$ rpki-client -vvf rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/CCF39F96D08911EE9B454035C4F9AE02.roa File: CCF39F96D08911EE9B454035C4F9AE02.roa (raw, json) Hash identifier: dntGLVXM/jK2MkqYbz5Ntvjz9ap9m9g4EIDC7MhP6Ac= Subject key identifier: 48:BE:E9:AB:25:D9:BA:7C:0E:BF:19:63:74:8F:E4:E2:2B:78:22:83 Certificate issuer: /CN=A91E923A/serialNumber=6638A604260FCCF2E9D8B20C1792ECA15DC76D5C Certificate serial: 50 Authority key identifier: 66:38:A6:04:26:0F:CC:F2:E9:D8:B2:0C:17:92:EC:A1:5D:C7:6D:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZjimBCYPzPLp2LIMF5LsoV3HbVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/CCF39F96D08911EE9B454035C4F9AE02.roa Signing time: Wed 21 Feb 2024 07:21:17 +0000 ROA not before: Wed 21 Feb 2024 07:21:17 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 64072 IP address blocks: 103.139.178.0/23 maxlen: 23 103.139.178.0/24 maxlen: 24 103.139.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/ZjimBCYPzPLp2LIMF5LsoV3HbVw.crl rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/ZjimBCYPzPLp2LIMF5LsoV3HbVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZjimBCYPzPLp2LIMF5LsoV3HbVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:03:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E923A/serialNumber=6638A604260FCCF2E9D8B20C1792ECA15DC76D5C Validity Not Before: Feb 21 07:21:17 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65d5a46c-48e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:da:a3:c3:21:8c:1b:52:28:07:e4:13:96:4d: ae:78:6c:4c:f2:6f:32:f1:b4:5e:17:ee:7d:b3:e9: 45:9e:29:a2:4e:5e:0b:a4:14:68:c5:83:a7:fa:3b: 9c:36:e2:ff:c2:5e:25:93:b7:f6:77:3b:e4:0b:98: 9c:38:3b:c8:94:ab:ba:e7:7a:7e:f6:cc:fc:dc:ea: 88:c4:2b:83:cb:59:e2:46:fb:08:55:b2:13:94:22: 8e:8f:61:4b:63:eb:a0:f3:82:c5:fb:f0:27:c9:3a: 6e:6d:25:26:41:91:b2:be:63:91:58:25:53:ac:0f: 21:4e:38:20:30:b5:3a:d0:7c:37:c6:60:8b:d6:3f: 19:22:ac:35:29:52:9e:01:7b:02:3d:9a:32:6a:36: 44:ff:05:7f:d7:42:0c:44:13:56:b4:e9:4c:96:41: 61:87:72:af:27:c1:3b:e8:64:e1:20:64:85:b9:c1: f5:f0:ac:06:2b:53:cd:fd:6c:a9:fc:94:48:fb:23: 70:60:1b:58:f6:03:b7:7c:2b:2f:9f:7b:af:1c:93: cf:dd:fc:19:d7:0f:65:3e:69:a5:81:6b:62:a5:1b: 79:1c:93:02:f6:29:dc:ad:44:c4:29:00:25:95:57: e9:f3:f6:14:23:f1:cb:0d:70:e1:d4:ed:12:41:d4: da:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:BE:E9:AB:25:D9:BA:7C:0E:BF:19:63:74:8F:E4:E2:2B:78:22:83 X509v3 Authority Key Identifier: keyid:66:38:A6:04:26:0F:CC:F2:E9:D8:B2:0C:17:92:EC:A1:5D:C7:6D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/ZjimBCYPzPLp2LIMF5LsoV3HbVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZjimBCYPzPLp2LIMF5LsoV3HbVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/CCF39F96D08911EE9B454035C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.178.0/23 