$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/BE243D98CCE311EAA397205EC4F9AE02.roa File: BE243D98CCE311EAA397205EC4F9AE02.roa (raw, json) Hash identifier: MyTzt6XgKzgHAOvjFIGB5RjEeP6dLUTAkNzcs6robs4= Subject key identifier: F6:32:D3:8B:DF:6F:BB:5B:A0:0C:07:94:D4:29:4C:D5:43:C4:26:0D Certificate issuer: /CN=A91DC0C0/serialNumber=C4F7C619546D92D6066FB2F4C76545A9CE2FE303 Certificate serial: 06E4 Authority key identifier: C4:F7:C6:19:54:6D:92:D6:06:6F:B2:F4:C7:65:45:A9:CE:2F:E3:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfGGVRtktYGb7L0x2VFqc4v4wM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/BE243D98CCE311EAA397205EC4F9AE02.roa Signing time: Fri 14 Jul 2023 21:18:08 +0000 ROA not before: Fri 14 Jul 2023 21:18:08 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 134179 IP address blocks: 103.57.0.0/22 maxlen: 22 103.57.0.0/24 maxlen: 24 103.57.1.0/24 maxlen: 24 103.57.2.0/24 maxlen: 24 103.57.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/xPfGGVRtktYGb7L0x2VFqc4v4wM.crl rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/xPfGGVRtktYGb7L0x2VFqc4v4wM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfGGVRtktYGb7L0x2VFqc4v4wM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1764 (0x6e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC0C0/serialNumber=C4F7C619546D92D6066FB2F4C76545A9CE2FE303 Validity Not Before: Jul 14 21:18:08 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b1bb90-498a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6b:fd:aa:55:1e:36:2b:24:30:37:cb:4b:f0: 0e:52:ea:ba:c1:b0:d9:97:f2:1d:7e:00:fd:4c:02: f0:47:bb:65:9a:3d:f1:27:80:38:80:53:6e:b4:09: 9b:7c:d7:49:6e:83:44:43:da:8e:ca:83:47:8a:44: 01:70:fc:ae:c7:48:08:67:00:08:94:2f:c1:bb:c5: 1b:09:f4:05:92:79:41:66:8e:e2:15:36:fa:26:29: ff:0c:d6:0a:f5:bf:d0:83:73:aa:42:3a:4b:8d:02: 77:ba:db:7f:b6:51:bf:c9:f7:e1:90:bb:d2:0d:22: d7:f6:a9:df:08:65:43:f0:d4:de:d3:bb:65:e7:cc: 86:a5:58:36:3a:ae:8f:2d:69:e8:73:68:cf:14:53: ff:87:35:ab:b0:a5:b2:f9:8f:d4:d2:bb:63:7c:e5: f2:10:20:dc:01:98:27:de:00:15:75:9e:5a:83:1e: 6e:5d:4d:97:7c:60:7b:14:9e:94:ed:6f:84:e3:49: 36:4f:5b:b8:4f:6c:4e:7f:51:7a:47:62:e5:92:04: de:e4:b6:30:30:ae:26:ce:40:10:c2:19:5e:f7:d1: fe:1b:95:d8:54:d1:dd:ce:ac:7e:24:74:c5:45:d3: 8e:6c:4c:57:e9:bb:02:a9:9a:dd:07:90:10:1a:c6: 93:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:32:D3:8B:DF:6F:BB:5B:A0:0C:07:94:D4:29:4C:D5:43:C4:26:0D X509v3 Authority Key Identifier: keyid:C4:F7:C6:19:54:6D:92:D6:06:6F:B2:F4:C7:65:45:A9:CE:2F:E3:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/xPfGGVRtktYGb7L0x2VFqc4v4wM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfGGVRtktYGb7L0x2VFqc4v4wM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/BE243D98CCE311EAA397205EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.0.0/22 