$ rpki-client -vvf rpki.apnic.net/member_repository/A91287DA/089251A87B2611EB8FEBC515C4F9AE02/9F033492FEAE11ECAA127057C4F9AE02.roa File: 9F033492FEAE11ECAA127057C4F9AE02.roa (raw, json) Hash identifier: /Ivo1Zrp1YzA+b2nHOqMIX2KKbB9wOU3QBB4yoafaMw= Subject key identifier: 3B:2F:6B:71:CD:F7:78:DA:EE:49:6D:7A:65:0B:61:E9:C8:59:A5:20 Certificate issuer: /CN=A91287DA/serialNumber=379D1547BBBF48C253C93E8D43267D4EFBD9B684 Certificate serial: 05C8 Authority key identifier: 37:9D:15:47:BB:BF:48:C2:53:C9:3E:8D:43:26:7D:4E:FB:D9:B6:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N50VR7u_SMJTyT6NQyZ9TvvZtoQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91287DA/089251A87B2611EB8FEBC515C4F9AE02/9F033492FEAE11ECAA127057C4F9AE02.roa Signing time: Mon 03 Jun 2024 01:04:43 +0000 ROA not before: Mon 03 Jun 2024 01:04:43 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139063 IP address blocks: 103.139.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91287DA/089251A87B2611EB8FEBC515C4F9AE02/N50VR7u_SMJTyT6NQyZ9TvvZtoQ.crl rsync://rpki.apnic.net/member_repository/A91287DA/089251A87B2611EB8FEBC515C4F9AE02/N50VR7u_SMJTyT6NQyZ9TvvZtoQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N50VR7u_SMJTyT6NQyZ9TvvZtoQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 22:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1480 (0x5c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91287DA/serialNumber=379D1547BBBF48C253C93E8D43267D4EFBD9B684 Validity Not Before: Jun 3 01:04:43 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665d16ab-0643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:98:34:25:bb:97:77:4a:ba:21:c5:39:c5:c5: 35:7e:0f:98:0c:77:9e:e8:4e:ac:60:e5:1e:0b:ec: 2d:39:3f:1f:a3:b4:a9:87:08:05:53:cb:d8:68:5e: bc:4a:ea:91:e0:67:54:d9:c8:c7:d7:5e:e6:ef:d9: 62:ba:20:c5:0f:8f:e5:c0:73:00:e7:d5:01:01:10: ff:46:99:45:55:6f:d7:65:b4:84:db:4f:49:98:3d: bc:e2:b3:65:6b:be:91:e4:e6:ce:c3:22:ba:0c:f0: 1e:2c:cd:ca:de:47:81:04:73:bc:a4:a1:91:6b:b2: b9:da:5b:13:d3:31:71:c4:68:80:45:b6:09:48:a8: 38:1c:b1:ca:eb:dc:b1:fb:b6:90:36:27:0f:d3:0e: e5:b5:ca:a4:c6:88:79:6f:cf:99:11:2b:a3:95:1b: af:ee:03:d1:98:2d:71:d5:a7:b8:90:38:d8:6b:d4: 00:39:86:e4:3f:40:56:4d:25:d3:29:b6:21:bc:fa: df:f9:e2:ba:ef:7e:65:72:c6:33:9d:a9:78:3e:e2: 30:d7:1b:73:45:68:13:1a:fd:c5:5e:e0:d9:95:01: 4c:5d:52:93:67:be:56:a3:99:20:75:16:b0:b8:56: 31:a2:b4:ac:0e:01:95:77:57:01:5c:71:b8:c9:fd: 97:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2F:6B:71:CD:F7:78:DA:EE:49:6D:7A:65:0B:61:E9:C8:59:A5:20 X509v3 Authority Key Identifier: