$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/94F5846AE0D011ECAF88A30DC4F9AE02.roa File: 94F5846AE0D011ECAF88A30DC4F9AE02.roa (raw, json) Hash identifier: 896DSl/Ie9Cq4OSO3Lbvg27RkpYXHU4D1YNEjncD07s= Subject key identifier: 5C:F0:77:83:4D:1A:73:A6:D7:94:D3:4C:76:D9:C9:00:2A:84:73:CC Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Certificate serial: 052C Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/94F5846AE0D011ECAF88A30DC4F9AE02.roa Signing time: Fri 22 Sep 2023 23:40:41 +0000 ROA not before: Fri 22 Sep 2023 23:40:41 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136950 IP address blocks: 103.99.60.0/22 maxlen: 22 103.99.60.0/24 maxlen: 24 103.99.61.0/24 maxlen: 24 103.99.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1324 (0x52c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Validity Not Before: Sep 22 23:40:41 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650e25f9-1165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0c:7a:07:2b:9c:a4:f0:ca:67:93:17:b4:8a: bc:c7:51:a8:a4:f4:29:94:11:fc:90:77:54:a5:0c: d4:80:8b:07:a1:4a:58:a3:77:dd:e1:3d:51:96:ae: 60:dd:68:e1:dc:ac:ea:9d:bf:3b:27:c8:39:8f:8b: 13:c5:af:9e:54:bb:f6:32:2c:f6:c6:be:ab:ed:c4: da:d5:a8:bf:2f:ca:bf:e4:9e:cc:ce:a8:bc:c1:6e: 33:27:89:9c:be:ca:ac:ec:8f:75:f1:40:26:2f:09: be:21:5b:21:ff:49:03:94:8e:ea:4c:96:34:a5:99: 9e:27:ce:f2:5e:65:76:6c:6a:b8:f1:d3:35:89:4a: 9e:b9:11:20:f1:cd:d3:bf:c4:7d:f3:ca:4a:23:1a: 5c:6e:35:a5:9b:cd:da:14:88:2d:d3:51:e5:ec:2c: d7:4b:b2:a5:91:b2:d1:84:30:2d:a6:14:23:93:3e: 33:a1:ed:94:05:6b:44:6d:b5:2f:f8:1f:c2:cd:3f: e0:07:22:2a:a6:49:95:f8:3b:81:b5:17:89:2e:49: 7b:96:7a:8f:b6:ad:5e:37:39:2d:91:7f:b8:b1:0a: 29:01:82:10:2b:7d:c0:98:1c:2e:cb:61:ed:49:5e: 77:63:21:67:5c:9c:ea:d1:2e:1d:fb:bf:57:32:6a: c1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F0:77:83:4D:1A:73:A6:D7:94:D3:4C:76:D9:C9:00:2A:84:73:CC X509v3 Authority Key Identifier: keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/94F5846AE0D011ECAF88A30DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.60.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:7c:06:53:e2:44:66:01:28:f3:fa:80:47:ba:c8:3e:39:d8: b4:de:1c:09:59:22:a1:31:a1:44:f2:b4:0e:34:0e:2c:dd:ae: 26:70:92:50:c3:44:d1:3f:43:28:3c:61:ca:67:a3:6c:b9:aa: 6c:39:16:26:5a:3a:0f:17:ea:ba:cd:3c:dc:e5:7f:28:31:2a: 61:79:0f:c7:63:bd:2d:14:36:9c:e3:bf:26:18:e7:3a:0d:3c: 53:84:44:f9:4d:0e:77:f8:a8:32:dd:66:c2:63:15:ce:88:37: bc:fa:42:17:ea:10:f4:66:44:da:a2:92:b3:ab:61:9e:7e:f1: 12:07:7c:5f:39:e7:16:f4:a3:1f:ce:34:e0:fb:d6:5f:af:11: 8e:8f:09:bd:60:71:2a:3d:6e:1d:72:2b:f3:22:a7:dc:2d:50: de:6c:69:c7:88:91:72:8f:e6:e6:18:08:0c:9d:b7:d7:9d:be: bc:5e:5a:ab:30:f4:ce:0e:84:93:7d:8c:c5:e6:9c:1e:96:e2: dc:aa:81:98:b0:0c:db:b4:80:48:44:fa:95:27:05:93:da:f0: 74:3b:a6:31:54:ec:0f:7f:0b:55:9f:8f:ad:c9:69:23:16:90: 0f:cf:d6:e2:21:a5:7b:be:ec:7d:54:1d:56:13:2c:dd:3d:a3: 06:7b:23:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIzNkEyQTVBNTBB RjA5Rjg0MTEwHhcNMjMwOTIyMjM0MDQxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBlMjVmOS0xMTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gx6ByucpPDKZ5MXtIq8x1GopPQplBH8kHdUpQzUgIsHoUpYo3fd4T1Rlq5g 3Wjh3Kzqnb87J8g5j4sTxa+eVLv2Miz2xr6r7cTa1ai/L8q/5J7Mzqi8wW4zJ4mc vsqs7I918UAmLwm+IVsh/0kDlI7qTJY0pZmeJ87yXmV2bGq48dM1iUqeuREg8c3T v8R988pKIxpcbjWlm83aFIgt01Hl7CzXS7KlkbLRhDAtphQjkz4zoe2UBWtEbbUv +B/CzT/gByIqpkmV+DuBtReJLkl7lnqPtq1eNzktkX+4sQopAYIQK33AmBwuy2Ht SV53YyFnXJzq0S4d+79XMmrBaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFzwd4NN GnOm15TTTHbZyQAqhHPMMB8GA1UdIwQYMBaAFHbI4BFVSe2pLeIiNqKlpQrwn4QR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjlGOC85MkQwQkUwMjkw NjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZWSjdha3Q0aUkyb3FXbEN2Q2Zo QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzamdFVlZKN2FrdDRpSTJvcVdsQ3ZDZmhCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI5RjgvOTJEMEJFMDI5MDY4MTFFQjlFM0ZDNjZDQzRGOUFFMDIvOTRGNTg0NkFF MEQwMTFFQ0FGODhBMzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYzwwDQYJKoZIhvcNAQELBQADggEBAE58BlPiRGYBKPP6 gEe6yD452LTeHAlZIqExoUTytA40DizdriZwklDDRNE/Qyg8Ycpno2y5qmw5FiZa Og8X6rrNPNzlfygxKmF5D8djvS0UNpzjvyYY5zoNPFOERPlNDnf4qDLdZsJjFc6I N7z6QhfqEPRmRNqikrOrYZ5+8RIHfF855xb0ox/ONOD71l+vEY6PCb1gcSo9bh1y K/Mip9wtUN5saceIkXKP5uYYCAydt9edvrxeWqsw9M4OhJN9jMXmnB6W4tyqgZiw DNu0gEhE+pUnBZPa8HQ7pjFU7A9/C1Wfj63JaSMWkA/P1uIhpXu+7H1UHVYTLN09 owZ7I7Y= -----END CERTIFICATE-----Generated at Sun May 5 01:22:23 2024 by rpki-client on console-fra.rpki-client.org