$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/5CE70ACC074E11ED99CF6642C4F9AE02.roa File: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (raw, json) Hash identifier: UTQVGqvsK0R3aZDkbbMaKSrC+YuJAA4uR9/VuZFfj7E= Subject key identifier: 37:F1:77:AC:BD:53:9C:46:73:6C:F6:62:14:59:E1:D3:D6:B7:61:46 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 0157 Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/5CE70ACC074E11ED99CF6642C4F9AE02.roa Signing time: Sat 07 Oct 2023 03:24:01 +0000 ROA not before: Sat 07 Oct 2023 03:24:01 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 63843 IP address blocks: 103.41.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 04:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Oct 7 03:24:01 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6520cf50-5c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6f:f1:92:73:59:ae:e9:4a:a4:b9:3e:b0:23: 90:f4:d5:9f:de:ae:f0:a8:a0:50:9b:89:31:10:65: 53:20:c2:32:ad:3f:72:26:2a:5a:98:a3:11:8a:e2: 89:66:89:ff:1f:d6:ed:dd:f0:66:10:29:b7:50:4e: 00:56:67:19:c0:35:a7:44:da:28:11:b9:43:14:4c: e0:76:2f:13:17:fd:b6:f1:1b:98:b0:4d:de:5b:27: e5:ce:20:f7:d6:1e:f9:be:08:52:e2:6a:0a:b6:2e: 87:e2:d8:d6:0d:5e:df:11:13:31:f5:81:23:76:8a: 1f:39:c7:5c:29:14:c2:df:2a:1e:7f:f2:17:11:7b: ec:28:3a:ec:b9:f2:a3:8b:d9:e4:50:f3:7e:5f:25: f6:b8:6b:8b:a3:78:76:69:8b:53:27:21:b7:ff:e0: 42:47:51:21:9c:18:ab:bd:3f:35:9a:fb:b1:5f:a1: 37:66:e2:1a:c0:d4:d0:16:04:29:08:cb:5f:07:ed: 66:5e:43:a2:2c:4f:6b:5e:19:2c:d1:5d:d0:94:64: fb:01:b7:4c:e6:71:71:0d:5a:db:30:2c:9f:73:08: 80:81:b9:eb:ef:0d:cf:85:59:08:49:ab:d0:22:81: e1:be:b5:bb:94:8c:98:41:25:17:c8:2c:0d:05:d8: 82:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F1:77:AC:BD:53:9C:46:73:6C:F6:62:14:59:E1:D3:D6:B7:61:46 X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/5CE70ACC074E11ED99CF6642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.111.0/24 Signature Algorithm: sha256WithRSAEncryption c3:c9:14:6c:ed:45:1c:f6:9d:21:96:6b:ac:e5:b3:cf:10:0b: 0c:d1:23:b1:ca:82:a6:8f:29:29:6d:29:2b:7e:48:11:85:29: be:d7:30:ec:de:b8:2e:b1:14:23:f0:75:16:d1:f1:16:1a:67: c1:8a:a2:e0:15:af:4a:3c:35:ad:81:42:7e:2e:ef:99:a4:5c: c2:c9:4a:36:b8:cc:f0:24:06:27:e0:88:26:ca:bd:ed:57:f9: ef:6c:6b:6c:4a:81:a9:40:89:bf:83:d9:36:21:d5:3d:68:9e: db:85:14:1e:39:d7:6b:88:ac:7e:f2:5d:bd:79:46:51:db:f0: 87:f2:0c:63:bb:99:da:8c:df:a1:4b:c4:1e:89:b5:31:bd:22: ba:ad:49:91:df:ab:97:8c:60:d3:a7:2c:f8:e6:90:db:33:c3: 2d:57:56:80:50:d2:3d:f7:1c:d0:b1:bd:c8:a9:26:f0:5a:9a: c8:76:40:e2:f6:65:61:e8:61:2c:e4:65:86:18:00:0c:54:ae: f9:0b:03:cd:6a:53:2f:2c:4d:fa:61:75:37:b4:15:62:66:95: 70:09:79:57:67:b1:09:cd:67:49:10:69:6f:2f:d8:92:14:55: 5a:73:89:02:61:c6:4d:37:8b:ab:a7:01:ab:2f:05:7d:88:f4: 1f:22:2d:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjMxMDA3MDMyNDAxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwY2Y1MC01YzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3G/xknNZrulKpLk+sCOQ9NWf3q7wqKBQm4kxEGVTIMIyrT9yJipamKMRiuKJ Zon/H9bt3fBmECm3UE4AVmcZwDWnRNooEblDFEzgdi8TF/228RuYsE3eWyflziD3 1h75vghS4moKti6H4tjWDV7fERMx9YEjdoofOcdcKRTC3yoef/IXEXvsKDrsufKj i9nkUPN+XyX2uGuLo3h2aYtTJyG3/+BCR1EhnBirvT81mvuxX6E3ZuIawNTQFgQp CMtfB+1mXkOiLE9rXhks0V3QlGT7AbdM5nFxDVrbMCyfcwiAgbnr7w3PhVkISavQ IoHhvrW7lIyYQSUXyCwNBdiCXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDfxd6y9 U5xGc2z2YhRZ4dPWt2FGMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkEwNDQvQTdDN0U2NUEwNzRBMTFFRDkwQTM1NDE0QzRGOUFFMDIvNUNFNzBBQ0Mw NzRFMTFFRDk5Q0Y2NjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnKW8wDQYJKoZIhvcNAQELBQADggEBAMPJFGztRRz2nSGW a6zls88QCwzRI7HKgqaPKSltKSt+SBGFKb7XMOzeuC6xFCPwdRbR8RYaZ8GKouAV r0o8Na2BQn4u75mkXMLJSja4zPAkBifgiCbKve1X+e9sa2xKgalAib+D2TYh1T1o ntuFFB4512uIrH7yXb15RlHb8IfyDGO7mdqM36FLxB6JtTG9IrqtSZHfq5eMYNOn LPjmkNszwy1XVoBQ0j33HNCxvcipJvBamsh2QOL2ZWHoYSzkZYYYAAxUrvkLA81q Uy8sTfphdTe0FWJmlXAJeVdnsQnNZ0kQaW8v2JIUVVpziQJhxk03i6unAasvBX2I 9B8iLZk= -----END CERTIFICATE-----Generated at Thu May 23 05:40:08 2024 by rpki-client on console-ams.rpki-client.org