$ rpki-client -vvf rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/690390E80FAA11EB8B893F1EC4F9AE02.roa File: 690390E80FAA11EB8B893F1EC4F9AE02.roa (raw, json) Hash identifier: EZlV5I8OJbq3/1fro9aY1nbM1EhKkQZAedazUY1zJHE= Subject key identifier: 8F:52:49:E9:18:F8:07:D0:8B:4E:54:31:C2:B4:35:D3:23:62:16:27 Certificate issuer: /CN=A91B624E/serialNumber=54244F645DEA0D509668580D138E825279FB5678 Certificate serial: 0B96 Authority key identifier: 54:24:4F:64:5D:EA:0D:50:96:68:58:0D:13:8E:82:52:79:FB:56:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCRPZF3qDVCWaFgNE46CUnn7Vng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/690390E80FAA11EB8B893F1EC4F9AE02.roa Signing time: Mon 12 Jun 2023 19:39:33 +0000 ROA not before: Mon 12 Jun 2023 19:39:33 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 136480 IP address blocks: 103.116.56.0/22 maxlen: 22 103.116.56.0/23 maxlen: 23 103.116.56.0/24 maxlen: 24 103.116.57.0/24 maxlen: 24 103.116.58.0/23 maxlen: 23 103.116.58.0/24 maxlen: 24 103.116.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/VCRPZF3qDVCWaFgNE46CUnn7Vng.crl rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/VCRPZF3qDVCWaFgNE46CUnn7Vng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCRPZF3qDVCWaFgNE46CUnn7Vng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2966 (0xb96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B624E/serialNumber=54244F645DEA0D509668580D138E825279FB5678 Validity Not Before: Jun 12 19:39:33 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64877475-b14c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:61:88:ab:23:45:bd:81:81:7f:45:72:00:e6: 2b:cd:d3:1e:b1:fe:cc:5d:06:0d:5c:0f:94:38:83: 23:42:26:e8:af:fd:22:85:9d:9f:16:98:fc:6c:bd: e3:11:c9:e4:59:d7:f0:ad:2d:81:bd:63:60:ff:9e: df:87:b1:78:b6:6b:6d:83:b2:e4:6b:f4:07:f2:03: 61:2a:e3:e4:78:62:b0:5b:49:3c:20:9b:64:2d:69: 8c:95:af:dc:67:34:2d:5f:61:ef:68:6b:4e:00:ee: e0:ea:f5:57:69:18:fe:f9:35:98:89:a2:24:15:80: 6d:a8:f4:74:4e:22:57:ca:b8:5d:a0:78:47:c2:c5: 5a:c9:ee:3a:36:77:57:85:ef:43:47:c9:ec:78:45: 89:f5:c5:93:b7:04:f3:3a:75:09:5d:ad:50:3b:e7: ba:d4:92:63:7d:6c:cd:b3:73:1b:33:68:3b:82:7a: 62:f1:bc:e6:eb:c9:06:b5:5c:c4:93:d1:5f:51:76: 86:08:0f:3a:cf:42:2f:52:02:e7:8d:3f:29:c1:1f: 87:4f:e0:a0:67:50:46:e7:12:43:b1:b3:04:bd:fd: 20:46:91:a7:54:54:f5:dd:cb:a7:b9:a1:91:b9:6d: 9e:0c:f5:06:96:ba:ed:4f:28:02:d3:1d:3e:c5:16: a3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:52:49:E9:18:F8:07:D0:8B:4E:54:31:C2:B4:35:D3:23:62:16:27 X509v3 Authority Key Identifier: