$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/7B9B345895F711EBB7B18033C4F9AE02.roa File: 7B9B345895F711EBB7B18033C4F9AE02.roa (raw, json) Hash identifier: gXA0T2sm+aUntgiMZD6m5It+O3dDoCZcKAmnkESLmF4= Subject key identifier: EC:4C:33:E4:E5:CA:B4:F1:C2:48:A2:77:5E:FB:38:51:EB:0E:5D:19 Certificate issuer: /CN=A91C7169/serialNumber=900B870C80C0EB3F8468F53E7672FA741752C5D5 Certificate serial: 173F Authority key identifier: 90:0B:87:0C:80:C0:EB:3F:84:68:F5:3E:76:72:FA:74:17:52:C5:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAuHDIDA6z-EaPU-dnL6dBdSxdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/7B9B345895F711EBB7B18033C4F9AE02.roa Signing time: Fri 22 Sep 2023 16:54:18 +0000 ROA not before: Fri 22 Sep 2023 16:54:18 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136950 IP address blocks: 103.71.152.0/22 maxlen: 22 103.71.152.0/24 maxlen: 24 103.71.153.0/24 maxlen: 24 103.234.72.0/22 maxlen: 22 103.234.73.0/24 maxlen: 24 103.234.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/kAuHDIDA6z-EaPU-dnL6dBdSxdU.crl rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/kAuHDIDA6z-EaPU-dnL6dBdSxdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAuHDIDA6z-EaPU-dnL6dBdSxdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5951 (0x173f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7169/serialNumber=900B870C80C0EB3F8468F53E7672FA741752C5D5 Validity Not Before: Sep 22 16:54:18 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650dc6ba-cd31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:68:c0:1c:1a:cd:de:88:13:a8:b8:1f:2b:be: f3:bd:01:cd:14:08:ac:87:14:b7:67:c0:5b:14:5f: 69:6f:6e:9e:90:1d:0f:31:27:34:81:cf:6b:88:56: c7:a2:24:4c:53:d0:b7:b9:7a:f8:88:ba:18:8c:46: 84:60:16:94:68:74:85:af:ce:6e:6b:cf:c1:02:57: c8:b8:df:d7:bc:26:56:7d:8b:b3:fa:ae:d3:70:07: 4b:0e:69:16:ed:ca:43:8d:18:3d:b0:9d:15:cd:79: 59:18:f4:3a:e6:23:9f:a9:b0:56:b8:65:7c:0f:c3: 64:31:87:df:13:4f:b6:82:9f:b1:9d:5e:59:72:4b: 9b:00:5b:15:25:5c:b7:16:de:14:96:a3:58:94:86: d8:88:c0:cb:5e:bc:49:20:69:3d:71:87:10:11:95: b4:44:fd:4c:ec:94:78:6e:e5:92:5b:6e:bc:c6:0c: 3d:79:98:06:b0:4d:16:d0:63:f1:f2:0d:b7:a5:96: 81:31:2e:ef:3c:d0:08:fe:63:e3:c3:ed:36:46:6e: bb:90:a6:55:a5:71:11:85:9c:55:c4:16:bb:fd:e4: 52:cb:5d:c6:49:a5:3a:53:a5:24:41:6e:f2:e4:c8: db:d3:16:66:f6:31:91:c2:08:f6:97:0f:da:da:15: 74:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:4C:33:E4:E5:CA:B4:F1:C2:48:A2:77:5E:FB:38:51:EB:0E:5D:19 X509v3 Authority Key Identifier: keyid:90:0B:87:0C:80:C0:EB:3F:84:68:F5:3E:76:72:FA:74:17:52:C5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/kAuHDIDA6z-EaPU-dnL6dBdSxdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAuHDIDA6z-EaPU-dnL6dBdSxdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/7B9B345895F711EBB7B18033C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.152.0/22 