$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/590697D6465611EE8128031BC4F9AE02.roa File: 590697D6465611EE8128031BC4F9AE02.roa (raw, json) Hash identifier: GjMNzKAU9vUedZERFscZm/kqyfvILrLHW9BkAqVu3Ew= Subject key identifier: 6D:D9:EB:6B:4B:DF:19:1A:ED:4F:A8:1C:00:E0:B5:29:55:94:61:2B Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 04C5 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/590697D6465611EE8128031BC4F9AE02.roa Signing time: Fri 22 Dec 2023 11:04:17 +0000 ROA not before: Fri 22 Dec 2023 11:04:17 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 48014 IP address blocks: 103.167.234.0/24 maxlen: 24 103.167.235.0/24 maxlen: 24 2407:79c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Dec 22 11:04:17 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65856d30-3de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:08:a6:c5:0b:4b:55:f8:bd:93:60:aa:ec:24: 3a:0f:21:25:1a:6a:d0:20:fa:af:f1:7a:44:ce:ee: 0a:2b:1b:4a:cb:52:71:2d:33:d4:e0:e7:62:6c:89: d8:99:bb:ba:c2:38:5b:2a:09:d6:47:62:f5:26:3a: 99:39:99:6d:2e:b3:55:ee:48:b8:90:c3:2c:1f:cf: 9c:75:bf:25:ad:0f:d4:a9:0a:b2:84:2d:03:1f:aa: c0:e4:ea:06:56:75:13:d6:81:a8:b9:02:12:ea:61: 8a:30:bd:6d:b4:12:89:43:c1:ba:37:87:f4:b4:da: 66:e2:19:12:66:bb:df:63:5c:aa:76:af:ed:ed:63: 62:b2:e6:b8:a2:a1:14:39:b4:d4:1f:47:90:b8:3a: 67:22:6b:dc:85:a9:9c:ff:4c:8d:9d:b8:52:c5:98: 01:1d:a7:d6:8d:04:99:65:d4:85:31:70:ff:71:96: 30:37:eb:30:bd:48:1b:6e:73:9c:b1:4c:1f:95:24: 25:1f:da:bd:f3:27:4f:a1:96:de:d7:91:07:a9:d4: 68:36:95:09:29:b6:22:d7:39:63:15:17:6c:3e:34: f2:04:7f:55:17:c7:38:9e:d7:b4:49:98:57:14:28: f8:51:7f:7a:79:89:e2:20:78:1b:01:d0:17:02:fd: 61:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D9:EB:6B:4B:DF:19:1A:ED:4F:A8:1C:00:E0:B5:29:55:94:61:2B X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/590697D6465611EE8128031BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.234.0/23 IPv6: 2407:79c0::/32 Signature Algorithm: sha256WithRSAEncryption 7b:64:68:ee:74:05:64:d2:bf:3d:d8:24:89:34:ee:77:3d:cf: e8:e3:d6:48:da:fe:6e:65:65:9e:b8:46:cc:5e:7f:78:cf:dc: ec:6c:07:cb:b5:77:c4:4f:5f:ef:75:bc:37:38:7b:da:a6:69: 6d:cc:73:6d:be:99:d4:81:28:ec:78:0f:35:ac:3e:44:fa:a8: 8e:ad:bd:85:1f:41:f3:c6:d8:b1:a1:58:c6:31:ba:9c:dd:cb: 0f:7c:77:32:64:25:81:1b:19:0f:8f:62:4f:71:ef:58:15:bd: bc:8d:ac:5e:d4:2a:be:e1:76:72:45:81:84:92:66:a0:aa:fb: de:6a:b2:b8:1a:c9:44:89:6f:7b:e4:9e:2b:3a:96:19:2b:02: 1d:f1:b4:ac:04:98:1a:20:4d:46:7c:7f:92:46:89:e6:27:98: d0:14:c8:aa:09:36:4b:49:4b:e6:3b:d2:af:54:39:be:4c:c5: 51:87:cb:2b:12:b9:70:96:e8:aa:7e:12:e1:89:e6:5e:15:50: 3f:bd:3f:8e:95:3a:a4:65:02:37:26:5c:9c:fa:6a:cf:e5:4e: 18:5f:04:d0:00:02:b6:80:cb:d7:82:ba:60:fa:89:0d:b6:11: 3d:7f:4b:a3:90:91:57:04:af:bd:8c:e4:70:40:b7:cb:ce:14: b9:4c:80:6d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjMxMjIyMTEwNDE3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg1NmQzMC0zZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwimxQtLVfi9k2Cq7CQ6DyElGmrQIPqv8XpEzu4KKxtKy1JxLTPU4OdibInY mbu6wjhbKgnWR2L1JjqZOZltLrNV7ki4kMMsH8+cdb8lrQ/UqQqyhC0DH6rA5OoG VnUT1oGouQIS6mGKML1ttBKJQ8G6N4f0tNpm4hkSZrvfY1yqdq/t7WNisua4oqEU ObTUH0eQuDpnImvchamc/0yNnbhSxZgBHafWjQSZZdSFMXD/cZYwN+swvUgbbnOc sUwflSQlH9q98ydPoZbe15EHqdRoNpUJKbYi1zljFRdsPjTyBH9VF8c4nte0SZhX FCj4UX96eYniIHgbAdAXAv1hTQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG3Z62tL 3xka7U+oHADgtSlVlGErMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzYxMDkvQzgyMDcyMTJDNTBEMTFFQjlBQUVFODdCQzRGOUFFMDIvNTkwNjk3RDY0 NjU2MTFFRTgxMjgwMzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnp+owDQQCAAIwBwMFACQHecAwDQYJKoZIhvcNAQELBQAD ggEBAHtkaO50BWTSvz3YJIk07nc9z+jj1kja/m5lZZ64Rsxef3jP3OxsB8u1d8RP X+91vDc4e9qmaW3Mc22+mdSBKOx4DzWsPkT6qI6tvYUfQfPG2LGhWMYxupzdyw98 dzJkJYEbGQ+PYk9x71gVvbyNrF7UKr7hdnJFgYSSZqCq+95qsrgayUSJb3vknis6 lhkrAh3xtKwEmBogTUZ8f5JGieYnmNAUyKoJNktJS+Y70q9UOb5MxVGHyysSuXCW 6Kp+EuGJ5l4VUD+9P46VOqRlAjcmXJz6as/lThhfBNAAAraAy9eCumD6iQ22ET1/ S6OQkVcEr72M5HBAt8vOFLlMgG0= -----END CERTIFICATE-----Generated at Fri May 17 01:47:17 2024 by rpki-client on console-fra.rpki-client.org