$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/FAF4A0E0FB3211EB967B1759C4F9AE02.roa File: FAF4A0E0FB3211EB967B1759C4F9AE02.roa (raw, json) Hash identifier: GHQI2oVlmNqBRbXC33+cIrrrwUv8pL6iFzNWJzfgNy8= Subject key identifier: 9B:1D:4D:DF:24:5C:BE:68:9C:16:D4:6E:A0:7B:BE:A7:06:CE:DA:5C Certificate issuer: /CN=A91E7E94/serialNumber=5201A89D30C48299450418C956B877249706E957 Certificate serial: 03E3 Authority key identifier: 52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/FAF4A0E0FB3211EB967B1759C4F9AE02.roa Signing time: Wed 23 Aug 2023 00:42:01 +0000 ROA not before: Wed 23 Aug 2023 00:42:01 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 142633 IP address blocks: 103.171.138.0/23 maxlen: 23 103.171.138.0/24 maxlen: 24 103.171.139.0/24 maxlen: 24 2001:df7:4880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E94/serialNumber=5201A89D30C48299450418C956B877249706E957 Validity Not Before: Aug 23 00:42:01 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e555d9-9e4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:90:75:e5:0f:26:f0:81:fa:ab:73:f8:5e:c0: 7c:1b:81:29:a4:8e:5d:dd:d5:9b:bf:9e:8e:0d:88: 71:a1:b9:48:a4:e8:7b:48:e6:02:7e:a2:12:6d:d4: de:30:f1:d4:63:90:dc:3c:08:c5:86:e1:f8:fc:ec: d9:ee:9e:8b:7b:4f:3f:7b:12:3b:73:7b:ee:86:24: ae:58:2a:0c:87:b1:4b:5f:98:e9:50:58:ed:28:d6: 16:a5:a1:94:90:25:60:26:b8:6a:65:10:67:67:76: a0:37:c0:53:c5:e0:82:d4:b8:a2:d0:c6:91:0d:c6: 6c:48:ca:c1:19:93:c8:81:ab:f9:64:de:9c:55:91: bb:1f:2b:03:06:bd:f3:e8:67:32:33:57:94:dc:96: 13:3e:85:d3:a4:bc:f3:2f:68:71:24:6d:6e:b2:b9: 0e:5c:ab:78:a4:27:7a:be:6d:5f:31:a7:ab:7b:20: ed:b5:4e:2c:d1:6a:9d:ef:d8:32:29:c3:ad:e9:8f: 70:0e:81:23:e1:ec:26:6a:94:91:e7:c0:27:6a:50: 8f:93:d6:50:7c:3d:df:90:13:9c:65:f9:b4:d8:3a: a8:4b:f1:f2:6d:f3:96:02:66:aa:52:1d:99:db:c8: b8:4c:41:84:ad:ed:9b:d1:e7:5f:09:65:20:45:11: 3d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:1D:4D:DF:24:5C:BE:68:9C:16:D4:6E:A0:7B:BE:A7:06:CE:DA:5C X509v3 Authority Key Identifier: keyid:52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/FAF4A0E0FB3211EB967B1759C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.138.0/23 IPv6: 2001:df7:4880::/48 Signature Algorithm: sha256WithRSAEncryption 5a:3d:94:55:f9:6b:96:5d:56:8d:fb:79:81:86:8e:69:19:d4: a3:d3:5e:4b:4b:f5:d6:93:33:99:8d:cb:59:5f:b0:37:43:2a: