$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/A2835264049511ECB774BA31C4F9AE02.roa File: A2835264049511ECB774BA31C4F9AE02.roa (raw, json) Hash identifier: Ylfs7EK5RTvqOTDzyp1EvOHpd+EWi2jGm1bZViVOrWM= Subject key identifier: 8E:9F:97:D6:F3:B6:D6:52:23:06:08:72:E1:40:1F:AB:1B:4D:39:C5 Certificate issuer: /CN=A91FDD88/serialNumber=1410FD8787140FF9976FE9C1FA5844ED5DD1E3C5 Certificate serial: 03FA Authority key identifier: 14:10:FD:87:87:14:0F:F9:97:6F:E9:C1:FA:58:44:ED:5D:D1:E3:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FBD9h4cUD_mXb-nB-lhE7V3R48U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/A2835264049511ECB774BA31C4F9AE02.roa Signing time: Mon 13 Nov 2023 01:12:39 +0000 ROA not before: Mon 13 Nov 2023 01:12:39 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141389 IP address blocks: 103.158.14.0/24 maxlen: 24 103.158.15.0/24 maxlen: 24 2406:ac40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/FBD9h4cUD_mXb-nB-lhE7V3R48U.crl rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/FBD9h4cUD_mXb-nB-lhE7V3R48U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FBD9h4cUD_mXb-nB-lhE7V3R48U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:51:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1018 (0x3fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD88/serialNumber=1410FD8787140FF9976FE9C1FA5844ED5DD1E3C5 Validity Not Before: Nov 13 01:12:39 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65517807-8bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:25:94:ce:f2:21:f6:06:f7:22:22:4b:14:fe: 15:b8:c8:4f:3e:38:e1:53:40:d1:22:83:83:a9:7a: 96:71:ce:bf:59:01:2a:74:96:4b:21:54:46:e3:c8: 67:77:d1:4d:ae:7c:82:38:be:e0:69:7c:8d:f7:54: 39:2d:82:d9:ad:67:72:95:8e:72:3a:3f:57:15:9e: ce:28:9b:59:f9:f5:0d:e6:e9:ff:17:03:a4:ce:73: de:d8:c0:30:60:5b:c5:38:71:42:74:38:17:64:87: 53:4e:c9:48:31:ac:96:2f:90:a4:ab:b0:90:bb:1c: fb:fb:b9:a8:9a:17:95:ea:fc:93:be:25:bd:32:b5: 43:61:d8:48:c0:05:db:7e:8d:78:fc:31:dc:2b:c8: 19:d1:88:14:ef:10:fe:a0:03:da:17:bf:21:eb:9a: 2e:c5:a0:62:b9:65:3a:78:ad:4b:cc:ca:cb:a5:bd: ff:ff:d5:61:2c:81:87:d6:5b:00:e4:e4:10:f7:0f: 40:aa:4b:30:74:93:81:2b:f0:d5:2e:dc:18:62:09: 70:42:31:45:43:af:ff:89:85:93:89:d7:06:e7:e5: 1e:eb:a7:c0:31:7e:43:46:a9:89:a9:c0:cf:26:f7: ec:30:94:61:24:5f:6a:1f:92:df:b6:32:7e:b5:a5: c0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9F:97:D6:F3:B6:D6:52:23:06:08:72:E1:40:1F:AB:1B:4D:39:C5 X509v3 Authority Key Identifier: keyid:14:10:FD:87:87:14:0F:F9:97:6F:E9:C1:FA:58:44:ED:5D:D1:E3:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/FBD9h4cUD_mXb-nB-lhE7V3R48U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FBD9h4cUD_mXb-nB-lhE7V3R48U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/A2835264049511ECB774BA31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.14.0/23 