$ rpki-client -vvf rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/138E2452F89011EE8B2FC42AC4F9AE02.roa File: 138E2452F89011EE8B2FC42AC4F9AE02.roa (raw, json) Hash identifier: EkF4KLiClRBVIh/mJUREsCjSfssKNvb4R9OgW6FvWY4= Subject key identifier: F3:64:F4:6F:DC:71:FD:42:36:F6:A2:10:B4:D8:E6:35:65:06:B1:42 Certificate issuer: /CN=A914524B/serialNumber=42792CF43DFDB486AD7A07B123CB2A61A33E23E3 Certificate serial: 02 Authority key identifier: 42:79:2C:F4:3D:FD:B4:86:AD:7A:07:B1:23:CB:2A:61:A3:3E:23:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/138E2452F89011EE8B2FC42AC4F9AE02.roa Signing time: Fri 12 Apr 2024 05:46:58 +0000 ROA not before: Fri 12 Apr 2024 05:46:58 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 134090 IP address blocks: 103.153.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.crl rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914524B/serialNumber=42792CF43DFDB486AD7A07B123CB2A61A33E23E3 Validity Not Before: Apr 12 05:46:58 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6618cad2-8538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c8:86:07:5b:94:59:d4:26:4b:f4:78:0e:49: 60:4d:cf:0f:e5:71:4a:48:fc:77:35:f9:ac:ac:4c: 18:d6:98:2b:ae:d3:c7:ff:e9:e5:fe:e7:88:23:12: e7:63:36:30:1d:a5:a7:07:8a:fe:31:78:a6:e2:89: d5:8f:0c:57:68:81:39:e4:f8:45:b1:f7:df:d6:3b: 03:58:42:63:b0:50:6a:48:25:b1:a8:c1:60:a1:d4: 1f:70:91:da:65:7a:3b:41:be:28:48:48:91:53:2e: 9a:6a:36:83:8e:85:f6:5a:e2:4b:cd:b3:10:ef:8a: dc:d8:8f:9a:1e:16:a1:a1:f6:f6:b3:74:d4:42:6b: f0:95:5f:07:54:58:c1:74:9b:81:e9:4c:8c:64:e3: cf:03:8a:82:f6:ea:18:1c:a6:8c:2f:75:59:c4:74: d6:19:2b:bb:75:1b:8d:ef:26:16:dc:4d:40:77:4b: c7:3e:00:df:dc:7b:10:0c:d2:a5:ac:3e:e1:9b:61: 37:2b:54:a0:1d:bc:3f:29:77:d6:8f:2b:f9:00:25: ef:4c:51:53:54:3f:3b:35:b6:ec:8e:4c:02:37:c8: ad:65:61:c8:39:5c:fb:29:e4:d6:91:7c:70:87:90: 4e:f0:08:83:3d:15:e8:d1:3e:96:24:26:0b:56:a5: 09:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:64:F4:6F:DC:71:FD:42:36:F6:A2:10:B4:D8:E6:35:65:06:B1:42 X509v3 Authority Key Identifier: keyid:42:79:2C:F4:3D:FD:B4:86:AD:7A:07:B1:23:CB:2A:61:A3:3E:23:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/138E2452F89011EE8B2FC42AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.195.0/24 Signature Algorithm: sha256WithRSAEncryption 63:20:95:87:8f:75:95:b1:4a:03:3e:9d:ce:a7:c0:e9:76:a6: 0e:2e:d2:63:60:2e:5d:c6:a5:79:cf:6b:ac:8a:bb:ac:31:9a: 9b:fb:e6:0a:28:ef:fd:0b:bf:5a:7a:24:1b:90:da:8a:c4:ee: de:e1:7c:a6:ef:cf:fa:1d:3a:03:1d:ec:48:6e:a5:14:42:2a: 45:f3:00:b4:94:95:2a:84:af:8b:72:9c:87:d8:62:be:d7:4a: 5a:12:c5:23:67:25:a8:58:19:d3:e3:01:31:96:3c:b3:27:58: 48:00:e5:90:8a:1b:53:b8:44:18:1f:81:36:51:66:1b:0e:57: ec:53:28:3f:34:a5:0f:4d:a4:3d:29:c6:da:9a:e0:57:aa:aa: b7:ff:34:2d:87:1b:dc:95:f4:14:17:65:8e:43:07:ca:58:17: 89:2d:55:b3:b5:c0:d1:23:06:3a:57:83:47:6e:33:7b:33:f6: 4e:53:04:90:c8:02:01:65:aa:8a:c2:39:ee:11:a9:fb:4e:33: 06:e7:1e:b8:4d:85:d4:5d:e8:e6:91:05:42:d1:26:06:7d:f7: 75:af:3f:34:55:7f:d9:96:d6:05:1f:46:2a:89:08:cd:24:91: ac:b4:95:ba:d0:5e:67:c4:f8:82:d4:15:cb:0a:31:61:8a:0c: 86:7d:0a:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTI0QjExMC8GA1UEBRMoNDI3OTJDRjQzREZEQjQ4NkFEN0EwN0IxMjNDQjJBNjFB MzNFMjNFMzAeFw0yNDA0MTIwNTQ2NThaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MThjYWQyLTg1MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcyIYHW5RZ1CZL9HgOSWBNzw/lcUpI/Hc1+aysTBjWmCuu08f/6eX+54gjEudj NjAdpacHiv4xeKbiidWPDFdogTnk+EWx99/WOwNYQmOwUGpIJbGowWCh1B9wkdpl ejtBvihISJFTLppqNoOOhfZa4kvNsxDvitzYj5oeFqGh9vazdNRCa/CVXwdUWMF0 m4HpTIxk488DioL26hgcpowvdVnEdNYZK7t1G43vJhbcTUB3S8c+AN/cexAM0qWs PuGbYTcrVKAdvD8pd9aPK/kAJe9MUVNUPzs1tuyOTAI3yK1lYcg5XPsp5NaRfHCH kE7wCIM9FejRPpYkJgtWpQk/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU82T0b9xx /UI29qIQtNjmNWUGsUIwHwYDVR0jBBgwFoAUQnks9D39tIategexI8sqYaM+I+Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1MjRCL0I1MTAyMkQ2Rjg4 RjExRUU5NzZDMUUyQUM0RjlBRTAyL1Fua3M5RDM5dElhdGVnZXhJOHNxWWFNLUkt TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUW5rczlEMzl0SWF0ZWdleEk4c3FZYU0tSS1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTI0Qi9CNTEwMjJENkY4OEYxMUVFOTc2QzFFMkFDNEY5QUUwMi8xMzhFMjQ1MkY4 OTAxMUVFOEIyRkM0MkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeZwzANBgkqhkiG9w0BAQsFAAOCAQEAYyCVh491lbFKAz6d zqfA6XamDi7SY2AuXcalec9rrIq7rDGam/vmCijv/Qu/WnokG5DaisTu3uF8pu/P +h06Ax3sSG6lFEIqRfMAtJSVKoSvi3Kch9hivtdKWhLFI2clqFgZ0+MBMZY8sydY SADlkIobU7hEGB+BNlFmGw5X7FMoPzSlD02kPSnG2prgV6qqt/80LYcb3JX0FBdl jkMHylgXiS1Vs7XA0SMGOleDR24zezP2TlMEkMgCAWWqisI57hGp+04zBuceuE2F 1F3o5pEFQtEmBn33da8/NFV/2ZbWBR9GKokIzSSRrLSVutBeZ8T4gtQVywoxYYoM hn0Ktg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:11 2024 by rpki-client on console-ams.rpki-client.org