e6:99:a5:23:c7:7d:1e:af:37:64:6d:5c:01:27:94:c1:c4:7c: ab:0f:4b:ae:68:df:0d:b0:d3:e8:3e:c5:af:a9:53:93:2e:57: 17:4c:61:5d:c5:1f:e7:d3:3e:5b:3f:c7:39:ea:33:51:d1:a6: 29:91:5c:ae:e4:d4:98:c7:f9:ff:34:24:39:d5:8c:f5:bc:2f: 03:5a:89:db:54:ba:9d:c0:22:9a:1a:84:52:d3:dc:68:fb:c8: 09:66:dd:57:f2:66:3f:cb:cf:ea:3f:4b:62:b6:bc:70:67:b0: 0e:12:e3:d0:29:53:b7:f3:00:7c:68:c6:e2:bc:ee:1d:c5:ed: f5:02:55:df:02:d5:a9:4a:11:ac:fb:93:6d:6f:11:c9:dd:48: 0e:d0:96:b2:72:a3:bb:a9:d1:20:37:b8:dd:36:4b:b3:65:87: e0:3e:ff:d4:70:5c:2d:99:67:35:c7:a3:92:ac:8b:3a:c4:b0: 52:f1:bf:60:3f:de:c3:f5:1f:39:f9:e0:b9:3f:68:17:4f:94: 7b:35:ad:88:1d:b1:44:65:a8:18:ac:26:05:b2:61:bb:a0:87: 6d:c1:9b:c1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFOTQxMTAvBgNVBAUTKDUyMDFBODlEMzBDNDgyOTk0NTA0MThDOTU2Qjg3NzI0 OTcwNkU5NTcwHhcNMjMwODIzMDA0MjAxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU1NTVkOS05ZTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JB15Q8m8IH6q3P4XsB8G4EppI5d3dWbv56ODYhxoblIpOh7SOYCfqISbdTe MPHUY5DcPAjFhuH4/OzZ7p6Le08/exI7c3vuhiSuWCoMh7FLX5jpUFjtKNYWpaGU kCVgJrhqZRBnZ3agN8BTxeCC1Lii0MaRDcZsSMrBGZPIgav5ZN6cVZG7HysDBr3z 6GcyM1eU3JYTPoXTpLzzL2hxJG1usrkOXKt4pCd6vm1fMaereyDttU4s0Wqd79gy KcOt6Y9wDoEj4ewmapSR58AnalCPk9ZQfD3fkBOcZfm02DqoS/HybfOWAmaqUh2Z 28i4TEGEre2b0edfCWUgRRE9lQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJsdTd8k XL5onBbUbqB7vqcGztpcMB8GA1UdIwQYMBaAFFIBqJ0wxIKZRQQYyVa4dySXBulX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U5NC9BMkE3MEM1QUZC MkYxMUVCQTg0MDlFNTRDNEY5QUUwMi9VZ0dvblRERWdwbEZCQmpKVnJoM0pKY0c2 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VnR29uVERFZ3BsRkJCakpWcmgzSkpjRzZWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdFOTQvQTJBNzBDNUFGQjJGMTFFQkE4NDA5RTU0QzRGOUFFMDIvRkFGNEEwRTBG QjMyMTFFQjk2N0IxNzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnq4owDwQCAAIwCQMHACABDfdIgDANBgkqhkiG9w0BAQsF AAOCAQEAWj2UVflrll1Wjft5gYaOaRnUo9NeS0v11pMzmY3LWV+wN0Mq5pmlI8d9 Hq83ZG1cASeUwcR8qw9LrmjfDbDT6D7Fr6lTky5XF0xhXcUf59M+Wz/HOeozUdGm KZFcruTUmMf5/zQkOdWM9bwvA1qJ21S6ncAimhqEUtPcaPvICWbdV/JmP8vP6j9L Yra8cGewDhLj0ClTt/MAfGjG4rzuHcXt9QJV3wLVqUoRrPuTbW8Ryd1IDtCWsnKj u6nRIDe43TZLs2WH4D7/1HBcLZlnNcejkqyLOsSwUvG/YD/ew/UfOfnguT9oF0+U ezWtiB2xRGWoGKwmBbJhu6CHbcGbwQ== -----END CERTIFICATE-----Generated at Sun May 19 02:59:16 2024 by rpki-client on console-ams.rpki-client.org