$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/53AD6F32DA5E11EBA323F462C4F9AE02.roa File: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (raw, json) Hash identifier: Jbnhcb66BEFKo2GGE48yhSKdBGRqIw7fLR9CrQYiW58= Subject key identifier: AD:65:65:3D:C5:F5:D5:45:A3:99:09:62:2C:E1:A6:D8:17:EE:80:99 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 041E Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/53AD6F32DA5E11EBA323F462C4F9AE02.roa Signing time: Sat 01 Jul 2023 00:50:35 +0000 ROA not before: Sat 01 Jul 2023 00:50:35 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 16509 IP address blocks: 103.168.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 01:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1054 (0x41e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Jul 1 00:50:35 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649f785b-0a49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e2:ac:86:98:83:b5:9e:3f:32:42:fe:40:81: 31:fc:ef:2d:7c:2e:26:71:45:f5:b3:e6:d6:a9:82: 82:a5:0e:84:ee:b3:08:a9:7b:ed:cf:3d:6b:11:54: dd:68:51:19:7e:df:87:d7:d1:92:a9:c0:27:b9:bb: 3a:45:8b:2c:0e:66:e6:43:5d:72:dc:fa:84:c9:25: 59:60:7e:31:8b:7d:7a:bd:ad:bf:ec:09:95:3b:4c: a2:3a:7d:30:de:79:17:36:6e:b4:78:8f:7d:c7:1e: 0e:b5:df:a4:83:07:9b:17:d0:30:a5:bd:dd:44:b3: 0c:68:4f:b8:3b:29:53:3d:73:ca:fa:1b:84:20:ed: 39:b2:1f:a2:fd:8a:07:fd:1d:27:e3:f0:7c:0f:65: 1f:77:08:ce:2d:35:a3:e4:d1:01:25:91:a4:fd:de: 4c:b8:30:e2:e1:83:f6:db:70:18:1f:6b:1e:8b:83: 09:ac:08:62:9b:19:07:01:79:cc:d6:e8:89:72:e0: 05:9d:20:23:82:9e:7b:80:e2:b3:d0:31:ab:5a:a4: 39:d6:c7:08:c0:52:0d:18:46:e8:85:9c:ad:87:b4: 40:f3:94:16:a5:a4:f0:f0:71:5f:c8:a7:75:d2:21: 95:52:87:68:c1:6a:fc:d7:3e:e5:40:98:a5:97:2e: 2a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:65:65:3D:C5:F5:D5:45:A3:99:09:62:2C:E1:A6:D8:17:EE:80:99 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/53AD6F32DA5E11EBA323F462C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.209.0/24 Signature Algorithm: sha256WithRSAEncryption be:d9:a7:4c:b1:0a:61:8a:d1:b3:b4:38:e3:ce:8e:6f:12:cb: 1f:28:54:45:5e:04:c2:a0:4f:f5:1e:12:3d:5f:ae:3a:ac:fa: 8e:ef:1f:68:22:45:13:e5:de:12:a2:64:5d:c8:70:27:cf:bc: cb:a5:d3:6a:e6:ff:ea:d3:9e:f2:39:7a:db:89:86:00:f9:f2: f8:53:c8:fe:b1:91:15:6c:2e:cd:e4:9b:9d:d2:85:6e:98:f4: 47:82:23:7f:10:0d:41:aa:9a:03:ca:99:57:40:39:61:d1:e5: a6:75:7b:7f:1f:f6:9c:23:4b:99:f7:55:72:8b:75:2d:41:b6: 78:85:69:77:62:a2:bc:fe:9f:c7:84:9a:f7:f2:87:e9:d4:5b: 77:f3:87:5d:91:58:af:22:bd:9b:5a:bd:06:9b:25:79:aa:2f: 33:7a:7b:91:01:37:99:d5:d4:0d:34:27:70:34:3f:e6:2d:a9: 1a:e8:a0:16:88:94:6f:50:ed:7e:2c:86:33:49:48:94:0d:7f: 7c:22:ab:7f:34:1e:69:8c:9e:56:72:52:29:39:16:63:db:20: d7:b0:e8:01:76:75:9f:04:34:d7:98:06:cf:44:b0:ac:6e:e5: 08:b5:21:29:4b:24:b1:18:b4:f1:6e:66:e8:d7:a4:01:a9:e7: 08:46:22:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjMwNzAxMDA1MDM1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDlmNzg1Yi0wYTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOKshpiDtZ4/MkL+QIEx/O8tfC4mcUX1s+bWqYKCpQ6E7rMIqXvtzz1rEVTd aFEZft+H19GSqcAnubs6RYssDmbmQ11y3PqEySVZYH4xi316va2/7AmVO0yiOn0w 3nkXNm60eI99xx4Otd+kgwebF9Awpb3dRLMMaE+4OylTPXPK+huEIO05sh+i/YoH /R0n4/B8D2UfdwjOLTWj5NEBJZGk/d5MuDDi4YP223AYH2sei4MJrAhimxkHAXnM 1uiJcuAFnSAjgp57gOKz0DGrWqQ51scIwFINGEbohZyth7RA85QWpaTw8HFfyKd1 0iGVUodowWr81z7lQJilly4qmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK1lZT3F 9dVFo5kJYizhptgX7oCZMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJCNjYvNTNFOEZCRUFEQTVCMTFFQjgzQkUzNzFBQzRGOUFFMDIvNTNBRDZGMzJE QTVFMTFFQkEzMjNGNDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqNEwDQYJKoZIhvcNAQELBQADggEBAL7Zp0yxCmGK0bO0 OOPOjm8Syx8oVEVeBMKgT/UeEj1frjqs+o7vH2giRRPl3hKiZF3IcCfPvMul02rm /+rTnvI5etuJhgD58vhTyP6xkRVsLs3km53ShW6Y9EeCI38QDUGqmgPKmVdAOWHR 5aZ1e38f9pwjS5n3VXKLdS1BtniFaXdiorz+n8eEmvfyh+nUW3fzh12RWK8ivZta vQabJXmqLzN6e5EBN5nV1A00J3A0P+YtqRrooBaIlG9Q7X4shjNJSJQNf3wiq380 HmmMnlZyUik5FmPbINew6AF2dZ8ENNeYBs9EsKxu5Qi1ISlLJLEYtPFuZujXpAGp 5whGImY= -----END CERTIFICATE-----Generated at Thu Apr 25 03:22:04 2024 by rpki-client on console-ams.rpki-client.org