$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/37B81F7AF64511ED8C736D76C4F9AE02.roa File: 37B81F7AF64511ED8C736D76C4F9AE02.roa (raw, json) Hash identifier: V7ilMMT06OLjWy4mXgkWYvJ88BLk9HKzitHJj26kG7c= Subject key identifier: 29:3C:E0:7B:DD:17:FC:1C:E8:35:77:C1:E0:9B:90:16:5E:71:F1:98 Certificate issuer: /CN=A91FC8B6/serialNumber=D6F2BAAE7A520FAA4682CADC3693660B9E1FF104 Certificate serial: 02 Authority key identifier: D6:F2:BA:AE:7A:52:0F:AA:46:82:CA:DC:36:93:66:0B:9E:1F:F1:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vK6rnpSD6pGgsrcNpNmC54f8QQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/37B81F7AF64511ED8C736D76C4F9AE02.roa Signing time: Fri 19 May 2023 13:01:07 +0000 ROA not before: Fri 19 May 2023 13:01:07 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151341 IP address blocks: 103.204.178.0/23 maxlen: 24 2401:a0::/36 maxlen: 36 2401:a0:1000::/36 maxlen: 36 2401:a0:2000::/36 maxlen: 36 2401:a0:3000::/36 maxlen: 36 2401:a0:4000::/36 maxlen: 36 2401:a0:5000::/36 maxlen: 36 2401:a0:6000::/36 maxlen: 36 2401:a0:7000::/36 maxlen: 36 2401:a0:8000::/36 maxlen: 36 2401:a0:9000::/36 maxlen: 36 2401:a0:a000::/36 maxlen: 36 2401:a0:b000::/36 maxlen: 36 2401:a0:c000::/36 maxlen: 36 2401:a0:d000::/36 maxlen: 36 2401:a0:e000::/36 maxlen: 36 2401:a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/1vK6rnpSD6pGgsrcNpNmC54f8QQ.crl rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/1vK6rnpSD6pGgsrcNpNmC54f8QQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vK6rnpSD6pGgsrcNpNmC54f8QQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 06:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC8B6/serialNumber=D6F2BAAE7A520FAA4682CADC3693660B9E1FF104 Validity Not Before: May 19 13:01:07 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64677312-8b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:83:37:e2:26:d8:1f:17:09:06:fe:4c:a5:36: 42:d5:3a:71:fc:10:bf:dc:b3:d2:50:97:bd:24:19: 71:e5:1f:e6:03:27:27:04:47:e3:85:3b:0f:dc:fb: ad:ce:ad:07:53:bb:91:79:b2:ed:0c:95:53:35:5b: f3:82:1c:b1:77:34:f6:16:41:18:6f:f6:03:2a:e6: 25:c0:28:30:07:a0:ee:1d:7d:65:f0:92:fe:66:25: 0b:c9:79:49:cc:59:07:53:c5:61:11:85:99:d0:3b: 8b:69:36:48:c8:2c:e6:65:2c:45:45:bb:35:d4:d4: 91:f2:e9:d7:6e:74:47:b3:db:78:b1:69:ba:11:7c: 7b:f2:ab:bd:74:c7:7e:01:cf:78:a9:21:2e:0d:0e: 8a:dd:08:03:dc:32:93:9c:8e:19:05:4a:53:a4:f9: 57:50:1d:c1:97:01:32:1e:09:a6:00:05:01:47:e2: c5:a0:7b:ad:21:0d:de:57:f5:87:26:75:f8:e0:b0: a7:9c:fb:b6:6d:99:1e:1e:9a:24:5b:4e:c0:e4:b8: 8e:e0:22:b1:cc:0e:a4:f3:aa:ba:d0:c6:ff:4f:d3: 69:8b:7f:a5:32:40:b2:05:68:0c:f3:8c:73:74:28: 1e:59:f6:1e:f0:ac:6a:cb:f0:0d:94:cb:12:20:eb: a1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3C:E0:7B:DD:17:FC:1C:E8:35:77:C1:E0:9B:90:16:5E:71:F1:98 X509v3 Authority Key Identifier: