$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/08ADD496B19E11EC86ADF246C4F9AE02.roa File: 08ADD496B19E11EC86ADF246C4F9AE02.roa (raw, json) Hash identifier: A98xQV0hpY7nffWC2yCxp0IJLB7RMbyr6IXQBDA8UO4= Subject key identifier: FA:87:70:A2:8C:2C:C4:F6:36:B1:F6:DE:82:37:CC:EE:AC:0B:14:E3 Certificate issuer: /CN=A91EEA4D/serialNumber=281E953DAE717280A16E4BC56E41352E84763CBC Certificate serial: 0751 Authority key identifier: 28:1E:95:3D:AE:71:72:80:A1:6E:4B:C5:6E:41:35:2E:84:76:3C:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB6VPa5xcoChbkvFbkE1LoR2PLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/08ADD496B19E11EC86ADF246C4F9AE02.roa Signing time: Tue 02 Apr 2024 20:59:38 +0000 ROA not before: Tue 02 Apr 2024 20:59:38 +0000 ROA not after: Thu 01 Aug 2024 00:00:00 +0000 asID: 138561 IP address blocks: 103.133.4.0/22 maxlen: 22 103.133.4.0/23 maxlen: 23 103.133.4.0/24 maxlen: 24 103.133.5.0/24 maxlen: 24 103.133.6.0/23 maxlen: 23 103.133.6.0/24 maxlen: 24 103.133.7.0/24 maxlen: 24 2404:44c0::/32 maxlen: 32 2404:44c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/KB6VPa5xcoChbkvFbkE1LoR2PLw.crl rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/KB6VPa5xcoChbkvFbkE1LoR2PLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB6VPa5xcoChbkvFbkE1LoR2PLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1873 (0x751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEA4D/serialNumber=281E953DAE717280A16E4BC56E41352E84763CBC Validity Not Before: Apr 2 20:59:38 2024 GMT Not After : Aug 1 00:00:00 2024 GMT Subject: CN=660c71b9-86e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ff:98:c7:c7:e1:98:0d:03:89:16:26:0f:e1: 9c:6b:eb:7b:d3:cd:a5:fe:8b:7d:31:54:15:4c:4a: 71:26:a0:f9:a3:38:b3:8f:f3:59:2a:1d:9c:b2:47: 3f:74:bf:75:f2:57:24:93:a9:b6:c9:1c:ea:4b:22: 35:9a:db:b7:e6:ac:3f:37:35:7d:49:ec:f0:23:d0: 02:55:03:1e:ca:d4:ac:5a:c5:f9:c6:f1:bc:db:74: c2:aa:4e:ca:7b:98:3f:60:58:68:6c:fd:52:72:4e: 9a:55:27:c4:ba:97:04:7c:48:5a:f4:e5:0e:a3:62: 4d:75:b4:08:52:5e:9d:4b:6f:42:ba:14:7b:19:54: a1:4e:61:f7:7f:27:d8:19:4f:19:92:37:f0:6e:47: c2:5f:f5:72:78:2c:b2:59:d1:03:31:a0:68:a8:23: 17:b8:fc:b3:52:3f:74:9d:6b:23:10:cd:70:5d:62: 7b:5b:fc:1b:52:50:92:db:a5:7b:34:08:d8:f5:31: fc:29:e7:fb:57:60:fe:f8:84:78:a7:08:5a:d8:f1: de:1d:3b:e9:6d:ca:a7:03:d0:91:80:b6:15:42:61: 20:f2:30:62:0f:20:ce:cb:11:01:d3:1c:8d:2b:d7: 1e:27:d3:85:93:3f:74:5c:f4:f8:b4:ef:e3:f5:13: cd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:87:70:A2:8C:2C:C4:F6:36:B1:F6:DE:82:37:CC:EE:AC:0B:14:E3 X509v3 Authority Key Identifier: