$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/1F8AECC6EF8411EBB4E00D4DC4F9AE02.roa File: 1F8AECC6EF8411EBB4E00D4DC4F9AE02.roa (raw, json) Hash identifier: RL2hUE0BuwKjNZR2w1N18MNij4fuKZus+Zv5N9nMZHE= Subject key identifier: 58:C9:36:15:EA:92:D7:6C:CE:38:AC:97:90:49:F5:8F:97:86:50:AA Certificate issuer: /CN=A91BDE68/serialNumber=2688D48E342192B5FDA8DB6DAD62CC15C87503FA Certificate serial: 1513 Authority key identifier: 26:88:D4:8E:34:21:92:B5:FD:A8:DB:6D:AD:62:CC:15:C8:75:03:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JojUjjQhkrX9qNttrWLMFch1A_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/1F8AECC6EF8411EBB4E00D4DC4F9AE02.roa Signing time: Tue 14 Nov 2023 17:24:43 +0000 ROA not before: Tue 14 Nov 2023 17:24:43 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 137080 IP address blocks: 103.104.28.0/22 maxlen: 24 2401:ff40::/32 maxlen: 32 2401:ff40:5000::/44 maxlen: 44 2401:ff40:5040::/44 maxlen: 44 2401:ff40:e000::/44 maxlen: 44 2401:ff40:e040::/44 maxlen: 44 2401:ff40:f000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/JojUjjQhkrX9qNttrWLMFch1A_o.crl rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/JojUjjQhkrX9qNttrWLMFch1A_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JojUjjQhkrX9qNttrWLMFch1A_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5395 (0x1513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDE68/serialNumber=2688D48E342192B5FDA8DB6DAD62CC15C87503FA Validity Not Before: Nov 14 17:24:43 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6553ad5a-49e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:06:97:51:33:ef:95:3c:a3:a8:ab:3f:cd:2a: 5b:91:7d:1f:8f:28:22:3c:ba:58:6a:76:d8:ad:62: 1c:d6:7b:ca:6c:5f:1b:8c:88:88:8a:2f:e3:96:2f: b1:65:d0:3b:58:40:87:28:ae:87:64:bb:54:39:b5: 49:1e:fd:67:a2:ef:43:8c:31:7c:6f:8e:3a:11:27: 2d:58:c6:93:a2:f3:5d:f8:40:ff:3c:bc:28:89:fc: 86:78:07:57:86:fa:9d:88:23:f0:11:c4:96:2e:ef: 8e:02:06:16:00:0a:66:a3:f2:83:b5:e8:e9:e9:46: 5e:7e:eb:5b:81:d9:c3:05:c7:5b:01:21:ae:14:d2: 1c:4e:a4:38:61:57:9f:81:bb:32:a2:3e:09:6d:2b: 08:1e:26:89:f5:28:46:ae:ae:7f:ba:48:42:01:17: 8c:92:69:85:43:af:11:3a:54:de:72:7f:e0:16:16: 76:50:0b:a1:30:b1:eb:c9:b0:a8:46:19:6a:ed:73: b3:2e:0c:1d:db:16:81:1e:b9:04:2b:83:9a:1a:b8: e4:63:8c:dd:39:1d:83:96:9f:33:15:a7:97:50:d4: a4:c3:db:a3:c8:d1:9f:9d:57:77:88:de:2b:cd:ca: 46:31:49:95:3b:b5:12:f2:3b:65:e6:5c:aa:43:1f: 8e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C9:36:15:EA:92:D7:6C:CE:38:AC:97:90:49:F5:8F:97:86:50:AA X509v3 Authority Key Identifier: