$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa File: 5705E30EFC7A11E8BFCC760AC4F9AE02.roa (raw, json) Hash identifier: n97P+4V0tKPB5lzYkARlGRCQJJyVTdEeSb9i+z1QIAM= Subject key identifier: 42:D4:64:5A:8C:BB:83:2F:72:B8:CD:43:FE:0B:67:7D:FB:CF:F4:B6 Certificate issuer: /CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Certificate serial: 178D Authority key identifier: 93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa Signing time: Tue 12 Sep 2023 16:54:03 +0000 ROA not before: Tue 12 Sep 2023 16:54:03 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 137962 IP address blocks: 103.99.50.0/24 maxlen: 24 103.99.51.0/24 maxlen: 24 103.118.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6029 (0x178d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Validity Not Before: Sep 12 16:54:03 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650097aa-9c4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c6:f0:bd:18:cf:cb:13:0c:a1:9d:ee:ab:2f: f3:12:74:9b:3c:7c:bf:96:e3:9d:32:8a:63:ef:5b: 66:cf:0f:d9:ab:40:03:fe:86:2a:59:23:d7:98:9c: eb:3a:96:98:8f:ee:6d:11:4e:c1:31:b0:2b:24:62: 16:66:4f:4f:39:23:e3:93:69:0e:78:39:ad:3e:5c: 99:5f:0f:42:e9:c0:21:2b:24:01:7e:39:96:a1:65: 9b:a9:a1:8c:80:df:0a:63:90:e7:d9:a2:47:9d:44: f7:f9:e5:f4:15:79:cc:81:20:31:9e:5b:6f:05:54: 69:87:9c:45:10:19:53:a0:b7:3e:f7:bf:13:10:8e: 44:d6:74:55:e9:82:d1:6a:3c:f7:e1:90:df:30:ec: e2:db:61:ef:7d:85:e8:b4:8e:3a:78:28:da:0a:5a: d2:3b:6d:67:c8:67:71:f3:03:f5:48:68:5a:ea:3a: 61:f9:41:4f:d5:67:45:c8:c0:4d:d3:85:f0:10:38: 7e:bd:08:03:89:d8:f0:dc:a5:50:49:67:31:75:60: 51:44:a4:99:7a:d8:b1:9a:66:58:9c:f1:11:a3:6c: 63:3e:8a:5d:0d:c6:2a:0d:43:2e:08:38:ad:36:64: 14:4b:7e:ed:2b:a5:31:5e:04:44:52:72:27:68:3b: ac:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D4:64:5A:8C:BB:83:2F:72:B8:CD:43:FE:0B:67:7D:FB:CF:F4:B6 X509v3 Authority Key Identifier: keyid:93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.50.0/23 103.118.81.0/24 Signature Algorithm: sha256WithRSAEncryption 20:71:89:78:a8:fa:72:90:37:b1:73:89:fa:50:f5:18:b5:93: b7:23:b4:c6:ca:a7:08:ac:40:cc:a1:81:d4:48:e9:16:9a:25: 84:07:95:ec:5b:51:20:f2:7b:8c:e0:4c:ee:b2:b7:e3:66:04: d0:c3:a7:00:06:dc:71:94:48:65:0f:fc:e9:c5:b9:6b:c7:4e: 6c:7c:0d:ea:8e:6d:f8:ae:3e:30:eb:47:93:fa:28:d0:9a:cb: 81:a4:80:c6:10:5c:d3:3d:05:70:96:10:7c:5e:fa:04:3a:7f: f3:f6:69:97:64:15:a3:f5:96:42:9e:87:a5:6e:6e:16:eb:8d: 98:47:df:70:97:e8:36:65:88:68:96:f7:39:eb:ef:3b:b7:1a: 5d:d4:ea:04:49:07:42:38:d6:c3:c0:39:70:4a:a0:9e:d5:76: 7e:eb:fa:50:be:15:9e:b3:e7:2a:7e:94:8e:42:2a:15:6f:e5: 14:c5:ad:06:ed:70:0b:25:74:ca:1e:1d:40:0f:b5:58:52:ab: 1c:a4:a7:8d:35:39:92:a1:11:91:99:42:2b:87:63:0c:26:66: 9f:a2:71:9e:b1:f5:77:1a:cf:f8:4b:7f:78:d7:18:b6:c3:e6: 22:9a:dc:7f:a6:0a:1d:2e:af:3b:97:27:96:d5:41:e6:37:f3: 9c:32:91:26 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICF40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFQjMxMTAvBgNVBAUTKDkzOURCOEE3ODYwMDBDMjZCQUU0ODM3QjZFQ0RBRTBG OEFCQUQxQjAwHhcNMjMwOTEyMTY1NDAzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwOTdhYS05YzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sbwvRjPyxMMoZ3uqy/zEnSbPHy/luOdMopj71tmzw/Zq0AD/oYqWSPXmJzr OpaYj+5tEU7BMbArJGIWZk9POSPjk2kOeDmtPlyZXw9C6cAhKyQBfjmWoWWbqaGM gN8KY5Dn2aJHnUT3+eX0FXnMgSAxnltvBVRph5xFEBlToLc+978TEI5E1nRV6YLR ajz34ZDfMOzi22HvfYXotI46eCjaClrSO21nyGdx8wP1SGha6jph+UFP1WdFyMBN 04XwEDh+vQgDidjw3KVQSWcxdWBRRKSZetixmmZYnPERo2xjPopdDcYqDUMuCDit NmQUS37tK6UxXgREUnInaDusVQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFELUZFqM u4MvcrjNQ/4LZ337z/S2MB8GA1UdIwQYMBaAFJOduKeGAAwmuuSDe27Nrg+KutGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREVCMy81RDczNUQ0Njk2 REUxMUU3QkE3RDJBNzdDNEY5QUUwMi9rNTI0cDRZQURDYTY1SU43YnMydUQ0cTYw YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s1MjRwNFlBRENhNjVJTjdiczJ1RDRxNjBiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RFQjMvNUQ3MzVENDY5NkRFMTFFN0JBN0QyQTc3QzRGOUFFMDIvNTcwNUUzMEVG QzdBMTFFOEJGQ0M3NjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYzIDBABndlEwDQYJKoZIhvcNAQELBQADggEBACBxiXio +nKQN7FzifpQ9Ri1k7cjtMbKpwisQMyhgdRI6RaaJYQHlexbUSDye4zgTO6yt+Nm BNDDpwAG3HGUSGUP/OnFuWvHTmx8DeqObfiuPjDrR5P6KNCay4GkgMYQXNM9BXCW EHxe+gQ6f/P2aZdkFaP1lkKeh6VubhbrjZhH33CX6DZliGiW9znr7zu3Gl3U6gRJ B0I41sPAOXBKoJ7Vdn7r+lC+FZ6z5yp+lI5CKhVv5RTFrQbtcAsldMoeHUAPtVhS qxykp401OZKhEZGZQiuHYwwmZp+icZ6x9Xcaz/hLf3jXGLbD5iKa3H+mCh0urzuX J5bVQeY385wykSY= -----END CERTIFICATE-----Generated at Thu May 2 20:04:59 2024 by rpki-client on console-ams.rpki-client.org