IPv6: 2406:ac40::/32 Signature Algorithm: sha256WithRSAEncryption 82:fb:54:f8:f6:df:73:b9:ef:ea:12:87:4c:f4:1e:f7:79:6c: 75:d5:a8:4c:90:e1:fc:cb:a9:41:8f:78:91:50:52:ca:33:b9: f8:f6:a1:8d:43:18:2f:f4:72:35:59:80:26:2f:c7:d4:78:f9: 25:8e:69:11:e8:74:a0:72:a3:2d:3e:0b:a6:2e:26:cb:fb:98: 12:ff:c2:0c:52:09:91:33:4a:22:6c:24:06:22:70:77:5c:5b: a9:bb:2e:f0:04:79:ed:8d:b6:89:48:90:78:63:6e:62:2f:c5: d8:11:ab:f6:b2:2a:e7:73:95:b7:3d:b7:ae:aa:c5:c6:ed:91: 0c:87:da:b4:32:06:da:ec:28:9b:db:b6:20:fa:56:a9:94:63: 8b:32:5c:e6:2c:24:07:1d:ec:21:89:f1:ad:63:10:16:52:7b: 6f:7c:38:72:39:f0:c7:82:39:ec:8c:d1:5c:79:b5:a6:9f:9e: 8b:1c:6f:f1:a9:82:7e:57:3f:b9:26:a8:e8:75:d2:e9:db:0f: ee:e0:66:6b:fb:59:d6:32:09:89:71:a4:16:58:c0:ab:bd:88: 00:5e:45:99:82:31:ef:5e:3b:9b:16:d3:e3:3c:72:3f:85:bb: 7b:28:81:d2:d5:a0:bf:11:38:bb:ca:d8:40:5b:f7:be:c6:31: e5:e7:8f:6f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkREODgxMTAvBgNVBAUTKDE0MTBGRDg3ODcxNDBGRjk5NzZGRTlDMUZBNTg0NEVE NUREMUUzQzUwHhcNMjMxMTEzMDExMjM5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTUxNzgwNy04YmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSWUzvIh9gb3IiJLFP4VuMhPPjjhU0DRIoODqXqWcc6/WQEqdJZLIVRG48hn d9FNrnyCOL7gaXyN91Q5LYLZrWdylY5yOj9XFZ7OKJtZ+fUN5un/FwOkznPe2MAw YFvFOHFCdDgXZIdTTslIMayWL5Ckq7CQuxz7+7momheV6vyTviW9MrVDYdhIwAXb fo14/DHcK8gZ0YgU7xD+oAPaF78h65ouxaBiuWU6eK1LzMrLpb3//9VhLIGH1lsA 5OQQ9w9AqkswdJOBK/DVLtwYYglwQjFFQ6//iYWTidcG5+Ue66fAMX5DRqmJqcDP JvfsMJRhJF9qH5LftjJ+taXA7QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI6fl9bz ttZSIwYIcuFAH6sbTTnFMB8GA1UdIwQYMBaAFBQQ/YeHFA/5l2/pwfpYRO1d0ePF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ4OC9DODIzNkFDMjA0 OTAxMUVDOENDMUEzODZDNEY5QUUwMi9GQkQ5aDRjVURfbVhiLW5CLWxoRTdWM1I0 OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZCRDloNGNVRF9tWGItbkItbGhFN1YzUjQ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkREODgvQzgyMzZBQzIwNDkwMTFFQzhDQzFBMzg2QzRGOUFFMDIvQTI4MzUyNjQw NDk1MTFFQ0I3NzRCQTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnng4wDQQCAAIwBwMFACQGrEAwDQYJKoZIhvcNAQELBQAD ggEBAIL7VPj233O57+oSh0z0Hvd5bHXVqEyQ4fzLqUGPeJFQUsozufj2oY1DGC/0 cjVZgCYvx9R4+SWOaRHodKByoy0+C6YuJsv7mBL/wgxSCZEzSiJsJAYicHdcW6m7 LvAEee2NtolIkHhjbmIvxdgRq/ayKudzlbc9t66qxcbtkQyH2rQyBtrsKJvbtiD6 VqmUY4syXOYsJAcd7CGJ8a1jEBZSe298OHI58MeCOeyM0Vx5taafnoscb/Gpgn5X P7kmqOh10unbD+7gZmv7WdYyCYlxpBZYwKu9iABeRZmCMe9eO5sW0+M8cj+Fu3so gdLVoL8ROLvK2EBb977GMeXnj28= -----END CERTIFICATE-----Generated at Tue May 7 03:10:24 2024 by rpki-client on console-ams.rpki-client.org