$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1CDBD11CAE3711ECB61BED46C4F9AE02.roa File: 1CDBD11CAE3711ECB61BED46C4F9AE02.roa (raw, json) Hash identifier: zGIyzjPBuEDhf2OzmQ6rtFRt471DV3Hf1yGdazrEdOQ= Subject key identifier: 14:DB:96:1A:35:B5:CC:62:EA:15:86:F7:97:17:E0:21:0C:93:E7:0D Certificate issuer: /CN=A91DF859/serialNumber=965D79B88967E287E6A5153A104FC14EC1185B11 Certificate serial: 021A Authority key identifier: 96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1CDBD11CAE3711ECB61BED46C4F9AE02.roa Signing time: Thu 03 Aug 2023 02:43:29 +0000 ROA not before: Thu 03 Aug 2023 02:43:28 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9919 IP address blocks: 103.30.252.0/24 maxlen: 24 103.30.254.0/24 maxlen: 24 103.70.180.0/24 maxlen: 24 103.193.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.crl rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF859/serialNumber=965D79B88967E287E6A5153A104FC14EC1185B11 Validity Not Before: Aug 3 02:43:28 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cb1450-0039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bc:eb:ae:91:26:89:6e:d0:80:24:b7:e5:c2: 72:ec:28:32:fe:7d:26:7b:25:2f:d9:d2:e8:55:92: b7:a7:8a:e9:34:b8:3d:6f:cb:cf:87:4c:1c:89:d3: 6d:c9:46:4b:0e:82:75:a3:07:7f:87:0c:36:89:0e: bb:82:de:31:28:0c:11:74:1d:e6:21:d0:43:86:0d: 79:d2:5d:2b:86:bf:ae:86:de:50:cd:7a:6c:d1:a3: 90:4d:13:66:7a:8a:e3:15:23:ea:33:d6:39:5c:b0: b1:dc:0c:14:a8:61:f2:01:15:f3:4a:8c:93:cd:b1: 38:3c:5c:a2:a9:d7:7c:3c:45:00:14:cd:a1:86:0a: 34:d8:75:f0:4c:58:32:46:44:36:36:ae:3b:9c:77: ae:f7:20:99:3e:1e:ac:eb:95:26:66:68:9c:30:ca: 88:25:60:b2:20:4c:8b:9e:a6:e1:58:8c:ea:86:8e: 1f:6a:21:1d:98:0e:07:c2:e4:e4:3d:0b:e7:c6:42: 15:59:e8:b9:02:47:fa:b0:38:e6:ae:1e:e4:97:94: af:ed:ef:fd:a1:66:d7:85:d2:43:24:f3:52:f2:75: 42:3e:34:4e:13:0f:82:82:81:cc:8d:9f:af:39:dc: 5f:c1:4b:6d:d1:0e:e8:7e:c4:8e:02:c1:7d:3a:04: 88:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:DB:96:1A:35:B5:CC:62:EA:15:86:F7:97:17:E0:21:0C:93:E7:0D X509v3 Authority Key Identifier: keyid:96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1CDBD11CAE3711ECB61BED46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.252.0/24 103.30.254.0/24 103.70.180.0/24 103.193.184.0/22 Signature Algorithm: sha256WithRSAEncryption 75:72:46:f2:be:cf:14:71:9c:df:e3:fa:87:46:fb:be:d4:99: bc:95:7f:88:54:f8:3e:11:bc:ab:29:be:51:26:83:a9:09:e2: