$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/163AF95074D011ECA22BB248C4F9AE02.roa File: 163AF95074D011ECA22BB248C4F9AE02.roa (raw, json) Hash identifier: nT7W5fCvcadMCKJHPJK2dBFbq1TW+D8Lst/I80jqSUE= Subject key identifier: 82:50:6D:8D:C4:7E:3C:37:CC:4F:95:CB:9B:FB:EB:0B:D3:B4:60:CD Certificate issuer: /CN=A91FAEE4/serialNumber=73C0E01890FF3067601062A12E54BD54379091B6 Certificate serial: 036F Authority key identifier: 73:C0:E0:18:90:FF:30:67:60:10:62:A1:2E:54:BD:54:37:90:91:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8DgGJD_MGdgEGKhLlS9VDeQkbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/163AF95074D011ECA22BB248C4F9AE02.roa Signing time: Thu 07 Sep 2023 01:32:41 +0000 ROA not before: Thu 07 Sep 2023 01:32:41 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9336 IP address blocks: 45.64.56.0/22 maxlen: 24 103.18.124.0/22 maxlen: 24 103.233.224.0/22 maxlen: 24 118.127.96.0/19 maxlen: 24 203.153.192.0/20 maxlen: 24 218.185.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/c8DgGJD_MGdgEGKhLlS9VDeQkbY.crl rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/c8DgGJD_MGdgEGKhLlS9VDeQkbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8DgGJD_MGdgEGKhLlS9VDeQkbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 02:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAEE4/serialNumber=73C0E01890FF3067601062A12E54BD54379091B6 Validity Not Before: Sep 7 01:32:41 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f92839-7962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:25:12:52:16:40:40:33:ac:d9:2a:93:fb:e5: a9:ef:4d:5e:fb:7d:e0:ac:e6:22:cc:01:b5:e7:6b: fe:bb:29:65:5d:74:ce:0f:c8:94:6c:28:55:e0:c7: 2d:c4:a6:fe:65:cf:65:c5:90:d9:f9:13:ec:ec:c3: 79:17:02:3a:c0:e8:33:1f:5f:e3:8f:9e:ed:59:43: b3:30:a6:b8:d1:f6:6e:2b:66:f6:6f:02:5e:84:47: d6:a2:2d:56:62:0c:e6:0a:12:c7:0b:de:70:92:8c: 66:dc:72:22:93:71:83:d4:28:8b:eb:f5:95:fc:22: 82:8a:73:56:12:2e:08:16:08:89:a2:0a:b2:ed:47: dc:06:f4:65:ec:f0:88:70:32:a2:6b:69:ab:78:2b: 1d:03:96:3f:d5:53:12:81:ce:24:b7:c6:26:3d:ab: eb:df:0c:d3:60:6d:39:1c:46:4e:f8:77:5b:93:6d: 68:0d:4c:5b:06:75:d0:cb:20:0f:69:af:34:eb:4f: 0c:c4:92:e8:ba:65:d1:e3:c0:c3:bd:df:45:dd:97: 1d:6b:9b:89:c3:b3:78:af:46:e1:81:17:63:ce:71: b4:ef:e6:5d:cb:78:86:f1:83:8d:31:9f:06:b7:ee: b7:7f:08:31:32:8b:2d:6c:3d:f0:a7:d0:fd:ac:2f: de:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:50:6D:8D:C4:7E:3C:37:CC:4F:95:CB:9B:FB:EB:0B:D3:B4:60:CD X509v3 Authority Key Identifier: keyid:73:C0:E0:18:90:FF:30:67:60:10:62:A1:2E:54:BD:54:37:90:91:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/c8DgGJD_MGdgEGKhLlS9VDeQkbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8DgGJD_MGdgEGKhLlS9VDeQkbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/163AF95074D011ECA22BB248C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.56.0/22 