keyid:28:1E:95:3D:AE:71:72:80:A1:6E:4B:C5:6E:41:35:2E:84:76:3C:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/KB6VPa5xcoChbkvFbkE1LoR2PLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB6VPa5xcoChbkvFbkE1LoR2PLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/08ADD496B19E11EC86ADF246C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.4.0/22 IPv6: 2404:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 17:31:8d:85:fd:a9:1f:98:cf:4b:ba:c4:54:fb:57:f9:60:eb: 20:2e:2c:2b:7b:5f:ee:92:30:03:03:98:8a:3b:f9:3b:4f:1e: c7:25:68:54:c1:b0:0c:90:fd:93:f5:b4:3f:d3:bf:d1:0d:38: 00:03:9b:27:0f:7d:21:24:5c:39:9a:b1:8b:19:3b:5c:2c:f6: e6:c7:46:22:2d:a7:39:8a:ec:74:c2:69:d2:0f:89:48:f2:56: 7c:6b:f9:d5:bd:e3:65:eb:4a:33:2e:e9:df:d0:38:95:c9:a6: 66:52:57:4d:93:de:69:57:dc:39:c3:cc:e5:50:ab:96:99:b9: e1:be:40:db:b1:08:f8:36:b2:12:7d:9c:92:b1:87:2a:11:47: 90:ce:93:a0:d6:56:37:63:2b:5b:bd:22:49:b6:29:8b:36:65: 19:a7:c2:7c:1d:21:ef:19:68:a3:99:4f:11:93:a6:f3:65:32: 4e:d2:33:34:af:e9:66:80:7c:02:32:e5:70:82:d4:9e:d8:dc: 7e:8e:4a:9b:f0:66:02:f5:53:d7:31:a5:d0:b8:63:cf:de:e0: a7:a6:06:6b:5f:e6:b1:b1:38:21:1e:cc:02:ab:88:6d:05:fd: 32:fe:2f:e7:f1:90:db:35:95:d7:e8:65:63:b7:d8:ab:af:40: a2:3c:aa:61 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVBNEQxMTAvBgNVBAUTKDI4MUU5NTNEQUU3MTcyODBBMTZFNEJDNTZFNDEzNTJF ODQ3NjNDQkMwHhcNMjQwNDAyMjA1OTM4WhcNMjQwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjNzFiOS04NmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4v+Yx8fhmA0DiRYmD+Gca+t7082l/ot9MVQVTEpxJqD5ozizj/NZKh2cskc/ dL918lckk6m2yRzqSyI1mtu35qw/NzV9SezwI9ACVQMeytSsWsX5xvG823TCqk7K e5g/YFhobP1Sck6aVSfEupcEfEha9OUOo2JNdbQIUl6dS29CuhR7GVShTmH3fyfY GU8ZkjfwbkfCX/VyeCyyWdEDMaBoqCMXuPyzUj90nWsjEM1wXWJ7W/wbUlCS26V7 NAjY9TH8Kef7V2D++IR4pwha2PHeHTvpbcqnA9CRgLYVQmEg8jBiDyDOyxEB0xyN K9ceJ9OFkz90XPT4tO/j9RPNBQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPqHcKKM LMT2NrH23oI3zO6sCxTjMB8GA1UdIwQYMBaAFCgelT2ucXKAoW5LxW5BNS6Edjy8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUE0RC82NjFGNzNFQzQ3 MzcxMUVBQUIxNkJCNTBDNEY5QUUwMi9LQjZWUGE1eGNvQ2hia3ZGYmtFMUxvUjJQ THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCNlZQYTV4Y29DaGJrdkZia0UxTG9SMlBMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVBNEQvNjYxRjczRUM0NzM3MTFFQUFCMTZCQjUwQzRGOUFFMDIvMDhBREQ0OTZC MTlFMTFFQzg2QURGMjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhQQwDQQCAAIwBwMFACQERMAwDQYJKoZIhvcNAQELBQAD ggEBABcxjYX9qR+Yz0u6xFT7V/lg6yAuLCt7X+6SMAMDmIo7+TtPHsclaFTBsAyQ /ZP1tD/Tv9ENOAADmycPfSEkXDmasYsZO1ws9ubHRiItpzmK7HTCadIPiUjyVnxr +dW942XrSjMu6d/QOJXJpmZSV02T3mlX3DnDzOVQq5aZueG+QNuxCPg2shJ9nJKx hyoRR5DOk6DWVjdjK1u9Ikm2KYs2ZRmnwnwdIe8ZaKOZTxGTpvNlMk7SMzSv6WaA fAIy5XCC1J7Y3H6OSpvwZgL1U9cxpdC4Y8/e4KemBmtf5rGxOCEezAKriG0F/TL+ L+fxkNs1ldfoZWO32KuvQKI8qmE= -----END CERTIFICATE-----Generated at Thu May 16 22:34:55 2024 by rpki-client on console-ams.rpki-client.org