$ rpki-client -vvf rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3583B2616B711ECBD752D47C4F9AE02.roa File: A3583B2616B711ECBD752D47C4F9AE02.roa (raw, json) Hash identifier: ySlrT8ppeZpDDygW9lG8KDEVREOUc7g/wF3bneRfj4E= Subject key identifier: D1:F2:35:94:4F:7B:80:E9:8B:7E:1C:70:04:B6:66:07:56:2D:6B:D7 Certificate issuer: /CN=A91D891D/serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Certificate serial: 037E Authority key identifier: 41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3583B2616B711ECBD752D47C4F9AE02.roa Signing time: Tue 23 May 2023 00:48:18 +0000 ROA not before: Tue 23 May 2023 00:48:18 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 55799 IP address blocks: 103.113.156.0/22 maxlen: 22 103.113.156.0/24 maxlen: 24 103.113.157.0/24 maxlen: 24 103.113.158.0/24 maxlen: 24 103.113.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 894 (0x37e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D891D/serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Validity Not Before: May 23 00:48:18 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646c0d52-9860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:96:ab:a6:d9:5a:ad:1d:80:e1:16:02:79:99: 23:5c:96:f2:36:d6:22:bb:1d:2c:fc:3c:a0:6e:82: 43:23:83:66:dd:13:22:8a:11:61:9a:2b:6e:67:a1: 13:4b:5a:8e:9a:9d:23:2f:3b:a5:37:2f:69:0a:b6: e5:33:bc:4e:25:46:47:2d:62:b7:51:2a:81:64:83: eb:5b:a6:cb:0d:17:d8:12:3f:72:fd:21:a9:a9:76: d0:d9:1a:00:6a:83:f0:c7:93:10:69:0d:f4:36:1c: 1a:8e:02:95:17:7b:83:80:75:7b:d5:87:39:bc:60: f8:b9:f8:57:91:a0:72:47:09:1f:5b:e5:e5:e1:c4: 32:b9:63:2b:69:13:a1:dd:c8:9e:57:9e:22:ab:95: 27:bf:bc:cd:f4:3e:14:b4:e1:b9:0f:21:12:55:4d: d3:b6:f7:29:ff:14:2b:54:82:4a:7b:54:49:03:1d: ab:fa:23:ed:77:4d:de:53:07:50:d4:33:11:8d:5f: 8a:7e:38:04:bb:df:b7:7c:4a:7b:43:b6:f9:60:1f: 95:8a:cb:ad:fa:f3:2f:f7:ad:f9:5a:9a:34:dd:cf: 58:94:87:0c:70:2e:68:fe:24:fd:5a:34:e3:41:41: eb:1f:a3:ec:15:3f:4d:5a:7f:be:9a:f4:81:44:ab: 5f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F2:35:94:4F:7B:80:E9:8B:7E:1C:70:04:B6:66:07:56:2D:6B:D7 X509v3 Authority Key Identifier: keyid:41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3583B2616B711ECBD752D47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.156.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:cb:18:de:39:35:d0:a6:8f:63:6c:a8:47:63:f5:aa:a9:0b: 15:64:b3:06:63:66:d8:38:78:1d:3a:a7:d7:86:27:b8:11:25: 85:a3:c5:b8:55:de:3d:20:92:f4:b7:4f:c1:b9:34:3a:c1:25: 33:03:83:8d:fc:c5:86:ae:4a:12:72:4f:b1:8b:e8:62:a8:59: 3f:95:14:82:14:1c:f7:f6:e4:b0:9f:a2:60:0f:6a:24:b3:00: d6:31:03:93:80:7d:a8:7d:ed:28:67:b6:55:1e:39:9a:cf:a4: 81:7f:f5:67:0e:42:13:33:5f:15:1d:f9:cc:28:10:46:d8:0e: 3a:e8:5e:69:b9:86:70:04:19:26:f8:19:3f:4d:15:91:6f:4e: e4:53:04:b1:8c:d3:a2:b8:1f:5b:a5:a0:57:55:79:3d:a7:81: 3f:33:ca:42:7e:09:ca:e1:3c:0c:a8:dd:65:a5:6a:2f:71:50: 16:09:9e:14:b8:f1:06:ec:9a:38:62:10:99:e0:36:32:fa:f0: b8:01:dd:76:91:9b:d6:a5:e8:b0:ca:6a:fb:17:e2:e1:dd:d7: f2:d2:5b:8f:92:3f:67:64:d3:28:81:65:71:96:6b:78:ca:8d: 7b:b5:19:f7:8b:fb:a9:26:ed:df:62:9a:85:8a:12:60:e1:bd: fe:a3:96:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MUQxMTAvBgNVBAUTKDQxRDI2OEM1MTEzRUYzRUQ3QjE3M0I3ODBFMDE3RUQz RkU4NTU1RjcwHhcNMjMwNTIzMDA0ODE4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZjMGQ1Mi05ODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZarptlarR2A4RYCeZkjXJbyNtYiux0s/DygboJDI4Nm3RMiihFhmituZ6ET S1qOmp0jLzulNy9pCrblM7xOJUZHLWK3USqBZIPrW6bLDRfYEj9y/SGpqXbQ2RoA aoPwx5MQaQ30NhwajgKVF3uDgHV71Yc5vGD4ufhXkaByRwkfW+Xl4cQyuWMraROh 3cieV54iq5Unv7zN9D4UtOG5DyESVU3Ttvcp/xQrVIJKe1RJAx2r+iPtd03eUwdQ 1DMRjV+KfjgEu9+3fEp7Q7b5YB+Visut+vMv9635Wpo03c9YlIcMcC5o/iT9WjTj QUHrH6PsFT9NWn++mvSBRKtfgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNHyNZRP e4Dpi34ccAS2ZgdWLWvXMB8GA1UdIwQYMBaAFEHSaMURPvPtexc7eA4BftP+hVX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkxRC8zODFBOEYyQTFD QzIxMUVCODJCNTcxNzhDNEY5QUUwMi9RZEpveFJFLTgtMTdGenQ0RGdGLTBfNkZW ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FkSm94UkUtOC0xN0Z6dDREZ0YtMF82RlZmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5MUQvMzgxQThGMkExQ0MyMTFFQjgyQjU3MTc4QzRGOUFFMDIvQTM1ODNCMjYx NkI3MTFFQ0JENzUyRDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncZwwDQYJKoZIhvcNAQELBQADggEBAFvLGN45NdCmj2Ns qEdj9aqpCxVkswZjZtg4eB06p9eGJ7gRJYWjxbhV3j0gkvS3T8G5NDrBJTMDg438 xYauShJyT7GL6GKoWT+VFIIUHPf25LCfomAPaiSzANYxA5OAfah97ShntlUeOZrP pIF/9WcOQhMzXxUd+cwoEEbYDjroXmm5hnAEGSb4GT9NFZFvTuRTBLGM06K4H1ul oFdVeT2ngT8zykJ+CcrhPAyo3WWlai9xUBYJnhS48QbsmjhiEJngNjL68LgB3XaR m9al6LDKavsX4uHd1/LSW4+SP2dk0yiBZXGWa3jKjXu1GfeL+6km7d9imoWKEmDh vf6jlkE= -----END CERTIFICATE-----Generated at Tue May 7 00:53:25 2024 by rpki-client on console-ams.rpki-client.org