$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa File: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (raw, json) Hash identifier: VTDAs7qBfzVNGUAr0wXMJOFSKxSLaKpDcuB0fvcbj9g= Subject key identifier: 2A:45:DB:11:B8:87:E8:D2:50:7B:A9:FC:6B:4A:E0:24:99:01:12:3F Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 015B Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa Signing time: Tue 09 Jan 2024 05:43:17 +0000 ROA not before: Tue 09 Jan 2024 05:43:17 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132335 IP address blocks: 45.252.190.0/24 maxlen: 24 103.205.140.0/24 maxlen: 24 103.205.141.0/24 maxlen: 24 103.205.142.0/24 maxlen: 24 103.205.143.0/24 maxlen: 24 103.217.220.0/24 maxlen: 24 103.217.221.0/24 maxlen: 24 103.217.222.0/24 maxlen: 24 103.217.223.0/24 maxlen: 24 103.247.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Jan 9 05:43:17 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=659cdcf5-25dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d9:d0:a5:75:9a:05:11:2a:b5:8e:1c:ad:8f: cd:34:44:f3:4f:9c:b2:22:e4:06:8c:46:c6:5e:e2: 57:b4:7c:bb:66:40:2e:a2:95:a6:31:7f:76:44:77: 12:cd:46:64:25:b8:0b:f2:8d:91:e3:5f:43:82:a1: 30:ca:c4:df:7a:a7:ff:ba:0a:d8:f3:f9:7e:ce:f2: c4:3d:2c:76:b3:75:fe:fc:f6:f4:da:0f:e3:4a:05: b5:97:0c:0a:06:5c:e9:21:d0:3d:bd:76:e2:99:8f: 3d:58:ef:cd:30:69:41:ef:1b:90:b0:bf:54:07:99: 72:c9:92:7c:07:cd:53:67:9e:f7:20:ac:1a:11:9b: b8:90:94:50:6b:3d:94:19:2d:62:92:f1:a1:5c:7b: ad:74:89:07:a4:e7:52:a5:72:f9:91:3e:b2:86:51: bb:7a:e8:79:65:78:eb:1b:94:89:65:b5:88:bc:03: ee:d1:96:23:c8:85:3d:2d:fb:b7:25:32:c0:07:64: ac:89:12:0f:cc:9b:c3:c4:ae:25:28:7e:db:a2:1a: 1c:01:fe:85:8a:ef:20:48:fd:22:26:89:2d:02:e5: 21:38:fb:fe:e2:ce:62:db:c8:41:14:97:fe:c9:fa: 01:a1:99:d1:3e:ad:87:03:30:d1:46:3c:16:5a:ae: b8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:45:DB:11:B8:87:E8:D2:50:7B:A9:FC:6B:4A:E0:24:99:01:12:3F X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/90647F2EA14A11ED8FFBA684C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.252.190.0/24 103.205.140.0/22 103.217.220.0/22 103.247.19.0/24 Signature Algorithm: sha256WithRSAEncryption 62:c3:ca:39:ef:1f:aa:1e:20:9a:5c:be:1b:db:03:c1:de:ca: 65:fb:85:f8:aa:41:2b:87:26:a3:23:8e:98:fb:16:e1:21:c4: 70:7c:c7:9d:e5:a2:29:0a:92:41:60:70:7c:3d:86:f9:d8:f6: 06:a3:5c:25:93:5d:17:ad:ad:2b:d1:a3:6a:27:35:f7:89:ec: f7:f5:36:1d:6e:87:85:ed:c1:9b:79:0a:b1:40:36:47:11:81: 10:ef:ec:a8:a1:8f:eb:c2:4e:49:3d:92:51:4a:3b:fb:6e:40: 8c:55:1a:ec:79:62:f1:26:df:09:3e:83:89:ab:ca:d3:8e:a3: 58:70:36:7d:53:f9:17:15:f8:23:6f:66:70:23:bc:16:e9:a4: da:e5:29:31:8c:88:4c:08:28:e5:84:97:4f:cd:66:22:ac:20: c6:18:95:f1:82:08:18:6a:6e:05:64:e8:76:e1:db:b0:69:f4: 9f:47:33:b3:03:cc:96:87:0b:a2:05:6b:df:75:04:9f:73:ad: e2:5d:48:2f:08:1f:ea:63:22:fd:ac:75:dc:a3:cc:e8:dc:24: b6:9e:02:50:77:67:ca:fa:2f:93:c2:8a:48:90:2f:37:af:ab: 87:2c:5a:eb:55:47:0a:65:6d:aa:87:ea:60:5a:61:47:ad:68: 30:9c:1f:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwMTA5MDU0MzE3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTljZGNmNS0yNWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9nQpXWaBREqtY4crY/NNETzT5yyIuQGjEbGXuJXtHy7ZkAuopWmMX92RHcS zUZkJbgL8o2R419DgqEwysTfeqf/ugrY8/l+zvLEPSx2s3X+/Pb02g/jSgW1lwwK BlzpIdA9vXbimY89WO/NMGlB7xuQsL9UB5lyyZJ8B81TZ573IKwaEZu4kJRQaz2U GS1ikvGhXHutdIkHpOdSpXL5kT6yhlG7euh5ZXjrG5SJZbWIvAPu0ZYjyIU9Lfu3 JTLAB2SsiRIPzJvDxK4lKH7bohocAf6Fiu8gSP0iJoktAuUhOPv+4s5i28hBFJf+ yfoBoZnRPq2HAzDRRjwWWq641wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFCpF2xG4 h+jSUHup/GtK4CSZARI/MB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvOTA2NDdGMkVB MTRBMTFFRDhGRkJBNjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAt/L4DBAJnzYwDBAJn2dwDBABn9xMwDQYJKoZIhvcNAQEL BQADggEBAGLDyjnvH6oeIJpcvhvbA8HeymX7hfiqQSuHJqMjjpj7FuEhxHB8x53l oikKkkFgcHw9hvnY9gajXCWTXRetrSvRo2onNfeJ7Pf1Nh1uh4XtwZt5CrFANkcR gRDv7Kihj+vCTkk9klFKO/tuQIxVGux5YvEm3wk+g4mrytOOo1hwNn1T+RcV+CNv ZnAjvBbppNrlKTGMiEwIKOWEl0/NZiKsIMYYlfGCCBhqbgVk6Hbh27Bp9J9HM7MD zJaHC6IFa991BJ9zreJdSC8IH+pjIv2sddyjzOjcJLaeAlB3Z8r6L5PCikiQLzev q4csWutVRwplbaqH6mBaYUetaDCcH5I= -----END CERTIFICATE-----Generated at Wed May 15 06:46:32 2024 by rpki-client on console-fra.rpki-client.org