$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/12F0D72E7BC111EA8503D815C4F9AE02.roa File: 12F0D72E7BC111EA8503D815C4F9AE02.roa (raw, json) Hash identifier: 9xnByo7Sq2JbCh26rYABthea3wwcEY/YYVIU5Myenn8= Subject key identifier: A9:74:05:F5:A0:38:C4:54:2C:0A:F9:AF:D4:84:61:6B:70:60:4A:7A Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0CE8 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/12F0D72E7BC111EA8503D815C4F9AE02.roa Signing time: Sun 24 Sep 2023 18:36:36 +0000 ROA not before: Sun 24 Sep 2023 18:36:36 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 2914 IP address blocks: 103.142.140.0/23 maxlen: 23 103.142.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3304 (0xce8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 24 18:36:36 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651081b3-286e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1b:39:d3:37:04:eb:c1:73:9c:cd:c2:d0:e9: e4:24:ff:98:8b:9e:90:43:49:5d:26:b9:c4:8d:88: 31:be:ea:e2:f0:a6:7f:cd:97:02:b4:cb:34:64:ac: ad:8f:ee:01:04:bc:b9:82:ca:93:a4:8e:e6:e3:9d: 9e:0a:e3:fa:a8:f6:73:43:87:62:cd:f5:0c:06:ef: ba:3b:c2:b7:64:ad:2e:87:8e:a9:14:b8:8d:3c:21: ea:45:b4:84:0c:cd:ee:8b:21:25:51:39:49:35:5b: 90:2d:39:13:8d:36:00:24:69:bb:3a:2a:bb:21:ad: 44:c7:63:ed:3b:b6:dd:b5:da:a5:13:11:97:d5:43: 30:73:65:6e:78:e9:f0:f8:84:d9:aa:af:95:1d:e8: d4:9d:9d:70:0c:b0:b1:5b:75:69:3f:b5:0b:7c:d2: 7c:4a:5e:c3:f5:cd:e0:a3:85:9e:d7:9f:1a:ef:04: 14:5e:87:b1:d2:03:d7:1d:1b:28:eb:65:a7:0f:99: 33:32:f8:c4:94:9b:5a:d2:99:20:ce:93:be:e2:80: b4:b9:30:21:68:95:bb:4e:24:be:b6:41:80:d3:fb: 2d:97:a9:fb:12:fa:f0:20:70:f4:24:12:0d:92:00: 8f:d9:19:b8:94:dd:28:c0:f7:fe:72:f3:3f:6b:d4: b3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:74:05:F5:A0:38:C4:54:2C:0A:F9:AF:D4:84:61:6B:70:60:4A:7A X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/12F0D72E7BC111EA8503D815C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.140.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:da:6d:52:52:5a:5e:ae:30:eb:82:ee:56:81:97:83:37:23: e3:aa:7d:91:1c:ce:e5:0d:55:c8:ff:5d:20:b5:f5:23:7d:9d: ce:35:52:7c:32:f6:3b:0f:a4:32:22:69:56:95:9f:6a:72:c7: 7e:93:44:08:c2:c8:e6:92:1d:bc:00:71:f8:44:7e:d6:c9:52: 1a:1f:6d:13:d6:cd:42:2d:07:46:4c:dc:ec:b2:c9:7e:33:fa: 6f:54:6e:d4:70:5c:76:82:f9:34:50:a1:0e:54:80:d3:cd:aa: 9d:e4:cd:8c:d6:71:ba:e4:88:7f:c4:1f:23:db:83:29:4f:44: 48:06:07:ad:d8:33:d4:6f:4f:06:5e:e3:23:c8:90:b1:09:08: df:a6:40:1f:83:dd:8d:0b:31:f3:b1:2f:29:f2:a1:60:c6:57: 41:b9:44:61:c5:61:ac:11:f9:16:e1:21:8d:8f:97:b1:0b:21: dd:b8:16:bb:ae:56:99:73:0b:7c:9f:cd:2a:37:cc:bf:19:33: ac:56:ee:4a:c0:0f:59:f1:fe:3c:66:59:bc:b1:c1:1e:3b:d6: bf:ab:f0:e8:c9:be:a4:37:01:19:54:31:9b:9f:fd:7e:3a:15: 95:e0:d0:5c:41:f4:f8:12:b7:ef:0b:f5:87:4c:31:c4:84:61: 57:69:a0:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjMwOTI0MTgzNjM2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEwODFiMy0yODZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRs50zcE68FznM3C0OnkJP+Yi56QQ0ldJrnEjYgxvuri8KZ/zZcCtMs0ZKyt j+4BBLy5gsqTpI7m452eCuP6qPZzQ4dizfUMBu+6O8K3ZK0uh46pFLiNPCHqRbSE DM3uiyElUTlJNVuQLTkTjTYAJGm7Oiq7Ia1Ex2PtO7bdtdqlExGX1UMwc2VueOnw +ITZqq+VHejUnZ1wDLCxW3VpP7ULfNJ8Sl7D9c3go4We158a7wQUXoex0gPXHRso 62WnD5kzMvjElJta0pkgzpO+4oC0uTAhaJW7TiS+tkGA0/stl6n7EvrwIHD0JBIN kgCP2Rm4lN0owPf+cvM/a9SzywIDAQABo4IClTCCApEwHQYDVR0OBBYEFKl0BfWg OMRULAr5r9SEYWtwYEp6MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMTJGMEQ3MkU3 QkMxMTFFQTg1MDNEODE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjowwDQYJKoZIhvcNAQELBQADggEBAAzabVJSWl6uMOuC 7laBl4M3I+OqfZEczuUNVcj/XSC19SN9nc41Unwy9jsPpDIiaVaVn2pyx36TRAjC yOaSHbwAcfhEftbJUhofbRPWzUItB0ZM3OyyyX4z+m9UbtRwXHaC+TRQoQ5UgNPN qp3kzYzWcbrkiH/EHyPbgylPREgGB63YM9RvTwZe4yPIkLEJCN+mQB+D3Y0LMfOx LynyoWDGV0G5RGHFYawR+RbhIY2Pl7ELId24FruuVplzC3yfzSo3zL8ZM6xW7krA D1nx/jxmWbyxwR471r+r8OjJvqQ3ARlUMZuf/X46FZXg0FxB9PgSt+8L9YdMMcSE YVdpoJ8= -----END CERTIFICATE-----Generated at Wed Apr 24 20:29:51 2024 by rpki-client on console-fra.rpki-client.org