$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B490CD0621C911EB991D562EC4F9AE02.roa File: B490CD0621C911EB991D562EC4F9AE02.roa (raw, json) Hash identifier: 7KMheVLAT8YCXJLXPEky62Zj4bucGUVaCMyCFR9w3eU= Subject key identifier: A4:2F:5D:77:ED:CD:72:D4:53:FE:05:A5:2B:AC:94:D5:09:60:5D:1C Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0E23 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B490CD0621C911EB991D562EC4F9AE02.roa Signing time: Wed 10 May 2023 19:28:50 +0000 ROA not before: Wed 10 May 2023 19:28:50 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 138538 IP address blocks: 103.113.92.0/22 maxlen: 24 2402:b940::/40 maxlen: 40 2402:b940:200::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3619 (0xe23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: May 10 19:28:50 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=645bf072-5540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0d:11:55:40:62:e8:7e:7c:0a:d7:ff:46:8b: a1:31:2f:1c:56:dc:8c:a8:d2:05:e6:ec:e8:c5:ab: 5b:2c:47:7e:b5:9b:b8:20:c4:9f:7a:9e:5d:d4:2e: 5b:4c:06:19:78:28:9e:3f:e8:55:e1:ac:6b:75:6c: 32:80:77:aa:48:af:33:f9:2c:e5:9f:6e:af:dd:d7: c4:b0:74:99:1b:a0:a2:9d:ef:62:e4:37:03:ae:a5: cb:6a:76:5c:92:2f:fc:bc:16:d1:c2:db:48:46:d3: 18:df:71:25:bc:b1:5d:f7:6d:5c:47:e5:65:db:01: 90:f1:de:32:2e:9e:9c:36:9a:47:5d:0d:90:10:e1: 4c:19:00:94:9e:dd:5f:b5:33:b8:f9:62:81:fd:17: 32:9f:c4:f8:71:81:09:d8:91:19:83:8e:03:9e:83: 69:c0:34:39:10:4b:8c:57:1b:9b:01:d1:6e:f4:da: 0e:9f:69:59:1e:62:96:69:12:e2:ef:bc:1a:65:b2: ad:f2:4a:4f:52:34:31:7d:17:37:85:b0:30:73:50: c8:67:84:55:1c:4f:d9:61:43:95:30:49:53:84:9b: c5:38:aa:1a:5b:e7:a4:cf:b2:f6:bf:6f:5c:33:9b: 8d:11:59:d6:0c:88:ae:cd:cd:aa:15:c8:6b:24:22: ab:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:2F:5D:77:ED:CD:72:D4:53:FE:05:A5:2B:AC:94:D5:09:60:5D:1C X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/B490CD0621C911EB991D562EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.92.0/22 IPv6: 2402:b940::/40 2402:b940:200::/39 Signature Algorithm: sha256WithRSAEncryption 3b:e0:30:70:fe:e4:2e:4f:e4:1f:db:1d:cb:30:78:ae:bc:83: 0c:ec:fb:cb:45:a9:8f:7e:52:2c:1b:f7:94:01:44:33:61:a5: 64:f2:b4:bf:65:c3:8a:54:89:ac:7e:62:35:80:77:8c:4a:01: 78:83:a5:4c:e1:6e:d0:5e:07:cc:e2:3d:e2:a3:f3:9c:96:07: eb:60:86:17:21:3d:e9:9a:14:61:8b:bf:61:de:fc:b4:63:67: c4:7f:f9:41:b6:bc:9b:d1:e0:d2:01:83:56:8e:23:aa:28:4a: ae:b6:d5:aa:08:bc:75:90:8c:9b:93:b7:e4:f1:11:d2:78:b0: 15:78:bb:9f:dc:88:6b:37:8c:09:c5:88:48:b2:9b:5c:81:29: d4:42:2e:32:ec:b7:96:2f:50:67:66:aa:7b:2a:9d:de:09:a3: 4e:62:1b:d8:b4:1c:97:88:dd:be:3f:50:6e:a0:52:65:89:7a: d5:ad:0c:4a:8b:1e:3d:20:5c:69:85:99:fd:d7:66:1a:4f:41: 8c:b0:54:52:f5:c4:e6:52:07:ea:86:6f:de:59:d5:ff:07:26: 78:9a:84:d0:4d:f5:74:da:44:2f:82:2e:f5:1d:bf:fe:26:89: 6f:a7:d6:3c:a6:a4:1d:37:5f:c9:09:1f:a9:53:fe:f5:b0:5f: dc:4c:4d:a1 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICDiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjMwNTEwMTkyODUwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViZjA3Mi01NTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQ0RVUBi6H58Ctf/RouhMS8cVtyMqNIF5uzoxatbLEd+tZu4IMSfep5d1C5b TAYZeCieP+hV4axrdWwygHeqSK8z+Szln26v3dfEsHSZG6Cine9i5DcDrqXLanZc ki/8vBbRwttIRtMY33ElvLFd921cR+Vl2wGQ8d4yLp6cNppHXQ2QEOFMGQCUnt1f tTO4+WKB/Rcyn8T4cYEJ2JEZg44DnoNpwDQ5EEuMVxubAdFu9NoOn2lZHmKWaRLi 77waZbKt8kpPUjQxfRc3hbAwc1DIZ4RVHE/ZYUOVMElThJvFOKoaW+ekz7L2v29c M5uNEVnWDIiuzc2qFchrJCKrQwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFKQvXXft zXLUU/4FpSuslNUJYF0cMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNGMDIvQ0NBQjU3NTA2M0YwMTFFOUE5QkNBMTQxQzRGOUFFMDIvQjQ5MENEMDYy MUM5MTFFQjk5MUQ1NjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAJncVwwFgQCAAIwEAMGACQCuUAAAwYBJAK5QAIwDQYJKoZI hvcNAQELBQADggEBADvgMHD+5C5P5B/bHcsweK68gwzs+8tFqY9+Uiwb95QBRDNh pWTytL9lw4pUiax+YjWAd4xKAXiDpUzhbtBeB8ziPeKj85yWB+tghhchPemaFGGL v2He/LRjZ8R/+UG2vJvR4NIBg1aOI6ooSq621aoIvHWQjJuTt+TxEdJ4sBV4u5/c iGs3jAnFiEiym1yBKdRCLjLst5YvUGdmqnsqnd4Jo05iG9i0HJeI3b4/UG6gUmWJ etWtDEqLHj0gXGmFmf3XZhpPQYywVFL1xOZSB+qGb95Z1f8HJniahNBN9XTaRC+C LvUdv/4miW+n1jympB03X8kJH6lT/vWwX9xMTaE= -----END CERTIFICATE-----Generated at Thu May 16 20:25:57 2024 by rpki-client on console-ams.rpki-client.org