$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/9D1CF15E90EE11E8960E8480C4F9AE02.roa File: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (raw, json) Hash identifier: Ul+bpAytsSrAslei8fCnXiucNbOpCjLCdnbXZqwQWLI= Subject key identifier: 45:50:9D:B8:0E:B5:AA:52:FB:27:81:F2:DB:D0:E1:0D:3E:87:85:72 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 1233 Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/9D1CF15E90EE11E8960E8480C4F9AE02.roa Signing time: Mon 22 May 2023 18:37:20 +0000 ROA not before: Mon 22 May 2023 18:37:20 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135375 IP address blocks: 103.63.190.0/24 maxlen: 24 103.216.48.0/22 maxlen: 22 103.216.48.0/24 maxlen: 24 103.216.49.0/24 maxlen: 24 103.216.50.0/24 maxlen: 24 103.216.51.0/24 maxlen: 24 203.95.196.0/22 maxlen: 22 203.95.196.0/24 maxlen: 24 203.95.197.0/24 maxlen: 24 203.95.198.0/24 maxlen: 24 203.95.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 17:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4659 (0x1233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: May 22 18:37:20 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646bb65f-0351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:20:9c:96:e8:83:37:e5:7b:59:f5:02:97:4e: ad:1f:de:49:b2:51:89:60:f9:bc:54:ad:ed:7d:4b: e0:ab:c3:12:71:85:6f:f4:66:bb:cb:a2:bc:40:17: db:5f:d5:3c:82:76:70:bd:8b:cb:d5:36:ae:fe:cd: 88:50:11:b0:05:f3:d3:65:4f:d2:d9:b7:dc:d6:92: e5:45:cb:33:0f:85:77:c6:39:fe:c4:b5:00:66:6c: 3e:1a:45:f3:90:1c:bb:10:ff:c2:87:e9:41:77:db: e3:31:c6:57:ba:ca:fb:f8:8a:49:e7:da:fb:a9:3f: 65:4b:88:b9:c8:fb:82:9b:ec:07:78:5b:64:7b:22: 49:00:8d:44:12:ed:20:2d:5e:08:67:65:c0:f8:ae: d8:c8:d5:79:b1:1b:44:2b:b2:fe:cd:59:bd:73:b6: e4:8f:d6:b4:41:1d:51:11:3b:25:c8:22:68:03:1b: 52:2d:58:39:c7:a2:98:4e:2d:40:1f:91:4e:12:aa: ed:47:8d:d2:db:bf:49:d2:c0:b1:b0:f2:9b:e2:65: 6b:b5:e3:1e:b6:78:56:41:11:aa:9b:11:a9:c2:bc: e6:48:26:1b:dd:36:f9:34:3b:c6:1d:c4:e8:3d:22: 19:c9:f4:cb:63:62:40:21:b3:d8:e1:c9:ff:db:9a: eb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:50:9D:B8:0E:B5:AA:52:FB:27:81:F2:DB:D0:E1:0D:3E:87:85:72 X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/9D1CF15E90EE11E8960E8480C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.63.190.0/24 103.216.48.0/22 203.95.196.0/22 Signature Algorithm: sha256WithRSAEncryption 93:ae:5c:36:0a:35:f5:c3:eb:d4:7a:db:1b:1d:24:9e:92:fe: 69:f9:b6:3a:14:d4:97:33:52:73:eb:e3:cc:25:0f:2e:73:b0: 42:e7:a3:9a:cd:50:87:a6:0d:ea:3e:df:dd:58:6f:59:ac:5b: 56:90:7c:63:23:8f:52:f2:01:12:4f:55:3b:cb:2f:ed:a0:a8: 0e:1f:21:cb:0f:a9:70:e4:9b:c1:ef:83:5f:1d:38:94:ba:98: 8f:8a:ca:f9:ff:c4:52:89:5e:24:8a:3c:85:61:5a:e3:da:f3: 32:7d:6d:19:3d:c8:40:21:89:a7:3a:fb:a4:68:fc:ff:e8:60: 04:d8:f3:8f:04:f0:c5:85:8f:b7:8e:31:86:bc:95:58:4f:c7: 7a:96:77:85:cd:6b:17:b7:6a:3c:50:85:90:d1:d1:fc:4a:ec: 52:f3:e9:8b:c1:f1:2c:10:01:7f:65:6d:d3:94:4e:a6:c0:ae: 21:de:94:aa:be:a7:65:29:6f:27:81:5b:26:fd:97:b3:51:12: ea:01:d8:09:5f:63:2f:78:99:67:24:88:6f:6b:10:a3:9f:ae: b1:22:01:3e:11:03:c0:38:3d:05:3a:e5:c7:52:9a:75:a8:ef: 0c:47:2b:8a:cb:82:ac:4d:eb:47:ec:ed:21:c0:8c:65:5c:f2: 60:ae:05:72 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjMwNTIyMTgzNzIwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZiYjY1Zi0wMzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSCcluiDN+V7WfUCl06tH95JslGJYPm8VK3tfUvgq8MScYVv9Ga7y6K8QBfb X9U8gnZwvYvL1Tau/s2IUBGwBfPTZU/S2bfc1pLlRcszD4V3xjn+xLUAZmw+GkXz kBy7EP/Ch+lBd9vjMcZXusr7+IpJ59r7qT9lS4i5yPuCm+wHeFtkeyJJAI1EEu0g LV4IZ2XA+K7YyNV5sRtEK7L+zVm9c7bkj9a0QR1RETslyCJoAxtSLVg5x6KYTi1A H5FOEqrtR43S279J0sCxsPKb4mVrteMetnhWQRGqmxGpwrzmSCYb3Tb5NDvGHcTo PSIZyfTLY2JAIbPY4cn/25rrdwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEVQnbgO tapS+yeB8tvQ4Q0+h4VyMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY2MzkvQUVGMDY4Qjg5MEVDMTFFODgzQzNENDdCQzRGOUFFMDIvOUQxQ0YxNUU5 MEVFMTFFODk2MEU4NDgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnP74DBAJn2DADBALLX8QwDQYJKoZIhvcNAQELBQADggEB AJOuXDYKNfXD69R62xsdJJ6S/mn5tjoU1JczUnPr48wlDy5zsELno5rNUIemDeo+ 391Yb1msW1aQfGMjj1LyARJPVTvLL+2gqA4fIcsPqXDkm8Hvg18dOJS6mI+Kyvn/ xFKJXiSKPIVhWuPa8zJ9bRk9yEAhiac6+6Ro/P/oYATY848E8MWFj7eOMYa8lVhP x3qWd4XNaxe3ajxQhZDR0fxK7FLz6YvB8SwQAX9lbdOUTqbAriHelKq+p2UpbyeB Wyb9l7NREuoB2AlfYy94mWckiG9rEKOfrrEiAT4RA8A4PQU65cdSmnWo7wxHK4rL gqxN60fs7SHAjGVc8mCuBXI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:21:02 2024 by rpki-client on console-ams.rpki-client.org