$ rpki-client -vvf rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/120AADD0A9F311EE9164C011C4F9AE02.roa File: 120AADD0A9F311EE9164C011C4F9AE02.roa (raw, json) Hash identifier: a5C+zTSD/7WPAqfNd/SO46Bz7FWICIztDLknbGjSsdU= Subject key identifier: FE:EA:88:6A:55:F7:96:E6:1D:7B:09:30:FD:70:5A:36:68:BC:DE:98 Certificate issuer: /CN=A9136CB3/serialNumber=AB45DBFC35577F27C99FCF40A39B386B32350ADA Certificate serial: 3F Authority key identifier: AB:45:DB:FC:35:57:7F:27:C9:9F:CF:40:A3:9B:38:6B:32:35:0A:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0Xb_DVXfyfJn89Ao5s4azI1Cto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/120AADD0A9F311EE9164C011C4F9AE02.roa Signing time: Wed 03 Jan 2024 04:46:34 +0000 ROA not before: Wed 03 Jan 2024 04:46:34 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 399077 IP address blocks: 103.158.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/q0Xb_DVXfyfJn89Ao5s4azI1Cto.crl rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/q0Xb_DVXfyfJn89Ao5s4azI1Cto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0Xb_DVXfyfJn89Ao5s4azI1Cto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136CB3/serialNumber=AB45DBFC35577F27C99FCF40A39B386B32350ADA Validity Not Before: Jan 3 04:46:34 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6594e6aa-284c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fd:4c:b0:74:8b:48:96:18:38:7a:3b:ea:88: a6:e2:65:e0:a3:d9:4b:4f:f3:03:65:5c:90:dc:9c: dd:ee:bc:8e:64:a5:34:bb:ba:9c:d6:0e:a9:dc:4d: fc:b4:13:49:3a:66:54:c5:d2:11:f2:03:0d:d0:ff: 34:c3:26:8e:cc:f9:67:db:b4:68:1a:6c:07:bb:ec: 35:36:25:ae:4d:88:48:e0:11:a3:1f:90:41:7e:25: 1e:8b:24:03:ad:48:21:b8:c5:04:8f:86:00:ea:04: d7:95:bf:02:0c:8b:99:28:94:85:1a:71:65:81:24: ef:df:1b:25:9d:9d:cf:0d:36:fa:71:ea:0d:39:02: 25:d2:a9:d3:57:04:6b:ac:d9:3b:05:87:ad:8c:68: b1:9e:0a:05:1b:3c:5a:84:54:05:5c:2a:21:d7:ab: db:c7:52:2c:85:fa:2a:37:91:a3:64:c3:ed:05:41: 5d:30:bd:d4:7d:84:bc:0e:56:28:2d:db:39:f3:34: ad:5e:e9:3b:9b:cc:51:dc:60:d1:7d:44:70:f7:a2: 05:6f:18:c2:64:a6:be:a8:4d:6d:98:b7:c2:b0:63: 97:28:c2:e1:50:0c:59:50:cc:59:6f:f4:98:ab:45: dd:2b:0c:74:76:3e:b7:3d:c9:c7:dd:fe:ad:4b:cc: 25:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:EA:88:6A:55:F7:96:E6:1D:7B:09:30:FD:70:5A:36:68:BC:DE:98 X509v3 Authority Key Identifier: keyid:AB:45:DB:FC:35:57:7F:27:C9:9F:CF:40:A3:9B:38:6B:32:35:0A:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/q0Xb_DVXfyfJn89Ao5s4azI1Cto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0Xb_DVXfyfJn89Ao5s4azI1Cto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/120AADD0A9F311EE9164C011C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.83.0/24 