$ rpki-client -vvf rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/86E59A2A92D511E7A23CEC7DC4F9AE02.roa File: 86E59A2A92D511E7A23CEC7DC4F9AE02.roa (raw, json) Hash identifier: WXJao2gsWrnx2NQP0EgrwNB/OMx3i5uACixQKSoC0WE= Subject key identifier: 69:08:C6:08:10:E7:D3:D7:33:FC:E9:48:03:64:F8:B8:19:16:C1:18 Certificate issuer: /CN=A914198D/serialNumber=DFA78706BEE5521A1B5B5145701E594F3C5D2096 Certificate serial: 174C Authority key identifier: DF:A7:87:06:BE:E5:52:1A:1B:5B:51:45:70:1E:59:4F:3C:5D:20:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/36eHBr7lUhobW1FFcB5ZTzxdIJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/86E59A2A92D511E7A23CEC7DC4F9AE02.roa Signing time: Tue 30 May 2023 17:26:14 +0000 ROA not before: Tue 30 May 2023 17:26:14 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 132730 IP address blocks: 103.90.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/36eHBr7lUhobW1FFcB5ZTzxdIJY.crl rsync://rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/36eHBr7lUhobW1FFcB5ZTzxdIJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/36eHBr7lUhobW1FFcB5ZTzxdIJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5964 (0x174c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914198D/serialNumber=DFA78706BEE5521A1B5B5145701E594F3C5D2096 Validity Not Before: May 30 17:26:14 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647631b6-1a4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b3:62:72:fc:bf:eb:d4:1c:5c:f5:e2:b1:0b: 68:1d:7b:3f:a3:9c:f0:cb:d5:c4:25:5c:1c:48:11: f1:6e:ba:22:33:c6:88:54:42:d9:47:e4:76:14:54: e5:a0:3c:60:cb:87:49:8c:49:41:bd:55:b0:c6:52: 75:d9:8c:6e:f8:91:19:df:6c:bf:c8:a2:6a:58:3b: 26:88:c0:67:06:a3:6c:d8:93:5f:b4:47:d8:48:a4: 04:e9:9d:9f:f6:8e:12:6c:a5:2b:bb:c5:b1:6e:8d: 56:53:f1:be:ff:c6:1a:81:db:4d:38:79:c2:a5:70: 21:85:6e:33:0b:c2:ca:01:da:4d:6c:cc:ce:26:a4: 4a:09:a3:62:3c:18:48:45:5d:64:e5:eb:00:a2:5b: 39:ab:03:be:57:81:02:10:10:d9:6f:4e:ce:86:0c: b7:2f:c8:7d:f8:15:51:37:a3:48:4e:be:9b:54:39: e2:88:ff:a7:27:51:60:98:02:51:4e:bb:77:50:7e: e7:a1:c5:61:e6:71:3f:e2:dd:62:fe:1c:89:e3:2e: e0:da:9a:9e:a0:20:77:44:51:42:d5:85:92:c6:5e: 44:d0:7e:9f:45:6d:f4:51:c9:86:60:46:28:c0:e4: 20:41:03:77:65:d3:05:6b:2e:4d:3e:bd:71:c0:7e: 56:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:08:C6:08:10:E7:D3:D7:33:FC:E9:48:03:64:F8:B8:19:16:C1:18 X509v3 Authority Key Identifier: keyid:DF:A7:87:06:BE:E5:52:1A:1B:5B:51:45:70:1E:59:4F:3C:5D:20:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/36eHBr7lUhobW1FFcB5ZTzxdIJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/36eHBr7lUhobW1FFcB5ZTzxdIJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/86E59A2A92D511E7A23CEC7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.148.