$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/5D4B0B5E153611ECA897546BC4F9AE02.roa File: 5D4B0B5E153611ECA897546BC4F9AE02.roa (raw, json) Hash identifier: DqlBCHLgYBfwa2Dql2gd6kD09NgBwEMrDmWuDNyQkRc= Subject key identifier: 0B:7C:AC:A5:7A:55:58:15:78:40:FF:33:9A:69:79:F5:BA:DD:88:B0 Certificate issuer: /CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Certificate serial: 0392 Authority key identifier: 39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/5D4B0B5E153611ECA897546BC4F9AE02.roa Signing time: Sat 15 Jul 2023 00:41:30 +0000 ROA not before: Sat 15 Jul 2023 00:41:30 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140927 IP address blocks: 103.152.216.0/23 maxlen: 23 103.152.216.0/24 maxlen: 24 103.152.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 914 (0x392) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Validity Not Before: Jul 15 00:41:30 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b1eb3a-0cf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3c:da:40:d7:91:1e:1a:c0:c8:73:bd:a1:d3: 8f:3b:f6:c4:9f:0c:6b:44:48:30:84:88:b7:6b:7a: 85:df:df:a9:ce:3e:5b:ea:59:fb:13:cb:41:2b:5a: e7:48:55:7a:4b:6d:6f:c3:f5:95:16:ab:c0:39:29: a9:84:20:a4:df:31:ea:44:ce:1a:57:19:ac:98:2f: 06:6d:a3:4d:5b:b9:ef:c1:47:9c:f3:8f:e3:26:81: 81:a2:e0:bf:22:c4:90:5c:76:2f:0b:90:7c:63:08: d8:67:5f:9f:8a:11:8e:51:a3:21:59:d7:f2:48:28: e7:a9:21:76:bb:ce:f7:5f:13:e2:0f:15:61:19:9d: b9:03:44:30:ec:b2:eb:b6:c8:15:b2:76:a0:09:00: 44:f7:d4:0f:c5:7a:8f:9e:d0:ba:28:3a:20:21:9c: 10:e4:eb:d3:25:e1:ea:c0:a3:69:e4:2c:7d:83:20: 28:8f:eb:77:bd:61:f2:9c:9c:3f:10:50:fd:37:26: 95:d2:a4:ee:8a:02:e4:db:02:f8:53:3c:98:95:d8: 79:bf:34:53:71:ef:78:94:51:37:c7:02:df:64:ff: f0:3c:78:11:56:95:68:e8:71:cf:97:46:08:49:3a: 04:3e:71:69:32:6c:5b:68:27:c5:80:50:cf:0f:fb: 5d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:7C:AC:A5:7A:55:58:15:78:40:FF:33:9A:69:79:F5:BA:DD:88:B0 X509v3 Authority Key Identifier: keyid:39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/5D4B0B5E153611ECA897546BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.216.0/23 Signature Algorithm: sha256WithRSAEncryption ad:e2:d6:8c:22:cc:7c:3f:97:5b:1e:ea:80:45:e6:a1:e4:00: 6c:7a:66:19:ce:6b:de:12:26:d0:3e:9c:f0:01:33:82:70:d8: 43:fc:69:23:28:f2:92:85:1c:b6:4d:96:48:33:69:ed:87:c5: 84:84:4c:63:41:47:58:2f:96:73:9f:b3:05:1a:16:da:a3:e3: 5a:93:e1:93:be:4d:86:ec:46:22:cb:5a:53:b3:59:2c:d4:29: 50:2c:b2:c6:e7:2a:21:2f:2f:45:a4:db:7f:2c:58:36:a9:22: 4e:9f:ff:c7:fd:2a:90:cc:b0:11:f1:02:7d:f7:79:4c:40:12: 00:f6:fc:99:8a:de:c4:81:dc:1a:d2:5e:0a:e6:b5:84:82:85: 2d:80:2c:fd:10:6a:e7:9a:dc:c4:96:c2:e9:e6:18:98:41:24: e2:eb:ac:f4:49:e3:3d:54:c9:0b:11:33:65:07:ce:da:8f:a9: 64:5b:f3:be:0e:c4:d3:b5:f9:20:0c:92:57:2f:63:c4:a6:5a: d6:0b:14:7b:58:91:ee:82:21:90:fa:ed:7a:8d:96:a2:45:b4: ac:2c:a3:dd:57:d7:5f:66:6d:46:06:91:1d:03:dc:ac:5f:aa: 0f:16:f7:f7:fa:e8:8a:b6:5a:c3:88:68:33:10:82:e9:97:2c: 7c:d6:5f:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0MxMTAvBgNVBAUTKDM5QkIwQkZGMTRGQjZCNEI1Rjg2MTM3Mjc0RDQyNTEz RjM3NTNBNDcwHhcNMjMwNzE1MDA0MTMwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxZWIzYS0wY2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjzaQNeRHhrAyHO9odOPO/bEnwxrREgwhIi3a3qF39+pzj5b6ln7E8tBK1rn SFV6S21vw/WVFqvAOSmphCCk3zHqRM4aVxmsmC8GbaNNW7nvwUec84/jJoGBouC/ IsSQXHYvC5B8YwjYZ1+fihGOUaMhWdfySCjnqSF2u873XxPiDxVhGZ25A0Qw7LLr tsgVsnagCQBE99QPxXqPntC6KDogIZwQ5OvTJeHqwKNp5Cx9gyAoj+t3vWHynJw/ EFD9NyaV0qTuigLk2wL4UzyYldh5vzRTce94lFE3xwLfZP/wPHgRVpVo6HHPl0YI SToEPnFpMmxbaCfFgFDPD/tdEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAt8rKV6 VVgVeED/M5ppefW63YiwMB8GA1UdIwQYMBaAFDm7C/8U+2tLX4YTcnTUJRPzdTpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDQy9GODlDM0VCNjE1 MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2EwdGZoaE55ZE5RbEVfTjFP a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ic0xfeFQ3YTB0ZmhoTnlkTlFsRV9OMU9rYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI0Q0MvRjg5QzNFQjYxNTMxMTFFQ0I1OTRGQjdEQzRGOUFFMDIvNUQ0QjBCNUUx NTM2MTFFQ0E4OTc1NDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmNgwDQYJKoZIhvcNAQELBQADggEBAK3i1owizHw/l1se 6oBF5qHkAGx6ZhnOa94SJtA+nPABM4Jw2EP8aSMo8pKFHLZNlkgzae2HxYSETGNB R1gvlnOfswUaFtqj41qT4ZO+TYbsRiLLWlOzWSzUKVAsssbnKiEvL0Wk238sWDap Ik6f/8f9KpDMsBHxAn33eUxAEgD2/JmK3sSB3BrSXgrmtYSChS2ALP0Qauea3MSW wunmGJhBJOLrrPRJ4z1UyQsRM2UHztqPqWRb874OxNO1+SAMklcvY8SmWtYLFHtY ke6CIZD67XqNlqJFtKwso91X119mbUYGkR0D3Kxfqg8W9/f66Iq2WsOIaDMQgumX LHzWX5I= -----END CERTIFICATE-----Generated at Sat May 11 03:57:05 2024 by rpki-client on console-fra.rpki-client.org