$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/E8F4B2C48A0911ED8FCEE137C4F9AE02.roa File: E8F4B2C48A0911ED8FCEE137C4F9AE02.roa (raw, json) Hash identifier: SUfB+o9lw6Kw8mT6defHem8dN9fgF85ICyqYHkbnBUY= Subject key identifier: 1E:D5:AE:CC:A7:67:3E:40:B0:9F:C7:94:4E:88:C4:C2:43:3C:EE:E9 Certificate issuer: /CN=A91E6C2D/serialNumber=8B3F23EB5FE28F5805E3D27B9537BBAFA7CDF946 Certificate serial: CE Authority key identifier: 8B:3F:23:EB:5F:E2:8F:58:05:E3:D2:7B:95:37:BB:AF:A7:CD:F9:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iz8j61_ij1gF49J7lTe7r6fN-UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/E8F4B2C48A0911ED8FCEE137C4F9AE02.roa Signing time: Mon 29 Jan 2024 05:17:17 +0000 ROA not before: Mon 29 Jan 2024 05:17:17 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150701 IP address blocks: 103.61.18.0/23 maxlen: 23 103.61.18.0/24 maxlen: 24 103.61.19.0/24 maxlen: 24 2001:df1:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.crl rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iz8j61_ij1gF49J7lTe7r6fN-UY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6C2D/serialNumber=8B3F23EB5FE28F5805E3D27B9537BBAFA7CDF946 Validity Not Before: Jan 29 05:17:17 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b734dd-1537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:ee:f6:1d:71:08:fa:b1:88:35:d9:a1:0f: e1:d4:f8:c8:04:b5:2e:5b:47:d0:bb:e5:6c:3c:ff: 59:bb:af:f4:da:e7:8f:09:c0:e9:3d:ff:9f:ce:05: fb:b5:36:cd:8f:58:d8:33:4f:24:f4:4f:32:a8:f3: 42:0a:2d:b0:33:63:d4:57:36:72:f4:ae:74:73:ae: a2:2c:6a:f8:8a:6b:19:11:7f:b2:52:11:84:59:21: 1a:8d:64:50:de:05:fc:5e:4e:ec:b6:03:b4:0c:76: ad:da:7f:95:ae:78:d2:00:1d:00:7c:5e:32:09:ab: 15:d1:c7:56:98:df:34:4d:8c:00:2b:17:6a:e3:f5: 8a:6a:41:e5:1e:47:88:9d:56:c3:38:54:7e:06:62: bf:ce:25:e9:c9:cc:bd:af:8b:98:45:c8:39:d4:9d: 37:d6:b2:55:6b:7b:98:e5:9e:c8:a8:ba:60:2d:53: 14:3a:37:71:f5:0f:13:64:91:84:98:67:e7:50:1b: d8:03:f1:d3:4f:66:a6:3e:35:fe:49:5a:09:66:ce: 00:54:43:2d:e5:ab:d5:e2:cf:58:d1:fa:ed:ad:37: a6:48:5f:1f:9c:b1:63:7f:1b:e3:61:e7:4d:b7:61: 2f:a0:59:88:ad:c8:46:4e:6f:4c:5c:d3:8b:ae:1f: 4e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D5:AE:CC:A7:67:3E:40:B0:9F:C7:94:4E:88:C4:C2:43:3C:EE:E9 X509v3 Authority Key Identifier: keyid:8B:3F:23:EB:5F:E2:8F:58:05:E3:D2:7B:95:37:BB:AF:A7:CD:F9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iz8j61_ij1gF49J7lTe7r6fN-UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/E8F4B2C48A0911ED8FCEE137C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.61.18.0/23 