$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/F68AC4D84D9B11EC9CF19624C4F9AE02.roa File: F68AC4D84D9B11EC9CF19624C4F9AE02.roa (raw, json) Hash identifier: 4BKQwUZwoISpBtjzKxNw16RvTY5mCFbp5tlmcj9TrN4= Subject key identifier: B1:F0:B6:7D:82:87:84:BF:EA:F8:6B:B2:89:72:0A:21:ED:5B:B6:72 Certificate issuer: /CN=A91EFC72/serialNumber=B7A7A9FFBEC713F84E0B5180AF76DEB16E729229 Certificate serial: 041F Authority key identifier: B7:A7:A9:FF:BE:C7:13:F8:4E:0B:51:80:AF:76:DE:B1:6E:72:92:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6ep_77HE_hOC1GAr3besW5ykik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/F68AC4D84D9B11EC9CF19624C4F9AE02.roa Signing time: Sat 15 Jul 2023 00:21:18 +0000 ROA not before: Sat 15 Jul 2023 00:21:18 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 10098 IP address blocks: 103.55.200.0/22 maxlen: 22 103.55.200.0/23 maxlen: 23 103.55.200.0/24 maxlen: 24 103.55.201.0/24 maxlen: 24 103.55.202.0/23 maxlen: 23 103.55.202.0/24 maxlen: 24 103.55.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/t6ep_77HE_hOC1GAr3besW5ykik.crl rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/t6ep_77HE_hOC1GAr3besW5ykik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6ep_77HE_hOC1GAr3besW5ykik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 01:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1055 (0x41f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC72/serialNumber=B7A7A9FFBEC713F84E0B5180AF76DEB16E729229 Validity Not Before: Jul 15 00:21:18 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64b1e67e-d59f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3a:30:d3:bf:99:65:87:6d:8a:0d:a1:07:bd: 2a:80:9b:c8:bc:c4:5d:a3:49:62:91:60:51:cc:39: 67:d6:17:74:e1:b7:bd:72:43:d4:3b:da:73:81:38: 39:dc:2d:81:33:46:34:1f:23:9f:40:f9:90:1e:49: b2:79:83:f0:94:36:f8:ef:7e:86:80:ac:d0:8d:46: 4b:86:f6:d9:23:26:ca:8b:33:9c:5e:b8:ae:33:eb: f9:85:a7:5c:0f:d1:b4:19:29:76:0b:f3:e6:e9:bb: 2f:09:12:b6:8f:93:4b:de:8f:31:7c:9c:62:d2:ca: c0:e8:0a:e1:eb:05:af:65:7e:49:a1:fa:29:d8:bd: f9:d0:80:ac:b7:47:9e:47:c3:8b:e1:cd:0b:e3:ff: eb:80:9a:2a:3b:ba:b5:7e:8f:01:d3:83:6c:2f:65: 0e:ca:2c:58:2d:6f:24:d9:38:2c:30:97:c9:99:d5: 44:4a:56:7a:9e:b7:74:8a:17:ed:da:2e:59:ab:52: 62:38:f7:67:56:1c:15:0a:3e:f0:74:0c:c4:d5:0e: f3:49:e9:58:ed:eb:7f:37:1a:c2:2d:5d:87:9f:18: 01:61:8a:9e:0e:b0:85:f4:92:a7:8d:32:b2:30:7a: 77:c9:ba:24:96:f8:f7:0f:f9:a8:a4:d9:68:93:3b: c4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F0:B6:7D:82:87:84:BF:EA:F8:6B:B2:89:72:0A:21:ED:5B:B6:72 X509v3 Authority Key Identifier: