$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa File: 5B01916AD15911EE8B8BB151C4F9AE02.roa (raw, json) Hash identifier: Y6Hkp4sTJO7AZ5C1Wz7mMUSK6uq+xj1g3IXrcWStJ+0= Subject key identifier: 36:DA:24:8B:30:C7:CC:6A:74:8D:76:3B:D0:2E:72:C2:5A:96:D9:86 Certificate issuer: /CN=A91BB87C/serialNumber=EAA96DCA7430DFA471CA29B843836C1C80E5439E Certificate serial: 0BA2 Authority key identifier: EA:A9:6D:CA:74:30:DF:A4:71:CA:29:B8:43:83:6C:1C:80:E5:43:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa Signing time: Thu 22 Feb 2024 08:07:01 +0000 ROA not before: Thu 22 Feb 2024 08:07:01 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 134204 IP address blocks: 103.58.72.0/22 maxlen: 24 203.76.220.0/22 maxlen: 24 2400:4d40::/32 maxlen: 32 2400:4d40::/36 maxlen: 36 2400:4d40:1000::/36 maxlen: 36 2400:4d40:2000::/36 maxlen: 36 2400:4d40:3000::/36 maxlen: 36 2400:4d40:4000::/36 maxlen: 36 2400:4d40:5000::/36 maxlen: 36 2400:4d40:6000::/36 maxlen: 36 2400:4d40:7000::/36 maxlen: 36 2400:4d40:8000::/36 maxlen: 36 2400:4d40:9000::/36 maxlen: 36 2400:4d40:a000::/36 maxlen: 36 2400:4d40:b000::/36 maxlen: 36 2400:4d40:c000::/36 maxlen: 36 2400:4d40:d000::/36 maxlen: 36 2400:4d40:e000::/36 maxlen: 36 2400:4d40:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.crl rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB87C/serialNumber=EAA96DCA7430DFA471CA29B843836C1C80E5439E Validity Not Before: Feb 22 08:07:01 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65d700a4-8714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2a:29:df:63:7b:1e:2d:47:a0:ed:16:ff:14: 2f:67:a2:62:91:e8:6b:d7:74:bf:c9:e5:e0:b1:51: 5f:7a:81:c8:47:bb:a8:3d:f4:5f:79:60:3e:f8:e7: 9e:f8:af:87:91:ef:d0:9a:fc:d4:0e:a4:44:a0:7d: c2:74:85:66:e2:f3:81:23:c3:ff:12:6a:55:82:b1: d4:ab:c0:0a:6f:92:e8:8b:56:26:60:45:3e:4b:f7: dc:67:4d:9d:b1:cf:94:8a:11:2f:95:9e:ad:b5:4c: 74:19:1c:14:dc:28:61:28:68:f2:80:6d:ae:ab:c4: d7:d6:9f:c1:19:84:69:26:b1:b5:89:16:a8:11:e0: 89:87:8c:e8:df:1f:e4:3f:e5:23:b8:e1:9e:fc:3d: 61:4f:b3:2e:e7:a9:48:53:d5:f5:fb:83:3a:74:c8: 35:ac:bf:fa:b2:8f:f4:2c:00:4a:c6:6e:51:a9:f3: 51:60:e0:de:04:03:07:71:32:a5:3f:00:e0:e6:03: 15:a9:1e:4f:68:80:ca:10:92:1e:eb:07:99:70:99: 63:0f:58:29:da:4c:dc:9f:30:27:42:e3:66:a3:92: e7:a4:15:fb:9c:51:bf:ba:7d:fb:ca:ea:1d:6a:51: 61:0b:40:9d:d5:19:50:4b:e8:5e:ae:ea:9d:c3:41: 72:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:DA:24:8B:30:C7:CC:6A:74:8D:76:3B:D0:2E:72:C2:5A:96:D9:86 X509v3 Authority Key Identifier: keyid:EA:A9:6D:CA:74:30:DF:A4:71:CA:29:B8:43:83:6C:1C:80:E5:43:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.72.0/22 