$ rpki-client -vvf rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/1291593861AC11ED9EFE1B4DC4F9AE02.roa File: 1291593861AC11ED9EFE1B4DC4F9AE02.roa (raw, json) Hash identifier: 5OEOJeQkTIXwVen+bbReYBDvNRETezydGm/sseXD4Hw= Subject key identifier: 5D:76:58:C3:DE:58:60:CE:C2:BC:54:E9:A1:48:0D:A9:E0:83:E4:03 Certificate issuer: /CN=A9152C89/serialNumber=ACD4F832F6D83978BE6959D6983FE358F3B7A925 Certificate serial: 0347 Authority key identifier: AC:D4:F8:32:F6:D8:39:78:BE:69:59:D6:98:3F:E3:58:F3:B7:A9:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNT4MvbYOXi-aVnWmD_jWPO3qSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/1291593861AC11ED9EFE1B4DC4F9AE02.roa Signing time: Wed 27 Sep 2023 01:42:43 +0000 ROA not before: Wed 27 Sep 2023 01:42:43 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138170 IP address blocks: 103.121.218.0/23 maxlen: 23 103.121.218.0/24 maxlen: 24 103.121.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/rNT4MvbYOXi-aVnWmD_jWPO3qSU.crl rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/rNT4MvbYOXi-aVnWmD_jWPO3qSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNT4MvbYOXi-aVnWmD_jWPO3qSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 00:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152C89/serialNumber=ACD4F832F6D83978BE6959D6983FE358F3B7A925 Validity Not Before: Sep 27 01:42:43 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65138893-5f09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:35:15:8f:da:41:9c:b4:97:68:61:16:97:dd: 88:33:71:a8:d7:c9:bb:eb:10:af:3a:75:f0:a5:e1: 1b:4c:40:6d:c6:c9:59:bc:85:8e:2d:d6:30:54:f4: c5:18:5f:86:85:0b:36:bc:fa:08:e6:29:02:75:78: 54:2c:be:0e:60:ae:48:0a:1c:a7:ec:59:db:94:86: 39:15:de:38:65:49:20:a7:9c:e5:38:22:82:72:7c: 9d:8d:ef:97:fb:cd:de:33:0a:2e:0a:4a:f4:cf:4f: 5a:1b:f8:9c:c5:c3:10:04:e2:f5:8d:7b:48:b3:d5: 56:87:97:95:30:ea:85:7a:00:b7:5f:72:ca:8b:3c: d9:5b:be:8d:40:35:7b:13:ac:3c:d1:df:d4:f4:44: ce:1b:25:de:4d:dc:6b:6f:c0:38:35:d3:f0:a1:a7: 05:3f:22:a8:5e:8e:e2:ec:6a:2a:6b:42:35:11:45: 96:bb:a0:10:64:ad:c5:3c:5c:b4:29:33:da:d2:0f: 99:b8:c5:39:ee:55:28:46:e0:f1:4a:ed:e4:63:e5: 92:3f:22:15:f2:05:92:c0:cd:52:fb:eb:4c:3f:50: 8c:98:5e:02:ef:b8:66:ba:d9:a8:eb:46:c1:a7:0e: 6c:76:a1:9d:e1:18:6b:e2:cb:d1:74:50:a1:9f:6f: 2d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:76:58:C3:DE:58:60:CE:C2:BC:54:E9:A1:48:0D:A9:E0:83:E4:03 X509v3 Authority Key Identifier: keyid:AC:D4:F8:32:F6:D8:39:78:BE:69:59:D6:98:3F:E3:58:F3:B7:A9:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/rNT4MvbYOXi-aVnWmD_jWPO3qSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNT4MvbYOXi-aVnWmD_jWPO3qSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/1291593861AC11ED9EFE1B4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.218.