$ rpki-client -vvf rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa File: 0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa (raw, json) Hash identifier: /oOoNmDzRISKeM4Zf/h9IiY6CXbr+vke1N2LNTUAy8o= Subject key identifier: A3:55:51:3D:4D:A0:A7:8B:D3:3F:13:6F:01:BF:5F:55:91:76:6A:BA Certificate issuer: /CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Certificate serial: 0159 Authority key identifier: 44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa Signing time: Thu 17 Aug 2023 03:23:16 +0000 ROA not before: Thu 17 Aug 2023 03:23:16 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 150005 IP address blocks: 103.190.136.0/23 maxlen: 23 103.190.136.0/24 maxlen: 24 103.190.137.0/24 maxlen: 24 2001:df0:edc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 04:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Validity Not Before: Aug 17 03:23:16 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64dd92a4-9f0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ed:32:8c:b6:e6:fd:1d:85:11:c6:24:e9:7d: e0:81:8e:89:ed:a9:58:c7:7e:48:4f:80:7e:f8:a5: a2:4c:24:a9:db:92:db:a0:8e:76:22:98:d0:25:dd: fd:63:ea:50:01:d4:78:47:d3:57:a8:57:14:8b:ae: a1:5d:b8:3a:4a:41:29:94:e9:ac:19:cb:43:ba:ff: 17:d4:2d:95:75:91:ac:db:a3:19:99:c6:ae:87:ae: 69:6d:32:58:43:8a:12:80:bd:5b:d0:8b:6c:3c:72: 63:95:dd:b7:3a:cf:16:45:41:3d:d1:83:92:ed:ea: 07:52:05:85:43:8e:26:ba:4f:c2:ce:53:77:69:1b: be:ef:3b:7b:13:89:22:93:8b:f4:d6:eb:84:9b:ba: a9:1f:f1:32:e4:7a:7c:61:97:3f:bb:65:fa:f5:eb: 68:89:0a:0d:f9:18:04:72:10:40:e3:01:e4:dc:8a: c6:90:7f:0e:c1:71:c8:2c:fb:07:e6:05:33:ff:30: 3e:de:02:4e:bb:eb:6c:3f:1c:0a:0a:1c:ee:23:6a: 22:72:75:5a:81:e2:55:7f:2d:f8:a3:89:ee:d9:1c: b5:08:13:64:c3:0d:49:09:96:94:1d:20:e0:b4:13: 07:42:56:33:cf:39:67:4d:fe:f7:c7:6b:f9:f9:50: 15:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:55:51:3D:4D:A0:A7:8B:D3:3F:13:6F:01:BF:5F:55:91:76:6A:BA X509v3 Authority Key Identifier: keyid:44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.136.0/23 IPv6: 2001:df0:edc0::/48 Signature Algorithm: sha256WithRSAEncryption 51:f4:07:ea:61:f4:75:99:4f:34:73:8a:f1:fd:4a:5a:88:4a: b9:77:0b:1f:66:35:59:f5:7e:81:b8:16:ef:ba:a5:ec:e9:0e: 39:26:a7:61:b8:4f:77:98:5b:38:4e:a1:30:98:7e:19:b1:18: a4:f6:7a:29:27:af:88:f3:a4:71:28:62:84:7b:b4:66:96:b0: 0a:fd:27:a6:b2:9e:3e:0f:3a:7d:16:52:60:b5:83:ea:bb:f3: 0f:14:1c:20:54:39:ce:3f:74:ee:fc:8c:02:11:61:dc:f8:3f: 33:67:be:5f:14:ce:60:16:ec:08:07:db:b0:20:a4:3d:35:b8: 64:25:53:cf:7a:b2:46:59:71:eb:a5:28:a2:c6:4f:64:6e:d6: cf:04:a6:b2:09:be:33:d4:97:85:7d:cd:60:82:1f:06:74:71: 62:79:89:0e:17:48:8b:f1:26:2e:5f:96:dc:94:f7:38:cc:cb: 0d:8f:ba:8f:11:1e:8b:7c:02:da:3b:ac:c9:ed:18:cb:22:3a: 36:db:a7:71:16:19:bd:17:ae:ed:be:94:82:51:ff:cc:21:3a: 88:24:38:36:f4:ab:22:29:23:7f:9e:56:b1:62:70:c1:3b:95: 39:35:9e:05:2b:52:b8:61:ae:a0:c8:81:15:cc:d7:3d:36:aa: 59:37:f7:dc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ0MkExMTAvBgNVBAUTKDQ0MjFGM0E5RDdFNDFENkY0N0I3ODZGREQzRTdBODhE RTQyQjA3QjkwHhcNMjMwODE3MDMyMzE2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkOTJhNC05ZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+0yjLbm/R2FEcYk6X3ggY6J7alYx35IT4B++KWiTCSp25LboI52IpjQJd39 Y+pQAdR4R9NXqFcUi66hXbg6SkEplOmsGctDuv8X1C2VdZGs26MZmcauh65pbTJY Q4oSgL1b0ItsPHJjld23Os8WRUE90YOS7eoHUgWFQ44muk/CzlN3aRu+7zt7E4ki k4v01uuEm7qpH/Ey5Hp8YZc/u2X69etoiQoN+RgEchBA4wHk3IrGkH8OwXHILPsH 5gUz/zA+3gJOu+tsPxwKChzuI2oicnVageJVfy34o4nu2Ry1CBNkww1JCZaUHSDg tBMHQlYzzzlnTf73x2v5+VAVVQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKNVUT1N oKeL0z8TbwG/X1WRdmq6MB8GA1UdIwQYMBaAFEQh86nX5B1vR7eG/dPnqI3kKwe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDQyQS9BQjRFNTI0NEZD MzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hXOUh0NGI5MC1lb2plUXJC N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JDSHpxZGZrSFc5SHQ0YjkwLWVvamVRckI3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ0MkEvQUI0RTUyNDRGQzM5MTFFQzk1QzgxMzg3QzRGOUFFMDIvMEY5REI4RTBG QzNEMTFFQ0FENjE5QzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnvogwDwQCAAIwCQMHACABDfDtwDANBgkqhkiG9w0BAQsF AAOCAQEAUfQH6mH0dZlPNHOK8f1KWohKuXcLH2Y1WfV+gbgW77ql7OkOOSanYbhP d5hbOE6hMJh+GbEYpPZ6KSeviPOkcShihHu0ZpawCv0nprKePg86fRZSYLWD6rvz DxQcIFQ5zj907vyMAhFh3Pg/M2e+XxTOYBbsCAfbsCCkPTW4ZCVTz3qyRllx66Uo osZPZG7WzwSmsgm+M9SXhX3NYIIfBnRxYnmJDhdIi/EmLl+W3JT3OMzLDY+6jxEe i3wC2jusye0YyyI6NtuncRYZvReu7b6UglH/zCE6iCQ4NvSrIikjf55WsWJwwTuV OTWeBStSuGGuoMiBFczXPTaqWTf33A== -----END CERTIFICATE-----Generated at Mon May 27 08:07:57 2024 by rpki-client on console-ams.rpki-client.org