103.18.124.0/22 103.233.224.0/22 118.127.96.0/19 203.153.192.0/20 218.185.232.0/21 Signature Algorithm: sha256WithRSAEncryption 2f:16:38:4f:21:fe:c3:9a:23:80:28:2f:fc:dd:1c:02:e2:8c: 8b:19:09:64:4e:c2:43:ea:b0:df:64:d8:75:51:ab:ea:cd:e8: 96:a0:31:87:4b:75:87:e0:5e:74:a0:34:1d:85:db:1d:57:d7: f0:15:8a:72:05:63:f8:69:67:fc:d0:ce:1a:16:73:59:3f:b8: c0:8e:40:52:f1:1e:94:34:87:a6:06:8d:18:15:4a:08:6e:d5: 04:71:61:3b:d3:77:f8:44:71:79:cb:8b:3a:ad:fb:1e:5b:e7: 75:34:c8:2b:51:7e:5b:6e:d0:f9:da:57:6c:9f:e0:ef:bd:8e: 2f:8d:f2:32:73:b2:f1:f8:6f:aa:76:60:eb:0d:bc:01:b5:62: 16:72:ab:c8:fc:8b:05:43:7c:ed:61:f7:29:d9:a0:66:aa:65: 73:da:e3:67:75:80:db:cb:2f:6d:c2:e3:a0:a9:94:52:86:17: 6d:fb:af:3f:23:71:16:38:4c:4e:16:cf:f9:c6:d5:81:16:88: 00:85:2a:00:46:56:9e:04:56:bf:74:15:db:28:f9:25:73:3e: bd:1f:92:32:9b:80:75:92:e3:fb:41:b4:81:eb:fc:76:04:53: db:a4:c6:e1:35:b2:af:26:7e:83:1f:79:92:d3:c2:99:c3:9d: bc:8c:d2:bc -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICA28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRTQxMTAvBgNVBAUTKDczQzBFMDE4OTBGRjMwNjc2MDEwNjJBMTJFNTRCRDU0 Mzc5MDkxQjYwHhcNMjMwOTA3MDEzMjQxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY5MjgzOS03OTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyUSUhZAQDOs2SqT++Wp701e+33grOYizAG152v+uyllXXTOD8iUbChV4Mct xKb+Zc9lxZDZ+RPs7MN5FwI6wOgzH1/jj57tWUOzMKa40fZuK2b2bwJehEfWoi1W YgzmChLHC95wkoxm3HIik3GD1CiL6/WV/CKCinNWEi4IFgiJogqy7UfcBvRl7PCI cDKia2mreCsdA5Y/1VMSgc4kt8YmPavr3wzTYG05HEZO+Hdbk21oDUxbBnXQyyAP aa80608MxJLoumXR48DDvd9F3Zcda5uJw7N4r0bhgRdjznG07+Zdy3iG8YONMZ8G t+63fwgxMostbD3wp9D9rC/eswIDAQABo4ICszCCAq8wHQYDVR0OBBYEFIJQbY3E fjw3zE+Vy5v76wvTtGDNMB8GA1UdIwQYMBaAFHPA4BiQ/zBnYBBioS5UvVQ3kJG2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVFNC85QzI2RTZDODJG REUxMUVDQUQ3NDdGNjhDNEY5QUUwMi9jOERnR0pEX01HZGdFR0toTGxTOVZEZVFr YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M4RGdHSkRfTUdkZ0VHS2hMbFM5VkRlUWtiWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFFRTQvOUMyNkU2QzgyRkRFMTFFQ0FENzQ3RjY4QzRGOUFFMDIvMTYzQUY5NTA3 NEQwMTFFQ0EyMkJCMjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAItQDgDBAJnEnwDBAJn6eADBAV2f2ADBATLmcADBAPauegw DQYJKoZIhvcNAQELBQADggEBAC8WOE8h/sOaI4AoL/zdHALijIsZCWROwkPqsN9k 2HVRq+rN6JagMYdLdYfgXnSgNB2F2x1X1/AVinIFY/hpZ/zQzhoWc1k/uMCOQFLx HpQ0h6YGjRgVSghu1QRxYTvTd/hEcXnLizqt+x5b53U0yCtRfltu0PnaV2yf4O+9 ji+N8jJzsvH4b6p2YOsNvAG1YhZyq8j8iwVDfO1h9ynZoGaqZXPa42d1gNvLL23C 46CplFKGF237rz8jcRY4TE4Wz/nG1YEWiACFKgBGVp4EVr90Fdso+SVzPr0fkjKb gHWS4/tBtIHr/HYEU9ukxuE1sq8mfoMfeZLTwpnDnbyM0rw= -----END CERTIFICATE-----Generated at Sat Jun 15 04:18:18 2024 by rpki-client on console-ams.rpki-client.org