$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa File: 5AA3FD0868D111ED99477B87C4F9AE02.roa (raw, json) Hash identifier: prhLP/O9Ky2vnNVwpgSz8d7bddtFDRsPdpE/zatUGlM= Subject key identifier: C7:D9:C2:43:71:37:31:19:22:AA:C3:DA:3F:FD:08:E4:CD:F1:FF:A7 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0AEE Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa Signing time: Mon 28 Aug 2023 19:16:39 +0000 ROA not before: Mon 28 Aug 2023 19:16:39 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137961 IP address blocks: 103.118.84.0/24 maxlen: 24 103.118.85.0/24 maxlen: 24 103.118.86.0/24 maxlen: 24 2403:2ec0::/32 maxlen: 40 2403:2ec0:2000::/48 maxlen: 48 2403:2ec0:20ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:43:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2798 (0xaee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Aug 28 19:16:39 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ecf297-a549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f1:fb:1c:43:f4:e3:b0:7b:7d:93:03:ec:31: 23:1e:53:52:b8:40:59:94:80:a6:75:ac:3c:55:7e: 0a:48:dc:fa:70:b7:b7:b0:73:6d:b9:46:97:a8:32: f7:18:8b:ee:fc:d0:7c:c6:0f:8f:a6:0d:16:93:ea: 85:ca:1b:c1:ff:96:68:d2:bd:f2:e6:a7:ee:51:02: c6:7f:d8:92:ec:4a:7f:9a:3c:d1:43:fc:89:99:fc: e9:bf:e3:dc:55:e1:ce:68:bf:39:b0:2f:24:ef:2b: e7:6e:21:9f:10:ff:b1:85:72:17:eb:ca:24:27:d0: e2:46:f9:57:5c:ee:54:b0:bf:07:b8:55:33:98:be: 3f:13:8b:8c:ad:f8:19:29:10:e9:08:6f:86:4f:cd: ca:69:9e:a6:22:e3:c3:c1:ab:eb:09:71:31:5f:87: 95:64:b7:33:ff:88:d9:49:e0:69:9f:91:3c:41:78: 97:ed:2d:11:88:9d:81:cc:05:d4:41:e8:f4:10:58: 30:d7:03:8a:c0:68:27:89:8e:15:bf:fa:86:75:31: a6:80:81:98:6b:cd:5f:43:ad:ba:6d:c6:06:ce:36: ae:d8:db:b8:1c:05:bb:7f:bd:fa:08:bf:a9:7a:ea: fa:2b:83:82:35:42:62:f5:7d:5f:33:bb:b4:72:2d: 8c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D9:C2:43:71:37:31:19:22:AA:C3:DA:3F:FD:08:E4:CD:F1:FF:A7 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.84.0-103.118.86.255 IPv6: 2403:2ec0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:e6:0b:71:a1:01:b3:41:01:ae:70:00:e9:a1:18:2e:68:12: 9e:ad:28:44:6c:9e:87:bf:ac:a1:f0:b2:51:01:f2:78:4b:5f: 66:25:13:2c:63:d5:6c:28:21:e0:07:b5:d2:3e:3d:f5:f5:8f: 4c:d4:3a:43:10:b5:5c:de:be:6e:66:2e:d8:11:4f:d5:35:34: 66:35:19:de:6f:65:d5:40:60:1d:f6:5b:ec:f8:9b:8c:76:37: 69:cf:d5:63:23:9e:ee:5f:40:0b:3b:bb:52:f6:9e:9a:e3:99: 2d:1f:7b:e5:48:91:5e:39:57:c8:09:47:a6:59:e2:13:ff:4a: 13:6b:68:2f:0c:02:1b:73:b4:a3:96:6e:02:cf:95:b8:56:f5: fa:96:fd:de:3b:bc:09:eb:90:3b:ed:8e:8f:00:e3:bd:9a:6f: aa:d7:51:fe:3a:4a:2e:ad:3c:52:e2:2f:7d:25:2d:ba:49:08: 46:96:6f:d7:2b:34:51:93:b0:d9:80:25:2e:28:1a:c4:b5:01: 82:3b:39:5a:94:52:da:15:3f:d0:ff:49:f5:df:d0:c9:76:18: 84:a7:52:09:bb:c9:7f:75:e4:ab:3d:6d:44:87:65:24:10:3e: 5d:36:54:b1:72:8a:7c:c6:50:80:2a:c6:53:a1:34:66:4c:c8: 3c:1d:f6:c2 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjMwODI4MTkxNjM5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVjZjI5Ny1hNTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfH7HEP047B7fZMD7DEjHlNSuEBZlICmdaw8VX4KSNz6cLe3sHNtuUaXqDL3 GIvu/NB8xg+Ppg0Wk+qFyhvB/5Zo0r3y5qfuUQLGf9iS7Ep/mjzRQ/yJmfzpv+Pc VeHOaL85sC8k7yvnbiGfEP+xhXIX68okJ9DiRvlXXO5UsL8HuFUzmL4/E4uMrfgZ KRDpCG+GT83KaZ6mIuPDwavrCXExX4eVZLcz/4jZSeBpn5E8QXiX7S0RiJ2BzAXU Qej0EFgw1wOKwGgniY4Vv/qGdTGmgIGYa81fQ626bcYGzjau2Nu4HAW7f736CL+p eur6K4OCNUJi9X1fM7u0ci2MmwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMfZwkNx NzEZIqrD2j/9COTN8f+nMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIzREMvMDY2MzlGODYwQTkzMTFFQTg1QUQ4ODZBQzRGOUFFMDIvNUFBM0ZEMDg2 OEQxMTFFRDk5NDc3Qjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAmd2VAMEAGd2VjANBAIAAjAHAwUAJAMuwDANBgkqhkiG 9w0BAQsFAAOCAQEAG+YLcaEBs0EBrnAA6aEYLmgSnq0oRGyeh7+sofCyUQHyeEtf ZiUTLGPVbCgh4Ae10j499fWPTNQ6QxC1XN6+bmYu2BFP1TU0ZjUZ3m9l1UBgHfZb 7PibjHY3ac/VYyOe7l9ACzu7UvaemuOZLR975UiRXjlXyAlHplniE/9KE2toLwwC G3O0o5ZuAs+VuFb1+pb93ju8CeuQO+2OjwDjvZpvqtdR/jpKLq08UuIvfSUtukkI RpZv1ys0UZOw2YAlLigaxLUBgjs5WpRS2hU/0P9J9d/QyXYYhKdSCbvJf3Xkqz1t RIdlJBA+XTZUsXKKfMZQgCrGU6E0ZkzIPB32wg== -----END CERTIFICATE-----Generated at Thu May 16 22:34:52 2024 by rpki-client on console-ams.rpki-client.org