$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/4E150C0890FD11E98DB54881C4F9AE02.roa File: 4E150C0890FD11E98DB54881C4F9AE02.roa (raw, json) Hash identifier: WbUUTzfSyCpyqPb3jZBov7io1LDDEMhW0G0g1zGhi5E= Subject key identifier: D3:18:EF:3F:83:D2:75:0D:90:42:55:1D:02:43:D4:0B:3D:2D:B3:47 Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0DD9 Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/4E150C0890FD11E98DB54881C4F9AE02.roa Signing time: Tue 28 May 2024 18:57:47 +0000 ROA not before: Tue 28 May 2024 18:57:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139196 IP address blocks: 103.139.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3545 (0xdd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: May 28 18:57:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6656292b-f28b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a3:5b:69:24:d1:d1:69:b5:ce:8e:80:8b:6e: 86:9c:c5:45:d5:b3:a9:16:3a:aa:ae:98:d8:69:58: 8c:c5:e3:8c:b4:63:5c:81:5b:55:6e:ca:d7:cb:f8: d5:38:c2:3d:41:f9:17:9d:ed:6c:66:99:9f:a1:84: 68:82:7b:e3:d9:01:ce:f6:66:c1:e6:8d:f3:67:c3: b3:34:5c:50:68:49:76:2f:6a:a7:9a:a1:ec:90:f7: 57:c0:1e:d8:51:b0:47:f5:1f:e8:78:1b:78:f5:09: 32:ca:e7:7a:25:87:54:b4:e7:8f:38:2a:f0:cc:bb: ad:31:56:55:40:f7:49:f7:51:a8:22:d0:bb:91:6f: 31:54:2c:92:a0:35:c6:43:32:bc:17:5f:1c:c8:5d: ed:59:04:99:1e:67:9b:82:40:11:a1:82:58:70:2c: ea:c7:90:83:50:be:f7:e3:5a:ea:c2:ef:b0:f9:e9: 7b:57:12:95:31:f0:8e:b6:37:5c:2e:c4:e4:22:23: bf:60:ed:b3:32:63:13:77:76:c0:a6:86:c7:6e:7f: e2:89:be:1c:9c:37:f0:cb:80:3e:5a:53:d1:fe:a4: dc:c0:15:4f:42:7c:75:0a:09:05:ca:a1:34:3f:73: 07:12:13:ec:ce:21:85:b5:5c:35:2e:60:ff:bc:2b: 9b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:18:EF:3F:83:D2:75:0D:90:42:55:1D:02:43:D4:0B:3D:2D:B3:47 X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/4E150C0890FD11E98DB54881C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.152.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:69:dd:f4:20:b4:d1:30:d1:ed:9f:06:59:57:f1:48:fc:d7: 62:cb:48:a1:ff:2f:67:2e:46:67:d2:00:00:b3:15:d3:0f:ac: 0e:ff:be:e1:77:c7:dc:55:18:db:81:53:ac:fe:23:eb:98:6a: a5:0e:7f:2f:30:57:79:02:eb:1b:43:b5:c2:6d:24:c4:d9:3d: 34:76:c0:d6:ee:6a:d4:35:e3:57:0f:d1:6a:72:13:61:9f:cb: 10:bc:4b:77:42:c1:d3:12:3c:80:b7:1c:a4:5f:a9:4e:e1:83: 38:26:d7:ec:bc:1f:c2:78:4d:78:99:35:eb:6c:13:f4:a7:31: a0:c1:7f:9b:9d:ab:e2:1b:25:1a:fb:94:6a:b8:28:cf:cb:c1: b5:88:80:97:32:6f:00:02:c5:22:a6:a5:eb:de:21:e8:cc:73: f5:7c:b2:f4:e8:b6:8e:2c:7a:41:df:cb:f8:5b:ef:22:1a:a2: 40:a9:39:76:b7:8a:d0:42:d4:a7:3f:6c:51:3d:e9:62:0b:c9: ab:a1:43:2c:07:a1:dd:3d:52:5c:28:44:c5:53:f2:54:6f:e2: 12:b6:11:c3:f6:ec:01:ae:8a:bd:1a:33:82:8f:53:0c:3f:e7: a1:e0:3d:d8:f3:89:fe:d8:a7:84:e8:80:c7:bb:23:cf:d2:2c: 79:52:28:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjQwNTI4MTg1NzQ3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2MjkyYi1mMjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6NbaSTR0Wm1zo6Ai26GnMVF1bOpFjqqrpjYaViMxeOMtGNcgVtVbsrXy/jV OMI9QfkXne1sZpmfoYRognvj2QHO9mbB5o3zZ8OzNFxQaEl2L2qnmqHskPdXwB7Y UbBH9R/oeBt49Qkyyud6JYdUtOePOCrwzLutMVZVQPdJ91GoItC7kW8xVCySoDXG QzK8F18cyF3tWQSZHmebgkARoYJYcCzqx5CDUL7341rqwu+w+el7VxKVMfCOtjdc LsTkIiO/YO2zMmMTd3bApobHbn/iib4cnDfwy4A+WlPR/qTcwBVPQnx1CgkFyqE0 P3MHEhPsziGFtVw1LmD/vCubRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNMY7z+D 0nUNkEJVHQJD1As9LbNHMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkMxQjgvRkJERTk5RkE5MEZCMTFFOTkyRDU5ODdGQzRGOUFFMDIvNEUxNTBDMDg5 MEZEMTFFOThEQjU0ODgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABni5gwDQYJKoZIhvcNAQELBQADggEBAI9p3fQgtNEw0e2f BllX8Uj812LLSKH/L2cuRmfSAACzFdMPrA7/vuF3x9xVGNuBU6z+I+uYaqUOfy8w V3kC6xtDtcJtJMTZPTR2wNbuatQ141cP0WpyE2GfyxC8S3dCwdMSPIC3HKRfqU7h gzgm1+y8H8J4TXiZNetsE/SnMaDBf5udq+IbJRr7lGq4KM/LwbWIgJcybwACxSKm peveIejMc/V8svToto4sekHfy/hb7yIaokCpOXa3itBC1Kc/bFE96WILyauhQywH od09UlwoRMVT8lRv4hK2EcP27AGuir0aM4KPUww/56HgPdjzif7Yp4TogMe7I8/S LHlSKIw= -----END CERTIFICATE-----Generated at Fri May 31 19:47:54 2024 by rpki-client on console-fra.rpki-client.org