keyid:B7:A7:A9:FF:BE:C7:13:F8:4E:0B:51:80:AF:76:DE:B1:6E:72:92:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/t6ep_77HE_hOC1GAr3besW5ykik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6ep_77HE_hOC1GAr3besW5ykik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/F68AC4D84D9B11EC9CF19624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.200.0/22 Signature Algorithm: sha256WithRSAEncryption 43:a2:37:ee:5a:0c:b9:84:c1:0c:ef:51:46:97:94:76:d5:18: c5:11:8c:70:a1:b2:6d:83:19:1f:c1:ba:5c:e4:e0:14:c1:e6: a7:e2:72:e4:4b:19:8e:4f:1a:1b:ac:b4:ad:82:30:89:b5:89: db:c8:3f:70:18:3f:38:68:52:d6:94:1b:ce:8e:eb:ad:bc:ec: d1:b0:68:8f:5e:8c:a6:51:19:81:d5:2b:a7:56:fe:f6:5b:95: 65:2b:64:64:ee:f1:93:92:a4:9b:3c:6b:3e:c9:6b:57:20:da: a6:82:28:ad:7d:f8:56:1c:77:da:ce:4f:82:63:87:03:c2:42: 82:4b:12:e6:03:18:a6:e0:93:16:ed:64:e5:22:ab:4a:74:aa: bf:77:89:b9:4a:64:35:98:2f:6e:84:64:63:6f:3c:82:98:bb: 14:5d:cb:6b:39:15:3c:57:a6:81:ec:1d:b3:d8:0f:ef:f4:e6: 14:76:35:a3:96:06:3e:f0:5b:d4:96:d8:c2:ca:6d:23:cb:06: 79:56:5f:fd:78:2f:ce:5e:2d:c1:64:59:25:fb:d5:ac:66:da: 1e:b2:dd:c9:75:1a:2b:6e:80:da:9d:05:b1:55:7f:e5:35:7f: 06:6a:91:05:1f:58:5f:0f:c9:95:5c:0e:f1:25:81:c4:84:71: c8:1e:db:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDNzIxMTAvBgNVBAUTKEI3QTdBOUZGQkVDNzEzRjg0RTBCNTE4MEFGNzZERUIx NkU3MjkyMjkwHhcNMjMwNzE1MDAyMTE4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxZTY3ZS1kNTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Tow07+ZZYdtig2hB70qgJvIvMRdo0likWBRzDln1hd04be9ckPUO9pzgTg5 3C2BM0Y0HyOfQPmQHkmyeYPwlDb4736GgKzQjUZLhvbZIybKizOcXriuM+v5hadc D9G0GSl2C/Pm6bsvCRK2j5NL3o8xfJxi0srA6Arh6wWvZX5Jofop2L350ICst0ee R8OL4c0L4//rgJoqO7q1fo8B04NsL2UOyixYLW8k2TgsMJfJmdVESlZ6nrd0ihft 2i5Zq1JiOPdnVhwVCj7wdAzE1Q7zSelY7et/NxrCLV2HnxgBYYqeDrCF9JKnjTKy MHp3yboklvj3D/mopNlokzvEKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLHwtn2C h4S/6vhrsolyCiHtW7ZyMB8GA1UdIwQYMBaAFLenqf++xxP4TgtRgK923rFucpIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkM3Mi8wNzVGNjk2OEU2 MEQxMUVCQjA5RjZBNjFDNEY5QUUwMi90NmVwXzc3SEVfaE9DMUdBcjNiZXNXNXlr aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q2ZXBfNzdIRV9oT0MxR0FyM2Jlc1c1eWtpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZDNzIvMDc1RjY5NjhFNjBEMTFFQkIwOUY2QTYxQzRGOUFFMDIvRjY4QUM0RDg0 RDlCMTFFQzlDRjE5NjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnN8gwDQYJKoZIhvcNAQELBQADggEBAEOiN+5aDLmEwQzv UUaXlHbVGMURjHChsm2DGR/Bulzk4BTB5qficuRLGY5PGhustK2CMIm1idvIP3AY PzhoUtaUG86O66287NGwaI9ejKZRGYHVK6dW/vZblWUrZGTu8ZOSpJs8az7Ja1cg 2qaCKK19+FYcd9rOT4JjhwPCQoJLEuYDGKbgkxbtZOUiq0p0qr93iblKZDWYL26E ZGNvPIKYuxRdy2s5FTxXpoHsHbPYD+/05hR2NaOWBj7wW9SW2MLKbSPLBnlWX/14 L85eLcFkWSX71axm2h6y3cl1GitugNqdBbFVf+U1fwZqkQUfWF8PyZVcDvElgcSE ccge26c= -----END CERTIFICATE-----Generated at Wed May 15 03:08:26 2024 by rpki-client on console-ams.rpki-client.org