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:bb:ed:5d:73:98:25:68:b5:6f:05:19:62:6f:ac:45:5c:5c: 20:27:da:4e:69:7b:9e:75:f8:51:23:9a:2d:d9:e0:0f:ff:0c: ca:9c:b7:14:94:7e:13:00:27:b2:3e:82:42:fd:b4:a9:61:84: 5d:a2:44:c5:22:2e:1f:23:a0:fc:3d:2a:b5:62:49:05:57:0b: de:83:64:f9:d8:89:ba:38:e5:b1:be:58:83:68:93:ee:26:45: 1b:66:2f:2a:a8:90:8e:e3:7c:bc:80:07:4c:a7:df:e8:87:30: 52:f6:c8:1c:b3:67:2c:11:1f:7a:0f:36:88:28:74:db:99:5d: 71:c8:d3:b2:d4:e6:ed:b1:eb:d0:53:33:87:24:ff:c2:c7:b8: 57:58:54:d7:55:3b:6e:f3:b5:65:4e:5a:ae:4d:7e:89:0f:3c: 27:12:47:a0:20:fa:5a:45:58:a0:70:5d:ad:c4:32:0d:90:aa: 85:b9:76:e4:0f:cd:17:9b:9e:63:83:45:0f:db:fc:83:4b:90: 2b:45:51:7c:9c:23:05:1e:95:fb:22:55:70:9a:a2:ee:96:0d: 67:0b:3b:21:58:d0:90:32:95:14:01:1c:27:62:49:d2:00:69: 5a:1a:75:73:5c:7c:e5:2a:09:61:af:c9:08:66:ae:a5:75:3c: 1c:93:98:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJDODkxMTAvBgNVBAUTKEFDRDRGODMyRjZEODM5NzhCRTY5NTlENjk4M0ZFMzU4 RjNCN0E5MjUwHhcNMjMwOTI3MDE0MjQzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzODg5My01ZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTUVj9pBnLSXaGEWl92IM3Go18m76xCvOnXwpeEbTEBtxslZvIWOLdYwVPTF GF+GhQs2vPoI5ikCdXhULL4OYK5IChyn7FnblIY5Fd44ZUkgp5zlOCKCcnydje+X +83eMwouCkr0z09aG/icxcMQBOL1jXtIs9VWh5eVMOqFegC3X3LKizzZW76NQDV7 E6w80d/U9ETOGyXeTdxrb8A4NdPwoacFPyKoXo7i7Goqa0I1EUWWu6AQZK3FPFy0 KTPa0g+ZuMU57lUoRuDxSu3kY+WSPyIV8gWSwM1S++tMP1CMmF4C77hmutmo60bB pw5sdqGd4Rhr4svRdFChn28tNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF12WMPe WGDOwrxU6aFIDangg+QDMB8GA1UdIwQYMBaAFKzU+DL22Dl4vmlZ1pg/41jzt6kl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkM4OS84RkE5N0FGRTQ1 MTAxMUVDOEM4NkVENDhDNEY5QUUwMi9yTlQ0TXZiWU9YaS1hVm5XbURfaldQTzNx U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOVDRNdmJZT1hpLWFWbldtRF9qV1BPM3FTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJDODkvOEZBOTdBRkU0NTEwMTFFQzhDODZFRDQ4QzRGOUFFMDIvMTI5MTU5Mzg2 MUFDMTFFRDlFRkUxQjREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnedowDQYJKoZIhvcNAQELBQADggEBAJu77V1zmCVotW8F GWJvrEVcXCAn2k5pe551+FEjmi3Z4A//DMqctxSUfhMAJ7I+gkL9tKlhhF2iRMUi Lh8joPw9KrViSQVXC96DZPnYibo45bG+WINok+4mRRtmLyqokI7jfLyAB0yn3+iH MFL2yByzZywRH3oPNogodNuZXXHI07LU5u2x69BTM4ck/8LHuFdYVNdVO27ztWVO Wq5NfokPPCcSR6Ag+lpFWKBwXa3EMg2QqoW5duQPzRebnmODRQ/b/INLkCtFUXyc IwUelfsiVXCaou6WDWcLOyFY0JAylRQBHCdiSdIAaVoadXNcfOUqCWGvyQhmrqV1 PByTmAo= -----END CERTIFICATE-----Generated at Sat May 25 03:05:57 2024 by rpki-client on console-fra.rpki-client.org