keyid:D6:F2:BA:AE:7A:52:0F:AA:46:82:CA:DC:36:93:66:0B:9E:1F:F1:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/1vK6rnpSD6pGgsrcNpNmC54f8QQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vK6rnpSD6pGgsrcNpNmC54f8QQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/37B81F7AF64511ED8C736D76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.178.0/23 IPv6: 2401:a0::/32 Signature Algorithm: sha256WithRSAEncryption 84:01:73:09:38:93:28:b1:44:62:4c:b0:47:4a:9b:48:c1:6b: 07:43:b3:ee:41:8e:f1:35:a9:68:94:e7:28:9b:ec:3d:0c:c7: db:54:da:31:a8:84:0b:71:70:16:a9:f0:58:25:5c:5b:8b:0d: e8:0e:78:c6:ee:94:e0:36:46:4a:9a:f1:5f:22:16:d2:88:57: b6:07:a8:a6:8f:cc:3c:c4:62:eb:f8:90:a4:7d:e1:6a:e0:2b: 40:29:14:26:ea:42:69:c1:c7:a4:5d:57:09:69:74:6d:40:23: df:f8:51:e8:82:84:c5:cb:81:18:65:40:b1:7c:33:07:a2:30: f6:6f:9a:87:20:98:32:f4:12:97:e4:6b:cb:9d:7b:76:e2:0c: 5f:dd:16:07:31:54:b7:23:eb:57:ed:ba:46:97:fd:91:8f:88: d4:fb:8a:7d:92:33:c6:29:ad:de:e4:e1:7e:a3:92:81:01:bd: f5:26:01:bb:99:20:0a:75:f3:88:b2:b2:46:a0:93:51:72:df: 1a:c7:aa:9e:95:fa:d0:5b:af:e9:e3:b1:5e:ad:f2:42:68:71: 0c:b0:42:54:9f:cb:cf:0d:cb:46:c2:4e:14:05:47:04:80:00: 22:6d:c8:af:e1:81:31:85:60:b8:e0:6e:da:59:95:b6:24:d9: ec:8f:9c:c8 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QzhCNjExMC8GA1UEBRMoRDZGMkJBQUU3QTUyMEZBQTQ2ODJDQURDMzY5MzY2MEI5 RTFGRjEwNDAeFw0yMzA1MTkxMzAxMDdaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0Njc3MzEyLThiMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSgzfiJtgfFwkG/kylNkLVOnH8EL/cs9JQl70kGXHlH+YDJycER+OFOw/c+63O rQdTu5F5su0MlVM1W/OCHLF3NPYWQRhv9gMq5iXAKDAHoO4dfWXwkv5mJQvJeUnM WQdTxWERhZnQO4tpNkjILOZlLEVFuzXU1JHy6ddudEez23ixaboRfHvyq710x34B z3ipIS4NDordCAPcMpOcjhkFSlOk+VdQHcGXATIeCaYABQFH4sWge60hDd5X9Ycm dfjgsKec+7ZtmR4emiRbTsDkuI7gIrHMDqTzqrrQxv9P02mLf6UyQLIFaAzzjHN0 KB5Z9h7wrGrL8A2UyxIg66E5AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUKTzge90X /BzoNXfB4JuQFl5x8ZgwHwYDVR0jBBgwFoAU1vK6rnpSD6pGgsrcNpNmC54f8QQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDOEI2L0VDNjIyQjA2RjYz RjExRUQ5Nzg4MkM3MkM0RjlBRTAyLzF2SzZybnBTRDZwR2dzcmNOcE5tQzU0ZjhR US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXZLNnJucFNENnBHZ3NyY05wTm1DNTRmOFFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzhCNi9FQzYyMkIwNkY2M0YxMUVEOTc4ODJDNzJDNEY5QUUwMi8zN0I4MUY3QUY2 NDUxMUVEOEM3MzZENzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWfMsjANBAIAAjAHAwUAJAEAoDANBgkqhkiG9w0BAQsFAAOC AQEAhAFzCTiTKLFEYkywR0qbSMFrB0Oz7kGO8TWpaJTnKJvsPQzH21TaMaiEC3Fw FqnwWCVcW4sN6A54xu6U4DZGSprxXyIW0ohXtgeopo/MPMRi6/iQpH3hauArQCkU JupCacHHpF1XCWl0bUAj3/hR6IKExcuBGGVAsXwzB6Iw9m+ahyCYMvQSl+Rry517 duIMX90WBzFUtyPrV+26Rpf9kY+I1PuKfZIzximt3uThfqOSgQG99SYBu5kgCnXz iLKyRqCTUXLfGseqnpX60Fuv6eOxXq3yQmhxDLBCVJ/Lzw3LRsJOFAVHBIAAIm3I r+GBMYVguOBu2lmVtiTZ7I+cyA== -----END CERTIFICATE-----Generated at Sat May 25 07:22:03 2024 by rpki-client on console-ams.rpki-client.org