$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/2A766EA23A3411EDA1B7D863C4F9AE02.roa File: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (raw, json) Hash identifier: a66eqXBUZfLZkKRWsJcJh3a05RUfhoQl9hv5mdKW/B8= Subject key identifier: DD:0E:82:57:3E:5D:EC:BE:83:7B:C2:A0:56:B7:E5:A2:BA:65:E2:9D Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: D4 Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/2A766EA23A3411EDA1B7D863C4F9AE02.roa Signing time: Tue 03 Oct 2023 03:44:31 +0000 ROA not before: Tue 03 Oct 2023 03:44:31 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141152 IP address blocks: 103.155.88.0/23 maxlen: 23 103.155.88.0/24 maxlen: 24 103.155.89.0/24 maxlen: 24 2406:6a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Oct 3 03:44:31 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651b8e1f-4211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:77:39:1f:98:7d:96:45:87:1c:b3:31:59:17: 8f:de:70:45:ef:30:44:72:e2:59:a8:c1:b0:1b:8b: 51:fd:5f:a7:33:50:63:40:9f:bc:56:2f:3a:8f:5c: 58:63:1d:09:f8:99:78:84:40:c2:23:43:6d:6e:23: dc:47:58:53:6c:87:02:6a:27:00:ed:92:a1:05:00: 88:3d:81:5c:6a:81:42:ff:3e:74:b9:36:00:cb:22: 0a:4e:e0:a3:be:a2:37:48:c1:0e:08:a6:28:98:34: 12:e6:8f:cf:dd:b0:73:ef:c7:95:03:c5:86:7f:91: 36:cc:3d:18:67:be:9b:47:32:28:e9:50:ba:01:f4: 2d:47:14:58:34:d4:ff:58:52:d4:c1:d1:05:ec:3c: ea:78:f1:d5:11:83:46:61:c4:f3:8d:2c:9c:e4:c1: 62:bb:8c:08:3a:e8:56:e8:b7:bc:95:2e:70:ef:d4: 5e:17:86:65:5d:57:f1:c7:46:ed:80:c0:46:b4:63: 78:88:4a:8d:84:7b:78:57:3c:ea:d2:31:b5:f1:c1: 00:c5:60:33:3a:e3:29:9f:65:f8:34:48:80:80:4d: da:bb:a6:3d:02:5b:41:21:ef:2e:a6:f8:75:35:39: b4:b5:dc:47:23:ac:68:72:77:88:56:3a:cd:d0:9f: 72:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0E:82:57:3E:5D:EC:BE:83:7B:C2:A0:56:B7:E5:A2:BA:65:E2:9D X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/2A766EA23A3411EDA1B7D863C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.88.0/23 IPv6: 2406:6a40::/32 Signature Algorithm: sha256WithRSAEncryption 35:e8:74:77:63:0b:7f:89:d1:43:0a:91:61:41:12:23:7e:9a: e2:4e:3c:c3:49:76:fc:59:7f:f2:e6:1b:aa:f8:b5:c6:c6:d6: 73:d3:3a:e6:80:ba:1e:10:a0:ac:4d:5d:68:e0:8c:af:e9:d8: c8:9d:0c:2b:cf:61:4d:74:0b:67:a9:9e:1b:86:95:28:c1:71: 43:a9:d8:1a:30:dc:3e:91:6e:0e:d4:e7:e2:39:8a:98:b4:29: 68:34:3c:8e:1b:f8:65:37:71:75:6e:a0:de:96:00:85:68:65: 58:0d:0c:07:5c:f5:28:d6:78:14:a6:4b:5c:4d:5b:fb:95:72: e1:84:29:81:8f:ce:98:5a:df:57:c4:b9:3f:90:f8:61:b9:9d: bb:97:c3:86:e5:73:c6:a0:ad:0d:6e:7a:9b:d1:de:d5:74:96: 8e:5a:09:b5:0c:74:82:36:2c:c2:5f:f4:84:f6:2b:81:9a:78: 04:9f:9f:4d:1d:a1:f5:d5:b3:40:e5:a2:23:f9:81:2b:40:7d: 48:d5:3e:54:47:da:ad:6a:dc:3e:16:25:b3:3a:5f:0f:cc:9b: 29:26:28:13:bd:97:a0:0a:41:19:a6:fc:ba:e2:82:85:a0:5a: fa:51:69:d8:97:5b:ad:6f:94:af:37:2e:e1:9b:8c:b5:f1:e2: b2:21:14:70 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjMxMDAzMDM0NDMxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiOGUxZi00MjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHc5H5h9lkWHHLMxWReP3nBF7zBEcuJZqMGwG4tR/V+nM1BjQJ+8Vi86j1xY Yx0J+Jl4hEDCI0NtbiPcR1hTbIcCaicA7ZKhBQCIPYFcaoFC/z50uTYAyyIKTuCj vqI3SMEOCKYomDQS5o/P3bBz78eVA8WGf5E2zD0YZ76bRzIo6VC6AfQtRxRYNNT/ WFLUwdEF7DzqePHVEYNGYcTzjSyc5MFiu4wIOuhW6Le8lS5w79ReF4ZlXVfxx0bt gMBGtGN4iEqNhHt4Vzzq0jG18cEAxWAzOuMpn2X4NEiAgE3au6Y9AltBIe8upvh1 NTm0tdxHI6xocneIVjrN0J9yDQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFN0Oglc+ Xey+g3vCoFa35aK6ZeKdMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhGNjgvNkI2MEJGQkEzQTMxMTFFREExMENBNzYxQzRGOUFFMDIvMkE3NjZFQTIz QTM0MTFFREExQjdEODYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnm1gwDQQCAAIwBwMFACQGakAwDQYJKoZIhvcNAQELBQAD ggEBADXodHdjC3+J0UMKkWFBEiN+muJOPMNJdvxZf/LmG6r4tcbG1nPTOuaAuh4Q oKxNXWjgjK/p2MidDCvPYU10C2epnhuGlSjBcUOp2Bow3D6Rbg7U5+I5ipi0KWg0 PI4b+GU3cXVuoN6WAIVoZVgNDAdc9SjWeBSmS1xNW/uVcuGEKYGPzpha31fEuT+Q +GG5nbuXw4blc8agrQ1uepvR3tV0lo5aCbUMdII2LMJf9IT2K4GaeASfn00dofXV s0DloiP5gStAfUjVPlRH2q1q3D4WJbM6Xw/MmykmKBO9l6AKQRmm/LrigoWgWvpR adiXW61vlK83LuGbjLXx4rIhFHA= -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org