$ rpki-client -vvf rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/C8AE3C40B93811EBAC80A46DC4F9AE02.roa File: C8AE3C40B93811EBAC80A46DC4F9AE02.roa (raw, json) Hash identifier: 8A4qahseWZRMlIxZiZssA7PdmU7bh2Sf762zX6THCIg= Subject key identifier: 6A:CA:B4:97:C7:64:4B:12:E8:C0:16:99:82:A1:71:7B:3C:00:88:26 Certificate issuer: /CN=A91C15F2/serialNumber=6382B513348315D5AF3F130EC54C1DA867288C2C Certificate serial: 0509 Authority key identifier: 63:82:B5:13:34:83:15:D5:AF:3F:13:0E:C5:4C:1D:A8:67:28:8C:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/C8AE3C40B93811EBAC80A46DC4F9AE02.roa Signing time: Wed 27 Mar 2024 01:03:14 +0000 ROA not before: Wed 27 Mar 2024 01:03:14 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 63923 IP address blocks: 103.44.76.0/22 maxlen: 22 103.44.76.0/24 maxlen: 24 103.44.77.0/24 maxlen: 24 103.44.78.0/24 maxlen: 24 103.44.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.crl rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C15F2/serialNumber=6382B513348315D5AF3F130EC54C1DA867288C2C Validity Not Before: Mar 27 01:03:14 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66037052-65be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e3:fe:9b:3b:f2:21:25:e9:d2:55:06:f8:82: 05:0e:b6:83:f0:74:a6:ba:c3:f5:12:28:fb:0e:22: 16:c2:10:6d:ae:39:1d:4b:16:dc:b4:b4:d7:2e:54: 89:b0:9b:db:b1:d9:e4:5c:10:e3:2e:33:7a:1b:1e: 15:9a:e1:3a:8a:aa:d2:f9:65:46:93:99:cd:7a:6d: 5c:ac:00:00:a3:9c:02:49:bc:f2:ac:1a:ed:75:2b: 3f:d0:95:e1:ae:d1:01:fb:22:53:cf:8b:e2:0b:75: f3:4f:26:32:97:14:ca:e3:c4:2a:99:16:15:9a:c6: 97:1f:59:ec:14:70:b8:0d:5b:68:ad:6e:e8:31:84: 95:78:22:9a:fe:16:38:85:34:53:38:68:0c:09:c9: cc:a4:51:ad:ba:92:16:bc:44:b8:27:63:5b:63:a4: 03:3e:20:53:dd:bd:75:3d:28:53:ce:5f:7d:4d:86: 08:68:b4:b3:96:35:c2:65:b6:6f:bc:d3:2e:4a:0c: 59:bd:12:e2:da:e2:27:43:51:c7:ef:91:e2:1d:09: 9f:64:50:e2:72:64:8f:25:eb:2d:59:a3:dc:ca:1b: 4e:dd:c5:db:6c:c1:d6:1f:d5:24:29:9f:1a:ba:db: fd:f9:57:d6:ba:0c:da:06:c3:8d:d6:5e:15:dd:28: 1d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:CA:B4:97:C7:64:4B:12:E8:C0:16:99:82:A1:71:7B:3C:00:88:26 X509v3 Authority Key Identifier: keyid:63:82:B5:13:34:83:15:D5:AF:3F:13:0E:C5:4C:1D:A8:67:28:8C:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/C8AE3C40B93811EBAC80A46DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.76.0/22 Signature Algorithm: sha256WithRSAEncryption 