$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/DDBCA666F18911EAA922EB1FC4F9AE02.roa File: DDBCA666F18911EAA922EB1FC4F9AE02.roa (raw, json) Hash identifier: 0eY9UJAkZZakZw8of6sUFhqYKDDaBt9qQKETBrfHEcM= Subject key identifier: 76:03:4D:28:5A:84:D2:8E:6F:F1:E9:89:53:3A:AA:7B:B7:0C:87:71 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 068D Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/DDBCA666F18911EAA922EB1FC4F9AE02.roa Signing time: Thu 01 Jun 2023 00:16:10 +0000 ROA not before: Thu 01 Jun 2023 00:16:10 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 49466 IP address blocks: 103.213.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 22:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1677 (0x68d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Jun 1 00:16:10 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6477e34a-93be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:72:5b:e9:b5:a6:11:97:66:c7:33:77:99:84: 22:ea:07:f0:ae:a2:7a:d3:c7:b6:fa:df:20:90:4b: 8e:0d:72:98:10:d0:18:22:45:c5:d6:b9:21:fd:7f: 46:61:5a:5f:d2:68:14:ad:ae:66:a3:ef:f6:54:89: 7d:f8:be:c3:db:75:d5:2a:c0:37:d8:09:ce:7a:00: 21:ed:21:ff:f3:ff:8e:e6:13:e1:0c:80:27:96:1c: e9:1f:cb:66:83:33:9c:1c:ec:5d:01:45:f5:7e:8d: 41:03:ae:f2:e8:2d:63:6d:92:98:51:ad:65:72:ca: 74:38:ce:cc:52:da:5f:8c:13:e1:f1:98:b5:77:23: 19:33:f0:be:7e:ac:cb:80:66:f0:10:f3:6b:b4:48: ae:87:62:cf:86:ce:f8:cf:b0:bd:50:41:4b:88:1e: 54:7b:37:02:4b:7b:42:fb:ab:4a:1a:6c:74:09:c5: 6e:44:7e:c8:c4:97:ba:4c:9a:63:04:c9:87:48:cf: 8c:e0:4a:ca:83:e1:b5:20:9a:4d:b6:3d:f9:9b:bf: d2:ae:88:72:dc:63:d7:ab:e2:a7:64:89:f3:fa:a5: 67:f8:78:74:25:a8:18:78:59:10:86:e4:e5:95:04: 47:5e:ed:5e:af:fe:31:50:2b:58:c1:13:64:28:d3: 1e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:03:4D:28:5A:84:D2:8E:6F:F1:E9:89:53:3A:AA:7B:B7:0C:87:71 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/DDBCA666F18911EAA922EB1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/24 Signature Algorithm: sha256WithRSAEncryption 83:b6:7d:e9:d0:23:f8:93:06:d9:ed:b1:a0:49:a5:ca:81:8c: 6d:ae:09:c3:ee:de:f6:d1:0e:5f:65:89:dc:82:b2:fb:5b:8e: f6:35:81:84:48:d2:6d:14:d8:fb:7c:98:e2:34:71:81:bc:e7: 8c:ac:a8:75:1b:48:dd:6d:3c:57:75:ef:e6:24:18:8f:db:72: 58:33:7a:52:ca:9d:26:e7:9f:28:8d:bc:fe:96:4e:5d:2a:20: d2:92:b4:1d:32:04:33:6f:fd:0e:26:70:92:c8:cb:30:ea:b1: 12:47:c0:16:fa:23:04:a3:7b:23:4b:75:99:3f:bc:49:72:52: b8:24:74:88:07:c6:fa:69:79:db:95:43:74:94:ed:60:85:14: bf:71:82:d1:bf:68:01:9f:74:fa:a5:d5:c2:0e:20:02:c1:d6: 9d:c3:8f:29:f5:fb:6c:66:81:68:c1:75:fb:cc:fd:b3:5e:5d: 44:94:d2:e8:21:4e:d1:53:54:af:51:02:ac:16:42:6f:e0:3b: f1:bc:c5:ee:79:a8:db:db:61:77:15:73:40:f7:1c:8c:10:f4: 27:0f:38:ec:da:fd:bf:4d:44:d3:b7:60:5b:00:d8:a6:d4:c7: 12:94:78:fe:50:16:15:e8:61:3f:88:02:e0:a4:77:1c:a4:59: d7:1e:ac:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjMwNjAxMDAxNjEwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc3ZTM0YS05M2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03Jb6bWmEZdmxzN3mYQi6gfwrqJ608e2+t8gkEuODXKYENAYIkXF1rkh/X9G YVpf0mgUra5mo+/2VIl9+L7D23XVKsA32AnOegAh7SH/8/+O5hPhDIAnlhzpH8tm gzOcHOxdAUX1fo1BA67y6C1jbZKYUa1lcsp0OM7MUtpfjBPh8Zi1dyMZM/C+fqzL gGbwEPNrtEiuh2LPhs74z7C9UEFLiB5UezcCS3tC+6tKGmx0CcVuRH7IxJe6TJpj BMmHSM+M4ErKg+G1IJpNtj35m7/Srohy3GPXq+KnZInz+qVn+Hh0JagYeFkQhuTl lQRHXu1er/4xUCtYwRNkKNMe6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHYDTSha hNKOb/HpiVM6qnu3DIdxMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvRERCQ0E2NjZG MTg5MTFFQUE5MjJFQjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1fQwDQYJKoZIhvcNAQELBQADggEBAIO2fenQI/iTBtnt saBJpcqBjG2uCcPu3vbRDl9lidyCsvtbjvY1gYRI0m0U2Pt8mOI0cYG854ysqHUb SN1tPFd17+YkGI/bclgzelLKnSbnnyiNvP6WTl0qINKStB0yBDNv/Q4mcJLIyzDq sRJHwBb6IwSjeyNLdZk/vElyUrgkdIgHxvppeduVQ3SU7WCFFL9xgtG/aAGfdPql 1cIOIALB1p3Djyn1+2xmgWjBdfvM/bNeXUSU0ughTtFTVK9RAqwWQm/gO/G8xe55 qNvbYXcVc0D3HIwQ9CcPOOza/b9NRNO3YFsA2KbUxxKUeP5QFhXoYT+IAuCkdxyk WdcerL0= -----END CERTIFICATE-----Generated at Wed May 29 02:29:55 2024 by rpki-client on console-ams.rpki-client.org