Signature Algorithm: sha256WithRSAEncryption 99:c7:35:3f:a8:2b:39:95:f2:61:9f:f7:0c:b9:cb:e6:4f:3a: 0d:6c:6e:a6:aa:b4:13:8a:cb:a8:b0:14:09:e8:be:32:d7:cd: c5:b9:23:1f:08:53:1c:b7:75:a0:c3:20:37:30:93:a5:fe:f2: 1d:7f:91:dd:89:d3:e3:04:47:f9:8d:e9:00:ba:47:c3:57:4b: 3f:53:25:66:17:f5:ea:07:85:15:30:d2:54:80:d6:31:32:e6: 51:95:4a:61:ec:22:23:48:27:3e:ec:ee:03:f6:4a:79:13:41: 86:3e:47:8e:1f:ea:e9:a3:b7:b7:8d:d9:be:ea:28:94:ae:62: 90:6b:56:09:00:56:ed:98:6d:4a:fe:98:cb:6a:15:9c:eb:7d: d6:fe:12:5e:36:85:05:e5:9d:ac:ce:a6:17:31:0d:21:01:09: 27:01:b7:c6:fe:04:3e:8f:0d:d0:04:8d:ae:be:d4:2f:9a:fa: af:40:e2:7c:2c:e3:54:6d:dc:73:b7:6e:08:b8:ec:ac:31:e9: 5d:5a:b4:5d:0b:8a:25:5e:1d:a6:f6:1d:f9:f7:7d:1a:f4:0f: 50:27:e0:71:60:0b:de:7a:1f:8d:66:de:ca:39:37:92:f7:06: f8:fc:a9:30:32:43:c4:5f:5f:26:b9:56:4d:f6:51:3e:14:5e: 53:a6:da:86 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NkNCMzExMC8GA1UEBRMoQUI0NURCRkMzNTU3N0YyN0M5OUZDRjQwQTM5QjM4NkIz MjM1MEFEQTAeFw0yNDAxMDMwNDQ2MzRaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTRlNmFhLTI4NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6/UywdItIlhg4ejvqiKbiZeCj2UtP8wNlXJDcnN3uvI5kpTS7upzWDqncTfy0 E0k6ZlTF0hHyAw3Q/zTDJo7M+WfbtGgabAe77DU2Ja5NiEjgEaMfkEF+JR6LJAOt SCG4xQSPhgDqBNeVvwIMi5kolIUacWWBJO/fGyWdnc8NNvpx6g05AiXSqdNXBGus 2TsFh62MaLGeCgUbPFqEVAVcKiHXq9vHUiyF+io3kaNkw+0FQV0wvdR9hLwOVigt 2znzNK1e6TubzFHcYNF9RHD3ogVvGMJkpr6oTW2Yt8KwY5cowuFQDFlQzFlv9Jir Rd0rDHR2Prc9ycfd/q1LzCWBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/uqIalX3 luYdewkw/XBaNmi83pgwHwYDVR0jBBgwFoAUq0Xb/DVXfyfJn89Ao5s4azI1Ctow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2Q0IzL0E1RkQ4NEYyNTcx QjExRUVCNDE4QUIzRUM0RjlBRTAyL3EwWGJfRFZYZnlmSm44OUFvNXM0YXpJMUN0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcTBYYl9EVlhmeWZKbjg5QW81czRhekkxQ3RvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkNCMy9BNUZEODRGMjU3MUIxMUVFQjQxOEFCM0VDNEY5QUUwMi8xMjBBQUREMEE5 RjMxMUVFOTE2NEMwMTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeeUzANBgkqhkiG9w0BAQsFAAOCAQEAmcc1P6grOZXyYZ/3 DLnL5k86DWxupqq0E4rLqLAUCei+MtfNxbkjHwhTHLd1oMMgNzCTpf7yHX+R3YnT 4wRH+Y3pALpHw1dLP1MlZhf16geFFTDSVIDWMTLmUZVKYewiI0gnPuzuA/ZKeRNB hj5Hjh/q6aO3t43ZvuoolK5ikGtWCQBW7ZhtSv6Yy2oVnOt91v4SXjaFBeWdrM6m FzENIQEJJwG3xv4EPo8N0ASNrr7UL5r6r0DifCzjVG3cc7duCLjsrDHpXVq0XQuK JV4dpvYd+fd9GvQPUCfgcWAL3nofjWbeyjk3kvcG+PypMDJDxF9fJrlWTfZRPhRe U6bahg== -----END CERTIFICATE-----Generated at Sun May 5 08:21:04 2024 by rpki-client on console-ams.rpki-client.org