$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1C43D57EAE3711ECB61BED46C4F9AE02.roa File: 1C43D57EAE3711ECB61BED46C4F9AE02.roa (raw, json) Hash identifier: t2UGHo9OQTn2mHMxsEAQ7RhkaLUbop3gw10i2QNxP4c= Subject key identifier: 09:5D:97:B3:F5:F7:63:C2:86:24:94:0E:AF:31:06:E9:74:A1:53:A1 Certificate issuer: /CN=A91DF859/serialNumber=965D79B88967E287E6A5153A104FC14EC1185B11 Certificate serial: 0219 Authority key identifier: 96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1C43D57EAE3711ECB61BED46C4F9AE02.roa Signing time: Thu 03 Aug 2023 02:43:28 +0000 ROA not before: Thu 03 Aug 2023 02:43:28 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9311 IP address blocks: 103.30.253.0/24 maxlen: 24 103.30.255.0/24 maxlen: 24 103.70.181.0/24 maxlen: 24 103.70.182.0/24 maxlen: 24 103.70.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.crl rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF859/serialNumber=965D79B88967E287E6A5153A104FC14EC1185B11 Validity Not Before: Aug 3 02:43:28 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cb144f-d84a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8a:f9:80:ff:17:8d:b8:50:62:5c:6f:cc:3d: f1:84:59:35:b6:d6:a5:5c:4b:95:ac:e5:f5:05:da: 0f:62:e8:1e:40:56:62:f4:86:d2:42:8a:39:b6:e7: e5:22:40:fd:5c:b1:29:2b:c0:7d:88:e3:88:73:f6: 82:75:2e:f6:16:0b:5f:0b:1e:a9:21:5e:ad:11:ee: 4c:b0:09:bd:d6:0b:b2:32:3f:7c:e9:de:13:23:09: 8b:43:12:03:f2:27:2a:66:c2:73:16:12:e0:98:aa: 4a:4d:1e:20:2e:97:02:3c:15:41:47:21:32:3a:a1: e6:91:3d:8e:de:5e:ee:9e:d7:8e:12:0c:26:db:5e: 5b:d6:f6:cd:29:e8:e7:8c:4a:8f:33:06:d4:e6:92: bd:06:9d:04:9a:a5:d5:59:79:9c:58:6b:a3:ea:d6: 43:9f:68:55:73:a7:19:45:df:ed:a3:d7:10:c2:80: e1:a5:f6:da:ce:45:4f:f7:d9:c9:f5:37:31:35:fd: 3c:00:78:92:6a:22:5a:4e:c4:72:b9:50:9c:f8:f8: 22:b0:c0:06:44:cd:08:2d:c2:37:34:09:2a:e4:4a: 05:da:7f:60:b9:6b:3d:15:3c:17:c6:bd:03:d5:47: 62:ca:d4:6e:2b:e7:f7:3d:b7:ca:02:04:90:de:f7: 75:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5D:97:B3:F5:F7:63:C2:86:24:94:0E:AF:31:06:E9:74:A1:53:A1 X509v3 Authority Key Identifier: keyid:96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1C43D57EAE3711ECB61BED46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.253.0/24 103.30.255.0/24 103.70.181.0-103.70.183.255 Signature Algorithm: sha256WithRSAEncryption 7e:88:16:48:de:69:42:f0:d2:96:dc:9c:c4:19:ff:8a:d5:4c: