$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/A135DDD4162211EC9B4B6F77C4F9AE02.roa File: A135DDD4162211EC9B4B6F77C4F9AE02.roa (raw, json) Hash identifier: ABQ35rht8dRSIjduImCnOzg+uGJxj7hI65HorgyDMg4= Subject key identifier: D3:2D:53:D6:23:DF:A2:92:A7:33:90:44:0A:F8:8B:1A:B6:76:02:C4 Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 154C Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/A135DDD4162211EC9B4B6F77C4F9AE02.roa Signing time: Tue 30 Apr 2024 17:55:29 +0000 ROA not before: Tue 30 Apr 2024 17:55:29 +0000 ROA not after: Thu 29 Aug 2024 00:00:00 +0000 asID: 137464 IP address blocks: 103.109.236.0/24 maxlen: 24 103.109.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5452 (0x154c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Apr 30 17:55:29 2024 GMT Not After : Aug 29 00:00:00 2024 GMT Subject: CN=66313091-b260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b4:5a:f1:c8:91:bf:be:2d:e5:79:8d:f9:0f: 9b:58:42:77:b0:50:2a:58:b4:39:ac:52:2d:ff:9c: c6:a6:b4:49:74:09:3a:35:51:00:ac:ae:6d:4a:03: bc:13:ed:66:0b:92:dd:23:0c:97:88:be:f2:c7:41: 99:3f:6b:e1:9a:42:58:19:e3:00:7f:50:f5:b2:29: 2f:eb:b5:f4:2b:20:b6:5e:0c:b0:f8:8f:38:55:e0: 3e:4e:2b:c5:34:a3:ef:78:3f:57:19:b4:cc:e7:42: 5f:68:cc:d2:48:35:64:8e:e5:69:57:49:c3:88:fe: 00:bc:47:64:5a:87:66:1b:6b:0a:0c:b6:72:31:06: dc:b2:cb:8b:8f:ef:da:6e:ac:84:e1:de:f1:cf:58: ce:a3:18:95:b5:f1:e0:b9:e4:db:e1:38:be:fc:1d: bc:c1:ec:c6:30:df:f3:69:d9:fa:bf:bb:88:4e:98: 11:cf:65:2e:9c:c1:fe:53:35:fe:a8:4c:0b:d0:8c: fd:d8:03:43:ba:d9:56:cb:5c:26:47:ce:fc:9f:25: 81:88:ab:33:cf:9d:ab:36:3b:ab:9d:4c:0f:ba:df: 17:6a:74:fd:8e:26:82:86:f7:75:75:c9:74:7b:25: 2a:b6:3a:62:44:89:4b:fc:fb:e7:88:74:04:b8:83: fe:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:2D:53:D6:23:DF:A2:92:A7:33:90:44:0A:F8:8B:1A:B6:76:02:C4 X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/A135DDD4162211EC9B4B6F77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.236.0/23 Signature Algorithm: sha256WithRSAEncryption bd:bb:cb:7b:d2:02:3a:57:1c:ec:1a:bc:05:99:75:48:a6:95: d9:13:4e:1a:02:f5:4c:16:7e:d4:1d:c9:07:50:63:40:8d:20: 4d:11:26:ec:bc:a1:9b:c0:0c:8b:b6:76:07:c8:35:c6:83:d4: 86:26:92:d1:19:81:93:af:4a:1e:77:3d:66:6d:e0:1b:13:2b: 9f:ac:86:da:6f:09:26:75:5d:68:d0:2d:bb:b4:b2:46:ca:6c: 81:23:72:d4:3f:c7:09:e7:91:90:46:01:ab:28:75:2e:30:c0: 94:3f:66:89:c2:5a:2c:9a:3d:1e:7f:e9:4d:9a:99:ee:e5:50: 52:59:71:c5:45:ee:7e:46:de:95:fb:79:77:6c:2b:e2:a6:41: e3:e6:41:bc:56:8f:1d:da:72:30:3b:55:ce:76:71:61:ad:3c: 9e:ab:7a:41:3a:ba:d2:10:ea:a5:11:a3:8c:22:3e:23:5d:33: 98:23:04:d5:04:6e:0c:ba:f9:ee:26:36:31:bf:a5:95:28:ee: 5a:8a:3e:a3:3a:3c:07:2f:19:d9:1c:e1:4b:66:6f:18:76:cd: e9:a7:03:a2:08:9a:06:52:03:82:ee:23:05:7b:5c:0f:af:86: 2a:d0:78:55:73:3f:dd:c9:05:f2:7d:9a:92:07:6f:ea:b2:5c: 97:1b:ba:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjQwNDMwMTc1NTI5WhcNMjQwODI5MDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMzA5MS1iMjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rRa8ciRv74t5XmN+Q+bWEJ3sFAqWLQ5rFIt/5zGprRJdAk6NVEArK5tSgO8 E+1mC5LdIwyXiL7yx0GZP2vhmkJYGeMAf1D1sikv67X0KyC2Xgyw+I84VeA+TivF NKPveD9XGbTM50JfaMzSSDVkjuVpV0nDiP4AvEdkWodmG2sKDLZyMQbcssuLj+/a bqyE4d7xz1jOoxiVtfHgueTb4Ti+/B28wezGMN/zadn6v7uITpgRz2UunMH+UzX+ qEwL0Iz92ANDutlWy1wmR878nyWBiKszz52rNjurnUwPut8XanT9jiaChvd1dcl0 eyUqtjpiRIlL/PvniHQEuIP+fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNMtU9Yj 36KSpzOQRAr4ixq2dgLEMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY3MUYvMUVEQzEwQkMxNzFFMTFFODg1NkJDNDQzQzRGOUFFMDIvQTEzNURERDQx NjIyMTFFQzlCNEI2Rjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnbewwDQYJKoZIhvcNAQELBQADggEBAL27y3vSAjpXHOwa vAWZdUimldkTThoC9UwWftQdyQdQY0CNIE0RJuy8oZvADIu2dgfINcaD1IYmktEZ gZOvSh53PWZt4BsTK5+shtpvCSZ1XWjQLbu0skbKbIEjctQ/xwnnkZBGAasodS4w wJQ/ZonCWiyaPR5/6U2ame7lUFJZccVF7n5G3pX7eXdsK+KmQePmQbxWjx3acjA7 Vc52cWGtPJ6rekE6utIQ6qURo4wiPiNdM5gjBNUEbgy6+e4mNjG/pZUo7lqKPqM6 PAcvGdkc4Utmbxh2zemnA6IImgZSA4LuIwV7XA+vhirQeFVzP93JBfJ9mpIHb+qy XJcbuiI= -----END CERTIFICATE-----Generated at Fri May 31 19:47:53 2024 by rpki-client on console-fra.rpki-client.org