$ rpki-client -vvf rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa File: EE7FBFECF5DA11EAA1976953C4F9AE02.roa (raw, json) Hash identifier: nqylmKzOIz2T3CklXmofhcWPiUFjmJHvqAN11Rkt1+g= Subject key identifier: 05:1D:EF:99:66:65:3F:2B:D1:38:01:46:B2:2F:AB:1B:50:64:33:53 Certificate issuer: /CN=A91E82C4/serialNumber=4EABD6E05CA0E4A6A815F9B64694B3CF892AF8F4 Certificate serial: 071D Authority key identifier: 4E:AB:D6:E0:5C:A0:E4:A6:A8:15:F9:B6:46:94:B3:CF:89:2A:F8:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa Signing time: Thu 16 May 2024 23:01:59 +0000 ROA not before: Thu 16 May 2024 23:01:59 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136442 IP address blocks: 103.88.48.0/22 maxlen: 22 103.88.48.0/24 maxlen: 24 103.88.49.0/24 maxlen: 24 103.88.50.0/24 maxlen: 24 103.88.51.0/24 maxlen: 24 203.96.240.0/22 maxlen: 22 203.96.240.0/24 maxlen: 24 203.96.241.0/24 maxlen: 24 203.96.242.0/24 maxlen: 24 203.96.243.0/24 maxlen: 24 2400:de40::/32 maxlen: 32 2400:de40::/48 maxlen: 48 2400:de40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.crl rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1821 (0x71d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E82C4/serialNumber=4EABD6E05CA0E4A6A815F9B64694B3CF892AF8F4 Validity Not Before: May 16 23:01:59 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66469067-d24f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d2:56:1b:ee:7c:da:ac:66:35:7d:cc:9f:79: e3:b9:a8:21:7d:6e:23:e7:a4:19:5f:7c:9d:08:a1: 08:19:26:9b:ae:dc:5d:6b:0e:c5:47:e1:63:07:b3: 47:e8:79:20:57:a7:65:ba:eb:3e:be:c2:07:b4:fd: 2a:4c:43:bf:c1:1f:40:01:04:57:1c:56:51:ed:5a: a0:86:37:de:5d:b6:37:60:44:48:a1:55:c9:17:fe: e4:de:c4:cc:84:24:6d:64:5a:93:4d:fe:4d:d9:39: d5:00:fc:44:b2:a3:70:bb:b2:0b:ae:c1:f0:63:76: e5:88:9b:c0:de:46:28:4a:10:12:2f:ba:14:fd:4a: 14:4b:8a:c0:a5:74:5d:73:7c:22:4c:72:f2:38:cd: 6e:5b:00:c1:14:b2:67:51:41:0a:ef:91:19:22:10: 00:72:97:25:45:f4:bd:d7:e1:6d:16:03:f7:d3:e3: f1:6b:59:c5:52:09:dc:f6:00:18:06:4a:b1:4c:de: 60:4f:c6:8f:d9:54:2a:50:9b:8d:95:ce:79:39:60: 43:95:4a:59:20:cf:44:c5:06:00:87:87:12:dd:a7: 80:6c:7c:b1:ba:69:6c:eb:f3:bd:56:14:43:a6:79: 97:90:be:da:3e:0a:c1:88:e0:5c:67:ac:6a:0e:6b: 6d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:1D:EF:99:66:65:3F:2B:D1:38:01:46:B2:2F:AB:1B:50:64:33:53 X509v3 Authority Key Identifier: keyid:4E:AB:D6:E0:5C:A0:E4:A6:A8:15:F9:B6:46:94:B3:CF:89:2A:F8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.48.0/22 203.96.240.0/22 IPv6: 2400:de40::/32 