keyid:54:24:4F:64:5D:EA:0D:50:96:68:58:0D:13:8E:82:52:79:FB:56:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/VCRPZF3qDVCWaFgNE46CUnn7Vng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCRPZF3qDVCWaFgNE46CUnn7Vng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/690390E80FAA11EB8B893F1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.56.0/22 Signature Algorithm: sha256WithRSAEncryption ad:1b:80:bd:1a:98:d4:c7:9a:b2:d1:e5:60:c1:84:46:f4:2b: ae:94:77:fa:6d:59:10:6d:a8:9a:ac:ca:79:b8:b1:7d:ef:b5: 92:f7:24:6c:66:cc:27:47:16:ca:04:1a:18:1f:d6:92:00:b1: a7:39:9c:e9:c6:8a:a6:94:63:1a:69:b9:02:17:b7:7e:47:72: 50:c1:02:74:da:96:4f:f9:dc:ab:d2:cc:1b:82:62:4e:95:14: 1f:27:82:c7:02:b4:45:4f:88:1d:75:ae:eb:50:3a:2c:6e:c1: a1:4e:14:92:ec:b2:63:2c:1d:4b:0a:3b:83:ec:a3:0b:56:9f: c1:75:8a:67:14:b3:05:d9:b5:c6:79:01:f7:c4:20:2d:0c:17: 47:80:a8:16:02:d9:ef:20:ca:95:44:c8:21:0b:02:a1:85:ef: 22:8a:e1:fa:48:df:a6:d4:b6:f7:ad:29:be:47:05:80:7e:d9: 7b:3e:29:ad:c0:a6:97:c1:d2:5b:cd:e0:6e:d0:e8:be:82:38: cb:2b:3d:cc:e0:22:e6:d7:7a:7b:cf:db:95:68:67:ae:66:6e: ef:e3:67:16:24:d0:ec:10:6c:0c:5d:1e:d4:9b:a8:f1:26:7d: c5:ae:21:7d:2d:90:35:ca:d1:9e:5c:bb:8b:7f:db:b4:d1:40: be:d9:a5:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNEUxMTAvBgNVBAUTKDU0MjQ0RjY0NURFQTBENTA5NjY4NTgwRDEzOEU4MjUy NzlGQjU2NzgwHhcNMjMwNjEyMTkzOTMzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg3NzQ3NS1iMTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymGIqyNFvYGBf0VyAOYrzdMesf7MXQYNXA+UOIMjQibor/0ihZ2fFpj8bL3j EcnkWdfwrS2BvWNg/57fh7F4tmttg7Lka/QH8gNhKuPkeGKwW0k8IJtkLWmMla/c ZzQtX2HvaGtOAO7g6vVXaRj++TWYiaIkFYBtqPR0TiJXyrhdoHhHwsVaye46NndX he9DR8nseEWJ9cWTtwTzOnUJXa1QO+e61JJjfWzNs3MbM2g7gnpi8bzm68kGtVzE k9FfUXaGCA86z0IvUgLnjT8pwR+HT+CgZ1BG5xJDsbMEvf0gRpGnVFT13cunuaGR uW2eDPUGlrrtTygC0x0+xRajgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI9SSekY +AfQi05UMcK0NdMjYhYnMB8GA1UdIwQYMBaAFFQkT2Rd6g1QlmhYDROOglJ5+1Z4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI0RS9CRDk1QzM4RUUw M0UxMUU5QjJCOURBMTFDNEY5QUUwMi9WQ1JQWkYzcURWQ1dhRmdORTQ2Q1VubjdW bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDUlBaRjNxRFZDV2FGZ05FNDZDVW5uN1ZuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNEUvQkQ5NUMzOEVFMDNFMTFFOUIyQjlEQTExQzRGOUFFMDIvNjkwMzkwRTgw RkFBMTFFQjhCODkzRjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndDgwDQYJKoZIhvcNAQELBQADggEBAK0bgL0amNTHmrLR 5WDBhEb0K66Ud/ptWRBtqJqsynm4sX3vtZL3JGxmzCdHFsoEGhgf1pIAsac5nOnG iqaUYxppuQIXt35HclDBAnTalk/53KvSzBuCYk6VFB8ngscCtEVPiB11rutQOixu waFOFJLssmMsHUsKO4PsowtWn8F1imcUswXZtcZ5AffEIC0MF0eAqBYC2e8gypVE yCELAqGF7yKK4fpI36bUtvetKb5HBYB+2Xs+Ka3AppfB0lvN4G7Q6L6COMsrPczg IubXenvP25VoZ65mbu/jZxYk0OwQbAxdHtSbqPEmfcWuIX0tkDXK0Z5cu4t/27TR QL7ZpaU= -----END CERTIFICATE-----Generated at Thu May 16 20:25:54 2024 by rpki-client on console-ams.rpki-client.org