103.234.72.0/22 Signature Algorithm: sha256WithRSAEncryption 41:99:a3:f0:6c:53:71:92:7c:ad:b8:c5:5e:bb:b3:6c:74:55: 59:12:d3:81:fa:80:55:d2:e1:12:63:d0:94:e3:81:87:d4:4b: 84:a7:74:f6:90:64:5b:33:f3:7d:7d:95:7d:a8:ab:75:73:de: 60:48:58:9a:44:46:16:0b:c4:29:0a:26:b1:eb:a3:46:fd:98: 31:fb:39:c1:e3:b0:ea:6f:0f:8d:a5:86:eb:d2:2c:c3:b5:58: 74:f3:b8:82:e7:72:d5:fe:a5:6d:20:4c:36:90:03:e9:63:73: 93:d8:fe:dc:3d:ad:c1:65:32:83:a1:48:98:2b:d2:53:5e:87: a4:24:ec:73:40:59:80:cd:77:6b:b5:9f:9b:1e:c7:06:17:b6: a1:bd:20:97:8a:f8:77:e7:7a:4f:54:00:72:3c:ed:9b:4c:2f: 54:72:49:87:d7:9f:30:41:f4:e5:bf:09:b3:fe:b9:cb:8a:36: 7f:18:f9:4c:ad:86:63:3c:04:28:50:7b:68:c7:c5:0e:2e:ae: e3:ad:e6:b7:f1:e9:8b:79:4d:e9:79:d6:db:f2:a0:36:a2:8f: 53:5d:6c:c0:91:08:c4:b1:2b:16:bf:09:d8:19:ca:07:6d:8e: af:e9:ab:aa:6b:8e:c8:bb:26:29:21:61:d3:1b:dc:49:b5:77: 05:a1:20:c3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxNjkxMTAvBgNVBAUTKDkwMEI4NzBDODBDMEVCM0Y4NDY4RjUzRTc2NzJGQTc0 MTc1MkM1RDUwHhcNMjMwOTIyMTY1NDE4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBkYzZiYS1jZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWjAHBrN3ogTqLgfK77zvQHNFAishxS3Z8BbFF9pb26ekB0PMSc0gc9riFbH oiRMU9C3uXr4iLoYjEaEYBaUaHSFr85ua8/BAlfIuN/XvCZWfYuz+q7TcAdLDmkW 7cpDjRg9sJ0VzXlZGPQ65iOfqbBWuGV8D8NkMYffE0+2gp+xnV5ZckubAFsVJVy3 Ft4UlqNYlIbYiMDLXrxJIGk9cYcQEZW0RP1M7JR4buWSW268xgw9eZgGsE0W0GPx 8g23pZaBMS7vPNAI/mPjw+02Rm67kKZVpXERhZxVxBa7/eRSy13GSaU6U6UkQW7y 5Mjb0xZm9jGRwgj2lw/a2hV0GQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOxMM+Tl yrTxwkiid177OFHrDl0ZMB8GA1UdIwQYMBaAFJALhwyAwOs/hGj1PnZy+nQXUsXV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzE2OS81MDI2MDhCNEFE OTAxMUU3OTI2N0ZGMEZDNEY5QUUwMi9rQXVIRElEQTZ6LUVhUFUtZG5MNmRCZFN4 ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tBdUhESURBNnotRWFQVS1kbkw2ZEJkU3hkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzcxNjkvNTAyNjA4QjRBRDkwMTFFNzkyNjdGRjBGQzRGOUFFMDIvN0I5QjM0NTg5 NUY3MTFFQkI3QjE4MDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnR5gDBAJn6kgwDQYJKoZIhvcNAQELBQADggEBAEGZo/Bs U3GSfK24xV67s2x0VVkS04H6gFXS4RJj0JTjgYfUS4SndPaQZFsz8319lX2oq3Vz 3mBIWJpERhYLxCkKJrHro0b9mDH7OcHjsOpvD42lhuvSLMO1WHTzuILnctX+pW0g TDaQA+ljc5PY/tw9rcFlMoOhSJgr0lNeh6Qk7HNAWYDNd2u1n5sexwYXtqG9IJeK +Hfnek9UAHI87ZtML1RySYfXnzBB9OW/CbP+ucuKNn8Y+UythmM8BChQe2jHxQ4u ruOt5rfx6Yt5Tel51tvyoDaij1NdbMCRCMSxKxa/CdgZygdtjq/pq6prjsi7Jikh YdMb3Em1dwWhIMM= -----END CERTIFICATE-----Generated at Sat May 4 17:44:41 2024 by rpki-client on console-ams.rpki-client.org