$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/59AD29B88C6B11EBA286C569C4F9AE02.roa File: 59AD29B88C6B11EBA286C569C4F9AE02.roa (raw, json) Hash identifier: DZPq5poaxBCAxpTcS6I0Jo5jkODv0gQrKUQOsfHEJHE= Subject key identifier: 8B:D2:DC:07:BD:2C:07:9F:34:7E:25:1B:FA:41:33:CB:68:22:0B:8D Certificate issuer: /CN=A91D09A2/serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Certificate serial: 04EA Authority key identifier: EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/59AD29B88C6B11EBA286C569C4F9AE02.roa Signing time: Sun 25 Jun 2023 00:57:02 +0000 ROA not before: Sun 25 Jun 2023 00:57:02 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 134788 IP address blocks: 103.62.152.0/22 maxlen: 22 103.62.152.0/24 maxlen: 24 103.62.153.0/24 maxlen: 24 103.62.154.0/24 maxlen: 24 103.62.155.0/24 maxlen: 24 2400:f2c0::/32 maxlen: 32 2400:f2c0::/36 maxlen: 36 2400:f2c0:1000::/36 maxlen: 36 2400:f2c0:2000::/36 maxlen: 36 2400:f2c0:3000::/36 maxlen: 36 2400:f2c0:4000::/36 maxlen: 36 2400:f2c0:5000::/36 maxlen: 36 2400:f2c0:6000::/36 maxlen: 36 2400:f2c0:7000::/36 maxlen: 36 2400:f2c0:8000::/36 maxlen: 36 2400:f2c0:9000::/36 maxlen: 36 2400:f2c0:a000::/36 maxlen: 36 2400:f2c0:b000::/36 maxlen: 36 2400:f2c0:c000::/36 maxlen: 36 2400:f2c0:d000::/36 maxlen: 36 2400:f2c0:e000::/36 maxlen: 36 2400:f2c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1258 (0x4ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09A2/serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Validity Not Before: Jun 25 00:57:02 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649790dd-54f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4e:5d:b8:58:13:f1:04:9e:c5:87:97:b9:c3: 5f:66:00:c5:da:23:01:08:89:6f:dc:f0:a2:06:b5: 71:08:2d:76:87:4b:2c:a7:11:82:77:4a:8d:a7:35: 4e:ac:58:59:fe:96:75:a0:0a:f0:28:f0:5c:9f:f9: ec:f0:c6:8c:b7:18:57:b4:85:d7:04:86:83:8d:79: fd:27:7e:15:a2:a0:b0:ec:5f:bc:02:9b:70:d0:93: 50:a1:10:d8:57:56:31:6a:24:05:cf:4f:bd:20:62: d1:a2:7b:2a:c7:81:1c:0c:75:9f:2c:fb:92:61:e8: 79:d2:a6:52:40:b6:38:7f:b4:ce:55:c3:60:6c:17: 74:17:9c:54:06:1c:02:00:6a:3f:1f:ad:4b:13:0f: 8e:7a:d6:21:0b:91:48:66:75:5e:ff:86:6f:13:d7: 97:8e:0b:87:01:04:8e:96:a4:9d:de:cc:eb:df:3b: 91:e3:9a:7b:c0:5a:d5:57:fc:f9:1c:ba:7a:2f:e9: 61:38:f1:4b:b0:35:dc:a6:69:f7:08:b8:ed:3a:db: dd:a8:81:58:a7:e1:13:2a:7f:36:0b:01:b1:34:1e: 8c:92:b9:0e:03:e0:06:24:cb:30:87:61:52:65:a4: 98:29:77:45:46:ce:9e:00:46:92:69:99:e8:b4:b1: 54:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D2:DC:07:BD:2C:07:9F:34:7E:25:1B:FA:41:33:CB:68:22:0B:8D X509v3 Authority Key Identifier: