$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/DF7C817C35DA11EE9BCFCD7FC4F9AE02.roa File: DF7C817C35DA11EE9BCFCD7FC4F9AE02.roa (raw, json) Hash identifier: e51eKq9OLLcBuWnM2hYXj0Vy1lJbp5BMcr7yhjxvZf0= Subject key identifier: 04:97:64:E2:D8:A8:7F:08:4D:C7:0E:27:78:22:7D:86:84:45:EB:30 Certificate issuer: /CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Certificate serial: 08DA Authority key identifier: 08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/DF7C817C35DA11EE9BCFCD7FC4F9AE02.roa Signing time: Tue 08 Aug 2023 11:01:06 +0000 ROA not before: Tue 08 Aug 2023 11:01:06 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58895 IP address blocks: 103.92.20.0/22 maxlen: 22 103.92.20.0/24 maxlen: 24 103.92.21.0/24 maxlen: 24 103.92.22.0/24 maxlen: 24 103.92.23.0/24 maxlen: 24 103.203.44.0/24 maxlen: 24 116.213.32.0/24 maxlen: 24 116.213.33.0/24 maxlen: 24 116.213.34.0/24 maxlen: 24 116.213.35.0/24 maxlen: 24 123.253.92.0/22 maxlen: 22 123.253.92.0/24 maxlen: 24 123.253.93.0/24 maxlen: 24 123.253.94.0/24 maxlen: 24 123.253.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2266 (0x8da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Validity Not Before: Aug 8 11:01:06 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64d22072-689b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:79:b1:74:20:b7:01:8e:56:2b:76:70:db:d3: 18:5c:00:ca:3b:53:1e:7b:4f:4c:54:a6:7b:42:0a: 30:eb:fc:2c:b3:a5:87:1a:93:ac:d9:39:4d:d2:c7: c3:2f:d9:36:b2:d8:ab:12:51:21:7c:f2:de:f8:32: 54:78:7a:85:1c:7c:e2:9c:b2:5d:d9:3b:ad:7d:b0: f2:b7:1d:c6:53:bf:34:35:ba:9f:1b:c0:7e:19:60: df:46:15:43:e2:d8:74:53:fe:51:72:bf:33:8e:06: ef:da:47:b4:61:fa:13:94:bf:39:ad:ab:90:37:b2: e1:b0:fc:3f:b1:ec:40:96:24:ba:cc:c3:94:19:ae: 70:4c:a1:83:3c:a3:94:14:00:2c:17:89:ec:8a:3b: 5d:af:1a:e6:ff:b2:7e:65:2c:ff:c5:1c:31:c5:0c: ab:e1:d5:5e:fb:85:f1:02:bf:95:eb:d7:2f:c1:27: 51:20:43:17:b2:67:f3:10:12:17:be:8a:4f:4c:9f: 03:bf:4c:51:e1:59:da:81:76:f2:4c:6c:15:b2:46: 68:7d:7c:b3:a7:56:1e:e0:1a:24:64:8f:e3:43:8c: 10:56:59:4c:5a:80:1c:30:d4:8b:26:ec:58:26:35: 7e:85:0e:db:c5:a2:3e:0c:5d:68:57:5f:cc:fe:08: 67:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:97:64:E2:D8:A8:7F:08:4D:C7:0E:27:78:22:7D:86:84:45:EB:30 X509v3 Authority Key Identifier: keyid:08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/DF7C817C35DA11EE9BCFCD7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.20.0/22 103.203.44.0/24 116.213.32.0/22 123.253.92.0/22 Signature Algorithm: