$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/5CA964A68AC111EC91D19A11C4F9AE02.roa File: 5CA964A68AC111EC91D19A11C4F9AE02.roa (raw, json) Hash identifier: 8KtiWKOE+f6CmnRLcL50w77UQzV0t3NNmPGCD+UiN2Y= Subject key identifier: 25:C0:D7:DF:81:EF:95:45:7B:36:E3:DE:BE:E8:6E:C1:4E:22:53:64 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 0337 Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/5CA964A68AC111EC91D19A11C4F9AE02.roa Signing time: Fri 01 Mar 2024 03:05:13 +0000 ROA not before: Fri 01 Mar 2024 03:05:13 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 34927 IP address blocks: 103.180.192.0/24 maxlen: 24 103.180.193.0/24 maxlen: 24 2400:54a0:1010::/48 maxlen: 48 2400:54a0:101a::/48 maxlen: 48 2400:54a0:1020::/48 maxlen: 48 2400:54a0:102a::/48 maxlen: 48 2400:54a0:102b::/48 maxlen: 48 2400:54a0:102c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: Mar 1 03:05:13 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e145e9-9473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2a:9e:3a:e0:ab:88:6a:7b:86:1b:90:9f:ca: 98:c8:90:2a:7e:d8:aa:eb:52:73:ab:ac:b2:18:83: 45:1f:08:a0:02:a6:4e:1f:70:76:7e:70:a4:d3:77: 7a:f8:cd:de:bf:84:39:a5:e5:d5:84:88:e0:21:2a: 87:5c:51:a5:8f:93:d8:fe:f2:bf:34:15:99:c4:16: 03:70:97:b2:f9:27:36:77:cc:9c:83:dc:3f:e5:1e: 3f:9c:07:12:41:bf:89:ba:96:9a:df:a4:23:0b:bb: 36:d0:27:76:12:96:37:79:f2:4c:6c:6d:3f:9b:fd: cf:71:66:9a:32:74:e5:ee:ea:2a:f1:5d:57:b7:69: 7d:b1:5c:79:fc:d5:21:31:3f:bc:cf:a5:6b:7d:b1: 16:67:65:94:68:91:28:7b:e4:de:84:80:ab:bf:be: f1:c6:d5:04:cf:76:c6:8d:91:7e:7c:89:41:0a:3f: 42:3d:0a:04:71:c7:03:a2:b9:fe:6c:21:2c:29:09: 78:ea:b9:f9:1b:b3:a2:8e:74:0b:27:61:5e:1b:30: 36:29:37:42:d5:10:5e:e4:af:57:39:cd:60:72:51: 6f:a8:a4:ed:27:e7:22:d5:82:7e:a7:28:d8:a9:e9: d0:7a:f3:53:2c:33:4d:51:54:f8:51:75:74:a3:fa: 33:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C0:D7:DF:81:EF:95:45:7B:36:E3:DE:BE:E8:6E:C1:4E:22:53:64 X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/5CA964A68AC111EC91D19A11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.192.0/23 IPv6: 2400:54a0:1010::/48 2400:54a0:101a::/48 2400:54a0:1020::/48 2400:54a0:102a::-2400:54a0:102c:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 66:cd:df:56:45:45:a1:31:82:1f:1a:01:46:1a:c5:c1:32:59: 17:1d:42:27:ce:32:d2:65:f2:29:70:d2:69:8e:3a:42:a8:b5: 1d:55:d9:17:c3:a8:65:46:fc:9a:e2:ab:c8:78:9d:87:a7:e8: 6c:0d:d2:60:2d:e0:a7:48:6f:f8:1b:ce:a8:86:bc:7e:b1:2c: 6c:ca:69:64:04:30:c7:96:71:fb:8e:ee:32:8c:db:4a:f1:0e: 12:1d:4c:76:b8:40:ff:c4:d6:bf:e6:e2:2b:0e:45:a5:af:28: db:6e:74:a0:9b:70:9f:6f:8c:14:8d:33:d7:86:40:d8:3f:26: ab:9b:5b:f7:89:fa:38:09:37:1f:1a:de:5c:58:7e:6f:56:14: 21:44:77:11:26:f3:38:36:0e:09:10:83:2a:6b:2d:1c:05:0a: b0:a9:72:67:39:1a:3a:34:19:bf:11:0e:1a:19:47:85:50:4b: a7:64:af:81:43:28:c1:2d:81:1a:be:c0:25:ca:f2:b6:95:63: 61:0d:28:2d:81:fd:d0:0c:ac:d2:96:4d:aa:fd:93:39:65:2e: 32:2c:44:f9:33:86:e8:a4:20:e8:bf:03:8f:f9:79:6c:58:5b: ac:f1:2e:c8:02:98:34:63:7c:f9:7b:e5:45:6e:47:05:cc:e2: 29:09:1a:fb -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjQwMzAxMDMwNTEzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxNDVlOS05NDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCqeOuCriGp7hhuQn8qYyJAqftiq61Jzq6yyGINFHwigAqZOH3B2fnCk03d6 +M3ev4Q5peXVhIjgISqHXFGlj5PY/vK/NBWZxBYDcJey+Sc2d8ycg9w/5R4/nAcS Qb+Jupaa36QjC7s20Cd2EpY3efJMbG0/m/3PcWaaMnTl7uoq8V1Xt2l9sVx5/NUh MT+8z6VrfbEWZ2WUaJEoe+TehICrv77xxtUEz3bGjZF+fIlBCj9CPQoEcccDorn+ bCEsKQl46rn5G7OijnQLJ2FeGzA2KTdC1RBe5K9XOc1gclFvqKTtJ+ci1YJ+pyjY qenQevNTLDNNUVT4UXV0o/ozTQIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFCXA19+B 75VFezbj3r7obsFOIlNkMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUxQTAvN0M1MzkxMEM3Rjg0MTFFQzgwNTE4RTUxQzRGOUFFMDIvNUNBOTY0QTY4 QUMxMTFFQzkxRDE5QTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMAwEAgABMAYDBAFntMAwNQQCAAIwLwMHACQAVKAQEAMHACQAVKAQGgMHACQA VKAQIDASAwcBJABUoBAqAwcAJABUoBAsMA0GCSqGSIb3DQEBCwUAA4IBAQBmzd9W RUWhMYIfGgFGGsXBMlkXHUInzjLSZfIpcNJpjjpCqLUdVdkXw6hlRvya4qvIeJ2H p+hsDdJgLeCnSG/4G86ohrx+sSxsymlkBDDHlnH7ju4yjNtK8Q4SHUx2uED/xNa/ 5uIrDkWlryjbbnSgm3Cfb4wUjTPXhkDYPyarm1v3ifo4CTcfGt5cWH5vVhQhRHcR JvM4Ng4JEIMqay0cBQqwqXJnORo6NBm/EQ4aGUeFUEunZK+BQyjBLYEavsAlyvK2 lWNhDSgtgf3QDKzSlk2q/ZM5ZS4yLET5M4bopCDovwOP+XlsWFus8S7IApg0Y3z5 e+VFbkcFzOIpCRr7 -----END CERTIFICATE-----Generated at Sat May 25 04:35:33 2024 by rpki-client on console-ams.rpki-client.org