$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa File: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (raw, json) Hash identifier: cLgA7xnd/ORzlGyzEqpdvqynx6Azs/zgMFHJfS1P+08= Subject key identifier: 40:9A:B7:56:05:AD:03:05:5B:5A:DD:7A:04:35:81:D4:C5:DC:0E:4D Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 0534 Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa Signing time: Mon 16 Oct 2023 23:51:46 +0000 ROA not before: Mon 16 Oct 2023 23:51:46 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139592 IP address blocks: 103.142.32.0/24 maxlen: 24 103.164.6.0/24 maxlen: 24 2400:e5a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1332 (0x534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: Oct 16 23:51:46 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652dcc92-f52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5c:89:65:8c:3a:4e:4b:de:08:28:57:c5:83: 1b:66:28:bb:3b:e6:0e:f7:0f:f7:07:33:1c:2b:f2: f4:69:69:a6:97:59:c2:d1:60:6b:ab:99:5c:39:b3: 66:79:61:d6:0d:b8:4f:d7:52:5c:23:5a:f6:06:d8: bb:cd:05:1d:dc:d0:10:a9:c9:11:75:05:e9:5f:eb: b2:25:0c:31:80:03:a3:c0:82:1d:82:98:ec:ee:56: 65:bc:c5:fe:93:e5:f8:ad:83:c5:79:c2:33:46:32: f7:43:35:46:f2:81:8c:e3:42:04:59:a3:f0:2b:94: fa:4c:f9:36:70:f4:f1:d9:c5:17:79:fe:32:31:ef: b6:93:c7:39:ae:20:22:ea:a7:4e:ac:04:9d:08:eb: b3:ea:0a:0f:68:30:75:bb:bd:05:48:24:cf:74:99: 38:ba:22:6e:95:77:e7:4f:83:c5:a9:69:79:cf:6c: a1:d0:ad:db:85:df:68:73:3e:17:55:c7:5d:2e:98: 9a:56:59:20:40:aa:f4:3c:9f:a6:e6:0a:2b:78:2a: 6e:c9:6e:f4:d7:55:ec:55:23:1b:50:72:f7:b6:2f: dc:3f:44:b8:b3:92:a6:2d:7e:98:e0:b1:54:0d:ba: 1d:72:b3:34:a3:29:34:a8:8a:cf:f4:1a:94:de:61: 00:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:9A:B7:56:05:AD:03:05:5B:5A:DD:7A:04:35:81:D4:C5:DC:0E:4D X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.32.0/24 103.164.6.0/24 IPv6: 2400:e5a0::/32 Signature Algorithm: sha256WithRSAEncryption db:a1:29:dd:97:6c:ff:46:81:c2:fc:a4:52:be:52:ef:d0:86: 49:fb:35:fc:7c:5e:4e:3e:0b:c6:26:b7:ce:b4:f2:a8:04:9c: 5f:3e:25:ca:39:9e:55:f9:55:11:a6:8c:dd:97:74:05:53:27: f8:35:d4:65:ce:74:31:e3:8c:27:e4:36:ed:c0:16:24:bc:44: 08:6d:88:31:6b:ff:aa:5a:75:a5:ec:68:54:8f:d4:23:34:b1: 4e:81:87:51:61:fb:02:8b:7a:88:b8:70:1a:89:37:92:cd:d0: e7:97:44:e9:3c:f2:95:5a:09:5d:47:96:fe:c7:83:c2:2a:c7: 3f:bc:65:b6:fe:5a:38:6b:9d:55:7e:80:4d:ac:53:67:2f:27: f0:c7:3a:30:e0:4a:8e:9c:bd:4b:56:93:0f:17:3b:f7:b6:66: fe:1f:71:15:5e:10:a5:21:e1:29:69:74:4a:ba:25:b9:76:45: 5c:b9:d5:e5:a1:d7:f7:84:27:59:86:d0:4b:5a:a6:e8:3d:46: fe:1f:19:45:c6:2a:e6:64:b1:1f:35:ea:69:c7:26:88:24:3e: 0f:41:67:ca:3f:9a:5f:52:2a:b7:16:43:59:00:08:3a:dd:70: b1:11:09:37:f1:1d:c8:04:03:11:8b:b4:d1:95:b5:33:0e:b4: 28:ba:d4:40 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjMxMDE2MjM1MTQ2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkY2M5Mi1mNTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lyJZYw6TkveCChXxYMbZii7O+YO9w/3BzMcK/L0aWmml1nC0WBrq5lcObNm eWHWDbhP11JcI1r2Bti7zQUd3NAQqckRdQXpX+uyJQwxgAOjwIIdgpjs7lZlvMX+ k+X4rYPFecIzRjL3QzVG8oGM40IEWaPwK5T6TPk2cPTx2cUXef4yMe+2k8c5riAi 6qdOrASdCOuz6goPaDB1u70FSCTPdJk4uiJulXfnT4PFqWl5z2yh0K3bhd9ocz4X VcddLpiaVlkgQKr0PJ+m5goreCpuyW7011XsVSMbUHL3ti/cP0S4s5KmLX6Y4LFU DbodcrM0oyk0qIrP9BqU3mEAAwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFECat1YF rQMFW1rdegQ1gdTF3A5NMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdCRDQvNEU4N0E0NkE4NkIxMTFFQkI4QkUyMTdDQzRGOUFFMDIvODFFM0Y0QUNC QkRBMTFFRDhGREI0RTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnjiADBABnpAYwDQQCAAIwBwMFACQA5aAwDQYJKoZIhvcN AQELBQADggEBANuhKd2XbP9GgcL8pFK+Uu/Qhkn7Nfx8Xk4+C8Ymt8608qgEnF8+ Jco5nlX5VRGmjN2XdAVTJ/g11GXOdDHjjCfkNu3AFiS8RAhtiDFr/6padaXsaFSP 1CM0sU6Bh1Fh+wKLeoi4cBqJN5LN0OeXROk88pVaCV1Hlv7Hg8Iqxz+8Zbb+Wjhr nVV+gE2sU2cvJ/DHOjDgSo6cvUtWkw8XO/e2Zv4fcRVeEKUh4SlpdEq6Jbl2RVy5 1eWh1/eEJ1mG0Etapug9Rv4fGUXGKuZksR816mnHJogkPg9BZ8o/ml9SKrcWQ1kA CDrdcLERCTfxHcgEAxGLtNGVtTMOtCi61EA= -----END CERTIFICATE-----Generated at Wed May 29 02:30:02 2024 by rpki-client on console-ams.rpki-client.org