Signature Algorithm: sha256WithRSAEncryption 94:b6:3d:51:fc:5c:84:49:19:15:e3:8a:1c:cc:e4:5d:14:57: e8:ab:de:b7:e5:27:3d:d1:e8:08:70:6f:2c:3f:62:e8:1d:5a: e9:1a:dc:93:d4:3a:c3:4b:c1:e6:c3:e3:2d:a5:95:27:18:57: fd:7f:1e:a7:b0:e4:78:76:bd:50:28:39:50:78:a4:64:e1:1b: 5e:87:94:94:13:85:89:e5:2e:07:51:3a:b5:4e:5a:f1:e8:36: ef:8b:eb:c4:f9:22:89:ba:c2:78:cc:88:76:b5:1e:3d:d7:06: b7:24:5d:17:ea:98:60:e8:e5:e3:b3:ce:1b:ed:05:86:a2:a1: e5:38:07:ae:17:21:14:c1:fb:7f:88:96:d2:e7:f0:04:fe:89: e6:23:da:5f:91:76:bd:86:e9:58:7f:9b:fd:d5:ea:d3:e2:15: 63:e2:03:62:a8:9b:05:09:b7:12:6c:37:dc:76:b8:da:2a:cf: f5:ea:8b:42:b2:76:16:1e:ab:ba:db:86:b7:34:f8:72:fb:ed: 15:7c:57:4b:a9:f3:cf:a9:2d:22:e4:d0:c0:02:d4:74:38:ce: d7:c2:ac:13:b1:b1:30:16:24:b2:00:87:34:e5:28:95:1e:bd: 3b:38:2a:f7:47:a8:2a:0c:70:7f:76:1a:2e:ca:78:e4:8a:8e: a1:84:69:b2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OTIzQTExMC8GA1UEBRMoNjYzOEE2MDQyNjBGQ0NGMkU5RDhCMjBDMTc5MkVDQTE1 REM3NkQ1QzAeFw0yNDAyMjEwNzIxMTdaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDVhNDZjLTQ4ZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL2qPDIYwbUigH5BOWTa54bEzybzLxtF4X7n2z6UWeKaJOXgukFGjFg6f6O5w2 4v/CXiWTt/Z3O+QLmJw4O8iUq7rnen72zPzc6ojEK4PLWeJG+whVshOUIo6PYUtj 66DzgsX78CfJOm5tJSZBkbK+Y5FYJVOsDyFOOCAwtTrQfDfGYIvWPxkirDUpUp4B ewI9mjJqNkT/BX/XQgxEE1a06UyWQWGHcq8nwTvoZOEgZIW5wfXwrAYrU839bKn8 lEj7I3BgG1j2A7d8Ky+fe68ck8/d/BnXD2U+aaWBa2KlG3kckwL2KdytRMQpACWV V+nz9hQj8csNcOHU7RJB1NrLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSL7pqyXZ unwOvxljdI/k4it4IoMwHwYDVR0jBBgwFoAUZjimBCYPzPLp2LIMF5LsoV3HbVww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5MjNBL0M5QjNDQzU0RUMx MTExRTk4RTBGODY0N0M0RjlBRTAyL1pqaW1CQ1lQelBMcDJMSU1GNUxzb1YzSGJW dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWmppbUJDWVB6UExwMkxJTUY1THNvVjNIYlZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTIzQS9DOUIzQ0M1NEVDMTExMUU5OEUwRjg2NDdDNEY5QUUwMi9DQ0YzOUY5NkQw ODkxMUVFOUI0NTQwMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeLsjANBgkqhkiG9w0BAQsFAAOCAQEAlLY9UfxchEkZFeOK HMzkXRRX6Kvet+UnPdHoCHBvLD9i6B1a6Rrck9Q6w0vB5sPjLaWVJxhX/X8ep7Dk eHa9UCg5UHikZOEbXoeUlBOFieUuB1E6tU5a8eg274vrxPkiibrCeMyIdrUePdcG tyRdF+qYYOjl47POG+0FhqKh5TgHrhchFMH7f4iW0ufwBP6J5iPaX5F2vYbpWH+b /dXq0+IVY+IDYqibBQm3Emw33Ha42irP9eqLQrJ2Fh6rutuGtzT4cvvtFXxXS6nz z6ktIuTQwALUdDjO18KsE7GxMBYksgCHNOUolR69Ozgq90eoKgxwf3YaLsp45IqO oYRpsg== -----END CERTIFICATE-----Generated at Sun May 26 23:05:45 2024 by rpki-client on console-ams.rpki-client.org