$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa File: E352E0A2896F11E7BBF2923CC4F9AE02.roa (raw, json) Hash identifier: yxUON/PNfYDClPxawdylAN7htBrSqPl3AH4sRpx8OwI= Subject key identifier: 11:C6:DA:B2:DB:F1:E4:6A:12:D4:F5:F2:EA:53:4E:1B:7F:92:74:2E Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1E2D Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa Signing time: Tue 22 Aug 2023 16:33:04 +0000 ROA not before: Tue 22 Aug 2023 16:33:04 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38719 IP address blocks: 103.68.164.0/22 maxlen: 22 103.68.164.0/24 maxlen: 24 103.68.165.0/24 maxlen: 24 103.68.166.0/24 maxlen: 24 103.68.167.0/24 maxlen: 24 2400:8240::/32 maxlen: 32 2400:8240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7725 (0x1e2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Aug 22 16:33:04 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64e4e340-bc7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fb:28:4f:18:ce:94:9f:59:bf:f1:2a:5a:ff: d7:72:d0:5c:76:e7:7c:e6:b5:57:7a:0b:a1:55:c3: f3:17:6f:6e:c8:cb:94:57:c8:f3:a1:1b:8f:23:f3: 48:7d:ce:6f:49:de:3a:de:18:54:d8:4f:e2:1f:2e: 4c:97:56:a1:3e:d7:11:4a:d3:70:6b:ae:87:74:14: 6a:ba:e1:69:02:e5:53:4b:a8:23:aa:cb:d9:70:e8: ba:1b:9b:d8:b7:6a:48:5c:15:a2:26:a0:d2:fa:57: c2:e5:23:fd:2d:5d:62:cc:38:fc:ff:0b:d9:91:a2: 72:8d:ad:76:b4:97:a0:e0:98:d7:5e:4d:a0:ce:66: 36:1f:b0:6a:04:a4:7f:95:eb:45:e6:e2:f0:73:c3: 05:33:b5:04:ef:18:de:69:12:29:37:25:a0:e2:8a: 96:9a:15:ba:14:a1:5e:43:99:c2:b6:50:b6:08:97: b5:2b:3b:c4:b2:31:ab:e5:da:f6:af:22:d9:18:c5: 57:e7:f9:81:b1:e5:9b:29:b4:93:71:28:9b:cd:7d: aa:09:e9:ed:a6:1c:33:dd:d0:46:7e:a4:9c:ff:54: a1:cf:a6:88:a3:12:4e:02:5e:f5:80:96:b0:cf:1c: 0c:bd:b4:bc:55:cf:e6:b5:63:5d:89:bf:df:83:80: a3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C6:DA:B2:DB:F1:E4:6A:12:D4:F5:F2:EA:53:4E:1B:7F:92:74:2E X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.164.0/22 IPv6: 2400:8240::/32 Signature Algorithm: sha256WithRSAEncryption af:75:1a:f0:30:a4:55:ea:f4:51:49:8c:6b:99:19:b5:45:b5: ae:c0:bc:17:d8:16:3c:ea:ec:5e:38:14:a8:48:7c:a2:ac:31: 19:0a:9a:31:39:d0:b8:02:39:27:36:b2:4b:fb:b7:e4:bc:5d: 5b:75:ff:ec:1a:ad:4f:58:f7:27:67:ae:e9:c4:11:ed:60:23: 76:71:50:56:b3:23:40:c3:57:4f:b5:3a:9b:ef:f6:82:a1:ed: 12:ab:be:92:d7:fd:1a:54:e8:82:33:29:65:67:8a:84:76:20: 9b:00:23:c7:95:bb:6f:05:57:01:7d:71:3f:d9:55:a8:b1:80: fe:38:c0:39:5f:b4:0b:e2:44:2f:5f:c7:19:c8:2f:42:b3:81: 54:07:93:f5:d2:a8:89:41:07:fb:91:98:5f:c0:e7:24:40:da: c9:50:75:43:13:49:84:71:f1:70:21:1f:84:1e:d8:86:94:17: 07:c0:4c:fd:a0:18:b8:3c:07:28:76:1b:f3:06:32:98:a4:85: 63:5a:bd:89:e1:47:28:40:eb:68:ea:46:f7:e2:97:1c:d8:e3: 27:94:c5:00:62:af:0a:f5:98:37:77:55:0e:bb:c6:7f:b3:15: a3:67:12:a5:28:9f:d2:5e:c4:95:7f:b2:8e:fe:cb:31:42:a7: f6:8b:32:0a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICHi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjMwODIyMTYzMzA0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU0ZTM0MC1iYzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfsoTxjOlJ9Zv/EqWv/XctBcdud85rVXeguhVcPzF29uyMuUV8jzoRuPI/NI fc5vSd463hhU2E/iHy5Ml1ahPtcRStNwa66HdBRquuFpAuVTS6gjqsvZcOi6G5vY t2pIXBWiJqDS+lfC5SP9LV1izDj8/wvZkaJyja12tJeg4JjXXk2gzmY2H7BqBKR/ letF5uLwc8MFM7UE7xjeaRIpNyWg4oqWmhW6FKFeQ5nCtlC2CJe1KzvEsjGr5dr2 ryLZGMVX5/mBseWbKbSTcSibzX2qCentphwz3dBGfqSc/1Shz6aIoxJOAl71gJaw zxwMvbS8Vc/mtWNdib/fg4CjZwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBHG2rLb 8eRqEtT18upTTht/knQuMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI0MEIvNUI3MzZEOTI0MzMzMTFFNjk1OUE3ODE1QzRGOUFFMDIvRTM1MkUwQTI4 OTZGMTFFN0JCRjI5MjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnRKQwDQQCAAIwBwMFACQAgkAwDQYJKoZIhvcNAQELBQAD ggEBAK91GvAwpFXq9FFJjGuZGbVFta7AvBfYFjzq7F44FKhIfKKsMRkKmjE50LgC OSc2skv7t+S8XVt1/+warU9Y9ydnrunEEe1gI3ZxUFazI0DDV0+1Opvv9oKh7RKr vpLX/RpU6IIzKWVnioR2IJsAI8eVu28FVwF9cT/ZVaixgP44wDlftAviRC9fxxnI L0KzgVQHk/XSqIlBB/uRmF/A5yRA2slQdUMTSYRx8XAhH4Qe2IaUFwfATP2gGLg8 Byh2G/MGMpikhWNavYnhRyhA62jqRvfilxzY4yeUxQBirwr1mDd3VQ67xn+zFaNn EqUon9JexJV/so7+yzFCp/aLMgo= -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org