$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/56EE653C493411EF859C1D49C4F9AE02.roa File: 56EE653C493411EF859C1D49C4F9AE02.roa (raw, json) Hash identifier: N7FH71SdUAIPrET+fOkWokblc5m2qUAJpQ6/B2gW1E8= Subject key identifier: BF:A2:61:95:46:05:D0:89:D9:70:95:25:9B:7A:98:AA:55:44:62:E7 Certificate issuer: /CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Certificate serial: 3409 Authority key identifier: CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/56EE653C493411EF859C1D49C4F9AE02.roa Signing time: Fri 30 Aug 2024 14:50:46 +0000 ROA not before: Fri 30 Aug 2024 14:50:46 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.212.169.0/24 maxlen: 24 103.212.170.0/24 maxlen: 24 160.202.137.0/24 maxlen: 24 160.202.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Sep 2024 14:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13321 (0x3409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Validity Not Before: Aug 30 14:50:46 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66d1dc45-1715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:12:eb:ff:7d:e5:f1:39:ec:60:e6:cb:2a:83: d6:e5:1a:91:3d:4d:25:27:74:c0:c9:58:1d:3f:c6: c5:4d:4d:df:b7:87:ff:e5:ce:cc:0c:4b:ff:c1:cf: 48:54:af:81:05:1d:4e:b1:82:b6:bc:51:b9:51:9b: e8:46:9b:a4:f3:17:ca:a2:a5:1f:9a:02:22:37:22: 35:ed:c2:b4:1b:ec:08:d0:57:8c:98:47:eb:db:ca: ae:5b:7a:0c:56:b4:37:95:da:18:9c:46:48:4b:ad: e3:69:e3:14:da:31:4e:ae:70:0e:26:bd:27:13:f0: 7a:d3:93:d0:7a:07:7b:7c:7a:48:4e:e3:09:c4:fd: b2:c7:16:b0:0f:2d:8e:c4:6a:c8:17:ee:47:1d:42: 5c:bf:8f:a0:4c:3a:1d:d8:de:6f:07:5c:46:51:9a: b3:62:a2:53:1b:57:98:39:b0:96:df:1b:c0:36:6e: 2c:13:83:3a:f0:54:a9:2e:52:19:19:56:42:2a:a1: 22:49:2b:5c:64:1b:ba:15:8c:eb:45:82:44:a7:a7: 6a:62:95:c8:b3:e8:53:12:b9:bd:53:bb:52:97:09: f8:df:9e:38:2f:40:58:51:02:b3:11:e1:0d:4c:3c: 68:a5:02:e8:19:d3:4a:d5:e5:85:05:21:d8:1f:54: f6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A2:61:95:46:05:D0:89:D9:70:95:25:9B:7A:98:AA:55:44:62:E7 X509v3 Authority Key Identifier: keyid:CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/56EE653C493411EF859C1D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.169.0-103.212.170.255 160.202.137.0-160.202.138.255 Signature Algorithm: sha256WithRSAEncryption 99:20:f4:59:1e:e4:a6:f3:fe:c7:0f:c1:4b:58:23:b0:4f:fa: df:46:c9:47:99:ff:8a:e6:67:58:31:18:e0:4d:ab:ca:1e:e0: 7e:e4:a4:84:18:d2:03:4a:31:2f:6b:12:d7:e0:c6:17:1c:b5: 45:e3:bd:5a:8f:09:f5:c7:6d:04:76:88:40:8e:d5:92:b5:2b: e2:16:cf:ad:72:8e:6a:54:6a:ea:b2:c0:c8:f4:24:8c:e4:97: 09:d3:06:b8:22:dd:5f:04:7b:9f:26:76:d0:22:9b:70:b9:1e: 2b:3b:07:e1:06:18:c7:82:5d:21:29:44:82:9d:42:4e:0b:75: f4:91:17:d0:bb:98:d8:b6:bf:4f:8e:7f:7a:bd:11:f3:8f:89: fc:77:f6:3f:d0:1f:57:69:0d:cc:bf:d8:2f:06:54:2c:0c:ca: 4f:09:28:27:4d:ee:8e:16:4a:1d:4c:54:46:c0:64:b9:92:e8: a1:94:ca:1c:f6:bc:4b:0a:cc:fb:44:38:68:d3:25:30:3b:70: 94:4b:ca:7d:e6:e6:82:c9:1e:83:f6:27:03:4f:13:ef:36:3c: 29:c7:c0:e4:84:94:07:42:4d:b7:d1:db:18:d2:33:9b:68:64: 11:b3:af:b2:d7:fc:b9:09:6d:84:5f:e2:56:81:88:55:35:34: e3:e5:04:93 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICNAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzNTAxMTAvBgNVBAUTKENGNzA2RDgxNDdENzc5MjA3RDk5QUY5QUQzOURENUYy REZFNTlERTQwHhcNMjQwODMwMTQ1MDQ2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxZGM0NS0xNzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BLr/33l8TnsYObLKoPW5RqRPU0lJ3TAyVgdP8bFTU3ft4f/5c7MDEv/wc9I VK+BBR1OsYK2vFG5UZvoRpuk8xfKoqUfmgIiNyI17cK0G+wI0FeMmEfr28quW3oM VrQ3ldoYnEZIS63jaeMU2jFOrnAOJr0nE/B605PQegd7fHpITuMJxP2yxxawDy2O xGrIF+5HHUJcv4+gTDod2N5vB1xGUZqzYqJTG1eYObCW3xvANm4sE4M68FSpLlIZ GVZCKqEiSStcZBu6FYzrRYJEp6dqYpXIs+hTErm9U7tSlwn43544L0BYUQKzEeEN TDxopQLoGdNK1eWFBSHYH1T2UwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFL+iYZVG BdCJ2XCVJZt6mKpVRGLnMB8GA1UdIwQYMBaAFM9wbYFH13kgfZmvmtOd1fLf5Z3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTM1MC8zOTEzQkNBMDFE ODcxMUUyQjQyQjAyREYwOEIwMkNEMi96M0J0Z1VmWGVTQjltYS1hMDUzVjh0X2xu ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozQnRnVWZYZVNCOW1hLWEwNTNWOHRfbG5lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkzNTAvMzkxM0JDQTAxRDg3MTFFMkI0MkIwMkRGMDhCMDJDRDIvNTZFRTY1M0M0 OTM0MTFFRjg1OUMxRDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEAGfUqQMEAGfUqjAMAwQAoMqJAwQAoMqKMA0GCSqGSIb3 DQEBCwUAA4IBAQCZIPRZHuSm8/7HD8FLWCOwT/rfRslHmf+K5mdYMRjgTavKHuB+ 5KSEGNIDSjEvaxLX4MYXHLVF471ajwn1x20EdohAjtWStSviFs+tco5qVGrqssDI 9CSM5JcJ0wa4It1fBHufJnbQIptwuR4rOwfhBhjHgl0hKUSCnUJOC3X0kRfQu5jY tr9Pjn96vRHzj4n8d/Y/0B9XaQ3Mv9gvBlQsDMpPCSgnTe6OFkodTFRGwGS5kuih lMoc9rxLCsz7RDho0yUwO3CUS8p95uaCyR6D9icDTxPvNjwpx8DkhJQHQk230dsY 0jObaGQRs6+y1/y5CW2EX+JWgYhVNTTj5QST -----END CERTIFICATE-----Generated at Fri Sep 6 16:14:23 2024 by rpki-client on console-ams.rpki-client.org