ab:77:a3:cc:d1:b2:80:29:30:19:90:ab:71:71:45:6d:78:fd: 3a:f0:ba:95:72:7f:36:cd:ae:af:eb:cf:75:8d:32:ff:53:9c: 05:e6:2d:c3:28:60:44:f2:d4:35:c7:d3:2f:d9:9b:5c:9b:f7: 1b:c8:60:42:30:a4:41:94:87:fa:34:2d:40:25:5f:f9:dd:5d: 93:5f:b6:00:ac:9b:d6:81:2e:4f:e2:38:56:c9:f2:12:e0:09: 9f:f5:b7:ac:d8:3f:5c:c6:57:b5:bc:3b:7d:69:4f:83:ed:7b: 25:21:4f:a1:f3:5b:bd:36:fe:a9:86:f2:67:09:23:b6:bb:57: d1:d5:06:96:5f:1f:f8:eb:2d:aa:af:19:46:6f:44:c4:2a:c3: c8:da:cb:d3:4f:d5:f9:a3:91:41:a0:d2:bb:7c:ca:3d:3c:4d: dd:c9:a7:3e:e9:db:43:08:4c:0a:80:2f:1a:5c:3f:26:3f:f1: 0f:eb:be:a8:8b:88:68:9d:19:e0:e9:f0:a7:13:fa:c4:bb:c6: 5e:d8:2b:44:4d:61:25:22:3f:60:70:b3:b0:5f:43:76:8a:74: b5:dd:10:86:6a:76:c3:5e:4a:c5:76:2c:61:48:e0:66:bf:29: e1:e4:d0:3e -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTkxMTAvBgNVBAUTKDk2NUQ3OUI4ODk2N0UyODdFNkE1MTUzQTEwNEZDMTRF QzExODVCMTEwHhcNMjMwODAzMDI0MzI4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNiMTQ0Zi1kODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4r5gP8XjbhQYlxvzD3xhFk1ttalXEuVrOX1BdoPYugeQFZi9IbSQoo5tufl IkD9XLEpK8B9iOOIc/aCdS72FgtfCx6pIV6tEe5MsAm91guyMj986d4TIwmLQxID 8icqZsJzFhLgmKpKTR4gLpcCPBVBRyEyOqHmkT2O3l7unteOEgwm215b1vbNKejn jEqPMwbU5pK9Bp0EmqXVWXmcWGuj6tZDn2hVc6cZRd/to9cQwoDhpfbazkVP99nJ 9TcxNf08AHiSaiJaTsRyuVCc+PgisMAGRM0ILcI3NAkq5EoF2n9guWs9FTwXxr0D 1UdiytRuK+f3PbfKAgSQ3vd1rQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFAldl7P1 92PChiSUDq8xBul0oVOhMB8GA1UdIwQYMBaAFJZdebiJZ+KH5qUVOhBPwU7BGFsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1OS9DMTRGNTVDRUFF MzMxMUVDOUZBNjBGNDNDNEY5QUUwMi9sbDE1dUlsbjRvZm1wUlU2RUVfQlRzRVlX eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsMTV1SWxuNG9mbXBSVTZFRV9CVHNFWVd4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NTkvQzE0RjU1Q0VBRTMzMTFFQzlGQTYwRjQzQzRGOUFFMDIvMUM0M0Q1N0VB RTM3MTFFQ0I2MUJFRDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBABnHv0DBABnHv8wDAMEAGdGtQMEA2dGsDANBgkqhkiG9w0B AQsFAAOCAQEAfogWSN5pQvDSltycxBn/itVMq3ejzNGygCkwGZCrcXFFbXj9OvC6 lXJ/Ns2ur+vPdY0y/1OcBeYtwyhgRPLUNcfTL9mbXJv3G8hgQjCkQZSH+jQtQCVf +d1dk1+2AKyb1oEuT+I4VsnyEuAJn/W3rNg/XMZXtbw7fWlPg+17JSFPofNbvTb+ qYbyZwkjtrtX0dUGll8f+Ostqq8ZRm9ExCrDyNrL00/V+aORQaDSu3zKPTxN3cmn PunbQwhMCoAvGlw/Jj/xD+u+qIuIaJ0Z4OnwpxP6xLvGXtgrRE1hJSI/YHCzsF9D dop0td0Qhmp2w15KxXYsYUjgZr8p4eTQPg== -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org