$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/956B1C7AD81111EB8C3ACC5DC4F9AE02.roa File: 956B1C7AD81111EB8C3ACC5DC4F9AE02.roa (raw, json) Hash identifier: 9nmizgMdIkMdZz5SSAcJoHnm02Elq7iMoc1ktRbIbIU= Subject key identifier: 34:96:32:FC:47:DA:2D:DD:9F:FD:E9:E3:3F:C1:E4:E5:0C:5F:56:D3 Certificate issuer: /CN=A91CCE54/serialNumber=1AAD00A61A649040AB526A142B5D7BDEE5A01CBF Certificate serial: 0442 Authority key identifier: 1A:AD:00:A6:1A:64:90:40:AB:52:6A:14:2B:5D:7B:DE:E5:A0:1C:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/956B1C7AD81111EB8C3ACC5DC4F9AE02.roa Signing time: Tue 01 Aug 2023 01:02:15 +0000 ROA not before: Tue 01 Aug 2023 01:02:15 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133380 IP address blocks: 103.230.13.0/24 maxlen: 24 103.230.14.0/24 maxlen: 24 103.230.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.crl rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1090 (0x442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCE54/serialNumber=1AAD00A61A649040AB526A142B5D7BDEE5A01CBF Validity Not Before: Aug 1 01:02:15 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c85996-0dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:72:d6:ce:ab:1c:94:22:c4:5a:f6:8d:58:d4: 53:29:f3:b9:0c:1e:70:8e:41:98:e0:2e:a8:cc:b5: 1d:35:20:30:0b:a7:08:80:f4:d7:0f:93:ee:51:6f: c8:a7:15:0a:0f:bd:97:a6:f4:17:0a:61:8c:af:52: 27:2d:72:3d:06:de:40:34:48:0f:7b:23:d7:e4:a8: b8:64:5b:77:1b:66:e3:a8:4c:c7:bb:b6:e9:58:fa: 1a:8b:51:91:dd:e0:ff:4c:da:a2:70:2d:e8:55:6a: 49:76:b8:76:06:1e:0d:0c:18:cd:6a:7f:07:4d:20: 6c:92:22:c7:d6:d8:35:ca:39:7c:dd:be:8b:0c:68: ac:a2:4c:1e:cf:c8:5b:fb:6e:03:90:af:bb:b5:6e: c2:e6:b1:84:15:b5:37:84:d9:5a:05:42:1d:14:a0: 3e:0e:1a:12:ea:7d:bf:ea:1c:ca:80:c3:20:40:be: 42:4a:69:d4:d1:5f:e0:3e:07:9d:62:5e:d9:7d:7c: 5e:5d:18:36:3f:17:56:e8:b3:de:1e:86:0e:7f:a8: 09:af:4a:48:cf:90:34:4e:bd:83:4a:e5:68:95:0c: 3a:64:29:cc:48:26:3b:44:0f:e9:d1:69:40:b6:83: b4:e8:f7:92:41:09:cb:d9:06:35:1c:e7:0d:9e:14: a6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:96:32:FC:47:DA:2D:DD:9F:FD:E9:E3:3F:C1:E4:E5:0C:5F:56:D3 X509v3 Authority Key Identifier: keyid:1A:AD:00:A6:1A:64:90:40:AB:52:6A:14:2B:5D:7B:DE:E5:A0:1C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/956B1C7AD81111EB8C3ACC5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.13.0-103.230.15.255 Signature Algorithm: sha256WithRSAEncryption 