$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/291E55288C7111EBA752313FC4F9AE02.roa File: 291E55288C7111EBA752313FC4F9AE02.roa (raw, json) Hash identifier: gN20eSl2skswrdrcUqtb74Ij5G3tYV7HZBj24U3U0oo= Subject key identifier: D4:96:CE:68:2D:2F:D8:C9:B7:8F:F0:48:FB:19:B1:B7:D2:A8:73:E2 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 050A Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/291E55288C7111EBA752313FC4F9AE02.roa Signing time: Sat 02 Sep 2023 23:30:53 +0000 ROA not before: Sat 02 Sep 2023 23:30:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132464 IP address blocks: 103.73.58.0/24 maxlen: 24 103.145.187.0/24 maxlen: 24 2400:7de0::/32 maxlen: 32 2400:7de0::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1290 (0x50a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: Sep 2 23:30:53 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f3c5ac-53c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0c:d7:bc:b5:4b:f5:2e:61:29:22:36:03:15: 24:1f:2c:73:04:d3:3b:50:27:8c:fb:17:7c:c0:0a: 79:b9:b1:8d:30:e4:84:81:06:35:79:ca:fc:a1:69: 2e:6b:26:3a:f7:a2:26:05:2e:8b:f2:2c:b6:f6:67: c0:5f:75:14:a0:9a:d9:68:af:51:89:ce:ec:30:33: c4:49:72:ce:28:53:5c:97:63:e0:95:46:02:35:5e: 0e:2d:68:38:90:67:bf:be:09:2c:91:81:e5:99:2c: 58:da:92:4f:f2:e7:06:88:8a:2e:61:95:ae:0b:0d: 09:ea:28:a9:de:ca:56:42:91:14:d0:69:09:07:94: c2:2b:90:59:70:69:b2:bc:0f:e2:f5:64:bc:5a:a1: 9b:e8:10:90:27:70:76:dd:01:2c:9e:77:73:93:7c: 11:ac:df:3a:4d:c6:85:48:4e:0e:d4:f6:d9:d6:49: 5a:45:5d:97:d6:6a:5e:67:63:a2:ab:5b:ae:b7:f4: 64:9c:9d:e9:1b:6d:7f:de:79:5b:2e:3f:57:a9:d9: e9:70:6c:af:75:0f:18:77:ae:2f:c8:d9:39:65:53: 57:9e:15:e0:5a:18:06:fc:49:a3:7e:25:0b:37:e8: 4d:f4:90:85:8e:97:b8:40:85:80:81:93:f3:24:15: 82:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:96:CE:68:2D:2F:D8:C9:B7:8F:F0:48:FB:19:B1:B7:D2:A8:73:E2 X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/291E55288C7111EBA752313FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.58.0/24 103.145.187.0/24 IPv6: 2400:7de0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:29:be:e8:6b:d2:5b:9c:c8:17:1e:e3:68:74:09:8b:2a:d5: 94:ea:16:1f:c3:53:02:ac:b2:e7:ce:ec:57:ec:95:3d:e0:3a: 31:3b:5a:71:6f:3a:57:c2:1e:ae:89:cc:60:fc:c2:2e:2b:32: 46:92:c8:e4:02:1a:f7:c9:b5:f5:3c:a4:5a:bf:cf:23:1b:be: 5f:47:75:1a:65:26:60:4f:22:d0:c7:21:41:a6:55:08:91:4a: 7b:dc:32:bf:d5:a8:ab:92:0b:26:60:24:ee:2d:46:75:15:82: 7e:e8:75:83:3d:4f:8e:17:2a:9e:ea:4d:11:43:94:4d:5c:52: f3:ea:4b:67:66:7f:40:1e:74:30:28:fa:9d:7c:ab:49:a3:5b: 35:40:dd:26:33:ac:5d:3b:7b:c8:9e:14:6b:0c:2a:1f:4b:52: 23:6d:30:2b:ac:ea:32:8a:17:14:91:5a:a7:7c:53:17:9f:de: b6:cb:08:00:ed:2f:43:6c:80:f0:a7:cb:c6:fc:74:53:b5:7c: ff:81:35:a2:d7:e3:90:77:1b:7b:01:c0:9a:6d:4a:fc:43:6a: 6c:bc:ae:9d:8d:77:31:c2:36:03:ea:64:ef:21:b8:f3:6f:e7: be:7a:3f:60:fd:94:83:d2:a0:66:30:68:b1:15:8c:7f:98:87: 82:4a:eb:60 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjMwOTAyMjMzMDUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzYzVhYy01M2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQzXvLVL9S5hKSI2AxUkHyxzBNM7UCeM+xd8wAp5ubGNMOSEgQY1ecr8oWku ayY696ImBS6L8iy29mfAX3UUoJrZaK9Ric7sMDPESXLOKFNcl2PglUYCNV4OLWg4 kGe/vgkskYHlmSxY2pJP8ucGiIouYZWuCw0J6iip3spWQpEU0GkJB5TCK5BZcGmy vA/i9WS8WqGb6BCQJ3B23QEsnndzk3wRrN86TcaFSE4O1PbZ1klaRV2X1mpeZ2Oi q1uut/RknJ3pG21/3nlbLj9XqdnpcGyvdQ8Yd64vyNk5ZVNXnhXgWhgG/EmjfiUL N+hN9JCFjpe4QIWAgZPzJBWCywIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNSWzmgt L9jJt4/wSPsZsbfSqHPiMB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYzMTcvNEZENTc2ODA4QzZGMTFFQkJBODE5RjMxQzRGOUFFMDIvMjkxRTU1Mjg4 QzcxMTFFQkE3NTIzMTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnSToDBABnkbswDQQCAAIwBwMFACQAfeAwDQYJKoZIhvcN AQELBQADggEBAEopvuhr0lucyBce42h0CYsq1ZTqFh/DUwKssufO7FfslT3gOjE7 WnFvOlfCHq6JzGD8wi4rMkaSyOQCGvfJtfU8pFq/zyMbvl9HdRplJmBPItDHIUGm VQiRSnvcMr/VqKuSCyZgJO4tRnUVgn7odYM9T44XKp7qTRFDlE1cUvPqS2dmf0Ae dDAo+p18q0mjWzVA3SYzrF07e8ieFGsMKh9LUiNtMCus6jKKFxSRWqd8Uxef3rbL CADtL0NsgPCny8b8dFO1fP+BNaLX45B3G3sBwJptSvxDamy8rp2NdzHCNgPqZO8h uPNv5756P2D9lIPSoGYwaLEVjH+Yh4JK62A= -----END CERTIFICATE-----Generated at Tue May 7 02:01:04 2024 by rpki-client on console-ams.rpki-client.org