$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/12E1FD886C9C11EE9F3C5653C4F9AE02.roa File: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (raw, json) Hash identifier: Q1wAdHsPNoBN5dX8dDACoUxGegH09svUnk6okK+Gg1I= Subject key identifier: 11:32:F2:5E:A6:91:7D:0A:BD:D8:02:F5:50:D0:BF:D1:0A:E8:18:53 Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 02 Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/12E1FD886C9C11EE9F3C5653C4F9AE02.roa Signing time: Tue 17 Oct 2023 03:20:08 +0000 ROA not before: Tue 17 Oct 2023 03:20:08 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 151627 IP address blocks: 103.125.158.0/23 maxlen: 23 103.125.158.0/24 maxlen: 24 103.125.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Oct 17 03:20:08 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=652dfd68-1395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e8:eb:c7:8c:b9:4a:4a:e1:06:8d:00:a4:b4: b7:91:da:e4:3e:2f:10:fd:02:b6:e7:05:42:c0:b7: 38:0a:03:21:61:28:14:3d:bd:bd:c5:09:fa:dd:6b: ef:8a:a2:a8:90:12:87:a6:c5:07:be:57:c8:d6:7c: 81:9b:55:d2:50:98:9f:fb:86:6c:33:6d:69:d9:9c: 3d:af:4c:26:4b:b9:ae:3b:f9:23:40:e3:51:c7:1f: 4d:d2:66:72:ae:f6:45:35:7b:00:56:8d:7c:6d:8d: 85:5b:fc:91:3a:13:8a:d1:68:7d:2a:3d:37:ad:8b: a3:d1:c0:37:25:92:b0:c4:06:1f:67:ab:ab:99:9d: aa:e0:01:5d:b3:d7:4c:2f:14:c7:d7:0a:f8:d6:fb: b8:47:41:26:2d:58:b2:80:19:42:91:09:ea:83:e8: 2d:6a:c9:24:d4:c9:a2:d3:f8:b2:11:9f:b0:fe:af: 4b:9b:1f:89:56:97:05:7b:84:02:b1:45:ac:f2:88: 6a:5b:04:ba:17:f4:9e:eb:1c:2c:f6:ba:a7:4d:43: 69:2e:dd:00:28:68:a3:68:6f:54:c5:da:ef:f6:46: 18:d9:99:1c:e7:d2:34:10:dc:34:c1:df:ef:b8:97: e3:5b:b0:24:32:56:78:d5:30:a1:45:a4:c1:98:40: a4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:32:F2:5E:A6:91:7D:0A:BD:D8:02:F5:50:D0:BF:D1:0A:E8:18:53 X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/12E1FD886C9C11EE9F3C5653C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.158.0/23 Signature Algorithm: sha256WithRSAEncryption 98:44:ad:50:78:ab:af:df:ab:7e:be:de:a9:dd:22:38:cc:d1: 00:5a:fe:05:72:4d:04:15:3b:4e:88:6e:1b:24:fa:f8:6e:c6: 2c:44:18:08:1d:81:51:de:0f:e2:9b:a4:dd:b0:14:ee:90:1c: 2c:9f:84:10:42:9a:13:8e:62:20:05:4e:42:37:4d:d7:77:2b: 4a:e9:7e:ff:8f:3e:d1:31:1b:e7:46:9e:43:e3:9d:b7:5f:a6: 50:04:53:89:34:ab:2b:8f:bc:57:22:39:7e:79:6f:31:46:b9: a4:6e:96:fc:97:27:14:c2:63:37:c0:c3:c6:f6:e0:48:be:2f: 49:17:93:72:71:45:87:2a:14:43:c2:6c:b4:91:cf:16:18:09: 08:fa:0f:6d:3a:5b:4a:d2:b9:e4:27:33:73:1c:d1:b2:cc:0e: 82:13:62:a3:31:8f:ac:2d:97:21:dc:e7:d0:e8:49:32:e7:1e: 9e:66:e1:1b:89:15:3f:d4:8e:8c:81:cf:a7:00:20:15:14:8f: 88:90:ce:4e:df:c2:e4:0b:6d:50:bf:23:3f:f9:a8:13:a2:2a: 41:68:11:91:98:db:a3:17:84:aa:52:cd:16:d5:0c:11:fb:02: 56:59:3b:b7:cd:7a:b6:88:54:7e:c9:db:7a:5e:c4:03:d3:fa: 0b:93:3c:7d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OTUzQjExMC8GA1UEBRMoQTIyNDM2ODQyMjNEMkMyNUM2QUYxNzZBNUYwMkZBMDJC MjRGNjgwQjAeFw0yMzEwMTcwMzIwMDhaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MmRmZDY4LTEzOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV6OvHjLlKSuEGjQCktLeR2uQ+LxD9ArbnBULAtzgKAyFhKBQ9vb3FCfrda++K oqiQEoemxQe+V8jWfIGbVdJQmJ/7hmwzbWnZnD2vTCZLua47+SNA41HHH03SZnKu 9kU1ewBWjXxtjYVb/JE6E4rRaH0qPTeti6PRwDclkrDEBh9nq6uZnargAV2z10wv FMfXCvjW+7hHQSYtWLKAGUKRCeqD6C1qySTUyaLT+LIRn7D+r0ubH4lWlwV7hAKx RazyiGpbBLoX9J7rHCz2uqdNQ2ku3QAoaKNob1TF2u/2RhjZmRzn0jQQ3DTB3++4 l+NbsCQyVnjVMKFFpMGYQKQDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUETLyXqaR fQq92AL1UNC/0QroGFMwHwYDVR0jBBgwFoAUoiQ2hCI9LCXGrxdqXwL6ArJPaAsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5NTNCL0M4RDAzOTIyNkM5 QTExRUU4NUJGREY0RkM0RjlBRTAyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFB cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2lRMmhDSTlMQ1hHcnhkcVh3TDZBckpQYUFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi8xMkUxRkQ4ODZD OUMxMUVFOUYzQzU2NTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWd9njANBgkqhkiG9w0BAQsFAAOCAQEAmEStUHirr9+rfr7e qd0iOMzRAFr+BXJNBBU7TohuGyT6+G7GLEQYCB2BUd4P4puk3bAU7pAcLJ+EEEKa E45iIAVOQjdN13crSul+/48+0TEb50aeQ+Odt1+mUARTiTSrK4+8VyI5fnlvMUa5 pG6W/JcnFMJjN8DDxvbgSL4vSReTcnFFhyoUQ8JstJHPFhgJCPoPbTpbStK55Ccz cxzRsswOghNiozGPrC2XIdzn0OhJMucenmbhG4kVP9SOjIHPpwAgFRSPiJDOTt/C 5AttUL8jP/moE6IqQWgRkZjboxeEqlLNFtUMEfsCVlk7t816tohUfsnbel7EA9P6 C5M8fQ== -----END CERTIFICATE-----Generated at Fri Jun 7 09:41:10 2024 by rpki-client on console-ams.rpki-client.org