$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa File: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (raw, json) Hash identifier: lBledsUPQfpk+tssxnbGlzMMM3id5rxqk89XoR+ouo4= Subject key identifier: 45:29:49:25:87:6B:AB:BF:C5:7F:4D:F6:A3:1F:C0:4D:8E:CB:69:B2 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 01E7 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa Signing time: Sat 27 May 2023 05:13:36 +0000 ROA not before: Sat 27 May 2023 05:13:36 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 125 IP address blocks: 103.35.217.0/24 maxlen: 24 103.232.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: May 27 05:13:36 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64719180-f9cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ea:cf:6f:f8:9c:ad:81:39:2c:28:86:f3:e5: 43:f1:de:f7:e8:54:2c:29:09:bd:f3:8a:95:7b:77: 12:f3:9a:c0:18:0b:42:c7:8c:f3:41:1d:b9:44:d1: 66:3e:02:c9:d4:4a:5e:14:d8:94:c4:12:94:35:66: 10:a4:44:da:59:b2:4f:7f:ca:48:99:35:1e:1b:47: fc:d3:e9:04:f9:57:5e:f3:c5:e6:da:96:c2:67:c5: 7f:97:e5:57:5d:de:09:63:34:94:84:96:27:f5:b4: 0a:e6:12:93:c2:85:57:fb:53:ae:61:ef:c6:2c:8a: 3e:fa:0a:4f:b6:eb:aa:11:75:7e:f0:2c:d6:29:56: a2:42:b6:fd:64:6f:2f:76:4b:e7:11:25:0e:68:0e: 85:b7:8e:a3:6e:99:ba:45:2b:18:5c:db:46:c3:90: 1e:ed:0e:c6:06:32:52:ec:d4:4d:f6:66:fa:97:6e: 62:77:6a:54:cb:e6:12:81:dd:7f:07:46:84:ee:ed: 67:de:5f:9e:48:be:f4:7e:0a:49:8b:56:88:ba:a4: d9:de:dc:f6:6f:2c:2b:0e:be:ed:f2:90:8b:ed:6e: 8f:c8:18:44:7c:93:e1:89:c2:d2:45:5e:82:fd:96: a5:01:a3:6f:7b:d3:70:23:b2:7c:6a:5d:ae:8e:56: 72:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:29:49:25:87:6B:AB:BF:C5:7F:4D:F6:A3:1F:C0:4D:8E:CB:69:B2 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.217.0/24 103.232.224.0/24 Signature Algorithm: sha256WithRSAEncryption 85:7b:4b:a3:38:e3:68:43:b3:da:c3:d2:9d:72:f0:f4:bf:d1: 56:58:9e:0a:e1:b3:98:11:88:f3:88:3a:d0:10:4b:9b:f3:1b: 10:ab:37:d1:33:d5:bc:04:e6:ff:4f:b6:c9:fb:ed:54:4f:8b: a1:95:17:31:bf:a0:39:39:a6:7e:50:8a:b3:96:84:20:33:e9: 04:31:57:4b:03:25:20:e8:96:93:59:e4:db:e6:97:a3:c0:32: c4:8c:03:65:93:b6:d9:23:91:18:16:b9:ef:6e:7f:d5:15:57: 59:dd:32:58:34:b7:00:1e:60:53:19:42:98:fd:f3:47:b2:87: 88:a9:a8:bd:e1:d3:38:14:78:8b:64:3e:16:d3:bc:b4:bb:54: ec:0a:6e:85:c8:49:96:ff:20:39:f8:99:65:a2:b4:8b:a1:f0: e4:d9:12:c0:90:34:c5:51:60:66:00:f6:ee:33:31:59:d5:db: 0f:60:f2:79:13:e5:8b:cf:fe:24:cb:f3:c2:61:b0:74:a8:f1: 43:c6:90:40:c3:72:d1:9b:c5:ed:63:1c:9b:43:bc:0d:11:a3: 0b:8c:65:d2:dc:c3:11:fc:d4:79:46:c3:91:e0:ec:f3:da:2f: 12:34:0f:bd:6a:8a:f7:7e:e1:f0:15:5e:0e:3e:e5:61:2d:98: 3f:62:d3:c0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjMwNTI3MDUxMzM2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxOTE4MC1mOWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+rPb/icrYE5LCiG8+VD8d736FQsKQm984qVe3cS85rAGAtCx4zzQR25RNFm PgLJ1EpeFNiUxBKUNWYQpETaWbJPf8pImTUeG0f80+kE+Vde88Xm2pbCZ8V/l+VX Xd4JYzSUhJYn9bQK5hKTwoVX+1OuYe/GLIo++gpPtuuqEXV+8CzWKVaiQrb9ZG8v dkvnESUOaA6Ft46jbpm6RSsYXNtGw5Ae7Q7GBjJS7NRN9mb6l25id2pUy+YSgd1/ B0aE7u1n3l+eSL70fgpJi1aIuqTZ3tz2bywrDr7t8pCL7W6PyBhEfJPhicLSRV6C /ZalAaNve9NwI7J8al2ujlZylQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEUpSSWH a6u/xX9N9qMfwE2Oy2myMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI4NzUvQzI1REUwRTZCNEU4MTFFQzk4MEM0NDcxQzRGOUFFMDIvQUJCMUVFNjRC NEVEMTFFQ0JBM0QwMTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnI9kDBABn6OAwDQYJKoZIhvcNAQELBQADggEBAIV7S6M4 42hDs9rD0p1y8PS/0VZYngrhs5gRiPOIOtAQS5vzGxCrN9Ez1bwE5v9Ptsn77VRP i6GVFzG/oDk5pn5QirOWhCAz6QQxV0sDJSDolpNZ5Nvml6PAMsSMA2WTttkjkRgW ue9uf9UVV1ndMlg0twAeYFMZQpj980eyh4ipqL3h0zgUeItkPhbTvLS7VOwKboXI SZb/IDn4mWWitIuh8OTZEsCQNMVRYGYA9u4zMVnV2w9g8nkT5YvP/iTL88JhsHSo 8UPGkEDDctGbxe1jHJtDvA0RowuMZdLcwxH81HlGw5Hg7PPaLxI0D71qivd+4fAV Xg4+5WEtmD9i08A= -----END CERTIFICATE-----Generated at Sat May 25 04:35:31 2024 by rpki-client on console-ams.rpki-client.org