$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/38AA54903B1311ED8383933FC4F9AE02.roa File: 38AA54903B1311ED8383933FC4F9AE02.roa (raw, json) Hash identifier: 4O1C9pNEJNniPeZ+H7XJNe0P8LxiTCMr9Khl4XthK/w= Subject key identifier: C1:31:97:B1:8D:DB:16:52:F4:B7:FE:AB:43:D2:CC:BF:A0:70:D3:7A Certificate issuer: /CN=A91EEE1B/serialNumber=85902908828B0331E948D46EDB3825FF603DB986 Certificate serial: 05CF Authority key identifier: 85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/38AA54903B1311ED8383933FC4F9AE02.roa Signing time: Wed 10 Jan 2024 23:42:05 +0000 ROA not before: Wed 10 Jan 2024 23:42:05 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 212879 IP address blocks: 45.249.45.0/24 maxlen: 24 103.208.252.0/24 maxlen: 24 103.208.253.0/24 maxlen: 24 103.208.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.crl rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1487 (0x5cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE1B/serialNumber=85902908828B0331E948D46EDB3825FF603DB986 Validity Not Before: Jan 10 23:42:05 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=659f2b4d-ed9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a8:61:a5:91:74:ec:c5:05:e1:41:f7:e9:a4: 56:53:4e:c8:c5:d8:90:52:a8:05:00:a9:a8:b5:64: 7c:7a:a1:56:b8:aa:a7:9f:12:8b:b4:68:99:b9:97: 63:14:20:eb:95:81:f5:80:cb:fe:54:08:f5:c7:24: 7c:9e:1a:dd:80:0b:07:da:fc:9a:f5:6c:54:35:a9: 07:b5:ea:4d:05:d2:cf:7f:66:de:73:5d:e4:ed:71: e9:ea:8d:66:d4:fa:2f:c0:56:57:47:4c:49:b9:69: a9:8e:a5:61:46:a8:24:d9:8a:f2:83:99:b4:2a:a4: 9f:83:7d:cb:4a:52:b6:99:81:f4:aa:36:42:02:96: ad:ba:32:da:c2:dc:ce:62:f6:7f:58:61:ca:eb:f8: a7:27:f6:40:17:8b:ed:e1:98:5a:1e:52:13:95:05: a3:32:28:26:75:77:ad:d3:de:d4:94:58:60:cc:fe: a9:45:78:07:5e:6a:2a:b1:6e:44:b9:14:a8:f2:b4: 2b:4c:79:78:a8:0d:6b:17:33:4c:0d:83:eb:c8:cc: ab:8d:25:3a:ce:4b:7a:c8:dd:ba:fa:7d:15:5b:14: ad:26:1f:1c:ab:0d:6e:66:dd:23:a9:d4:23:d7:d7: a6:a7:73:08:9c:cd:50:f8:af:e3:78:28:59:49:96: 8a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:31:97:B1:8D:DB:16:52:F4:B7:FE:AB:43:D2:CC:BF:A0:70:D3:7A X509v3 Authority Key Identifier: keyid:85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/38AA54903B1311ED8383933FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.45.0/24 103.208.252.0-103.208.254.255 Signature Algorithm: sha256WithRSAEncryption 99:47:ed:1c:fe:9e:dc:25:cb:4a:a6:97:ac:7a:66:8e:c1:0f: