$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/0DD11F2E325411ECB11CE73EC4F9AE02.roa File: 0DD11F2E325411ECB11CE73EC4F9AE02.roa (raw, json) Hash identifier: UfuDZ6dabF6a5UaUR9VUv9dPJDojsnP0ZfIBRNJXbas= Subject key identifier: CB:93:12:F7:7D:6C:31:8A:23:C8:AA:8C:15:CE:22:0E:CE:3E:14:88 Certificate issuer: /CN=A91DA59D/serialNumber=751FA49E712F88CF844CCD179EBE29B97EA1AACC Certificate serial: 062A Authority key identifier: 75:1F:A4:9E:71:2F:88:CF:84:4C:CD:17:9E:BE:29:B9:7E:A1:AA:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dR-knnEviM-ETM0Xnr4puX6hqsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/0DD11F2E325411ECB11CE73EC4F9AE02.roa Signing time: Thu 22 Jun 2023 23:24:48 +0000 ROA not before: Thu 22 Jun 2023 23:24:48 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 139035 IP address blocks: 103.138.188.0/24 maxlen: 24 103.138.189.0/24 maxlen: 24 2001:df0:4e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/dR-knnEviM-ETM0Xnr4puX6hqsw.crl rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/dR-knnEviM-ETM0Xnr4puX6hqsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dR-knnEviM-ETM0Xnr4puX6hqsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 22:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1578 (0x62a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA59D/serialNumber=751FA49E712F88CF844CCD179EBE29B97EA1AACC Validity Not Before: Jun 22 23:24:48 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6494d840-94f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ff:75:89:f0:f9:7d:11:52:37:58:36:43:26: e2:00:b8:bc:f1:ec:a5:cf:d6:e5:4d:29:28:45:8f: 8a:bb:e7:60:fe:06:9d:f9:23:c2:15:d8:5f:97:eb: ba:6d:d1:c1:78:03:17:63:e1:0a:42:cf:60:0d:4e: 63:bc:14:e4:48:64:99:a2:84:88:a6:94:ed:e5:54: 57:f1:8a:19:76:be:a7:c6:67:5a:a3:94:62:42:fd: e2:80:aa:b6:66:ff:1b:00:28:65:06:57:69:d0:58: 6d:cb:81:0b:2d:6e:f4:98:c4:67:98:02:9c:c1:a4: 66:36:bb:e1:6d:41:04:2a:7c:1d:b0:35:50:76:8f: c1:f0:83:18:7b:31:f8:55:1e:d8:3b:e8:a5:72:2a: 36:6e:85:78:5e:7a:e2:55:51:24:49:d3:e7:48:01: 50:c0:1a:bc:c1:73:ed:9f:7f:0a:2f:e2:5b:43:b8: ba:c8:9b:c0:97:3a:81:e6:00:51:88:cb:ef:44:49: 85:53:c5:8f:78:9e:66:4f:e9:e1:75:16:71:85:fb: d4:b6:1b:61:bf:7e:72:52:3a:5d:7e:4f:55:bf:d0: b8:30:ba:71:69:fd:27:bb:0c:2d:19:73:5c:94:51: 99:27:f7:aa:76:c9:97:52:87:1c:19:0f:1f:1c:82: f5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:93:12:F7:7D:6C:31:8A:23:C8:AA:8C:15:CE:22:0E:CE:3E:14:88 X509v3 Authority Key Identifier: keyid:75:1F:A4:9E:71:2F:88:CF:84:4C:CD:17:9E:BE:29:B9:7E:A1:AA:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/dR-knnEviM-ETM0Xnr4puX6hqsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dR-knnEviM-ETM0Xnr4puX6hqsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/0DD11F2E325411ECB11CE73EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.188.0/23 