$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/89959B0E276111EE9F1CE340C4F9AE02.roa File: 89959B0E276111EE9F1CE340C4F9AE02.roa (raw, json) Hash identifier: BMnGpwhdtRpA+hG3RaslqYT4B3WY3vZsr2zSarOjN/I= Subject key identifier: C3:3B:A6:BE:C2:45:5E:8E:C8:11:50:35:04:30:D7:BB:EA:75:DD:BE Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 04B8 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/89959B0E276111EE9F1CE340C4F9AE02.roa Signing time: Tue 05 Sep 2023 00:51:34 +0000 ROA not before: Tue 05 Sep 2023 00:51:34 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 150716 IP address blocks: 43.254.164.0/24 maxlen: 24 103.240.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1208 (0x4b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 5 00:51:34 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f67b96-e85a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:18:61:4e:56:c6:f5:c5:4c:32:3b:69:d1:07: 9a:f7:5f:29:0d:ac:2b:8c:ed:c9:02:4f:ec:0b:01: 88:cc:0d:e1:04:e6:95:e4:a0:23:da:6a:5e:90:41: 97:fb:77:db:05:f6:66:fc:fd:df:0d:33:8f:dd:2f: 56:b2:e4:c9:42:2f:ff:c6:6c:da:71:7d:9b:11:c6: 1d:b7:1b:05:cb:78:44:59:7d:40:7d:c0:85:0c:86: 22:74:49:68:67:db:13:53:4b:8a:01:75:8c:2e:66: 26:ea:52:12:a0:a9:f0:d1:b7:30:e7:8b:0f:80:23: 50:ed:22:14:21:1f:12:de:73:ab:7e:77:96:80:26: 82:65:55:0b:3a:d8:86:c0:df:10:7f:ca:59:83:45: fe:b8:cb:13:dd:56:92:a1:d6:2b:6c:25:aa:ce:72: ca:47:67:7a:32:3c:75:64:43:e5:84:c8:5b:f2:78: 0f:85:ed:10:3e:c3:78:14:43:bc:e2:c3:82:52:b6: 53:62:4a:b9:28:24:c8:00:29:1d:1d:c2:6d:83:d9: 52:55:14:f5:9e:9d:8f:36:3a:b9:38:cf:54:be:ca: 5f:d3:8c:e9:c2:64:c5:dc:36:8a:b5:8a:00:83:cc: 8b:d1:30:0e:bc:f7:69:b2:7b:15:bc:7d:e3:b5:22: f5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:3B:A6:BE:C2:45:5E:8E:C8:11:50:35:04:30:D7:BB:EA:75:DD:BE X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/89959B0E276111EE9F1CE340C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.164.0/24 103.240.196.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:c3:be:ce:25:a4:24:a8:96:a4:6a:1e:c7:96:e8:62:b1:0f: c0:49:7d:cf:e4:af:bf:cc:75:74:28:34:07:63:c7:9f:ba:02: 8f:32:93:1b:e6:dd:26:3f:34:35:c6:e9:63:00:58:37:22:e1: a9:63:55:0f:6a:67:6f:34:7e:58:b6:ac:ee:f6:9e:51:8a:87: 90:ae:58:f8:09:26:bf:a6:1e:74:94:fa:84:92:cb:ed:e0:a5: 03:f3:8c:bd:ba:ec:d6:85:25:73:5b:49:ca:c3:16:37:e7:69: cd:f1:e1:fa:35:1d:6a:d8:c2:ab:5e:8d:1c:03:5f:96:a5:eb: 80:cf:90:7f:ac:34:b7:ed:54:b8:4a:3b:0e:cc:45:94:f9:11: 91:b4:b7:a0:ec:9a:fc:0f:80:9b:ef:c8:8a:e6:5c:b1:5d:02: e9:b8:e2:56:55:e9:f6:52:aa:b3:6b:50:20:09:38:bd:b3:39: 61:91:e2:a1:b7:4e:67:f7:7e:c1:a1:ba:f0:2d:d1:a1:1a:87: d7:29:15:6f:12:c9:58:44:59:0a:4f:d8:31:06:99:2d:50:3b: 0e:ed:f9:4d:bb:61:c6:be:0a:f3:a6:36:a6:82:bb:cd:2d:04: d2:84:dc:53:f4:b7:df:0a:e2:45:a8:2b:88:ef:1b:06:04:8f: 2f:92:94:4c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjMwOTA1MDA1MTM0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2N2I5Ni1lODVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xhhTlbG9cVMMjtp0Qea918pDawrjO3JAk/sCwGIzA3hBOaV5KAj2mpekEGX +3fbBfZm/P3fDTOP3S9WsuTJQi//xmzacX2bEcYdtxsFy3hEWX1AfcCFDIYidElo Z9sTU0uKAXWMLmYm6lISoKnw0bcw54sPgCNQ7SIUIR8S3nOrfneWgCaCZVULOtiG wN8Qf8pZg0X+uMsT3VaSodYrbCWqznLKR2d6Mjx1ZEPlhMhb8ngPhe0QPsN4FEO8 4sOCUrZTYkq5KCTIACkdHcJtg9lSVRT1np2PNjq5OM9Uvspf04zpwmTF3DaKtYoA g8yL0TAOvPdpsnsVvH3jtSL1KwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMM7pr7C RV6OyBFQNQQw17vqdd2+MB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvODk5NTlCMEUy NzYxMTFFRTlGMUNFMzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr/qQDBABn8MQwDQYJKoZIhvcNAQELBQADggEBAF3Dvs4l pCSolqRqHseW6GKxD8BJfc/kr7/MdXQoNAdjx5+6Ao8ykxvm3SY/NDXG6WMAWDci 4aljVQ9qZ280fli2rO72nlGKh5CuWPgJJr+mHnSU+oSSy+3gpQPzjL267NaFJXNb ScrDFjfnac3x4fo1HWrYwqtejRwDX5al64DPkH+sNLftVLhKOw7MRZT5EZG0t6Ds mvwPgJvvyIrmXLFdAum44lZV6fZSqrNrUCAJOL2zOWGR4qG3Tmf3fsGhuvAt0aEa h9cpFW8SyVhEWQpP2DEGmS1QOw7t+U27Yca+CvOmNqaCu80tBNKE3FP0t98K4kWo K4jvGwYEjy+SlEw= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:01 2024 by rpki-client on console-fra.rpki-client.org