keyid:EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/59AD29B88C6B11EBA286C569C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.62.152.0/22 IPv6: 2400:f2c0::/32 Signature Algorithm: sha256WithRSAEncryption 62:d0:64:dc:81:8d:6c:8c:4d:36:aa:96:94:e7:17:77:f8:c5: c0:ab:c8:4e:50:0c:85:a9:4d:6b:c1:b1:cb:30:1c:67:0f:de: 13:38:f4:ed:c2:a4:60:e1:f4:45:2d:ff:2d:1b:1f:4a:7d:c3: a4:92:c3:ac:73:40:e0:e9:a1:37:7d:74:e8:0c:9b:ad:55:34: 56:cd:98:b0:0d:37:86:98:5e:13:ac:2f:e7:3c:48:f8:15:35: c6:51:dc:12:d5:95:7a:f3:26:20:ff:bc:ad:bb:c0:06:87:8c: f9:41:cb:88:c7:ba:de:e5:b9:a6:be:f6:b2:0e:cb:36:ca:a5: 6f:a3:02:f0:cf:ec:eb:d5:9b:75:3f:5f:5f:b6:c6:3e:42:47: 3d:e7:cc:6c:43:99:e6:f7:d8:78:4e:19:c1:41:72:2d:aa:1d: ae:38:4d:bd:8e:4d:2b:0a:8e:66:7f:cd:a0:c4:e5:6d:56:35: cf:34:c8:c8:a6:36:52:77:23:fb:0e:ba:de:04:07:5d:48:59: fe:4f:0f:1a:95:bc:dc:ce:fa:ac:46:43:ec:0a:c3:c3:f3:98: 9a:59:94:7d:fa:31:36:88:66:39:c2:57:04:27:76:65:6d:82: 68:d3:b2:35:90:02:29:65:9e:be:0c:40:e1:2c:62:49:58:3c: 1e:d8:49:9a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QTIxMTAvBgNVBAUTKEVGQzU4MkIyQTNDQjJDMTBFOEEzMTY1NkU3OEYwNEJD RDVCQzUzMTAwHhcNMjMwNjI1MDA1NzAyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk3OTBkZC01NGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzE5duFgT8QSexYeXucNfZgDF2iMBCIlv3PCiBrVxCC12h0sspxGCd0qNpzVO rFhZ/pZ1oArwKPBcn/ns8MaMtxhXtIXXBIaDjXn9J34VoqCw7F+8Aptw0JNQoRDY V1YxaiQFz0+9IGLRonsqx4EcDHWfLPuSYeh50qZSQLY4f7TOVcNgbBd0F5xUBhwC AGo/H61LEw+OetYhC5FIZnVe/4ZvE9eXjguHAQSOlqSd3szr3zuR45p7wFrVV/z5 HLp6L+lhOPFLsDXcpmn3CLjtOtvdqIFYp+ETKn82CwGxNB6MkrkOA+AGJMswh2FS ZaSYKXdFRs6eAEaSaZnotLFUsQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIvS3Ae9 LAefNH4lG/pBM8toIguNMB8GA1UdIwQYMBaAFO/FgrKjyywQ6KMWVuePBLzVvFMQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlBMi8xRkVCNUEyMDhD NkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExCRG9veFpXNTQ4RXZOVzhV eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4V0NzcVBMTEJEb294Wlc1NDhFdk5XOFV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDA5QTIvMUZFQjVBMjA4QzZBMTFFQjk4REVERDY4QzRGOUFFMDIvNTlBRDI5Qjg4 QzZCMTFFQkEyODZDNTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnPpgwDQQCAAIwBwMFACQA8sAwDQYJKoZIhvcNAQELBQAD ggEBAGLQZNyBjWyMTTaqlpTnF3f4xcCryE5QDIWpTWvBscswHGcP3hM49O3CpGDh 9EUt/y0bH0p9w6SSw6xzQODpoTd9dOgMm61VNFbNmLANN4aYXhOsL+c8SPgVNcZR 3BLVlXrzJiD/vK27wAaHjPlBy4jHut7luaa+9rIOyzbKpW+jAvDP7OvVm3U/X1+2 xj5CRz3nzGxDmeb32HhOGcFBci2qHa44Tb2OTSsKjmZ/zaDE5W1WNc80yMimNlJ3 I/sOut4EB11IWf5PDxqVvNzO+qxGQ+wKw8PzmJpZlH36MTaIZjnCVwQndmVtgmjT sjWQAillnr4MQOEsYklYPB7YSZo= -----END CERTIFICATE-----Generated at Fri May 17 01:07:00 2024 by rpki-client on console-fra.rpki-client.org