$ rpki-client -vvf rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/CB5ED75AF62811EC9205771CC4F9AE02.roa File: CB5ED75AF62811EC9205771CC4F9AE02.roa (raw, json) Hash identifier: KcmTCxVwQvib6TDmroOgeBie9t+keN5GE3tu3JF3pyk= Subject key identifier: 74:34:55:E2:DB:5F:36:A3:34:80:A7:DB:F5:1C:C5:7C:C3:87:29:9F Certificate issuer: /CN=A91C705E/serialNumber=83ACB50F96F6443F4B83D391F857BE7CB57E34C1 Certificate serial: 01BD Authority key identifier: 83:AC:B5:0F:96:F6:44:3F:4B:83:D3:91:F8:57:BE:7C:B5:7E:34:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/CB5ED75AF62811EC9205771CC4F9AE02.roa Signing time: Wed 31 Jan 2024 18:13:39 +0000 ROA not before: Wed 31 Jan 2024 18:13:39 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 149987 IP address blocks: 103.190.44.0/23 maxlen: 23 103.190.44.0/24 maxlen: 24 103.190.45.0/24 maxlen: 24 2001:df0:e4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.crl rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 04:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C705E/serialNumber=83ACB50F96F6443F4B83D391F857BE7CB57E34C1 Validity Not Before: Jan 31 18:13:39 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65ba8dd3-f043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0a:9e:2c:af:04:86:b8:e1:7c:c3:82:75:4f: e9:f4:6e:b1:0c:e9:ed:9d:ed:f9:af:c1:f0:82:0c: 42:7a:d3:9a:16:b9:0e:f2:b2:a0:3c:ed:ab:42:a0: c6:38:4f:42:6a:78:12:7a:a4:5b:62:d8:22:75:d7: 6e:76:8c:42:31:5f:c0:b6:5b:fe:a7:9c:0c:6e:1b: fb:29:4f:62:2a:db:7c:ce:f5:f7:ca:68:65:c1:bd: 8a:60:31:6f:48:b9:26:40:dd:56:c6:49:27:70:88: 5e:84:a1:0d:3c:d9:1c:da:1f:07:8f:d6:db:0c:48: 06:1c:fc:53:75:4b:69:34:c5:36:42:94:ac:54:d5: 64:f0:82:a4:6c:27:a7:b1:37:45:0d:dc:a5:4f:9f: 18:22:7b:6b:df:e0:6c:bc:cc:eb:6f:fc:3b:59:42: 94:5b:83:70:fc:64:f1:61:c5:b7:80:bb:e5:c7:b2: ff:05:f7:e3:8f:b5:db:16:bd:b5:fa:1b:39:9a:82: bb:08:dd:14:1f:c7:23:39:1b:b4:ed:47:0e:fc:94: 83:42:bd:f3:4d:25:d2:0b:46:3a:f1:b9:95:58:94: 9a:ce:46:51:91:24:c3:3f:7e:1c:42:37:82:56:f4: 5d:ea:53:28:29:eb:e4:bd:eb:fe:92:fa:57:95:98: 32:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:34:55:E2:DB:5F:36:A3:34:80:A7:DB:F5:1C:C5:7C:C3:87:29:9F X509v3 Authority Key Identifier: keyid:83:AC:B5:0F:96:F6:44:3F:4B:83:D3:91:F8:57:BE:7C:B5:7E:34:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/CB5ED75AF62811EC9205771CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.44.0/23 IPv6: 2001:df0:e4c0::/48 Signature Algorithm: sha256WithRSAEncryption 