$ rpki-client -vvf rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/0366729A251511EEACA5881FC4F9AE02.roa File: 0366729A251511EEACA5881FC4F9AE02.roa (raw, json) Hash identifier: 42NnMWm7siDIRS+mqgDb9RRYm3WoKva1ydScizcV8Us= Subject key identifier: B0:05:FE:A2:09:3E:5B:F4:28:72:9F:38:96:08:35:FD:0E:A8:CE:76 Certificate issuer: /CN=A91F48F3/serialNumber=F0C3AAE917E88E68141A96B226E046009A819483 Certificate serial: 02 Authority key identifier: F0:C3:AA:E9:17:E8:8E:68:14:1A:96:B2:26:E0:46:00:9A:81:94:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8MOq6RfojmgUGpayJuBGAJqBlIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/0366729A251511EEACA5881FC4F9AE02.roa Signing time: Tue 18 Jul 2023 02:44:28 +0000 ROA not before: Tue 18 Jul 2023 02:44:28 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 138190 IP address blocks: 103.225.254.0/24 maxlen: 24 103.225.255.0/24 maxlen: 24 2401:c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/8MOq6RfojmgUGpayJuBGAJqBlIM.crl rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/8MOq6RfojmgUGpayJuBGAJqBlIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8MOq6RfojmgUGpayJuBGAJqBlIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F48F3/serialNumber=F0C3AAE917E88E68141A96B226E046009A819483 Validity Not Before: Jul 18 02:44:28 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b5fc8b-04e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6f:11:cf:14:ad:f3:dd:7d:a8:42:52:fe:2a: a6:57:2a:40:d0:ea:0b:50:67:b3:e1:a1:65:13:b9: 73:c0:03:d6:91:88:b3:17:2d:73:5f:9f:15:72:97: db:a3:fa:4c:4f:7b:8d:da:a1:12:ef:76:85:d9:8b: be:31:05:a7:16:85:d9:82:13:f6:79:e5:ae:04:0c: 24:7c:e1:d1:83:3b:52:2a:0f:2b:dd:2b:a8:d1:7f: dc:4c:1c:ea:08:a6:04:6b:09:9a:0a:00:fe:31:b6: 35:c2:37:f5:b2:69:9d:d2:af:f3:0f:1d:54:f1:34: c3:cb:95:1e:21:80:1d:8d:cb:96:ca:62:f4:49:c7: 99:cf:75:5e:67:07:e5:18:60:00:4a:d9:7a:df:2d: 2b:5a:f9:bb:45:ca:82:2e:38:2a:3f:42:5d:56:a5: 93:ea:03:f3:53:34:24:24:bc:f2:3f:64:9d:a2:8b: f0:a2:64:74:07:ca:b6:b9:47:3c:07:17:3a:d4:d8: 0c:46:14:01:54:24:ba:38:72:4f:56:65:b0:41:68: c2:29:2b:7e:cd:68:0c:e8:ce:b4:06:cb:b1:74:df: cb:50:40:9b:d1:e0:51:4c:77:6b:e4:c2:3f:f6:aa: 9a:7a:18:77:e7:c0:cb:f7:27:c2:c0:8e:ae:7b:75: 45:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:05:FE:A2:09:3E:5B:F4:28:72:9F:38:96:08:35:FD:0E:A8:CE:76 X509v3 Authority Key Identifier: keyid:F0:C3:AA:E9:17:E8:8E:68:14:1A:96:B2:26:E0:46:00:9A:81:94:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/8MOq6RfojmgUGpayJuBGAJqBlIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8MOq6RfojmgUGpayJuBGAJqBlIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/0366729A251511EEACA5881FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.254.0/23 