ac:7e:49:f2:35:73:d7:03:76:85:61:dc:54:d6:a0:8b:f5:7f: f9:8b:3a:92:a9:d6:19:7f:de:1e:63:52:d9:c5:4b:5d:9d:0d: d7:78:9b:36:89:11:d7:cc:d4:92:e6:f3:6a:51:a1:f6:42:db: 69:41:b8:49:6d:2f:69:ac:4e:54:b6:3f:76:e7:aa:77:8b:46: 94:bb:04:91:2f:f0:92:6b:8c:ce:f7:0b:21:01:35:f4:54:b6: 7e:2b:45:27:5a:b0:17:4b:b2:ae:4d:94:f0:a6:4b:25:3e:e1: bf:8a:67:d8:98:4a:4e:b7:7c:e2:27:27:f4:03:2d:d9:8d:b6: 5c:92:8b:b3:94:d6:22:55:d5:5d:e0:87:a9:2f:98:80:19:d2: ea:e9:0a:16:0c:3b:3d:3a:52:df:10:6a:9c:e3:1a:ef:41:b7: a1:b7:36:ff:78:a9:f2:4a:3b:90:93:83:2c:65:a4:3d:65:71: d9:8a:67:45:61:81:14:d2:0b:30:3b:92:d9:5b:72:ea:95:ef: 13:72:88:65:77:a2:41:d7:87:e3:f0:7e:e6:0e:da:92:35:17: 9e:68:99:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTkxMTAvBgNVBAUTKDk2NUQ3OUI4ODk2N0UyODdFNkE1MTUzQTEwNEZDMTRF QzExODVCMTEwHhcNMjMwODAzMDI0MzI4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNiMTQ1MC0wMDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrzrrpEmiW7QgCS35cJy7Cgy/n0meyUv2dLoVZK3p4rpNLg9b8vPh0wcidNt yUZLDoJ1owd/hww2iQ67gt4xKAwRdB3mIdBDhg150l0rhr+uht5QzXps0aOQTRNm eorjFSPqM9Y5XLCx3AwUqGHyARXzSoyTzbE4PFyiqdd8PEUAFM2hhgo02HXwTFgy RkQ2Nq47nHeu9yCZPh6s65UmZmicMMqIJWCyIEyLnqbhWIzqho4faiEdmA4HwuTk PQvnxkIVWei5Akf6sDjmrh7kl5Sv7e/9oWbXhdJDJPNS8nVCPjROEw+CgoHMjZ+v OdxfwUtt0Q7ofsSOAsF9OgSIVQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBTblho1 tcxi6hWG95cX4CEMk+cNMB8GA1UdIwQYMBaAFJZdebiJZ+KH5qUVOhBPwU7BGFsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1OS9DMTRGNTVDRUFF MzMxMUVDOUZBNjBGNDNDNEY5QUUwMi9sbDE1dUlsbjRvZm1wUlU2RUVfQlRzRVlX eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsMTV1SWxuNG9mbXBSVTZFRV9CVHNFWVd4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NTkvQzE0RjU1Q0VBRTMzMTFFQzlGQTYwRjQzQzRGOUFFMDIvMUNEQkQxMUNB RTM3MTFFQ0I2MUJFRDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABnHvwDBABnHv4DBABnRrQDBAJnwbgwDQYJKoZIhvcNAQEL BQADggEBAHVyRvK+zxRxnN/j+odG+77UmbyVf4hU+D4RvKspvlEmg6kJ4qx+SfI1 c9cDdoVh3FTWoIv1f/mLOpKp1hl/3h5jUtnFS12dDdd4mzaJEdfM1JLm82pRofZC 22lBuEltL2msTlS2P3bnqneLRpS7BJEv8JJrjM73CyEBNfRUtn4rRSdasBdLsq5N lPCmSyU+4b+KZ9iYSk63fOInJ/QDLdmNtlySi7OU1iJV1V3gh6kvmIAZ0urpChYM Oz06Ut8QapzjGu9Bt6G3Nv94qfJKO5CTgyxlpD1lcdmKZ0VhgRTSCzA7ktlbcuqV 7xNyiGV3okHXh+PwfuYO2pI1F55omfA= -----END CERTIFICATE-----Generated at Sun May 19 04:20:44 2024 by rpki-client on console-ams.rpki-client.org