$ rpki-client -vvf rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/D1D6719A10DD11EDBC7EA35FC4F9AE02.roa File: D1D6719A10DD11EDBC7EA35FC4F9AE02.roa (raw, json) Hash identifier: Fz/RMpDk968TAdjUDidOKmO8sac8I+wSxBaTE4As/E0= Subject key identifier: F5:27:E9:9F:65:63:C0:25:D5:FE:57:46:A2:FD:00:D2:58:D3:1A:BC Certificate issuer: /CN=A9115480/serialNumber=DBE1130BC7C6DBB2DB7CBBF14E01F6186FFDBD10 Certificate serial: 0139 Authority key identifier: DB:E1:13:0B:C7:C6:DB:B2:DB:7C:BB:F1:4E:01:F6:18:6F:FD:BD:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-ETC8fG27LbfLvxTgH2GG_9vRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/D1D6719A10DD11EDBC7EA35FC4F9AE02.roa Signing time: Fri 29 Sep 2023 03:24:34 +0000 ROA not before: Fri 29 Sep 2023 03:24:34 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 139043 IP address blocks: 103.191.122.0/24 maxlen: 24 103.191.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.crl rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-ETC8fG27LbfLvxTgH2GG_9vRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115480/serialNumber=DBE1130BC7C6DBB2DB7CBBF14E01F6186FFDBD10 Validity Not Before: Sep 29 03:24:34 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65164372-411f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2b:88:79:51:9a:1b:06:9d:2b:03:fd:46:40: 5d:ad:1f:a0:00:c8:b1:6b:29:3d:60:d6:01:25:cd: 7b:a8:e9:76:54:51:39:fc:b9:cb:71:65:3d:7f:7e: fd:55:17:2d:a8:29:0a:60:68:8d:14:91:61:54:10: a2:3b:5c:93:85:01:67:a9:1a:74:71:62:c4:cc:bc: c2:95:e4:09:81:9d:5a:a4:d7:5f:3b:f9:0d:ab:bf: 79:86:ef:f6:55:3b:3f:93:65:6e:41:49:71:0c:09: 22:9f:13:f5:4b:18:06:ba:c6:3f:66:d0:e3:da:23: 99:62:57:03:34:23:45:54:bc:83:96:92:fd:96:4b: 7f:32:ce:b3:32:d2:1d:ac:9e:40:f4:53:29:9e:df: a1:4c:bf:2b:7b:6a:cd:c1:a6:75:b8:fa:02:5f:3d: 02:1d:8f:0b:69:44:f9:b8:f4:28:28:06:14:71:06: da:17:f8:90:63:20:d2:64:0e:a8:24:c6:a6:8a:2e: 29:2b:ba:6c:d7:49:4b:a0:06:7c:1c:61:54:29:56: e5:1f:2f:1e:19:c0:6a:ae:7d:5e:70:dc:97:13:9d: ae:f4:82:fd:6d:18:db:7e:c2:5b:eb:3a:ac:91:d8: d0:c3:21:60:8f:3d:b8:04:2e:e8:b0:22:5c:bc:7f: 67:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:27:E9:9F:65:63:C0:25:D5:FE:57:46:A2:FD:00:D2:58:D3:1A:BC X509v3 Authority Key Identifier: keyid:DB:E1:13:0B:C7:C6:DB:B2:DB:7C:BB:F1:4E:01:F6:18:6F:FD:BD:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-ETC8fG27LbfLvxTgH2GG_9vRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/D1D6719A10DD11EDBC7EA35FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.122.