08:02:7a:e8:f9:2a:ec:99:e5:af:18:f9:f3:13:58:70:96:fe: 56:50:03:c8:09:19:60:0e:4b:52:76:86:42:f8:42:75:36:f4: 4d:89:0e:20:c4:83:49:39:0e:ff:cd:fd:1e:6e:de:1c:53:13: 0f:9c:59:10:da:ee:f9:5e:d8:27:16:1e:67:61:c5:1e:52:b7: 3e:49:1d:4b:82:1a:d7:b8:ad:9b:42:6e:e6:89:50:e2:fd:a0: 74:f4:02:10:2a:5b:ba:57:eb:8a:57:78:eb:07:de:ed:b9:34: dc:7f:22:25:01:89:61:f1:1f:33:c2:c9:c2:14:79:49:c0:b3: f1:c7:ca:31:7c:52:c1:84:89:8d:f1:cb:b0:8c:b1:e7:65:85: f4:46:de:94:57:7c:1f:92:21:5c:71:a2:0f:83:ce:ba:33:9e: 88:e6:b4:9f:ae:70:55:ec:39:37:95:bf:80:fb:a9:b3:3f:47: d3:fc:a2:f1:e1:6c:ed:75:d1:5e:3b:f1:af:9d:0e:86:59:2d: 04:80:89:e3:58:34:82:02:de:04:d8:1e:21:03:fd:c1:a2:90: c8:67:73:10:77:b7:c9:96:d2:a8:6c:3b:45:e4:45:c1:21:77: 28:f4:61:23:91:cb:f6:c6:eb:95:f8:1a:a9:6c:b9:0b:41:72: dc:1f:54:61 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NFNTQxMTAvBgNVBAUTKDFBQUQwMEE2MUE2NDkwNDBBQjUyNkExNDJCNUQ3QkRF RTVBMDFDQkYwHhcNMjMwODAxMDEwMjE1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4NTk5Ni0wZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHLWzqsclCLEWvaNWNRTKfO5DB5wjkGY4C6ozLUdNSAwC6cIgPTXD5PuUW/I pxUKD72XpvQXCmGMr1InLXI9Bt5ANEgPeyPX5Ki4ZFt3G2bjqEzHu7bpWPoai1GR 3eD/TNqicC3oVWpJdrh2Bh4NDBjNan8HTSBskiLH1tg1yjl83b6LDGisokwez8hb +24DkK+7tW7C5rGEFbU3hNlaBUIdFKA+DhoS6n2/6hzKgMMgQL5CSmnU0V/gPged Yl7ZfXxeXRg2PxdW6LPeHoYOf6gJr0pIz5A0Tr2DSuVolQw6ZCnMSCY7RA/p0WlA toO06PeSQQnL2QY1HOcNnhSmZQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFDSWMvxH 2i3dn/3p4z/B5OUMX1bTMB8GA1UdIwQYMBaAFBqtAKYaZJBAq1JqFCtde97loBy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0U1NC9CRjlGQ0FGMEQ3 RUQxMUVCOEI1NkQ3MUFDNEY5QUUwMi9HcTBBcGhwa2tFQ3JVbW9VSzExNzN1V2dI TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dxMEFwaHBra0VDclVtb1VLMTE3M3VXZ0hMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NFNTQvQkY5RkNBRjBEN0VEMTFFQjhCNTZENzFBQzRGOUFFMDIvOTU2QjFDN0FE ODExMTFFQjhDM0FDQzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfmDQMEBGfmADANBgkqhkiG9w0BAQsFAAOCAQEACAJ6 6Pkq7Jnlrxj58xNYcJb+VlADyAkZYA5LUnaGQvhCdTb0TYkOIMSDSTkO/839Hm7e HFMTD5xZENru+V7YJxYeZ2HFHlK3PkkdS4Ia17itm0Ju5olQ4v2gdPQCECpbulfr ild46wfe7bk03H8iJQGJYfEfM8LJwhR5ScCz8cfKMXxSwYSJjfHLsIyx52WF9Ebe lFd8H5IhXHGiD4POujOeiOa0n65wVew5N5W/gPupsz9H0/yi8eFs7XXRXjvxr50O hlktBICJ41g0ggLeBNgeIQP9waKQyGdzEHe3yZbSqGw7ReRFwSF3KPRhI5HL9sbr lfgaqWy5C0Fy3B9UYQ== -----END CERTIFICATE-----Generated at Sun May 19 02:59:14 2024 by rpki-client on console-ams.rpki-client.org