keyid:37:9D:15:47:BB:BF:48:C2:53:C9:3E:8D:43:26:7D:4E:FB:D9:B6:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91287DA/089251A87B2611EB8FEBC515C4F9AE02/N50VR7u_SMJTyT6NQyZ9TvvZtoQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N50VR7u_SMJTyT6NQyZ9TvvZtoQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91287DA/089251A87B2611EB8FEBC515C4F9AE02/9F033492FEAE11ECAA127057C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.74.0/23 Signature Algorithm: sha256WithRSAEncryption 33:ba:4c:99:96:44:fc:e8:b0:fa:e8:8a:b7:e8:4d:5b:04:dc: d6:5d:6a:b2:ab:b5:ff:48:4f:42:bd:3f:de:b5:3b:77:01:6d: f6:69:da:74:f0:ca:e0:80:f8:4c:e4:32:3d:da:43:6b:71:9d: 6c:43:2f:5d:00:e7:16:b0:90:a3:52:64:8f:9f:85:b7:f2:87: 5e:88:82:b7:ed:a6:44:82:e8:5b:98:e5:09:df:be:2d:09:e2: 49:89:d8:35:95:d4:13:ac:97:18:10:ed:c9:d7:d4:08:fc:76: 05:f0:b3:d0:1b:5f:c2:15:5f:69:ff:81:ad:8c:41:0f:e3:99: f3:4c:d0:6c:21:20:d2:00:8a:96:64:ef:57:52:fd:6d:f7:f3: 62:6e:8a:d7:d4:aa:89:48:0b:cf:d3:eb:89:8b:cf:e2:9a:01: 90:22:7e:5c:5b:a1:a0:8b:ad:cb:64:e5:c3:bc:b3:1c:e2:7b: 8c:b5:e4:b4:1c:cd:96:53:ed:28:82:9d:a4:94:8e:8a:44:79: 4e:07:92:c5:52:22:cf:78:28:91:60:be:d8:b4:7f:de:21:8e: e5:22:bb:d4:03:39:dd:ed:88:40:e5:d6:8a:7b:d5:fa:b1:8e: 2c:02:95:6e:63:db:25:37:85:3c:52:86:42:fc:65:d1:5e:2d: 5c:0e:27:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3REExMTAvBgNVBAUTKDM3OUQxNTQ3QkJCRjQ4QzI1M0M5M0U4RDQzMjY3RDRF RkJEOUI2ODQwHhcNMjQwNjAzMDEwNDQzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkMTZhYi0wNjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZg0JbuXd0q6IcU5xcU1fg+YDHee6E6sYOUeC+wtOT8fo7SphwgFU8vYaF68 SuqR4GdU2cjH117m79liuiDFD4/lwHMA59UBARD/RplFVW/XZbSE209JmD284rNl a76R5ObOwyK6DPAeLM3K3keBBHO8pKGRa7K52lsT0zFxxGiARbYJSKg4HLHK69yx +7aQNicP0w7ltcqkxoh5b8+ZESujlRuv7gPRmC1x1ae4kDjYa9QAOYbkP0BWTSXT KbYhvPrf+eK6735lcsYznal4PuIw1xtzRWgTGv3FXuDZlQFMXVKTZ75Wo5kgdRaw uFYxorSsDgGVd1cBXHG4yf2X+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDsva3HN 93ja7kltemULYenIWaUgMB8GA1UdIwQYMBaAFDedFUe7v0jCU8k+jUMmfU772baE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODdEQS8wODkyNTFBODdC MjYxMUVCOEZFQkM1MTVDNEY5QUUwMi9ONTBWUjd1X1NNSlR5VDZOUXlaOVR2dlp0 b1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041MFZSN3VfU01KVHlUNk5ReVo5VHZ2WnRvUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg3REEvMDg5MjUxQTg3QjI2MTFFQjhGRUJDNTE1QzRGOUFFMDIvOUYwMzM0OTJG RUFFMTFFQ0FBMTI3MDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFni0owDQYJKoZIhvcNAQELBQADggEBADO6TJmWRPzosPro irfoTVsE3NZdarKrtf9IT0K9P961O3cBbfZp2nTwyuCA+EzkMj3aQ2txnWxDL10A 5xawkKNSZI+fhbfyh16IgrftpkSC6FuY5Qnfvi0J4kmJ2DWV1BOslxgQ7cnX1Aj8 dgXws9AbX8IVX2n/ga2MQQ/jmfNM0GwhINIAipZk71dS/W3382JuitfUqolIC8/T 64mLz+KaAZAiflxboaCLrctk5cO8sxzie4y15LQczZZT7SiCnaSUjopEeU4HksVS Is94KJFgvti0f94hjuUiu9QDOd3tiEDl1op71fqxjiwClW5j2yU3hTxShkL8ZdFe LVwOJ40= -----END CERTIFICATE-----Generated at Thu Jun 13 00:57:49 2024 by rpki-client on console-fra.rpki-client.org