80:65:8f:d5:d4:ee:90:05:2c:f9:0e:15:4a:a2:e1:ba:67:34: 8a:63:c4:4d:b1:8f:46:f9:f3:fe:a6:7e:93:97:02:50:8f:e9: fd:0e:c8:9b:e6:37:bb:22:31:b6:6f:47:33:4f:35:51:cb:97: bd:fe:ab:f1:a6:b3:73:f5:64:d3:02:f4:89:24:f7:b6:dc:e7: 71:0b:d9:bf:63:3a:d9:82:f9:2e:32:80:ce:fa:8e:3e:15:b5: 91:e5:09:4f:f6:71:99:fe:f6:b7:da:af:73:14:e1:23:a4:33: 7f:5b:93:09:d1:6e:e1:1b:7b:92:92:36:2d:06:25:ee:6f:55: 16:8a:ea:cb:52:5e:59:77:df:83:49:71:a2:22:12:df:1b:40: 4b:61:68:de:c9:30:cb:ce:28:a3:d2:92:02:e9:42:94:07:b9: 1c:e0:a8:e6:ca:2a:59:17:de:a4:a3:42:b0:5b:15:d6:2d:6a: e5:55:11:ac:76:e4:50:91:80:61:ac:a7:17:96:82:31:7f:fd: 14:b6:22:7c:3a:b6:66:79:de:01:3c:cc:a0:4a:41:4c:48:87: 15:ae:8c:56:b9:2f:95:ec:4e:67:71:c7:5e:77:31:5c:3e:4f: 53:47:89:39:50:a9:14:b4:23:c2:5c:1a:7e:f3:e6:c7:9b:07: dc:36:e9:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE1RjIxMTAvBgNVBAUTKDYzODJCNTEzMzQ4MzE1RDVBRjNGMTMwRUM1NEMxREE4 NjcyODhDMkMwHhcNMjQwMzI3MDEwMzE0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzNzA1Mi02NWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uP+mzvyISXp0lUG+IIFDraD8HSmusP1Eij7DiIWwhBtrjkdSxbctLTXLlSJ sJvbsdnkXBDjLjN6Gx4VmuE6iqrS+WVGk5nNem1crAAAo5wCSbzyrBrtdSs/0JXh rtEB+yJTz4viC3XzTyYylxTK48QqmRYVmsaXH1nsFHC4DVtorW7oMYSVeCKa/hY4 hTRTOGgMCcnMpFGtupIWvES4J2NbY6QDPiBT3b11PShTzl99TYYIaLSzljXCZbZv vNMuSgxZvRLi2uInQ1HH75HiHQmfZFDicmSPJestWaPcyhtO3cXbbMHWH9UkKZ8a utv9+VfWugzaBsON1l4V3SgdewIDAQABo4IClTCCApEwHQYDVR0OBBYEFGrKtJfH ZEsS6MAWmYKhcXs8AIgmMB8GA1UdIwQYMBaAFGOCtRM0gxXVrz8TDsVMHahnKIws MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTVGMi81NjMyMkQ5OEI4 OTgxMUVCQUQ2QzFENDhDNEY5QUUwMi9ZNEsxRXpTREZkV3ZQeE1PeFV3ZHFHY29q Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0SzFFelNERmRXdlB4TU94VXdkcUdjb2pDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE1RjIvNTYzMjJEOThCODk4MTFFQkFENkMxRDQ4QzRGOUFFMDIvQzhBRTNDNDBC OTM4MTFFQkFDODBBNDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnLEwwDQYJKoZIhvcNAQELBQADggEBAIBlj9XU7pAFLPkO FUqi4bpnNIpjxE2xj0b58/6mfpOXAlCP6f0OyJvmN7siMbZvRzNPNVHLl73+q/Gm s3P1ZNMC9Ikk97bc53EL2b9jOtmC+S4ygM76jj4VtZHlCU/2cZn+9rfar3MU4SOk M39bkwnRbuEbe5KSNi0GJe5vVRaK6stSXll334NJcaIiEt8bQEthaN7JMMvOKKPS kgLpQpQHuRzgqObKKlkX3qSjQrBbFdYtauVVEax25FCRgGGspxeWgjF//RS2Inw6 tmZ53gE8zKBKQUxIhxWujFa5L5XsTmdxx153MVw+T1NHiTlQqRS0I8JcGn7z5seb B9w26Vk= -----END CERTIFICATE-----Generated at Sun May 19 01:47:15 2024 by rpki-client on console-ams.rpki-client.org