$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/F0326FAE4D0011E8A24EE324C4F9AE02.roa File: F0326FAE4D0011E8A24EE324C4F9AE02.roa (raw, json) Hash identifier: CYK+uI2bxtOr291BnZawHgoP/6miR+B6epnu6Vsoz0Y= Subject key identifier: D9:E8:44:0B:E9:03:CC:60:1B:F3:BF:7B:3A:93:0F:0F:5E:55:53:54 Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1448 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/F0326FAE4D0011E8A24EE324C4F9AE02.roa Signing time: Thu 02 May 2024 17:35:35 +0000 ROA not before: Thu 02 May 2024 17:35:35 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137813 IP address blocks: 103.114.176.0/22 maxlen: 24 2402:d140::/32 maxlen: 32 2402:d140::/40 maxlen: 48 2402:d140:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5192 (0x1448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: May 2 17:35:35 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6633cee6-0223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e9:c5:22:6d:74:f1:ce:e6:5f:7f:74:31:12: 1f:e7:b0:a2:98:bc:fc:d8:ae:59:e3:c6:91:50:82: 33:6a:22:48:aa:91:29:92:c1:3c:79:fc:92:cb:8e: 28:5e:8d:c4:db:42:22:04:10:bd:33:14:84:86:77: 87:db:ed:7b:16:b3:19:33:c1:45:ed:83:f0:de:62: 06:4f:81:4c:9c:6e:b2:86:27:62:d5:f7:c6:d9:fb: a8:76:a6:8c:1e:0d:2a:85:c4:68:0c:08:76:e2:3f: a1:40:42:96:3d:ba:bb:f6:69:22:2e:b5:41:e6:c6: a1:13:05:18:ee:bb:9e:86:6e:ee:41:7f:3a:85:52: 76:77:f4:a5:e7:e9:c8:49:15:4f:de:87:31:be:40: 5b:43:b9:81:12:67:eb:fc:4d:f4:b6:09:4f:eb:79: 03:bd:48:75:ea:98:78:dd:62:3d:e1:e1:55:ca:06: c6:d7:90:cd:43:98:6f:a5:8b:98:9c:15:fb:4c:db: 9a:7f:94:51:c1:85:00:e0:af:69:db:9f:33:f5:1b: 44:12:d8:98:17:02:f5:46:51:2e:2a:12:a7:f5:d2: 81:a9:b7:31:ad:1d:f1:b9:c2:ae:c3:47:ec:fe:79: 2d:4b:bd:dd:d1:33:e0:c0:20:9a:b6:c4:2e:10:67: ae:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E8:44:0B:E9:03:CC:60:1B:F3:BF:7B:3A:93:0F:0F:5E:55:53:54 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/F0326FAE4D0011E8A24EE324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.176.0/22 IPv6: 2402:d140::/32 Signature Algorithm: sha256WithRSAEncryption 7b:f1:71:c6:fd:3d:20:f7:ed:97:bb:2d:f1:d4:50:9b:1b:86: 85:77:ec:fa:a5:44:ea:8d:2c:19:a4:a3:ec:fb:0d:2e:e2:b1: e3:b1:4f:05:89:b9:9c:2c:e9:a4:ee:94:4e:5c:ac:f4:a8:72: da:d8:92:bb:18:ce:e2:5d:70:66:77:02:4a:39:bb:11:fa:1d: 04:f8:19:b2:f0:cb:0f:39:b1:ea:9e:90:3b:b5:c9:f9:fc:6e: 00:af:25:3f:81:a5:1d:06:a1:01:80:23:61:71:f9:26:c7:aa: fe:d9:60:f7:b4:47:19:d1:36:37:5c:38:7d:79:9f:06:b7:15: 3a:fc:e3:3a:58:67:e5:0e:9b:ee:27:fb:bc:29:90:6f:29:63: a7:f1:f8:90:4a:81:38:8b:c9:72:c5:24:dd:4c:30:11:4c:de: e7:18:29:08:41:18:9c:a6:f3:a6:da:e2:74:26:f4:b7:b7:cd: 36:d1:b7:43:4e:9d:0d:8a:3d:f0:7b:65:53:00:fe:81:b8:cc: 15:01:18:2d:6f:ba:ee:f4:04:e6:57:67:6e:c9:b3:c1:0d:4b: 72:b2:cb:8c:d9:e4:35:4e:22:91:91:ae:e6:d6:b1:51:25:c9: 5a:63:1d:4b:b0:7b:1e:f5:5c:69:fb:43:b0:10:15:ea:e2:dc: 0d:7a:df:a9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjQwNTAyMTczNTM1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzY2VlNi0wMjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+nFIm108c7mX390MRIf57CimLz82K5Z48aRUIIzaiJIqpEpksE8efySy44o Xo3E20IiBBC9MxSEhneH2+17FrMZM8FF7YPw3mIGT4FMnG6yhidi1ffG2fuodqaM Hg0qhcRoDAh24j+hQEKWPbq79mkiLrVB5sahEwUY7ruehm7uQX86hVJ2d/Sl5+nI SRVP3ocxvkBbQ7mBEmfr/E30tglP63kDvUh16ph43WI94eFVygbG15DNQ5hvpYuY nBX7TNuaf5RRwYUA4K9p258z9RtEEtiYFwL1RlEuKhKn9dKBqbcxrR3xucKuw0fs /nktS73d0TPgwCCatsQuEGeu1QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNnoRAvp A8xgG/O/ezqTDw9eVVNUMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY1RTQvNzkzOTczMjA0RDAwMTFFOEEwMjZFMTRBQzRGOUFFMDIvRjAzMjZGQUU0 RDAwMTFFOEEyNEVFMzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncrAwDQQCAAIwBwMFACQC0UAwDQYJKoZIhvcNAQELBQAD ggEBAHvxccb9PSD37Ze7LfHUUJsbhoV37PqlROqNLBmko+z7DS7iseOxTwWJuZws 6aTulE5crPSoctrYkrsYzuJdcGZ3Ako5uxH6HQT4GbLwyw85seqekDu1yfn8bgCv JT+BpR0GoQGAI2Fx+SbHqv7ZYPe0RxnRNjdcOH15nwa3FTr84zpYZ+UOm+4n+7wp kG8pY6fx+JBKgTiLyXLFJN1MMBFM3ucYKQhBGJym86ba4nQm9Le3zTbRt0NOnQ2K PfB7ZVMA/oG4zBUBGC1vuu70BOZXZ27Js8ENS3Kyy4zZ5DVOIpGRrubWsVElyVpj HUuwex71XGn7Q7AQFeri3A1636k= -----END CERTIFICATE-----Generated at Thu May 16 20:25:57 2024 by rpki-client on console-ams.rpki-client.org