$ rpki-client -vvf rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/89E0172A2F2B11EE8CD3F880C4F9AE02.roa File: 89E0172A2F2B11EE8CD3F880C4F9AE02.roa (raw, json) Hash identifier: 1qNz2tre6AtjjcbuRD8SKusvEs9JOlepYayXb4isNFs= Subject key identifier: AB:46:23:83:5D:4B:EB:87:4E:8F:78:EE:49:7B:07:07:F7:4C:63:FB Certificate issuer: /CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Certificate serial: 03 Authority key identifier: F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/89E0172A2F2B11EE8CD3F880C4F9AE02.roa Signing time: Sun 30 Jul 2023 22:50:54 +0000 ROA not before: Sun 30 Jul 2023 22:50:54 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140870 IP address blocks: 103.125.156.0/24 maxlen: 24 103.125.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Validity Not Before: Jul 30 22:50:54 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64c6e94e-132f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:57:f2:ce:56:11:fb:21:02:e7:c7:71:5f:f8: b1:03:af:bd:c9:d1:34:a5:e8:7e:ba:7f:85:74:9b: 80:0f:2f:47:9d:94:85:c4:36:78:26:d7:0c:cd:8a: 14:1e:61:24:5b:be:43:1a:ec:3f:13:4e:77:30:64: ee:f1:a5:a2:2d:ef:cc:08:ca:73:5c:5c:86:bd:8b: 55:d6:2f:96:f8:9b:cb:02:ca:dc:d0:e8:d7:6e:1c: f3:c7:8a:a8:29:a2:68:13:21:f5:3d:95:47:42:58: 57:48:0a:52:e7:6a:ec:d7:b8:e1:1c:26:9f:f7:23: 57:8d:44:fc:83:dc:77:67:c8:c1:e3:fe:76:e9:8d: 34:52:92:22:ea:15:b9:44:30:89:f2:17:07:97:c9: 90:99:5f:17:10:0a:69:80:29:e6:db:78:53:70:8e: fc:6d:00:5b:c4:08:e1:ea:05:f9:59:df:d8:e8:fa: 61:0f:a8:4d:6c:b4:e9:dd:7c:83:57:2d:20:a1:85: e3:74:b6:85:96:27:7d:a0:1a:be:c6:d1:1f:63:b8: e0:b5:f7:4a:4a:73:76:8a:0d:f7:c3:60:c9:8b:38: b9:ba:a8:63:9b:5e:82:37:2c:ff:32:ab:98:7d:e1: df:0a:df:dc:55:8e:bf:74:3f:92:6c:4d:e3:a7:e3: f9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:46:23:83:5D:4B:EB:87:4E:8F:78:EE:49:7B:07:07:F7:4C:63:FB X509v3 Authority Key Identifier: keyid:F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/89E0172A2F2B11EE8CD3F880C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.156.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:ee:f0:40:37:9d:c2:0e:14:34:50:c5:71:61:e8:a6:bb:3a: 39:bd:f3:1a:fd:2a:b3:ce:e5:05:26:0d:dc:69:2c:2c:f8:4a: 9d:05:06:51:c9:fb:bb:97:ae:ed:cf:fb:77:a0:0e:15:72:d4: 04:82:83:ac:b5:9c:63:5d:d6:48:01:a5:30:fb:f7:f8:cd:f4: eb:4c:f4:c2:fb:1c:4e:cd:e9:95:b9:00:7d:62:d9:3e:22:c9: 3e:23:8b:ff:3f:74:dd:00:42:f0:f7:dc:14:00:12:a0:a4:d5: 6d:c7:df:e9:06:c9:b6:3b:7f:f7:e5:e1:ad:29:72:9f:0a:bc: 12:02:60:cb:bd:a4:ae:27:33:c2:49:e0:1e:14:71:eb:f5:f5: 81:67:2b:ac:99:33:c4:f2:01:4b:0c:ce:21:5f:8a:13:98:68: 8c:b9:5d:54:72:18:24:aa:2c:c2:b8:4e:b5:eb:b7:dd:d1:82: 01:42:1c:4a:4a:91:f8:3f:ab:c6:16:95:a2:5a:f9:f7:b8:a4: d4:d5:10:c3:a1:21:f6:8b:67:b4:8d:2c:c4:ef:b8:ec:dd:b6: 30:f0:1b:8b:77:22:44:fd:25:58:18:7d:bc:29:f6:89:e6:2c: ed:6b:ac:76:25:4c:5d:9e:ff:9c:86:c0:82:9d:24:be:c1:9b: ff:f5:95:dc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjY0NDExMC8GA1UEBRMoRjg4MUQ5NEQ3QTI2OUFGNjg4NDgzQTY1MUQzNzM5MThF Nzg2NTAxRTAeFw0yMzA3MzAyMjUwNTRaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YzZlOTRlLTEzMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+V/LOVhH7IQLnx3Ff+LEDr73J0TSl6H66f4V0m4APL0edlIXENngm1wzNihQe YSRbvkMa7D8TTncwZO7xpaIt78wIynNcXIa9i1XWL5b4m8sCytzQ6NduHPPHiqgp omgTIfU9lUdCWFdIClLnauzXuOEcJp/3I1eNRPyD3HdnyMHj/nbpjTRSkiLqFblE MInyFweXyZCZXxcQCmmAKebbeFNwjvxtAFvECOHqBflZ39jo+mEPqE1stOndfINX LSChheN0toWWJ32gGr7G0R9juOC190pKc3aKDffDYMmLOLm6qGObXoI3LP8yq5h9 4d8K39xVjr90P5JsTeOn4/lfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUq0Yjg11L 64dOj3juSXsHB/dMY/swHwYDVR0jBBgwFoAU+IHZTXommvaISDplHTc5GOeGUB4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyNjQ0L0JGMTMxRDM0MkQw MDExRUU5RDEwRkYxOEM0RjlBRTAyLy1JSFpUWG9tbXZhSVNEcGxIVGM1R09lR1VC NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLUlIWlRYb21tdmFJU0RwbEhUYzVHT2VHVUI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjY0NC9CRjEzMUQzNDJEMDAxMUVFOUQxMEZGMThDNEY5QUUwMi84OUUwMTcyQTJG MkIxMUVFOENEM0Y4ODBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWd9nDANBgkqhkiG9w0BAQsFAAOCAQEATO7wQDedwg4UNFDF cWHoprs6Ob3zGv0qs87lBSYN3GksLPhKnQUGUcn7u5eu7c/7d6AOFXLUBIKDrLWc Y13WSAGlMPv3+M3060z0wvscTs3plbkAfWLZPiLJPiOL/z903QBC8PfcFAASoKTV bcff6QbJtjt/9+XhrSlynwq8EgJgy72kriczwkngHhRx6/X1gWcrrJkzxPIBSwzO IV+KE5hojLldVHIYJKoswrhOteu33dGCAUIcSkqR+D+rxhaVolr597ik1NUQw6Eh 9otntI0sxO+47N22MPAbi3ciRP0lWBh9vCn2ieYs7WusdiVMXZ7/nIbAgp0kvsGb //WV3A== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:34 2024 by rpki-client on console-fra.rpki-client.org