Signature Algorithm: sha256WithRSAEncryption 34:94:6e:98:d8:9d:30:68:fd:4e:af:4d:e0:05:2e:92:05:7e: 86:c1:ad:ad:15:29:f8:b2:ec:03:8e:34:e7:70:97:7f:c7:db: a0:46:48:08:57:33:b5:fc:eb:0f:a8:7d:3c:6e:b1:7a:a4:f4: f2:9c:26:12:29:26:8c:06:b1:a0:06:5d:b8:fc:cd:3e:a3:ac: 5f:3a:e1:95:f0:6a:d4:79:52:d2:45:2d:52:74:aa:0b:f3:e1: 5d:6c:de:84:64:43:41:17:ba:d2:a8:1b:8f:c1:00:b6:f7:50: 26:eb:db:ca:2b:5b:88:18:ba:14:ff:56:c5:c1:ac:b3:cc:e1: 7f:d0:a8:b9:cb:7a:3a:d9:aa:ba:a9:cd:fe:72:ac:e9:1d:97: f0:e6:d3:3e:6a:13:1c:98:84:49:ef:88:84:8a:be:94:d0:53: ec:47:fa:9a:9e:22:77:cb:25:15:1d:3a:68:66:0e:4c:67:85: 8b:ac:44:c3:99:bb:38:3d:15:2e:b5:70:b0:f0:b3:54:0a:60: 14:eb:58:3c:73:bc:e1:d9:f5:47:b7:4f:a3:e7:77:86:77:0b: 8d:48:d1:18:eb:96:6e:e8:a5:fb:26:a4:c8:f0:e1:7f:b3:2a: b3:44:1d:a0:76:b3:16:eb:99:2e:91:4c:aa:52:75:a9:10:11: 4f:09:b7:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwQzAxMTAvBgNVBAUTKEM0RjdDNjE5NTQ2RDkyRDYwNjZGQjJGNEM3NjU0NUE5 Q0UyRkUzMDMwHhcNMjMwNzE0MjExODA4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxYmI5MC00OThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWv9qlUeNiskMDfLS/AOUuq6wbDZl/IdfgD9TALwR7tlmj3xJ4A4gFNutAmb fNdJboNEQ9qOyoNHikQBcPyux0gIZwAIlC/Bu8UbCfQFknlBZo7iFTb6Jin/DNYK 9b/Qg3OqQjpLjQJ3utt/tlG/yffhkLvSDSLX9qnfCGVD8NTe07tl58yGpVg2Oq6P LWnoc2jPFFP/hzWrsKWy+Y/U0rtjfOXyECDcAZgn3gAVdZ5agx5uXU2XfGB7FJ6U 7W+E40k2T1u4T2xOf1F6R2LlkgTe5LYwMK4mzkAQwhle99H+G5XYVNHdzqx+JHTF RdOObExX6bsCqZrdB5AQGsaT7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPYy04vf b7tboAwHlNQpTNVDxCYNMB8GA1UdIwQYMBaAFMT3xhlUbZLWBm+y9MdlRanOL+MD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzBDMC8wMjJEQkNBNEND RTMxMUVBQUY3M0ZDNURDNEY5QUUwMi94UGZHR1ZSdGt0WUdiN0wweDJWRnFjNHY0 d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZkdHVlJ0a3RZR2I3TDB4MlZGcWM0djR3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwQzAvMDIyREJDQTRDQ0UzMTFFQUFGNzNGQzVEQzRGOUFFMDIvQkUyNDNEOThD Q0UzMTFFQUEzOTcyMDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnOQAwDQYJKoZIhvcNAQELBQADggEBADSUbpjYnTBo/U6v TeAFLpIFfobBra0VKfiy7AOONOdwl3/H26BGSAhXM7X86w+ofTxusXqk9PKcJhIp JowGsaAGXbj8zT6jrF864ZXwatR5UtJFLVJ0qgvz4V1s3oRkQ0EXutKoG4/BALb3 UCbr28orW4gYuhT/VsXBrLPM4X/QqLnLejrZqrqpzf5yrOkdl/Dm0z5qExyYhEnv iISKvpTQU+xH+pqeInfLJRUdOmhmDkxnhYusRMOZuzg9FS61cLDws1QKYBTrWDxz vOHZ9Ue3T6Pnd4Z3C41I0Rjrlm7opfsmpMjw4X+zKrNEHaB2sxbrmS6RTKpSdakQ EU8JtwE= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:30 2024 by rpki-client on console-ams.rpki-client.org