keyid:26:88:D4:8E:34:21:92:B5:FD:A8:DB:6D:AD:62:CC:15:C8:75:03:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/JojUjjQhkrX9qNttrWLMFch1A_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JojUjjQhkrX9qNttrWLMFch1A_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDE68/80B2F3F815EA11E8A7353613C4F9AE02/1F8AECC6EF8411EBB4E00D4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.28.0/22 IPv6: 2401:ff40::/32 Signature Algorithm: sha256WithRSAEncryption 04:5b:33:cc:f4:be:bf:de:e6:49:8f:40:ce:06:3a:fa:6c:92: 9f:f7:0b:11:86:d9:99:cb:ca:99:d0:65:c5:95:4a:65:81:66: 6f:6b:83:bc:35:9b:02:35:68:37:8f:db:ec:18:f3:34:bb:2c: 14:60:27:34:7d:f2:18:b1:03:e0:13:a1:cd:72:ef:da:ea:39: d0:8b:65:33:7c:64:31:14:78:ce:70:44:cd:7c:b3:fa:49:fc: 39:09:3e:f8:59:12:e5:50:37:9b:0a:d8:e5:10:cf:98:ec:1f: 11:09:37:15:96:63:e1:58:c6:04:cb:47:20:44:a3:cc:77:de: 37:2c:4b:20:23:29:12:21:2d:ec:ec:a9:8b:f2:5d:d3:0a:c8: bf:88:d4:a6:dc:28:a6:d6:80:8a:09:51:bd:55:ad:ca:6a:29: cb:42:34:aa:d2:96:ff:6c:25:c8:26:cd:a1:7e:76:10:40:c8: 39:68:4e:0c:64:ed:07:18:23:01:c9:38:07:31:bd:d6:c5:76: 94:df:90:ba:ac:32:10:f1:a5:fd:e4:8d:88:e9:04:ce:02:ae: 90:66:80:e8:ce:80:58:37:4a:12:7c:28:27:0b:20:da:d7:d6: 92:90:31:35:59:0a:0e:52:54:2e:6d:d4:24:30:c3:e9:21:08: 9d:44:fb:3c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRFNjgxMTAvBgNVBAUTKDI2ODhENDhFMzQyMTkyQjVGREE4REI2REFENjJDQzE1 Qzg3NTAzRkEwHhcNMjMxMTE0MTcyNDQzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTUzYWQ1YS00OWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgaXUTPvlTyjqKs/zSpbkX0fjygiPLpYanbYrWIc1nvKbF8bjIiIii/jli+x ZdA7WECHKK6HZLtUObVJHv1nou9DjDF8b446ESctWMaTovNd+ED/PLwoifyGeAdX hvqdiCPwEcSWLu+OAgYWAApmo/KDtejp6UZefutbgdnDBcdbASGuFNIcTqQ4YVef gbsyoj4JbSsIHiaJ9ShGrq5/ukhCAReMkmmFQ68ROlTecn/gFhZ2UAuhMLHrybCo Rhlq7XOzLgwd2xaBHrkEK4OaGrjkY4zdOR2Dlp8zFaeXUNSkw9ujyNGfnVd3iN4r zcpGMUmVO7US8jtl5lyqQx+OnwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFjJNhXq ktdszjisl5BJ9Y+XhlCqMB8GA1UdIwQYMBaAFCaI1I40IZK1/ajbba1izBXIdQP6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREU2OC84MEIyRjNGODE1 RUExMUU4QTczNTM2MTNDNEY5QUUwMi9Kb2pVampRaGtyWDlxTnR0cldMTUZjaDFB X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pvalVqalFoa3JYOXFOdHRyV0xNRmNoMUFfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRFNjgvODBCMkYzRjgxNUVBMTFFOEE3MzUzNjEzQzRGOUFFMDIvMUY4QUVDQzZF Rjg0MTFFQkI0RTAwRDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnaBwwDQQCAAIwBwMFACQB/0AwDQYJKoZIhvcNAQELBQAD ggEBAARbM8z0vr/e5kmPQM4GOvpskp/3CxGG2ZnLypnQZcWVSmWBZm9rg7w1mwI1 aDeP2+wY8zS7LBRgJzR98hixA+AToc1y79rqOdCLZTN8ZDEUeM5wRM18s/pJ/DkJ PvhZEuVQN5sK2OUQz5jsHxEJNxWWY+FYxgTLRyBEo8x33jcsSyAjKRIhLezsqYvy XdMKyL+I1KbcKKbWgIoJUb1VrcpqKctCNKrSlv9sJcgmzaF+dhBAyDloTgxk7QcY IwHJOAcxvdbFdpTfkLqsMhDxpf3kjYjpBM4CrpBmgOjOgFg3ShJ8KCcLINrX1pKQ MTVZCg5SVC5t1CQww+khCJ1E+zw= -----END CERTIFICATE-----Generated at Wed May 8 20:36:04 2024 by rpki-client on console-ams.rpki-client.org