$ rpki-client -vvf rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/EB8DE9B49B6411EBA08FBE84C4F9AE02.roa File: EB8DE9B49B6411EBA08FBE84C4F9AE02.roa (raw, json) Hash identifier: KUZdCZOezYlkQ78BID7anWfHU9mLn2KDRla/QudNDfQ= Subject key identifier: D4:97:61:BA:C7:26:07:3D:24:29:21:D7:68:6F:EA:20:97:47:BD:2C Certificate issuer: /CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Certificate serial: 04C5 Authority key identifier: FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/EB8DE9B49B6411EBA08FBE84C4F9AE02.roa Signing time: Fri 14 Jul 2023 23:39:47 +0000 ROA not before: Fri 14 Jul 2023 23:39:47 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 56229 IP address blocks: 103.26.148.0/24 maxlen: 24 103.26.149.0/24 maxlen: 24 103.26.150.0/24 maxlen: 24 103.26.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Validity Not Before: Jul 14 23:39:47 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b1dcc3-e0e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:67:19:a1:86:c7:97:02:6f:32:69:bb:29:94: 17:8a:6d:07:01:b8:d5:07:55:50:7b:82:95:af:77: ed:e7:49:0b:e8:f0:b7:90:ba:12:3c:ef:83:d6:07: 77:b7:76:ae:bd:3e:ec:fe:bc:1b:62:e8:85:ac:34: 28:e3:f8:53:ef:4d:68:2f:83:46:65:86:88:1e:79: 64:88:37:91:59:15:3f:2e:12:3c:f5:fe:13:65:30: cc:c6:4f:b4:89:9d:01:5a:28:94:a8:0e:ef:62:dc: 8e:2c:59:b7:b8:a3:53:19:d5:cd:58:08:24:00:cb: d9:da:1b:a8:5c:80:b9:ae:c8:dc:fc:12:ee:eb:84: ee:9c:bf:b2:d9:fe:a1:1e:bc:2e:cf:67:0b:ce:ba: 0e:be:53:7f:36:a7:ad:c8:a6:df:fb:5d:40:8c:01: 6e:56:1e:0f:e1:5a:75:32:c8:b8:7f:3f:8a:5b:02: 79:6f:ea:21:15:00:43:39:a1:fc:01:aa:04:e4:33: 44:d8:8e:b3:b3:3b:f3:0e:84:a6:fc:aa:ce:dc:4c: f4:c2:ec:52:2c:48:bf:fd:d8:91:29:14:1e:6f:54: ae:7e:3f:56:0c:fa:10:2a:f6:94:0e:68:3b:3c:e5: 42:5c:77:a5:4b:6b:fc:9e:6b:58:e9:91:c2:b5:b5: 62:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:97:61:BA:C7:26:07:3D:24:29:21:D7:68:6F:EA:20:97:47:BD:2C X509v3 Authority Key Identifier: keyid:FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/EB8DE9B49B6411EBA08FBE84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.148.0/22 Signature Algorithm: sha256WithRSAEncryption c7:63:d2:f5:64:e8:5e:bf:a6:c5:8e:e4:7c:30:23:c0:63:2e: e4:83:5a:52:f3:71:e1:bc:dd:3b:42:5b:a1:af:bd:bb:ea:52: b4:b9:d7:dd:a7:e0:2a:1b:ef:7d:cc:26:d7:b5:b3:7c:fb:80: 18:f4:7f:60:19:96:c9:7a:ed:19:c7:fd:19:0a:b2:5b:84:a7: 70:e7:06:5a:69:a4:45:17:b0:a7:b7:72:e0:59:7a:ac:a4:20: 06:25:26:86:a6:cf:1b:3a:ba:53:a7:37:89:2e:0e:05:11:fa: e5:cf:8f:82:09:d2:c6:9e:ab:42:69:32:a8:b7:41:c8:ea:72: df:ff:63:ea:87:70:15:68:89:9a:81:0f:52:e4:67:6e:ad:19: 21:26:ea:85:bb:ad:c8:db:e5:aa:0c:48:bc:5c:10:9e:a6:a7: 40:d2:c8:1c:73:61:bd:3c:dc:4a:27:22:1f:a4:18:6a:02:82: 70:7a:fd:40:c8:da:e4:0e:b7:53:ce:8a:46:4e:e5:7d:2a:7c: d1:b7:fb:e4:97:63:34:98:c9:56:9b:2f:06:10:12:19:03:c0: 4b:08:c0:22:90:e6:d6:4b:59:9d:4f:22:7f:14:ff:c7:82:5e: 92:ef:dd:26:5f:cc:02:33:93:f4:8d:8d:e8:32:e7:34:6d:b1: 72:a3:cf:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI1RTUxMTAvBgNVBAUTKEZBQkE1M0Y0M0RBMDBFMjFBN0VBRjc5MkQ0OEZEQjc2 OTU3QTgwQkMwHhcNMjMwNzE0MjMzOTQ3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxZGNjMy1lMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2cZoYbHlwJvMmm7KZQXim0HAbjVB1VQe4KVr3ft50kL6PC3kLoSPO+D1gd3 t3auvT7s/rwbYuiFrDQo4/hT701oL4NGZYaIHnlkiDeRWRU/LhI89f4TZTDMxk+0 iZ0BWiiUqA7vYtyOLFm3uKNTGdXNWAgkAMvZ2huoXIC5rsjc/BLu64TunL+y2f6h Hrwuz2cLzroOvlN/NqetyKbf+11AjAFuVh4P4Vp1Msi4fz+KWwJ5b+ohFQBDOaH8 AaoE5DNE2I6zszvzDoSm/KrO3Ez0wuxSLEi//diRKRQeb1Sufj9WDPoQKvaUDmg7 POVCXHelS2v8nmtY6ZHCtbVi8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNSXYbrH Jgc9JCkh12hv6iCXR70sMB8GA1UdIwQYMBaAFPq6U/Q9oA4hp+r3ktSP23aVeoC8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjVFNS9FQ0JGMDBFODlC NEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0RpR242dmVTMUlfYmRwVjZn THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ycFQ5RDJnRGlHbjZ2ZVMxSV9iZHBWNmdMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI1RTUvRUNCRjAwRTg5QjRCMTFFQjk3MzBBMTU0QzRGOUFFMDIvRUI4REU5QjQ5 QjY0MTFFQkEwOEZCRTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnGpQwDQYJKoZIhvcNAQELBQADggEBAMdj0vVk6F6/psWO 5HwwI8BjLuSDWlLzceG83TtCW6GvvbvqUrS5192n4Cob733MJte1s3z7gBj0f2AZ lsl67RnH/RkKsluEp3DnBlpppEUXsKe3cuBZeqykIAYlJoamzxs6ulOnN4kuDgUR +uXPj4IJ0saeq0JpMqi3Qcjqct//Y+qHcBVoiZqBD1LkZ26tGSEm6oW7rcjb5aoM SLxcEJ6mp0DSyBxzYb083EonIh+kGGoCgnB6/UDI2uQOt1POikZO5X0qfNG3++SX YzSYyVabLwYQEhkDwEsIwCKQ5tZLWZ1PIn8U/8eCXpLv3SZfzAIzk/SNjegy5zRt sXKjz+Q= -----END CERTIFICATE-----Generated at Fri May 17 02:01:45 2024 by rpki-client on console-ams.rpki-client.org