IPv6: 2001:df1:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption 72:66:8b:0c:8b:a8:cb:ac:da:de:7f:c7:63:5e:4d:20:c4:01: 62:67:d4:0f:27:f8:e0:f1:13:85:4a:c7:fc:3a:49:cf:25:f3: 58:9f:51:13:6a:36:f9:ee:fc:d3:d2:00:0a:56:b3:d2:ac:a0: cb:13:50:fd:51:60:23:a9:e4:f4:70:46:ed:04:52:e0:7d:46: e1:88:11:d0:c0:9f:1d:fa:6b:54:d1:4f:94:3b:d0:fb:b2:2d: 0f:17:8c:11:d9:c0:19:b9:46:38:e2:93:b0:13:35:63:cd:95: 83:0e:ab:91:cc:39:18:51:42:b8:71:d0:6b:53:da:ba:17:05: b9:85:64:4c:67:1b:75:7d:58:a8:a6:40:25:d8:8d:bc:28:43: c6:4a:d4:04:32:82:f1:67:f9:a4:0b:8e:22:65:3f:c8:62:b8: 00:f5:a0:6e:48:3e:5f:8d:2c:c7:aa:33:c7:02:31:02:76:ad: 53:c2:ff:ba:ba:18:58:fb:a3:af:b9:fd:b4:41:66:9b:be:81: b8:4b:c8:ee:3c:3b:73:f9:f6:ea:16:d6:40:dd:2c:f4:85:f9: 51:fb:25:81:3b:0b:89:f2:42:ca:08:ae:17:26:55:21:24:2f: 32:18:e0:88:39:41:70:98:35:89:de:28:1b:c5:73:22:73:7c: c2:02:25:c5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDMkQxMTAvBgNVBAUTKDhCM0YyM0VCNUZFMjhGNTgwNUUzRDI3Qjk1MzdCQkFG QTdDREY5NDYwHhcNMjQwMTI5MDUxNzE3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI3MzRkZC0xNTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkru9h1xCPqxiDXZoQ/h1PjIBLUuW0fQu+VsPP9Zu6/02uePCcDpPf+fzgX7 tTbNj1jYM08k9E8yqPNCCi2wM2PUVzZy9K50c66iLGr4imsZEX+yUhGEWSEajWRQ 3gX8Xk7stgO0DHat2n+VrnjSAB0AfF4yCasV0cdWmN80TYwAKxdq4/WKakHlHkeI nVbDOFR+BmK/ziXpycy9r4uYRcg51J031rJVa3uY5Z7IqLpgLVMUOjdx9Q8TZJGE mGfnUBvYA/HTT2amPjX+SVoJZs4AVEMt5avV4s9Y0frtrTemSF8fnLFjfxvjYedN t2EvoFmIrchGTm9MXNOLrh9OtQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFB7Vrsyn Zz5AsJ/HlE6IxMJDPO7pMB8GA1UdIwQYMBaAFIs/I+tf4o9YBePSe5U3u6+nzflG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkMyRC9DMzcyMTMyQzhB MDcxMUVEODI5MEE4MzdDNEY5QUUwMi9pejhqNjFfaWoxZ0Y0OUo3bFRlN3I2Zk4t VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l6OGo2MV9pajFnRjQ5SjdsVGU3cjZmTi1VWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZDMkQvQzM3MjEzMkM4QTA3MTFFRDgyOTBBODM3QzRGOUFFMDIvRThGNEIyQzQ4 QTA5MTFFRDhGQ0VFMTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnPRIwDwQCAAIwCQMHACABDfHAwDANBgkqhkiG9w0BAQsF AAOCAQEAcmaLDIuoy6za3n/HY15NIMQBYmfUDyf44PEThUrH/DpJzyXzWJ9RE2o2 +e7809IAClaz0qygyxNQ/VFgI6nk9HBG7QRS4H1G4YgR0MCfHfprVNFPlDvQ+7It DxeMEdnAGblGOOKTsBM1Y82Vgw6rkcw5GFFCuHHQa1PauhcFuYVkTGcbdX1YqKZA JdiNvChDxkrUBDKC8Wf5pAuOImU/yGK4APWgbkg+X40sx6ozxwIxAnatU8L/uroY WPujr7n9tEFmm76BuEvI7jw7c/n26hbWQN0s9IX5UfslgTsLifJCygiuFyZVISQv MhjgiDlBcJg1id4oG8VzInN8wgIlxQ== -----END CERTIFICATE-----Generated at Tue May 21 06:21:02 2024 by rpki-client on console-ams.rpki-client.org