3b:ca:c8:dd:94:08:2c:69:1f:b9:6f:e5:4d:19:73:6b:98:16: 2f:2e:00:b1:0e:f4:4d:af:d7:b4:b8:23:a7:5f:28:0e:c4:2c: 43:99:a6:bf:70:45:b8:8c:8e:8a:0b:0c:ca:90:c5:71:3d:5a: 4e:d6:85:20:50:f8:f1:75:4e:0d:a0:3a:4a:28:79:cf:17:96: 2b:43:ac:7a:15:19:67:d5:fa:4b:91:92:2f:24:88:68:db:24: 06:1e:37:25:ad:19:5c:e5:ab:b4:6c:e7:ab:3a:13:0e:44:b8: c5:c5:da:0b:c5:4e:75:ab:e5:29:28:d5:39:cf:d2:c4:8d:a0: 5c:78:75:c1:09:56:91:a7:10:70:c7:bd:0c:7e:83:58:9a:43: 82:cd:4f:50:11:5c:65:8c:be:9b:7b:4f:f3:67:d9:e3:b4:25: e0:8b:9c:7f:0b:e0:62:4e:ec:96:46:5d:c7:c6:78:7a:d4:70: 88:28:af:5b:94:96:f0:e6:b8:a7:8d:18:9b:7c:e0:9f:37:31: 7c:0c:e7:53:fa:c4:c3:0f:b9:fb:4d:5e:ba:7f:32:b6:9e:b6: d4:63:63:0b:3e:46:93:56:ed:bf:48:71:88:b9:14:89:88:5d: 4b:f6:42:80:11:cd:1b:6e:9a:c8:51:4b:72:ca:7f:22:e9:d6: 73:78:b4:75 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcwNUUxMTAvBgNVBAUTKDgzQUNCNTBGOTZGNjQ0M0Y0QjgzRDM5MUY4NTdCRTdD QjU3RTM0QzEwHhcNMjQwMTMxMTgxMzM5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhOGRkMy1mMDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQqeLK8EhrjhfMOCdU/p9G6xDOntne35r8HwggxCetOaFrkO8rKgPO2rQqDG OE9CangSeqRbYtgidddudoxCMV/Atlv+p5wMbhv7KU9iKtt8zvX3ymhlwb2KYDFv SLkmQN1WxkkncIhehKENPNkc2h8Hj9bbDEgGHPxTdUtpNMU2QpSsVNVk8IKkbCen sTdFDdylT58YIntr3+BsvMzrb/w7WUKUW4Nw/GTxYcW3gLvlx7L/Bffjj7XbFr21 +hs5moK7CN0UH8cjORu07UcO/JSDQr3zTSXSC0Y68bmVWJSazkZRkSTDP34cQjeC VvRd6lMoKevkvev+kvpXlZgyRwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHQ0VeLb XzajNICn2/UcxXzDhymfMB8GA1UdIwQYMBaAFIOstQ+W9kQ/S4PTkfhXvny1fjTB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzA1RS8zNERENEVFNkY2 MjQxMUVDOTcyMzQ4MTRDNEY5QUUwMi9nNnkxRDViMlJEOUxnOU9SLUZlLWZMVi1O TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c2eTFENWIyUkQ5TGc5T1ItRmUtZkxWLU5NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzcwNUUvMzRERDRFRTZGNjI0MTFFQzk3MjM0ODE0QzRGOUFFMDIvQ0I1RUQ3NUFG NjI4MTFFQzkyMDU3NzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnviwwDwQCAAIwCQMHACABDfDkwDANBgkqhkiG9w0BAQsF AAOCAQEAO8rI3ZQILGkfuW/lTRlza5gWLy4AsQ70Ta/XtLgjp18oDsQsQ5mmv3BF uIyOigsMypDFcT1aTtaFIFD48XVODaA6Sih5zxeWK0OsehUZZ9X6S5GSLySIaNsk Bh43Ja0ZXOWrtGznqzoTDkS4xcXaC8VOdavlKSjVOc/SxI2gXHh1wQlWkacQcMe9 DH6DWJpDgs1PUBFcZYy+m3tP82fZ47Ql4IucfwvgYk7slkZdx8Z4etRwiCivW5SW 8Oa4p40Ym3zgnzcxfAznU/rEww+5+01eun8ytp621GNjCz5Gk1btv0hxiLkUiYhd S/ZCgBHNG26ayFFLcsp/IunWc3i0dQ== -----END CERTIFICATE-----Generated at Tue May 7 05:34:57 2024 by rpki-client on console-ams.rpki-client.org