$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa File: FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa (raw, json) Hash identifier: Ow760t1s1bI9rozHNixWmhllz8PZzwdexK28soC0QGk= Subject key identifier: 7F:73:0F:E5:85:38:54:CB:B7:36:DE:60:93:AD:EC:6B:F2:8F:BC:9E Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 055F Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa Signing time: Thu 09 Nov 2023 00:11:34 +0000 ROA not before: Thu 09 Nov 2023 00:11:34 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132825 IP address blocks: 103.42.104.0/24 maxlen: 24 103.42.105.0/24 maxlen: 24 103.42.106.0/24 maxlen: 24 103.42.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1375 (0x55f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Nov 9 00:11:34 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654c23b6-b49e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1f:83:3b:25:ba:56:f0:57:2a:3d:c5:1e:c0: 85:48:a4:d6:2b:bd:be:ff:12:a9:69:0e:6e:db:5d: be:ed:ad:8f:07:f6:3f:06:f1:27:f3:fb:8f:ea:fd: 7f:41:e3:89:48:d1:c8:20:e3:87:3a:08:49:d5:60: d5:86:3b:c2:f9:79:5d:68:9a:a0:b2:71:99:4f:d1: 6a:91:d1:95:f6:ed:2e:7a:77:8f:5f:26:e9:7c:49: 85:3c:a5:1b:cb:07:31:67:fa:cb:97:79:3a:cd:8b: 34:e1:ee:04:1c:af:11:23:8b:2f:28:a1:2b:ae:2e: 21:2a:a6:e8:38:2b:30:ec:36:68:7e:49:95:4b:9d: 8f:ec:a5:13:d4:5b:ca:8a:4b:3c:2e:8b:89:ec:73: 85:23:dc:cb:03:3a:76:47:54:79:7d:15:47:12:8c: 29:75:7d:12:7c:b2:48:02:45:e0:0b:3d:49:36:23: a5:3e:ab:f3:10:6c:46:7b:dd:d2:12:47:17:ea:71: 04:4e:b4:40:bf:be:81:f6:ca:ac:e6:46:09:a1:5f: 77:53:40:7d:37:67:95:62:40:29:87:18:0e:f4:4d: 85:11:46:69:22:7c:2d:22:71:23:27:83:85:b8:36: f0:f4:fc:51:c3:5b:72:ee:af:9d:56:fa:c7:d2:83: 21:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:73:0F:E5:85:38:54:CB:B7:36:DE:60:93:AD:EC:6B:F2:8F:BC:9E X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.104.0/22 Signature Algorithm: sha256WithRSAEncryption 23:ff:88:67:e5:52:00:ec:05:9c:06:44:77:0c:54:40:d4:1d: 8d:5c:d1:46:c6:87:f2:0c:ee:51:aa:69:53:90:47:b5:3c:d7: c9:8f:14:14:68:61:e1:cd:52:8b:53:b7:8d:01:92:98:dc:76: b0:9e:3d:12:18:6e:61:fa:32:b9:e0:ad:70:ad:bc:41:41:29: f4:04:e5:ae:6b:8d:1b:64:db:eb:e2:41:cc:bc:65:f5:82:24: da:b5:71:74:ea:3c:49:7e:92:1d:1b:75:98:38:11:78:5c:28: d7:f2:34:7d:53:b4:b6:65:80:42:05:e3:2b:91:a8:b9:77:6a: 6d:f3:60:6c:85:8e:c9:8b:a4:1b:42:8a:8c:00:02:b5:ef:28: d8:60:50:15:01:10:c6:0c:e3:ca:36:c3:cc:f8:fe:ab:a9:20: d0:45:da:b1:d0:dc:a1:3a:ad:b3:ce:bb:9c:d1:f6:8f:62:3f: 46:66:d1:72:92:f0:31:b9:4e:53:d1:a2:78:15:1d:00:b8:1e: 0f:2f:e2:14:78:c0:70:67:1b:98:f3:f1:ed:ec:bd:dc:ac:27: 2e:f8:56:e0:aa:16:ca:b3:40:f7:f9:3c:20:f0:48:31:cf:29: b9:e5:99:19:92:d2:69:f5:be:b9:9e:4b:58:71:d2:de:42:7c: c5:26:d3:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjMxMTA5MDAxMTM0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRjMjNiNi1iNDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux+DOyW6VvBXKj3FHsCFSKTWK72+/xKpaQ5u212+7a2PB/Y/BvEn8/uP6v1/ QeOJSNHIIOOHOghJ1WDVhjvC+XldaJqgsnGZT9FqkdGV9u0uenePXybpfEmFPKUb ywcxZ/rLl3k6zYs04e4EHK8RI4svKKErri4hKqboOCsw7DZofkmVS52P7KUT1FvK iks8LouJ7HOFI9zLAzp2R1R5fRVHEowpdX0SfLJIAkXgCz1JNiOlPqvzEGxGe93S EkcX6nEETrRAv76B9sqs5kYJoV93U0B9N2eVYkAphxgO9E2FEUZpInwtInEjJ4OF uDbw9PxRw1ty7q+dVvrH0oMhWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH9zD+WF OFTLtzbeYJOt7Gvyj7yeMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY0OTkvOUY4MzZDNTI3ODA5MTFFQkExNkFFMTU2QzRGOUFFMDIvRkFFRjE1MjZE RTlFMTFFQ0JFQThBQjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKmgwDQYJKoZIhvcNAQELBQADggEBACP/iGflUgDsBZwG RHcMVEDUHY1c0UbGh/IM7lGqaVOQR7U818mPFBRoYeHNUotTt40BkpjcdrCePRIY bmH6MrngrXCtvEFBKfQE5a5rjRtk2+viQcy8ZfWCJNq1cXTqPEl+kh0bdZg4EXhc KNfyNH1TtLZlgEIF4yuRqLl3am3zYGyFjsmLpBtCiowAArXvKNhgUBUBEMYM48o2 w8z4/qupINBF2rHQ3KE6rbPOu5zR9o9iP0Zm0XKS8DG5TlPRongVHQC4Hg8v4hR4 wHBnG5jz8e3svdysJy74VuCqFsqzQPf5PCDwSDHPKbnlmRmS0mn1vrmeS1hx0t5C fMUm024= -----END CERTIFICATE-----Generated at Fri May 17 01:02:52 2024 by rpki-client on console-ams.rpki-client.org