Signature Algorithm: sha256WithRSAEncryption cc:8d:ef:ac:e1:e4:38:9a:f8:57:64:37:5f:89:73:54:cd:6c: 09:0b:b1:81:22:96:24:4a:5d:32:86:8c:e5:2f:45:c0:dd:de: f9:94:e1:b8:64:98:7e:9c:3e:94:bc:1d:c4:c9:49:a2:80:63: 78:bb:05:b9:d1:8d:0b:2e:b4:30:49:14:fa:e1:ac:04:bf:c2: 7a:58:06:6b:ee:c0:74:53:00:02:78:9f:6f:2f:b2:60:29:bf: 54:dc:21:ed:d6:04:92:39:de:95:89:9f:26:d4:32:88:f4:9f: 98:c5:a2:d2:7a:53:9c:04:6b:a4:24:fc:04:8a:c8:10:d3:c2: fc:3b:44:7a:cc:75:5e:3c:f3:de:3e:20:e2:5c:df:c9:5d:cf: 63:1f:61:b2:62:c2:d6:44:64:44:07:89:31:c0:25:1d:03:7f: 2c:b4:31:00:c3:a0:2b:06:fd:cf:d2:7c:16:1a:69:21:bc:cb: a9:4e:20:06:d7:e2:8f:28:d7:46:83:18:0f:cf:ee:6f:9c:14: f2:23:79:76:d7:e2:aa:14:02:35:bb:4b:2d:ad:26:ef:1a:a5: 26:c5:40:df:66:c3:e5:33:ea:25:48:36:67:78:22:6e:d9:27: 2e:09:ec:cf:82:48:01:88:d3:69:5f:2e:fe:d8:89:22:2a:62: ea:f1:13:17 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgyQzQxMTAvBgNVBAUTKDRFQUJENkUwNUNBMEU0QTZBODE1RjlCNjQ2OTRCM0NG ODkyQUY4RjQwHhcNMjQwNTE2MjMwMTU5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2OTA2Ny1kMjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNJWG+582qxmNX3Mn3njuaghfW4j56QZX3ydCKEIGSabrtxdaw7FR+FjB7NH 6HkgV6dluus+vsIHtP0qTEO/wR9AAQRXHFZR7VqghjfeXbY3YERIoVXJF/7k3sTM hCRtZFqTTf5N2TnVAPxEsqNwu7ILrsHwY3bliJvA3kYoShASL7oU/UoUS4rApXRd c3wiTHLyOM1uWwDBFLJnUUEK75EZIhAAcpclRfS91+FtFgP30+Pxa1nFUgnc9gAY BkqxTN5gT8aP2VQqUJuNlc55OWBDlUpZIM9ExQYAh4cS3aeAbHyxumls6/O9VhRD pnmXkL7aPgrBiOBcZ6xqDmttLQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAUd75lm ZT8r0TgBRrIvqxtQZDNTMB8GA1UdIwQYMBaAFE6r1uBcoOSmqBX5tkaUs8+JKvj0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODJDNC84MUYwRDU0Q0Y1 RDkxMUVBQUVGNjlENTFDNEY5QUUwMi9UcXZXNEZ5ZzVLYW9GZm0yUnBTeno0a3Et UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rxdlc0RnlnNUthb0ZmbTJScFN6ejRrcS1QUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTgyQzQvODFGMEQ1NENGNUQ5MTFFQUFFRjY5RDUxQzRGOUFFMDIvRUU3RkJGRUNG NURBMTFFQUExOTc2OTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnWDADBALLYPAwDQQCAAIwBwMFACQA3kAwDQYJKoZIhvcN AQELBQADggEBAMyN76zh5Dia+FdkN1+Jc1TNbAkLsYEiliRKXTKGjOUvRcDd3vmU 4bhkmH6cPpS8HcTJSaKAY3i7BbnRjQsutDBJFPrhrAS/wnpYBmvuwHRTAAJ4n28v smApv1TcIe3WBJI53pWJnybUMoj0n5jFotJ6U5wEa6Qk/ASKyBDTwvw7RHrMdV48 894+IOJc38ldz2MfYbJiwtZEZEQHiTHAJR0Dfyy0MQDDoCsG/c/SfBYaaSG8y6lO IAbX4o8o10aDGA/P7m+cFPIjeXbX4qoUAjW7Sy2tJu8apSbFQN9mw+Uz6iVINmd4 Im7ZJy4J7M+CSAGI02lfLv7YiSIqYurxExc= -----END CERTIFICATE-----Generated at Sun May 19 00:30:23 2024 by rpki-client on console-ams.rpki-client.org