqIA6c6DNxLzQlOjvCpws+YBMzipBECyyhvDjahXzRky/6mfJI/a liE1UH/E8tyBbQsbgRR0v7KVqwF6ub1epexm/oC10f8DsDHOlMZDDTEGkj1qhEIl W46CXAPm+GvFilMhkJSpQ2xPODcc9ZRo5/JZobynSQuiiDDmNZPbprZZeegrKZ7a iYqZP2VqyvI9rG+/UMw6c5KnQmFPXB9zuXztr1BZsgueZv6hdJsu0fOlXtHxXbBn 3bQOs+QAjdKi5bGaLnV6lcYZb9gQi87R/6+JUTUVtH+xNIAM8cS2TpdB/luCWjc4 c25fxpSEuRpK/WXOKYETNr11+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHlcIShP yMwWYIs7S83hbKRSsoB6MB8GA1UdIwQYMBaAFFiplYfVY42GiMJYkMeEHzJRtJbX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0MC82RTVBQzQ1NEZE MkIxMUU0QkI5MzlCNDNDNEY5QUUwMi9XS21WaDlWampZYUl3bGlReDRRZk1sRzBs dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLbVZoOVZqallhSXdsaVF4NFFmTWxHMGx0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI3NDAvNkU1QUM0NTRGRDJCMTFFNEJCOTM5QjQzQzRGOUFFMDIvMTgyMDU3RjYz QUNFMTFFQzg5ODdGODcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn+OwwDQYJKoZIhvcNAQELBQADggEBAJKOMGJ1NaEDUwEP 3ZApmb4AtIt1Tc8meiaNSFsXiYSJ487GW981/MrNBy+UMSloIi/mhqXJx11QDEXk JeBP2U8XIRAOfuVU6EWXcX7ITn/Igb42EzmK/0+p5aOyZHFE/ORUUpw+JtUXNMGI P+XBolLmOdwTkkNA/ENe5oYzQeEZ0CaEQBXQV27X7zYywft3Ir8rA3biMFxhcxvR T9Yc3FjQiXAfjU8Pdetl2msdLO0nTEg7a5+V1KGtijZto55XlPl3sQRMbb5mMfCg qoTCl3RAiz5qUNvyVeSR06kR8iMPrt1MK1JkR8Ln7V36SARRYyR88h1GLlFiMnBq U6GiqAE= -----END CERTIFICATE-----Generated at Thu May 16 17:51:50 2024 by rpki-client on console-ams.rpki-client.org