IPv6: 2401:c60::/32 Signature Algorithm: sha256WithRSAEncryption 85:7a:0d:67:7c:6f:59:64:07:38:f3:fa:ea:9a:03:d5:a2:7b: eb:e5:4c:a2:de:c7:f9:fd:05:45:e7:c3:76:4e:c8:45:2b:84: 0b:ab:13:7f:3b:3f:fd:3b:98:8e:25:ce:07:19:5c:a1:e1:a3: 91:4f:a8:03:ae:48:4d:a1:30:d1:cc:0f:e7:f1:24:86:5d:b3: 97:ea:28:be:bc:55:81:7f:a2:f8:bc:4c:6c:f4:f2:fa:0f:4e: 4d:c8:c1:c4:b8:d2:cf:eb:97:b8:5a:1e:72:f2:ef:6c:d1:37: d3:c8:b2:da:43:df:4e:dd:6c:fc:0f:4e:18:56:df:20:16:e0: 79:4c:d5:a3:f4:76:de:4b:b2:d6:48:a0:dc:64:0c:de:4b:eb: ec:cd:8e:39:58:e0:cf:3b:ba:f1:5d:9c:2e:45:c9:f1:d5:7b: 49:7d:16:be:48:54:af:ce:89:40:73:31:45:e7:bf:1d:0e:2e: c5:a0:b5:70:50:66:ef:52:91:9b:ee:93:6b:4a:24:12:da:57: 8b:34:b7:cd:bc:a5:a5:85:f3:d4:10:c2:0b:9d:88:9a:51:e1: cf:94:40:d8:7e:89:b2:a8:15:9a:94:46:2a:ab:2e:ec:f0:9d: 07:b2:bc:f2:81:35:65:81:96:c4:0d:a2:3f:8e:1f:b1:51:a9: a0:5d:ad:26 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDhGMzExMC8GA1UEBRMoRjBDM0FBRTkxN0U4OEU2ODE0MUE5NkIyMjZFMDQ2MDA5 QTgxOTQ4MzAeFw0yMzA3MTgwMjQ0MjhaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YjVmYzhiLTA0ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqbxHPFK3z3X2oQlL+KqZXKkDQ6gtQZ7PhoWUTuXPAA9aRiLMXLXNfnxVyl9uj +kxPe43aoRLvdoXZi74xBacWhdmCE/Z55a4EDCR84dGDO1IqDyvdK6jRf9xMHOoI pgRrCZoKAP4xtjXCN/WyaZ3Sr/MPHVTxNMPLlR4hgB2Ny5bKYvRJx5nPdV5nB+UY YABK2XrfLSta+btFyoIuOCo/Ql1WpZPqA/NTNCQkvPI/ZJ2ii/CiZHQHyra5RzwH FzrU2AxGFAFUJLo4ck9WZbBBaMIpK37NaAzozrQGy7F038tQQJvR4FFMd2vkwj/2 qpp6GHfnwMv3J8LAjq57dUUzAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUsAX+ogk+ W/Qocp84lgg1/Q6oznYwHwYDVR0jBBgwFoAU8MOq6RfojmgUGpayJuBGAJqBlIMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0OEYzL0I3MjM1RTJBMjUx NDExRUVBOERFQ0MxRUM0RjlBRTAyLzhNT3E2UmZvam1nVUdwYXlKdUJHQUpxQmxJ TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOE1PcTZSZm9qbWdVR3BheUp1QkdBSnFCbElNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDhGMy9CNzIzNUUyQTI1MTQxMUVFQThERUNDMUVDNEY5QUUwMi8wMzY2NzI5QTI1 MTUxMUVFQUNBNTg4MUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWfh/jANBAIAAjAHAwUAJAEMYDANBgkqhkiG9w0BAQsFAAOC AQEAhXoNZ3xvWWQHOPP66poD1aJ76+VMot7H+f0FRefDdk7IRSuEC6sTfzs//TuY jiXOBxlcoeGjkU+oA65ITaEw0cwP5/Ekhl2zl+oovrxVgX+i+LxMbPTy+g9OTcjB xLjSz+uXuFoecvLvbNE308iy2kPfTt1s/A9OGFbfIBbgeUzVo/R23kuy1kig3GQM 3kvr7M2OOVjgzzu68V2cLkXJ8dV7SX0WvkhUr86JQHMxRee/HQ4uxaC1cFBm71KR m+6Ta0okEtpXizS3zbylpYXz1BDCC52ImlHhz5RA2H6JsqgVmpRGKqsu7PCdB7K8 8oE1ZYGWxA2iP44fsVGpoF2tJg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:36 2024 by rpki-client on console-ams.rpki-client.org