IPv6: 2001:df0:4e80::/48 Signature Algorithm: sha256WithRSAEncryption 11:f2:12:39:6c:de:01:7e:04:84:df:23:49:13:fc:00:9d:83: c9:5b:95:69:2c:f5:6f:90:9c:1c:4e:e0:06:9c:0b:7e:79:33: d1:93:a4:a5:0a:fa:93:aa:97:91:40:48:38:56:eb:db:7c:37: f9:03:a0:89:df:0c:41:a9:95:8a:d8:9c:70:6f:56:d0:90:21: 31:f5:4e:39:01:c3:da:30:c5:ce:56:60:cf:97:1a:33:db:b1: ed:f0:42:e2:1f:fb:e6:10:fc:50:d1:27:3e:96:06:10:50:07: 7d:2b:6d:53:04:5a:eb:52:ae:c5:65:3d:4d:22:92:1f:80:fb: 73:56:51:4d:f3:58:f8:54:a6:d0:c9:ae:4c:20:af:bd:a5:c8: b5:7e:23:4b:13:99:2d:a9:28:8b:af:57:72:6e:96:e0:68:1d: 4a:dc:b6:cd:98:52:5f:4d:89:bf:f5:9d:24:7a:e6:67:51:6d: 83:b0:0f:02:48:9d:80:c6:1b:cb:2e:e4:66:9c:e8:1d:53:5e: 10:d5:5d:ea:98:2a:d1:cb:22:c4:76:11:06:4f:d4:50:32:a5: d1:5e:b2:25:1a:12:b3:0b:d6:20:5e:54:2c:c4:19:65:ba:ec: 6f:54:4f:ce:cc:85:0b:52:ae:a4:d6:69:18:40:83:67:9e:f1: 4a:5e:e9:67 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OUQxMTAvBgNVBAUTKDc1MUZBNDlFNzEyRjg4Q0Y4NDRDQ0QxNzlFQkUyOUI5 N0VBMUFBQ0MwHhcNMjMwNjIyMjMyNDQ4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0ZDg0MC05NGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/91ifD5fRFSN1g2QybiALi88eylz9blTSkoRY+Ku+dg/gad+SPCFdhfl+u6 bdHBeAMXY+EKQs9gDU5jvBTkSGSZooSIppTt5VRX8YoZdr6nxmdao5RiQv3igKq2 Zv8bAChlBldp0Fhty4ELLW70mMRnmAKcwaRmNrvhbUEEKnwdsDVQdo/B8IMYezH4 VR7YO+ilcio2boV4XnriVVEkSdPnSAFQwBq8wXPtn38KL+JbQ7i6yJvAlzqB5gBR iMvvREmFU8WPeJ5mT+nhdRZxhfvUththv35yUjpdfk9Vv9C4MLpxaf0nuwwtGXNc lFGZJ/eqdsmXUoccGQ8fHIL18QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMuTEvd9 bDGKI8iqjBXOIg7OPhSIMB8GA1UdIwQYMBaAFHUfpJ5xL4jPhEzNF56+Kbl+oarM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5RC81NjNERTUwRTBE NTYxMUVCQTNEMTVEMkNDNEY5QUUwMi9kUi1rbm5FdmlNLUVUTTBYbnI0cHVYNmhx c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RSLWtubkV2aU0tRVRNMFhucjRwdVg2aHFzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REE1OUQvNTYzREU1MEUwRDU2MTFFQkEzRDE1RDJDQzRGOUFFMDIvMEREMTFGMkUz MjU0MTFFQ0IxMUNFNzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnirwwDwQCAAIwCQMHACABDfBOgDANBgkqhkiG9w0BAQsF AAOCAQEAEfISOWzeAX4EhN8jSRP8AJ2DyVuVaSz1b5CcHE7gBpwLfnkz0ZOkpQr6 k6qXkUBIOFbr23w3+QOgid8MQamViticcG9W0JAhMfVOOQHD2jDFzlZgz5caM9ux 7fBC4h/75hD8UNEnPpYGEFAHfSttUwRa61KuxWU9TSKSH4D7c1ZRTfNY+FSm0Mmu TCCvvaXItX4jSxOZLakoi69Xcm6W4GgdSty2zZhSX02Jv/WdJHrmZ1Ftg7APAkid gMYbyy7kZpzoHVNeENVd6pgq0csixHYRBk/UUDKl0V6yJRoSswvWIF5ULMQZZbrs b1RPzsyFC1KupNZpGECDZ57xSl7pZw== -----END CERTIFICATE-----Generated at Tue May 14 23:38:45 2024 by rpki-client on console-ams.rpki-client.org