c8:14:ec:39:1f:b3:36:f3:b1:69:bd:23:de:62:0c:e1:40:64: ee:5b:4d:5d:d8:ea:92:f4:04:eb:5a:23:68:05:02:cb:11:f9: de:e5:cf:7e:0f:ae:07:f1:06:58:05:37:5d:27:02:40:06:99: 8e:8a:06:c7:78:d5:41:5b:1c:83:f4:72:e3:c4:2f:0b:8b:b1: e1:80:9f:4b:02:d0:f4:d9:2f:10:45:ce:d1:3e:0c:63:44:fc: d3:a5:12:ba:a5:e2:2c:fd:32:82:47:85:11:46:9b:6b:80:39: 94:8e:98:b0:71:40:39:74:2a:52:c5:27:99:43:da:ce:6e:b7: ef:bf:85:24:24:e8:c1:70:78:20:3e:59:c8:3d:0e:bb:11:90: 80:97:40:69:b7:3d:37:1f:e1:ac:9c:68:d1:b7:7f:30:7b:0e: 41:e6:0b:d1:e0:3f:8d:64:b8:2e:c1:15:d4:a2:10:eb:a4:01: d6:5b:b2:ff:88:64:ff:bd:2e:51:61:28:80:d0:46:99:c6:c8: a4:f1:87:31:27:69:ce:cf:f8:34:88:1d:0e:fe:5a:26:b6:ed: 13:ae:6c:2e:67:74:79:2f:a8:72:a8:94:7d:9e:66:1f:ca:06: ae:fe:46:ba -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFMUIxMTAvBgNVBAUTKDg1OTAyOTA4ODI4QjAzMzFFOTQ4RDQ2RURCMzgyNUZG NjAzREI5ODYwHhcNMjQwMTEwMjM0MjA1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmMmI0ZC1lZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKhhpZF07MUF4UH36aRWU07IxdiQUqgFAKmotWR8eqFWuKqnnxKLtGiZuZdj FCDrlYH1gMv+VAj1xyR8nhrdgAsH2vya9WxUNakHtepNBdLPf2bec13k7XHp6o1m 1PovwFZXR0xJuWmpjqVhRqgk2Yryg5m0KqSfg33LSlK2mYH0qjZCApatujLawtzO YvZ/WGHK6/inJ/ZAF4vt4ZhaHlITlQWjMigmdXet097UlFhgzP6pRXgHXmoqsW5E uRSo8rQrTHl4qA1rFzNMDYPryMyrjSU6zkt6yN26+n0VWxStJh8cqw1uZt0jqdQj 19emp3MInM1Q+K/jeChZSZaKNwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFMExl7GN 2xZS9Lf+q0PSzL+gcNN6MB8GA1UdIwQYMBaAFIWQKQiCiwMx6UjUbts4Jf9gPbmG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUUxQi8yMDZERkMyODY0 MzgxMUVCOTQ2ODNCNEVDNEY5QUUwMi9oWkFwQ0lLTEF6SHBTTlJ1MnpnbF8yQTl1 WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haQXBDSUtMQXpIcFNOUnUyemdsXzJBOXVZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVFMUIvMjA2REZDMjg2NDM4MTFFQjk0NjgzQjRFQzRGOUFFMDIvMzhBQTU0OTAz QjEzMTFFRDgzODM5MzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAAt+S0wDAMEAmfQ/AMEAGfQ/jANBgkqhkiG9w0BAQsFAAOC AQEAmUftHP6e3CXLSqaXrHpmjsEPyBTsOR+zNvOxab0j3mIM4UBk7ltNXdjqkvQE 61ojaAUCyxH53uXPfg+uB/EGWAU3XScCQAaZjooGx3jVQVscg/Ry48QvC4ux4YCf SwLQ9NkvEEXO0T4MY0T806USuqXiLP0ygkeFEUaba4A5lI6YsHFAOXQqUsUnmUPa zm6377+FJCTowXB4ID5ZyD0OuxGQgJdAabc9Nx/hrJxo0bd/MHsOQeYL0eA/jWS4 LsEV1KIQ66QB1luy/4hk/70uUWEogNBGmcbIpPGHMSdpzs/4NIgdDv5aJrbtE65s Lmd0eS+ocqiUfZ5mH8oGrv5Gug== -----END CERTIFICATE-----Generated at Sun May 19 00:30:23 2024 by rpki-client on console-ams.rpki-client.org