$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa File: CE3C7EF66FEB11EB91967864C4F9AE02.roa (raw, json) Hash identifier: U6hs1tU689l640hvbs2q+mZqpHKSlM40KRn+IYFszCA= Subject key identifier: FE:8E:DD:6C:99:42:40:BB:69:22:37:86:0A:66:D4:FD:84:E7:0D:04 Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0B63 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa Signing time: Fri 12 Jan 2024 13:59:13 +0000 ROA not before: Fri 12 Jan 2024 13:59:13 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 18053 IP address blocks: 103.137.24.0/22 maxlen: 22 118.107.128.0/20 maxlen: 20 2404:8300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2915 (0xb63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Jan 12 13:59:13 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65a145b1-6de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:32:f8:e5:31:8d:83:c4:15:52:3a:6f:f5:de: bb:67:cc:6d:95:7c:8d:63:55:0b:d5:84:36:63:e8: 5b:c1:c1:54:28:54:83:09:4f:4a:33:31:91:5f:a3: 7d:42:28:bb:de:e3:5f:db:7f:ef:4f:c8:75:33:6a: 28:27:2c:b2:1e:f7:ce:c2:34:81:10:ca:e3:5c:db: 3d:95:5b:72:bc:f2:41:9b:44:99:2e:ad:b3:ee:15: 25:7e:8f:15:1b:f8:f0:7b:8d:32:72:3e:9d:6a:95: 71:00:73:78:70:7c:65:32:52:fc:f0:08:fa:42:bd: 23:f2:41:fe:ae:13:c1:ae:fc:6d:83:00:55:2a:56: f1:15:6f:53:ea:84:bc:9e:0e:ba:2f:c6:ef:0a:6c: fc:1b:b6:6e:17:17:36:7b:41:63:0f:7b:b2:db:34: bb:e3:cd:ab:5e:35:ad:b4:c2:7d:eb:78:d9:d2:50: 3e:6a:b1:56:ab:ec:16:e3:07:54:41:26:8c:d2:73: 9c:58:5a:94:15:41:58:67:c7:92:fd:20:40:f8:e1: c8:b7:63:db:70:bd:28:97:c2:8a:f2:52:6e:eb:68: 98:ac:81:bb:be:71:c2:9b:82:42:b1:80:bd:cf:8f: 2b:ee:8d:ec:3d:49:01:eb:b6:87:55:9b:93:29:da: cf:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:8E:DD:6C:99:42:40:BB:69:22:37:86:0A:66:D4:FD:84:E7:0D:04 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.24.0/22 118.107.128.0/20 IPv6: 2404:8300::/32 Signature Algorithm: sha256WithRSAEncryption 34:0a:51:69:42:75:0e:dd:5e:b8:01:5a:07:d6:da:8f:7d:87: 2f:18:cc:5d:ea:e4:d5:54:94:90:8a:17:55:13:24:74:91:bf: ec:4e:15:7c:e3:cd:98:77:13:70:ba:e3:e0:ed:7f:72:10:89: 13:69:f9:07:f0:61:79:f2:4b:c7:9c:68:e0:37:12:0e:0a:a1: df:3e:b6:e3:99:1b:ca:f5:d9:f8:d7:aa:a5:de:3a:85:11:32: e1:a4:ae:d9:b4:7e:68:09:44:7c:fd:fd:b0:be:8a:b9:d7:4a: 4d:d6:c5:20:0b:d5:c8:c8:7c:e8:ac:58:9c:b7:68:33:19:30: 49:ae:d8:f0:4d:72:7b:d5:e4:aa:db:b8:32:31:5e:b2:ee:7b: f1:5a:7d:ee:71:d3:38:4f:fc:cd:e3:a2:b2:82:41:36:71:e4: a7:95:9c:8b:ca:c2:8a:14:f4:02:e8:46:a4:01:02:f6:a8:3f: 22:fc:4a:15:be:12:8b:b8:d9:8e:3c:d2:19:bf:36:36:c3:07: 3e:e9:e9:d6:9a:4d:53:9b:b3:8d:d7:f1:a0:27:59:4e:c0:e7: 1f:a7:ae:50:ba:45:6e:81:0f:72:a3:c0:21:6b:4c:b6:47:13: dd:51:c3:85:e3:2d:2b:ca:b9:e7:17:88:5b:37:62:cd:1d:ae: d3:24:a0:59 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjQwMTEyMTM1OTEzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWExNDViMS02ZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zL45TGNg8QVUjpv9d67Z8xtlXyNY1UL1YQ2Y+hbwcFUKFSDCU9KMzGRX6N9 Qii73uNf23/vT8h1M2ooJyyyHvfOwjSBEMrjXNs9lVtyvPJBm0SZLq2z7hUlfo8V G/jwe40ycj6dapVxAHN4cHxlMlL88Aj6Qr0j8kH+rhPBrvxtgwBVKlbxFW9T6oS8 ng66L8bvCmz8G7ZuFxc2e0FjD3uy2zS7482rXjWttMJ963jZ0lA+arFWq+wW4wdU QSaM0nOcWFqUFUFYZ8eS/SBA+OHIt2PbcL0ol8KK8lJu62iYrIG7vnHCm4JCsYC9 z48r7o3sPUkB67aHVZuTKdrPiQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFP6O3WyZ QkC7aSI3hgpm1P2E5w0EMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBBRjAvRTM3NjI5NTAwRkZGMTFFOTg4MTVBRTIyQzRGOUFFMDIvQ0UzQzdFRjY2 RkVCMTFFQjkxOTY3ODY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJniRgDBAR2a4AwDQQCAAIwBwMFACQEgwAwDQYJKoZIhvcN AQELBQADggEBADQKUWlCdQ7dXrgBWgfW2o99hy8YzF3q5NVUlJCKF1UTJHSRv+xO FXzjzZh3E3C64+Dtf3IQiRNp+QfwYXnyS8ecaOA3Eg4Kod8+tuOZG8r12fjXqqXe OoURMuGkrtm0fmgJRHz9/bC+irnXSk3WxSAL1cjIfOisWJy3aDMZMEmu2PBNcnvV 5KrbuDIxXrLue/Fafe5x0zhP/M3jorKCQTZx5KeVnIvKwooU9ALoRqQBAvaoPyL8 ShW+Eou42Y480hm/NjbDBz7p6daaTVObs43X8aAnWU7A5x+nrlC6RW6BD3KjwCFr TLZHE91Rw4XjLSvKuecXiFs3Ys0drtMkoFk= -----END CERTIFICATE-----Generated at Sat May 18 19:15:26 2024 by rpki-client on console-ams.rpki-client.org