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:2f:dd:32:16:74:b7:2d:eb:98:9c:97:5d:b2:8d:bb:ae:38: 00:78:5b:4c:49:45:93:8c:24:b3:e8:c4:1a:21:59:64:d5:13: 41:6d:76:77:f4:f0:4c:4d:8b:40:07:91:aa:4b:4e:ff:cf:8e: 40:19:85:8e:43:16:aa:f7:ad:6e:e2:77:a3:71:c2:2a:67:1d: 82:0e:e3:34:35:63:0b:21:e4:93:ee:d3:0a:df:99:ec:1e:d0: 2a:f8:66:b2:eb:f2:c6:d9:e7:55:65:dc:b5:4d:2c:69:91:ab: 84:c6:45:bf:7d:71:4c:45:02:b2:35:a6:4c:c2:e7:38:f7:4f: 12:f5:bd:43:dc:7e:8a:fe:c7:ac:5d:bc:e8:e7:20:71:bf:90: 14:24:10:b2:fc:98:fc:f7:cc:40:e8:b6:83:20:8e:15:a1:94: c1:d6:20:60:7b:e2:b5:df:9c:08:7e:5a:09:16:7b:5b:e1:62: f2:35:1f:46:31:b8:54:46:e6:e7:99:c5:a9:ae:39:b0:e2:e3: 69:d0:21:e3:fe:ad:8d:47:8f:7a:9b:56:6a:26:7e:62:98:29: d2:70:4c:cc:ca:05:c3:07:c2:a6:96:8e:b5:40:41:7d:4b:4e: 84:19:c5:c8:69:b1:7a:82:30:07:fe:9c:bc:ae:6d:c7:74:04: d1:d2:e8:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU0ODAxMTAvBgNVBAUTKERCRTExMzBCQzdDNkRCQjJEQjdDQkJGMTRFMDFGNjE4 NkZGREJEMTAwHhcNMjMwOTI5MDMyNDM0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE2NDM3Mi00MTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CuIeVGaGwadKwP9RkBdrR+gAMixayk9YNYBJc17qOl2VFE5/LnLcWU9f379 VRctqCkKYGiNFJFhVBCiO1yThQFnqRp0cWLEzLzCleQJgZ1apNdfO/kNq795hu/2 VTs/k2VuQUlxDAkinxP1SxgGusY/ZtDj2iOZYlcDNCNFVLyDlpL9lkt/Ms6zMtId rJ5A9FMpnt+hTL8re2rNwaZ1uPoCXz0CHY8LaUT5uPQoKAYUcQbaF/iQYyDSZA6o JMamii4pK7ps10lLoAZ8HGFUKVblHy8eGcBqrn1ecNyXE52u9IL9bRjbfsJb6zqs kdjQwyFgjz24BC7osCJcvH9nFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPUn6Z9l Y8Al1f5XRqL9ANJY0xq8MB8GA1UdIwQYMBaAFNvhEwvHxtuy23y78U4B9hhv/b0Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTQ4MC85NkYyOEFDNjEw REExMUVEOEE2OTlFMzJDNEY5QUUwMi8yLUVUQzhmRzI3TGJmTHZ4VGdIMkdHXzl2 UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItRVRDOGZHMjdMYmZMdnhUZ0gyR0dfOXZSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTU0ODAvOTZGMjhBQzYxMERBMTFFRDhBNjk5RTMyQzRGOUFFMDIvRDFENjcxOUEx MEREMTFFREJDN0VBMzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnv3owDQYJKoZIhvcNAQELBQADggEBAI0v3TIWdLct65ic l12yjbuuOAB4W0xJRZOMJLPoxBohWWTVE0Ftdnf08ExNi0AHkapLTv/PjkAZhY5D Fqr3rW7id6NxwipnHYIO4zQ1Ywsh5JPu0wrfmewe0Cr4ZrLr8sbZ51Vl3LVNLGmR q4TGRb99cUxFArI1pkzC5zj3TxL1vUPcfor+x6xdvOjnIHG/kBQkELL8mPz3zEDo toMgjhWhlMHWIGB74rXfnAh+WgkWe1vhYvI1H0YxuFRG5ueZxamuObDi42nQIeP+ rY1Hj3qbVmomfmKYKdJwTMzKBcMHwqaWjrVAQX1LToQZxchpsXqCMAf+nLyubcd0 BNHS6FA= -----END CERTIFICATE-----Generated at Sat May 25 06:05:05 2024 by rpki-client on console-ams.rpki-client.org