$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa File: 1E35039C42D511EEAE5F803AC4F9AE02.roa (raw, json) Hash identifier: g1L7zesoB5nU8PuGkI145uH8R2UcPZqxEKfaWGmIbic= Subject key identifier: FB:98:DF:76:65:54:EC:38:A4:6B:C7:B6:5C:5C:CF:99:4A:39:8E:05 Certificate issuer: /CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Certificate serial: 04 Authority key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa Signing time: Thu 24 Aug 2023 23:22:40 +0000 ROA not before: Thu 24 Aug 2023 23:22:40 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 4648 IP address blocks: 203.99.64.0/24 maxlen: 24 203.99.65.0/24 maxlen: 24 203.99.68.0/24 maxlen: 24 203.99.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Validity Not Before: Aug 24 23:22:40 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64e7e640-eeec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0f:86:ef:52:48:ae:c8:c6:ca:39:d2:f2:5d: 02:78:49:e6:7b:59:73:b8:ce:e1:a8:0d:81:5f:c2: 86:3b:39:bd:da:87:ef:4e:7f:43:0c:f9:98:eb:eb: 4c:fd:bb:a2:94:90:0e:49:a6:52:aa:b4:89:49:5a: 96:db:58:7e:1b:e0:19:47:10:91:cc:f7:d3:aa:74: c7:01:82:42:bc:3c:3f:40:60:b0:0d:02:e7:53:ee: 37:85:27:a3:ff:9c:63:a6:c2:0e:be:45:2a:00:49: 9e:d1:bf:d6:f9:6e:21:1a:5e:4b:98:66:2d:b7:79: 6c:27:65:83:db:e9:64:0c:d5:b3:64:19:bb:5b:c5: c3:79:15:d0:e9:cd:b6:58:c5:c2:12:29:f5:90:5d: c1:07:f3:b3:07:83:cc:41:e8:15:75:25:7a:c9:9a: e3:af:1c:3b:94:9c:94:9a:2b:35:de:c2:25:b9:ad: d8:a8:88:dc:67:dd:17:b0:e3:4f:2d:5c:ab:73:29: 3b:e7:bd:40:2d:c0:35:4c:10:ff:be:af:b4:c2:11: 2a:a5:78:12:7f:3d:bb:e8:4b:dc:41:88:2f:07:6e: dc:3d:04:e9:a5:79:c0:00:58:cc:31:1f:52:5f:cd: 95:a9:09:35:81:a9:77:43:21:5b:f6:ed:e4:79:12: 61:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:98:DF:76:65:54:EC:38:A4:6B:C7:B6:5C:5C:CF:99:4A:39:8E:05 X509v3 Authority Key Identifier: keyid:AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.64.0/23 203.99.68.0/24 203.99.71.0/24 Signature Algorithm: sha256WithRSAEncryption 33:cd:c9:e2:4a:a6:77:69:65:6e:22:92:9d:60:6a:8c:5e:ea: cc:f4:32:6c:6e:5f:e3:45:40:37:43:69:7a:11:a3:19:9a:f9: f7:8b:4a:6e:c3:89:09:5b:51:cc:de:21:4f:17:ae:b0:8e:b0: 5a:7a:93:46:6e:e4:06:23:e5:4d:6f:aa:c7:36:06:61:a9:f2: 6b:46:f9:89:c6:20:18:f2:f5:1e:8e:20:73:80:97:ec:95:45: e7:6e:a8:57:83:5f:02:2c:8b:29:05:b0:45:db:1a:76:5b:46: 20:1b:73:3c:10:b9:de:f9:69:b9:a9:1f:d6:bd:9f:af:e4:d4: 79:50:cc:63:6c:4f:2f:be:67:cd:16:8d:f0:ef:52:2c:7d:3d: a5:66:aa:b4:f7:cf:4e:a5:60:f5:6a:ff:e9:8c:f4:52:cb:9f: 23:8a:bf:60:d5:a2:f5:3d:8d:76:18:dc:03:6f:c5:ae:9a:fa: 4a:da:1e:e9:37:1f:fa:2b:bf:86:f5:78:35:74:83:2f:f2:31: 1d:12:83:e8:db:05:8a:a6:36:5d:8e:1a:15:aa:d5:43:0a:b6: 0d:3a:88:36:88:a6:1d:75:25:61:39:d5:d3:0d:31:cd:98:5b: 0e:ca:8a:dc:04:89:d2:35:13:f7:16:22:53:71:9f:a6:00:e7: 29:58:48:74 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzEwMzExMC8GA1UEBRMoQURBN0IzRTY0Mjg0NDBFNTI0REEwNjgzODZBMUVERjMy MUY4ODExRTAeFw0yMzA4MjQyMzIyNDBaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZTdlNjQwLWVlZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2D4bvUkiuyMbKOdLyXQJ4SeZ7WXO4zuGoDYFfwoY7Ob3ah+9Of0MM+Zjr60z9 u6KUkA5JplKqtIlJWpbbWH4b4BlHEJHM99OqdMcBgkK8PD9AYLANAudT7jeFJ6P/ nGOmwg6+RSoASZ7Rv9b5biEaXkuYZi23eWwnZYPb6WQM1bNkGbtbxcN5FdDpzbZY xcISKfWQXcEH87MHg8xB6BV1JXrJmuOvHDuUnJSaKzXewiW5rdioiNxn3Rew408t XKtzKTvnvUAtwDVMEP++r7TCESqleBJ/PbvoS9xBiC8Hbtw9BOmlecAAWMwxH1Jf zZWpCTWBqXdDIVv27eR5EmEbAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQU+5jfdmVU 7Dika8e2XFzPmUo5jgUwHwYDVR0jBBgwFoAUraez5kKEQOUk2gaDhqHt8yH4gR4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3MTAzLzdBQjgxMTJBNDJE MjExRUVCN0M0RDAxRUM0RjlBRTAyL3JhZXo1a0tFUU9VazJnYURocUh0OHlINGdS NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcmFlejVrS0VRT1VrMmdhRGhxSHQ4eUg0Z1I0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzEwMy83QUI4MTEyQTQyRDIxMUVFQjdDNEQwMUVDNEY5QUUwMi8xRTM1MDM5QzQy RDUxMUVFQUU1RjgwM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEActjQAMEAMtjRAMEAMtjRzANBgkqhkiG9w0BAQsFAAOCAQEA M83J4kqmd2llbiKSnWBqjF7qzPQybG5f40VAN0NpehGjGZr594tKbsOJCVtRzN4h TxeusI6wWnqTRm7kBiPlTW+qxzYGYanya0b5icYgGPL1Ho4gc4CX7JVF526oV4Nf AiyLKQWwRdsadltGIBtzPBC53vlpuakf1r2fr+TUeVDMY2xPL75nzRaN8O9SLH09 pWaqtPfPTqVg9Wr/6Yz0UsufI4q/YNWi9T2NdhjcA2/Frpr6Stoe6Tcf+iu/hvV4 NXSDL/IxHRKD6NsFiqY2XY4aFarVQwq2DTqINoimHXUlYTnV0w0xzZhbDsqK3ASJ 0jUT9xYiU3GfpgDnKVhIdA== -----END CERTIFICATE-----Generated at Fri May 31 10:02:44 2024 by rpki-client on console-ams.rpki-client.org