203.76.220.0/22 IPv6: 2400:4d40::/32 Signature Algorithm: sha256WithRSAEncryption af:8c:f5:ad:21:3f:2e:e9:48:63:99:6b:47:f6:d3:c0:f1:43: 34:a8:66:00:32:eb:cc:6a:63:f9:f9:76:ad:78:fa:f4:38:75: f2:ff:81:d4:e9:52:89:64:69:00:fe:a8:59:47:66:4d:8b:68: df:59:26:52:a3:6c:13:1e:69:37:65:b0:45:24:8f:ef:01:44: 85:47:6f:57:fb:64:57:87:ad:62:87:1d:7e:62:a5:90:29:fb: be:25:0c:f1:27:43:33:e2:e3:0d:0c:a9:5d:bd:93:ef:29:e5: 71:20:93:0d:6a:3d:c3:70:02:9d:b0:46:7e:fe:b3:ee:fe:cc: 1f:69:07:23:de:24:f5:83:ea:e0:eb:78:d4:da:85:9b:66:84: 21:91:80:3d:7a:07:68:4a:50:d1:4f:4a:8e:d0:05:31:15:84: 29:50:d6:1f:e2:2e:17:1e:13:e8:07:f1:f0:45:6e:61:79:39: 8b:9b:78:1f:92:31:1f:47:13:48:16:16:ba:e2:b2:b7:7d:8f: 14:90:e7:6a:8c:f9:3b:a3:09:ea:1c:d1:ae:9b:f8:4c:16:01: 27:ca:8a:93:20:5c:63:d2:cf:4a:a1:46:e2:57:a2:68:4c:8d: a8:35:73:a8:e5:fe:bf:c2:bb:72:66:22:20:a7:69:2f:7c:ce: 9d:98:8e:ce -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI4N0MxMTAvBgNVBAUTKEVBQTk2RENBNzQzMERGQTQ3MUNBMjlCODQzODM2QzFD ODBFNTQzOUUwHhcNMjQwMjIyMDgwNzAxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3MDBhNC04NzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6iop32N7Hi1HoO0W/xQvZ6Jikehr13S/yeXgsVFfeoHIR7uoPfRfeWA++Oee +K+Hke/QmvzUDqREoH3CdIVm4vOBI8P/EmpVgrHUq8AKb5Loi1YmYEU+S/fcZ02d sc+UihEvlZ6ttUx0GRwU3ChhKGjygG2uq8TX1p/BGYRpJrG1iRaoEeCJh4zo3x/k P+UjuOGe/D1hT7Mu56lIU9X1+4M6dMg1rL/6so/0LABKxm5RqfNRYODeBAMHcTKl PwDg5gMVqR5PaIDKEJIe6weZcJljD1gp2kzcnzAnQuNmo5LnpBX7nFG/un37yuod alFhC0Cd1RlQS+heruqdw0FyqwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDbaJIsw x8xqdI12O9AucsJaltmGMB8GA1UdIwQYMBaAFOqpbcp0MN+kccopuEODbByA5UOe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjg3Qy82M0Q5MDMxMkZD MDIxMUU5QTQxOUYzNDBDNEY5QUUwMi82cWx0eW5RdzM2Unh5aW00UTROc0hJRGxR NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZxbHR5blF3MzZSeHlpbTRRNE5zSElEbFE1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI4N0MvNjNEOTAzMTJGQzAyMTFFOUE0MTlGMzQwQzRGOUFFMDIvNUIwMTkxNkFE MTU5MTFFRThCOEJCMTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnOkgDBALLTNwwDQQCAAIwBwMFACQATUAwDQYJKoZIhvcN AQELBQADggEBAK+M9a0hPy7pSGOZa0f208DxQzSoZgAy68xqY/n5dq14+vQ4dfL/ gdTpUolkaQD+qFlHZk2LaN9ZJlKjbBMeaTdlsEUkj+8BRIVHb1f7ZFeHrWKHHX5i pZAp+74lDPEnQzPi4w0MqV29k+8p5XEgkw1qPcNwAp2wRn7+s+7+zB9pByPeJPWD 6uDreNTahZtmhCGRgD16B2hKUNFPSo7QBTEVhClQ1h/iLhceE+gH8fBFbmF5OYub eB+SMR9HE0gWFrrisrd9jxSQ52qM+TujCeoc0a6b+EwWASfKipMgXGPSz0qhRuJX omhMjag1c6jl/r/Cu3JmIiCnaS98zp2Yjs4= -----END CERTIFICATE-----Generated at Fri May 10 20:45:25 2024 by rpki-client on console-ams.rpki-client.org