$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/577B4C026E1911ECBDBB1450C4F9AE02.roa File: 577B4C026E1911ECBDBB1450C4F9AE02.roa (raw, json) Hash identifier: kQhfAilsipPok0NxNBGRUDiXG4i7czW8cdkMPXcH45o= Subject key identifier: B4:98:C0:C6:E0:FA:7A:0B:A5:86:D0:C6:E8:E8:34:05:7B:DD:1F:10 Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 02C3 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/577B4C026E1911ECBDBB1450C4F9AE02.roa Signing time: Wed 16 Aug 2023 21:38:53 +0000 ROA not before: Wed 16 Aug 2023 21:38:53 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140950 IP address blocks: 103.153.174.0/23 maxlen: 23 103.153.174.0/24 maxlen: 24 103.153.175.0/24 maxlen: 24 2001:df4:5380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Aug 16 21:38:53 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64dd41ec-3e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0f:3e:58:6e:6c:5c:8f:c1:29:b9:ec:22:c0: b3:05:27:7c:69:7a:b7:da:6b:30:85:4f:55:b6:e6: 20:30:26:5f:13:59:60:b5:ff:51:e6:58:63:60:98: 2e:3d:4f:a2:bd:d8:de:03:20:91:c1:6a:d9:4d:e6: 8c:98:48:32:f1:54:cb:d6:fe:e9:b5:4c:e3:02:9d: 19:9e:5c:42:72:80:8c:a1:63:cb:45:d9:1b:f0:ea: 3c:ad:df:c3:95:6e:ad:86:7e:c2:24:01:c5:4c:09: f9:89:da:09:0c:54:d8:fc:75:95:1a:a4:da:78:37: c2:cb:73:18:92:83:76:bc:86:4e:3b:49:73:9e:d5: 64:95:d4:79:5f:ff:b3:c3:cb:8f:5d:2b:a7:27:bc: 2e:98:0a:43:69:e8:76:1b:e3:ea:c2:c1:84:ec:4f: db:6d:d4:9e:f5:f4:c7:18:9b:d5:21:a9:2e:21:19: 66:f7:14:1e:d8:72:78:3b:fb:57:6b:26:0c:24:50: de:d9:3b:59:55:09:07:38:1a:43:38:b5:eb:68:8a: 5b:41:f0:9d:e1:48:bd:d0:2c:42:e8:ca:f8:c1:7f: 4d:1d:f9:48:93:7e:a5:24:f7:ac:d4:66:7d:5e:64: ec:43:37:cd:ac:42:92:6b:d3:3c:23:78:0b:2b:5a: 89:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:98:C0:C6:E0:FA:7A:0B:A5:86:D0:C6:E8:E8:34:05:7B:DD:1F:10 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/577B4C026E1911ECBDBB1450C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.174.0/23 IPv6: 2001:df4:5380::/48 Signature Algorithm: sha256WithRSAEncryption 11:38:81:75:c4:ce:fb:a1:f9:33:1a:af:e6:ed:28:d1:8c:7c: d2:0c:34:ed:7d:ec:98:3a:36:71:fb:f1:cf:17:1c:07:5f:68: 99:03:ab:3f:71:65:2a:76:78:fd:d6:ec:7d:fb:18:f6:c6:f6: eb:89:6a:3c:b4:2b:0e:9e:f3:ca:8d:ac:4e:97:51:c0:dc:4c: 2d:d3:f7:a3:7b:40:22:46:54:65:da:5f:4c:73:a1:b0:64:57: 65:f4:dd:11:6d:ba:2d:d6:75:3b:14:b2:93:a7:39:40:9b:98: ae:90:44:db:db:d9:a7:df:da:fe:08:e2:56:26:44:cb:39:e6: 31:03:9b:43:37:6f:41:d1:05:62:a8:c3:2d:c1:2a:f5:27:74: a1:6d:ff:01:f1:78:eb:4b:75:14:82:24:1b:e0:87:e8:83:08: a7:03:ec:ee:53:30:17:a7:1d:4b:c7:4f:4e:3c:f2:8e:dc:2c: ac:75:2d:61:4e:0b:78:27:79:a9:f9:8a:04:99:a3:79:f0:b5: 22:3e:b1:b2:8d:28:db:86:eb:f2:55:e6:56:cd:b2:8c:50:5a: a2:7b:b5:14:e0:ab:37:7d:8c:a5:a1:a5:a7:66:3d:46:13:f3: c9:9c:8b:07:2c:46:f6:f6:3c:be:1a:c3:db:24:57:4c:86:a2: 0d:dc:9c:9c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjMwODE2MjEzODUzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkNDFlYy0zZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ8+WG5sXI/BKbnsIsCzBSd8aXq32mswhU9VtuYgMCZfE1lgtf9R5lhjYJgu PU+ivdjeAyCRwWrZTeaMmEgy8VTL1v7ptUzjAp0ZnlxCcoCMoWPLRdkb8Oo8rd/D lW6thn7CJAHFTAn5idoJDFTY/HWVGqTaeDfCy3MYkoN2vIZOO0lzntVkldR5X/+z w8uPXSunJ7wumApDaeh2G+PqwsGE7E/bbdSe9fTHGJvVIakuIRlm9xQe2HJ4O/tX ayYMJFDe2TtZVQkHOBpDOLXraIpbQfCd4Ui90CxC6Mr4wX9NHflIk36lJPes1GZ9 XmTsQzfNrEKSa9M8I3gLK1qJUwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLSYwMbg +noLpYbQxujoNAV73R8QMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZBQjIvMEFGMkVBQUFDRjcwMTFFQThBRTU1RDQ4QzRGOUFFMDIvNTc3QjRDMDI2 RTE5MTFFQ0JEQkIxNDUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnma4wDwQCAAIwCQMHACABDfRTgDANBgkqhkiG9w0BAQsF AAOCAQEAETiBdcTO+6H5Mxqv5u0o0Yx80gw07X3smDo2cfvxzxccB19omQOrP3Fl KnZ4/dbsffsY9sb264lqPLQrDp7zyo2sTpdRwNxMLdP3o3tAIkZUZdpfTHOhsGRX ZfTdEW26LdZ1OxSyk6c5QJuYrpBE29vZp9/a/gjiViZEyznmMQObQzdvQdEFYqjD LcEq9Sd0oW3/AfF460t1FIIkG+CH6IMIpwPs7lMwF6cdS8dPTjzyjtwsrHUtYU4L eCd5qfmKBJmjefC1Ij6xso0o24br8lXmVs2yjFBaonu1FOCrN32MpaGlp2Y9RhPz yZyLByxG9vY8vhrD2yRXTIaiDdycnA== -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org