$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/A26BC92C09F511EC8F20233BC4F9AE02.roa File: A26BC92C09F511EC8F20233BC4F9AE02.roa (raw, json) Hash identifier: JLCKOzC3lWf7fwqWKZs5rXtHcjiNSmQqaYxo3wT8YPo= Subject key identifier: BA:60:1C:2C:6B:2F:F0:BE:2F:CA:FA:52:95:9C:8B:D7:01:6F:4A:FB Certificate issuer: /CN=A91F6CB0/serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Certificate serial: 03CB Authority key identifier: 6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/A26BC92C09F511EC8F20233BC4F9AE02.roa Signing time: Thu 03 Aug 2023 01:02:41 +0000 ROA not before: Thu 03 Aug 2023 01:02:41 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 56079 IP address blocks: 103.22.196.0/24 maxlen: 24 103.22.197.0/24 maxlen: 24 103.22.198.0/24 maxlen: 24 103.22.199.0/24 maxlen: 24 115.31.88.0/24 maxlen: 24 115.31.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 971 (0x3cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6CB0/serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Validity Not Before: Aug 3 01:02:41 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cafcb0-e923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:15:c7:4a:1c:6e:81:73:22:5b:42:eb:49:0c: f3:a6:4d:de:7c:85:b8:50:86:50:70:cc:69:2b:6d: 05:30:d2:7e:47:31:47:7f:2a:bc:7a:bf:7c:99:ff: 92:dc:fd:ce:83:48:ba:33:fa:30:9a:7a:bb:36:71: c9:29:ae:54:1e:fc:5a:ca:76:b3:cb:a0:13:23:b4: 4c:0f:25:4b:0a:79:0f:74:bb:cf:d7:dc:1d:a7:a8: af:50:7d:04:91:74:39:99:87:61:a1:d8:f2:c6:55: 57:f9:31:b1:04:82:c3:9d:a5:75:d5:b8:f5:be:b5: 4e:f8:6b:18:d7:c8:45:d6:6b:d8:82:3d:21:df:eb: 4b:eb:b3:76:d1:fe:e1:ab:16:b6:30:8f:8a:a7:b0: 7d:cd:b1:e6:64:7c:d3:ad:e2:30:4c:f6:bd:21:24: 2c:49:25:b6:56:58:5b:9a:c7:4e:d6:93:48:60:7e: 26:25:63:3b:d1:4f:e4:b4:05:df:00:fb:f8:64:ef: b4:12:9a:e2:20:c0:be:4c:f7:8f:dd:7e:d2:7d:e7: 84:9a:19:36:29:03:50:3a:be:65:02:7c:7c:d1:02: b6:8c:ce:21:c8:38:e0:5c:89:eb:f9:33:95:07:6f: 24:89:3e:7f:f3:c5:6c:37:86:8d:b6:4c:b9:84:ca: 69:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:60:1C:2C:6B:2F:F0:BE:2F:CA:FA:52:95:9C:8B:D7:01:6F:4A:FB X509v3 Authority Key Identifier: keyid:6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/A26BC92C09F511EC8F20233BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.22.196.0/22 115.31.88.0/24 115.31.91.0/24 Signature Algorithm: sha256WithRSAEncryption c1:39:4f:49:d4:28:6c:1c:40:c1:86:ad:33:6a:10:e4:82:3d: dc:cc:bd:32:8f:19:24:26:d4:06:cf:90:9e:c9:b0:32:25:51: d1:b2:66:dc:9a:76:15:3d:6e:16:2a:86:f8:06:46:7c:5f:2d: 1f:15:7a:c1:cd:9a:06:70:bf:95:97:72:7e:f9:aa:8f:c3:6c: b4:1d:e5:22:2c:80:2c:85:18:fa:22:b6:cb:8c:6a:17:e0:cb: 13:5c:bd:62:b4:10:96:71:bc:44:a1:93:7f:57:d7:40:22:a0: 24:83:5e:b1:98:e6:bd:ad:13:5e:d1:e9:9e:a7:36:af:79:f5: cd:bc:a5:4a:12:7f:94:14:06:d9:c9:66:b5:29:f4:1b:e7:4e: 83:e8:c2:2b:8f:f4:66:1b:82:e0:bf:b0:ba:4f:ed:9b:41:18: 1f:9d:ce:c7:bb:a0:e7:ec:b7:66:1b:74:f6:4f:1a:47:c6:83: 28:25:29:03:ea:2e:cc:fc:3e:03:23:b0:02:ae:4a:26:bd:22: 8c:45:c2:fb:25:95:75:b6:6c:3f:28:bf:ab:b7:af:85:47:e4: f0:23:7d:d6:a4:4e:78:49:9b:94:50:34:4b:0b:c1:56:79:89: 9f:65:b6:98:ed:6b:1f:cf:00:52:0f:e7:46:f6:33:ef:d4:49: 34:58:ac:91 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZDQjAxMTAvBgNVBAUTKDZEMTc1QTc0QzFBMDk4QkZBMkRGN0VFNDM3MTYwNUZG NkEzMDQyNDkwHhcNMjMwODAzMDEwMjQxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmNiMC1lOTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RXHShxugXMiW0LrSQzzpk3efIW4UIZQcMxpK20FMNJ+RzFHfyq8er98mf+S 3P3Og0i6M/owmnq7NnHJKa5UHvxaynazy6ATI7RMDyVLCnkPdLvP19wdp6ivUH0E kXQ5mYdhodjyxlVX+TGxBILDnaV11bj1vrVO+GsY18hF1mvYgj0h3+tL67N20f7h qxa2MI+Kp7B9zbHmZHzTreIwTPa9ISQsSSW2VlhbmsdO1pNIYH4mJWM70U/ktAXf APv4ZO+0EpriIMC+TPeP3X7SfeeEmhk2KQNQOr5lAnx80QK2jM4hyDjgXInr+TOV B28kiT5/88VsN4aNtky5hMppnQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLpgHCxr L/C+L8r6UpWci9cBb0r7MB8GA1UdIwQYMBaAFG0XWnTBoJi/ot9+5DcWBf9qMEJJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkNCMC8zNTU2MjAxQzA5 MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21MLWkzMzdrTnhZRl8yb3dR a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JSZGFkTUdnbUwtaTMzN2tOeFlGXzJvd1Fray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZDQjAvMzU1NjIwMUMwOTMyMTFFQzk4QjhERjBFQzRGOUFFMDIvQTI2QkM5MkMw OUY1MTFFQzhGMjAyMzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnFsQDBABzH1gDBABzH1swDQYJKoZIhvcNAQELBQADggEB AME5T0nUKGwcQMGGrTNqEOSCPdzMvTKPGSQm1AbPkJ7JsDIlUdGyZtyadhU9bhYq hvgGRnxfLR8VesHNmgZwv5WXcn75qo/DbLQd5SIsgCyFGPoitsuMahfgyxNcvWK0 EJZxvEShk39X10AioCSDXrGY5r2tE17R6Z6nNq959c28pUoSf5QUBtnJZrUp9Bvn ToPowiuP9GYbguC/sLpP7ZtBGB+dzse7oOfst2YbdPZPGkfGgyglKQPqLsz8PgMj sAKuSia9IoxFwvsllXW2bD8ov6u3r4VH5PAjfdakTnhJm5RQNEsLwVZ5iZ9ltpjt ax/PAFIP50b2M+/USTRYrJE= -----END CERTIFICATE-----Generated at Sat May 25 04:35:36 2024 by rpki-client on console-ams.rpki-client.org