sha256WithRSAEncryption 25:e8:8b:af:31:20:10:f7:a9:eb:df:9c:a8:d9:01:17:b3:e6: 54:eb:d3:e8:a9:94:92:bd:4f:0e:2a:3f:3a:c6:e5:13:55:d4: 8c:4e:41:79:a2:aa:67:8b:59:81:70:36:63:80:cd:24:dc:8e: 2c:96:c8:3f:38:c9:10:b6:c8:ed:bc:10:3c:5d:a8:91:6a:87: 06:1f:a5:41:3f:cc:22:26:be:38:ff:ae:04:7e:92:57:96:17: ff:92:49:c6:9c:75:2c:1a:3e:b2:62:8c:2e:4d:d0:3c:ac:ec: 85:b1:eb:f0:6a:60:53:6b:bc:7d:1a:fd:c0:94:8b:14:79:44: a1:18:b9:f4:b8:ab:d5:a6:69:96:25:c0:22:c0:bd:05:f3:a8: 9a:d8:07:45:b2:8c:13:5e:7e:7b:08:65:a9:98:91:43:55:cc: 8b:7a:89:50:83:e1:58:c2:95:41:a1:6e:7b:ba:68:7f:87:dd: 7a:30:09:47:a8:7c:fb:62:40:05:5b:b7:33:71:42:a3:4b:22: cb:c0:5e:7d:23:a5:d3:6c:f5:7b:5a:3e:f7:ed:fd:f5:81:1c: 1b:a1:04:1e:3e:8c:8d:f2:64:a6:b4:56:39:fa:9b:76:a9:cc: 3c:74:89:91:84:19:26:bd:4c:fe:e4:25:3b:8f:66:b0:5f:26: e8:43:28:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQ0MxMTAvBgNVBAUTKDA4RDI1NkQ0MjZDQTIxNzFGQ0U4MTdDNjQ1MjNGODMy QTM2OTE3QkQwHhcNMjMwODA4MTEwMTA2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQyMjA3Mi02ODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHmxdCC3AY5WK3Zw29MYXADKO1Mee09MVKZ7Qgow6/wss6WHGpOs2TlN0sfD L9k2stirElEhfPLe+DJUeHqFHHzinLJd2TutfbDytx3GU780NbqfG8B+GWDfRhVD 4th0U/5Rcr8zjgbv2ke0YfoTlL85rauQN7LhsPw/sexAliS6zMOUGa5wTKGDPKOU FAAsF4nsijtdrxrm/7J+ZSz/xRwxxQyr4dVe+4XxAr+V69cvwSdRIEMXsmfzEBIX vopPTJ8Dv0xR4VnagXbyTGwVskZofXyzp1Ye4BokZI/jQ4wQVllMWoAcMNSLJuxY JjV+hQ7bxaI+DF1oV1/M/ghnIQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFASXZOLY qH8ITccOJ3gifYaEReswMB8GA1UdIwQYMBaAFAjSVtQmyiFx/OgXxkUj+DKjaRe9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZDQy9DREJDNTk4Njcz MDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lYSDg2QmZHUlNQNE1xTnBG NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOSlcxQ2JLSVhIODZCZkdSU1A0TXFOcEY3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFGQ0MvQ0RCQzU5ODY3MzA5MTFFQUE4ODIwMDMwQzRGOUFFMDIvREY3QzgxN0Mz NURBMTFFRTlCQ0ZDRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJnXBQDBABnyywDBAJ01SADBAJ7/VwwDQYJKoZIhvcNAQEL BQADggEBACXoi68xIBD3qevfnKjZARez5lTr0+iplJK9Tw4qPzrG5RNV1IxOQXmi qmeLWYFwNmOAzSTcjiyWyD84yRC2yO28EDxdqJFqhwYfpUE/zCImvjj/rgR+kleW F/+SScacdSwaPrJijC5N0Dys7IWx6/BqYFNrvH0a/cCUixR5RKEYufS4q9WmaZYl wCLAvQXzqJrYB0WyjBNefnsIZamYkUNVzIt6iVCD4VjClUGhbnu6aH+H3XowCUeo fPtiQAVbtzNxQqNLIsvAXn0jpdNs9XtaPvft/fWBHBuhBB4+jI3yZKa0Vjn6m3ap zDx0iZGEGSa9TP7kJTuPZrBfJuhDKIs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:25 2024 by rpki-client on console-ams.rpki-client.org