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:a5:54:2d:d8:9a:28:80:57:d6:24:a8:67:45:d4:e5:16:6b: 70:64:1a:67:94:6f:be:7c:be:6b:18:1b:05:8e:69:ad:75:18: 09:0c:b8:77:99:e2:0b:c3:01:ad:a6:4e:49:b3:18:bf:c7:c0: cd:43:c6:01:3b:f5:e9:9a:76:79:59:97:c6:d6:40:82:ee:fd: 1f:bd:f4:6c:ed:d2:2c:31:4f:93:bc:e9:26:2e:52:2a:3c:48: 0b:46:0b:5a:53:c5:39:06:b0:20:4e:fd:fe:6a:48:51:56:5c: a8:e6:0e:86:f0:27:e6:6a:55:27:47:47:6a:96:3f:7b:ff:4d: ff:83:ab:4c:26:bc:c8:87:e0:e8:d0:5e:d3:32:dd:09:d1:9e: cd:01:09:7b:a0:b4:56:1a:16:da:91:7f:c3:d4:33:c4:23:c6: cb:7d:0d:e6:a0:ea:59:d5:d2:28:cd:83:25:74:aa:2b:c4:f6: 92:64:fb:62:84:d2:47:f3:28:be:36:97:59:63:07:f4:47:f1: 4a:e6:c3:29:4b:6c:6b:4d:01:10:63:6c:3b:9e:f9:8a:8b:73: c0:a7:e6:72:52:4e:a3:ea:8a:fd:89:9d:4e:a3:ce:3d:b1:d6: 88:ca:96:82:98:81:9d:c7:35:e4:97:04:37:84:d6:9c:e3:8e: 41:d3:2d:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE5OEQxMTAvBgNVBAUTKERGQTc4NzA2QkVFNTUyMUExQjVCNTE0NTcwMUU1OTRG M0M1RDIwOTYwHhcNMjMwNTMwMTcyNjE0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc2MzFiNi0xYTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7Nicvy/69QcXPXisQtoHXs/o5zwy9XEJVwcSBHxbroiM8aIVELZR+R2FFTl oDxgy4dJjElBvVWwxlJ12Yxu+JEZ32y/yKJqWDsmiMBnBqNs2JNftEfYSKQE6Z2f 9o4SbKUru8Wxbo1WU/G+/8YagdtNOHnCpXAhhW4zC8LKAdpNbMzOJqRKCaNiPBhI RV1k5esAols5qwO+V4ECEBDZb07Ohgy3L8h9+BVRN6NITr6bVDniiP+nJ1FgmAJR Trt3UH7nocVh5nE/4t1i/hyJ4y7g2pqeoCB3RFFC1YWSxl5E0H6fRW30UcmGYEYo wOQgQQN3ZdMFay5NPr1xwH5WTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGkIxggQ 59PXM/zpSANk+LgZFsEYMB8GA1UdIwQYMBaAFN+nhwa+5VIaG1tRRXAeWU88XSCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTk4RC9BQTVCOUJDQzky RDQxMUU3QUY1MjQ4N0RDNEY5QUUwMi8zNmVIQnI3bFVob2JXMUZGY0I1WlR6eGRJ SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM2ZUhCcjdsVWhvYlcxRkZjQjVaVHp4ZElKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDE5OEQvQUE1QjlCQ0M5MkQ0MTFFN0FGNTI0ODdEQzRGOUFFMDIvODZFNTlBMkE5 MkQ1MTFFN0EyM0NFQzdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnWpQwDQYJKoZIhvcNAQELBQADggEBAH2lVC3YmiiAV9Yk qGdF1OUWa3BkGmeUb758vmsYGwWOaa11GAkMuHeZ4gvDAa2mTkmzGL/HwM1DxgE7 9emadnlZl8bWQILu/R+99Gzt0iwxT5O86SYuUio8SAtGC1pTxTkGsCBO/f5qSFFW XKjmDobwJ+ZqVSdHR2qWP3v/Tf+Dq0wmvMiH4OjQXtMy3QnRns0BCXugtFYaFtqR f8PUM8Qjxst9Deag6lnV0ijNgyV0qivE9pJk+2KE0kfzKL42l1ljB/RH8UrmwylL bGtNARBjbDue+YqLc8Cn5nJSTqPqiv2JnU6jzj2x1ojKloKYgZ3HNeSXBDeE1pzj jkHTLc4= -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org