$ rpki-client -vvf rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/738195EEB11811ED997EA457C4F9AE02.roa File: 738195EEB11811ED997EA457C4F9AE02.roa (raw, json) Hash identifier: av50KdE8ZgZ7A6ozI//fdNaXcazS4Szqv0F3J1QHjug= Subject key identifier: 6A:F0:84:82:30:43:E0:8F:90:34:8D:53:D4:D4:44:0F:54:74:6D:F2 Certificate issuer: /CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Certificate serial: 58 Authority key identifier: 26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/738195EEB11811ED997EA457C4F9AE02.roa Signing time: Tue 01 Aug 2023 05:24:41 +0000 ROA not before: Tue 01 Aug 2023 05:24:41 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 134926 IP address blocks: 103.189.88.0/24 maxlen: 24 103.189.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 05:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Validity Not Before: Aug 1 05:24:41 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c89719-dbee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:64:1a:c0:19:4d:32:d3:e7:ba:31:5c:b9:a7: 6e:78:e9:c9:ec:ec:58:f7:1e:72:b7:16:f2:59:f8: 53:da:bd:83:93:14:6e:92:b8:45:e1:42:57:4a:f2: b6:be:aa:ac:6c:5e:91:f2:54:f2:68:84:17:96:fc: 01:c0:bc:0a:04:8a:67:64:04:c8:83:ef:44:c4:bf: dc:cb:71:72:a9:25:4f:0c:f7:d9:80:a7:8c:d6:2b: 83:70:b5:21:96:e3:0b:b6:00:ef:b9:3b:6c:97:ce: f5:c1:a1:18:46:df:4a:01:f2:b6:d0:14:f0:2e:3f: 0a:4d:cf:fe:ed:a4:52:da:02:4a:7f:73:84:a3:74: eb:c7:25:d0:35:09:d1:40:b7:b5:97:0b:a8:1d:a2: c1:7d:93:d1:6b:8c:7a:20:3d:df:2d:40:d6:e9:8e: 21:67:58:da:b9:fc:14:19:59:5b:f5:6c:c7:be:18: ea:92:51:c0:94:5a:1d:17:1f:21:44:61:48:c0:43: 3e:69:3a:49:03:ff:b9:eb:ad:6e:35:37:7f:7f:69: 55:78:ce:0c:93:75:a6:d1:b7:af:96:c5:d3:62:dc: 34:ea:33:ec:38:11:54:b5:93:7e:d3:cc:83:1b:69: 75:69:62:ff:dd:6a:35:14:ed:36:9b:bd:e2:aa:2b: 92:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F0:84:82:30:43:E0:8F:90:34:8D:53:D4:D4:44:0F:54:74:6D:F2 X509v3 Authority Key Identifier: keyid:26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/738195EEB11811ED997EA457C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.88.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:5f:5f:1b:7f:2e:d9:8a:71:1b:9c:de:3e:ab:6c:43:b2:cc: 38:13:22:81:7a:fc:1a:b3:a3:76:7c:a9:88:43:1f:91:dc:9d: 62:16:53:8f:93:a9:b4:7e:da:f8:02:8c:e4:7f:3d:02:36:00: 91:7b:06:92:d0:53:39:3d:ef:97:19:eb:3e:c7:a7:ae:2f:98: f9:1a:c0:6b:c1:de:7f:0a:57:be:8f:68:84:ab:4c:60:5c:ea: 47:82:69:2d:2e:88:a6:5d:5d:a7:26:35:30:f3:00:7e:1f:72: 80:49:03:17:ff:5c:37:64:7b:ab:61:74:dc:88:6e:4d:a7:65: e2:fb:c2:c2:df:db:aa:8d:45:4a:27:68:90:e7:c5:00:27:ea: 9d:83:06:a9:1b:26:30:42:d6:96:7f:a3:95:bc:57:5a:85:41: 8f:da:47:c2:b8:6c:63:82:09:02:f7:4b:48:92:bb:e8:76:0c: 43:6f:e8:5d:0f:28:51:7e:ed:aa:aa:8c:d6:3c:95:91:8f:1c: 45:0b:75:e4:0b:92:4b:ad:4f:06:b2:0f:29:2b:ac:34:37:c8: 01:07:af:77:f2:73:e1:55:85:f8:f3:20:5c:1a:0b:55:ac:b8: 0c:c9:94:05:64:06:61:9e:07:a7:4a:6b:45:2e:79:5c:36:ac: f4:da:7c:30 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTM2NzExMC8GA1UEBRMoMjYxMzkwRDdERURFNUQxQzQwQjFGM0UyODBGMzhBMDhE QUFGRENERTAeFw0yMzA4MDEwNTI0NDFaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0Yzg5NzE5LWRiZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzZBrAGU0y0+e6MVy5p2546cns7Fj3HnK3FvJZ+FPavYOTFG6SuEXhQldK8ra+ qqxsXpHyVPJohBeW/AHAvAoEimdkBMiD70TEv9zLcXKpJU8M99mAp4zWK4NwtSGW 4wu2AO+5O2yXzvXBoRhG30oB8rbQFPAuPwpNz/7tpFLaAkp/c4SjdOvHJdA1CdFA t7WXC6gdosF9k9FrjHogPd8tQNbpjiFnWNq5/BQZWVv1bMe+GOqSUcCUWh0XHyFE YUjAQz5pOkkD/7nrrW41N39/aVV4zgyTdabRt6+WxdNi3DTqM+w4EVS1k37TzIMb aXVpYv/dajUU7TabveKqK5JfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUavCEgjBD 4I+QNI1T1NRED1R0bfIwHwYDVR0jBBgwFoAUJhOQ197eXRxAsfPigPOKCNqv3N4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFMzY3LzZCQ0VDRTBBQURG MDExRUQ5NUQyQjk3OEM0RjlBRTAyL0poT1ExOTdlWFJ4QXNmUGlnUE9LQ05xdjNO NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSmhPUTE5N2VYUnhBc2ZQaWdQT0tDTnF2M040LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTM2Ny82QkNFQ0UwQUFERjAxMUVEOTVEMkI5NzhDNEY5QUUwMi83MzgxOTVFRUIx MTgxMUVEOTk3RUE0NTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWe9WDANBgkqhkiG9w0BAQsFAAOCAQEAml9fG38u2YpxG5ze PqtsQ7LMOBMigXr8GrOjdnypiEMfkdydYhZTj5OptH7a+AKM5H89AjYAkXsGktBT OT3vlxnrPsenri+Y+RrAa8HefwpXvo9ohKtMYFzqR4JpLS6Ipl1dpyY1MPMAfh9y gEkDF/9cN2R7q2F03IhuTadl4vvCwt/bqo1FSidokOfFACfqnYMGqRsmMELWln+j lbxXWoVBj9pHwrhsY4IJAvdLSJK76HYMQ2/oXQ8oUX7tqqqM1jyVkY8cRQt15AuS S61PBrIPKSusNDfIAQevd/Jz4VWF+PMgXBoLVay4DMmUBWQGYZ4Hp0prRS55XDas 9Np8MA== -----END CERTIFICATE-----Generated at Mon May 27 08:07:56 2024 by rpki-client on console-ams.rpki-client.org