$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/136F98CEBA3411EEBFF58C26C4F9AE02.roa File: 136F98CEBA3411EEBFF58C26C4F9AE02.roa (raw, json) Hash identifier: SQRDETSz/FJ5XTyB45g4IyCPnh6uY+3ZVhIS+Te15x4= Subject key identifier: 10:F9:D0:42:DD:BA:01:27:33:9A:A9:62:90:41:CD:00:01:D1:B7:FB Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Certificate serial: 0623 Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/136F98CEBA3411EEBFF58C26C4F9AE02.roa Signing time: Mon 25 Mar 2024 20:37:57 +0000 ROA not before: Mon 25 Mar 2024 20:37:57 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58717 IP address blocks: 103.165.159.0/24 maxlen: 24 202.94.164.0/24 maxlen: 24 202.94.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1571 (0x623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Validity Not Before: Mar 25 20:37:57 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6601e0a5-c98a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:65:3f:2d:a6:63:bc:28:fc:d1:55:96:90:62: 52:1e:bb:0b:51:ef:83:04:b5:2e:cc:26:cc:dc:3a: bf:6a:82:7f:a7:2d:8c:70:62:22:41:6c:1b:bd:41: d0:45:87:3b:88:1e:81:f3:24:31:11:2b:06:1d:7c: d7:c1:21:76:a9:b5:75:10:70:f7:62:b8:b3:4c:c9: ca:2c:2f:f2:82:e4:2e:c2:6e:fb:76:f0:72:83:5a: 87:19:b0:28:92:a1:dc:db:97:b6:eb:a4:2d:cb:88: bc:a1:bb:4b:2d:f8:ba:79:a3:34:08:7d:17:a2:0f: 99:41:d5:11:44:73:17:2d:33:b3:cf:f2:d7:b3:6b: 7f:19:91:6f:8b:1a:65:70:bd:e4:2a:65:5c:fb:a5: 4b:51:cb:ed:11:38:5c:58:4e:75:5a:7e:43:4e:dc: de:71:27:c3:59:60:55:50:c9:40:ef:4d:d3:96:05: 00:f9:68:b3:93:c5:df:45:a1:26:1f:7f:36:99:06: fd:a1:b1:88:1c:a0:f5:24:e5:a0:52:c1:70:98:6e: 34:a6:68:da:dd:64:41:b9:69:b0:d4:e1:fe:1f:ae: a4:5e:8c:27:00:cd:a9:07:3d:52:6f:2e:9c:fe:ce: 76:eb:ad:80:83:2b:a1:51:0b:2e:9d:00:f4:60:99: 3a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F9:D0:42:DD:BA:01:27:33:9A:A9:62:90:41:CD:00:01:D1:B7:FB X509v3 Authority Key Identifier: keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/136F98CEBA3411EEBFF58C26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.159.0/24 202.94.164.0/23 Signature Algorithm: sha256WithRSAEncryption 37:72:7b:a6:72:b5:76:02:eb:94:d1:f0:92:5d:54:83:13:70: a1:ff:ac:a4:3c:6d:c2:a5:bc:de:aa:d1:14:48:bc:99:94:ac: 82:53:c1:ea:ac:79:fc:87:9e:1a:a3:08:77:94:98:61:bf:4e: 03:17:b6:98:dc:e2:bf:e8:9c:9a:15:65:01:b0:20:55:f3:7b: 7a:18:2f:ba:cd:2b:78:3a:2b:1f:e2:12:99:ed:0f:ec:1d:21: ba:89:bb:b4:38:64:fc:42:a0:85:4c:df:c2:74:41:99:b4:72: b9:db:ed:97:f3:11:cb:54:36:be:36:49:0c:3c:ea:64:ca:d9: fa:19:7a:58:36:3b:45:d1:5b:78:d8:fb:08:7c:b8:11:81:0f: a6:51:84:a6:a4:2b:ea:f5:21:82:44:bd:c6:23:b4:13:a5:2f: e6:7e:3a:52:d0:eb:00:a7:77:90:15:29:44:7b:c7:ba:d1:09: dc:ba:7b:f7:7f:8d:b6:8e:2d:af:15:f5:e3:61:c4:54:c8:4f: b4:3d:1c:80:05:f4:48:e3:22:64:29:20:e1:3e:b2:4c:36:b1: 71:c6:6c:c8:82:40:b7:36:47:39:b2:b0:be:b8:f9:ba:ee:70: c7:c2:ff:d0:f3:4a:cc:b3:be:56:b4:93:6a:43:39:18:10:fa: 87:79:dc:49 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QjcxMTAvBgNVBAUTKDgzRDk2RjFERUE3MkE5OUQyMzRCNDQ1NkQ2RjY2NzVE QzdFNjA2MUUwHhcNMjQwMzI1MjAzNzU3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAxZTBhNS1jOThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWU/LaZjvCj80VWWkGJSHrsLUe+DBLUuzCbM3Dq/aoJ/py2McGIiQWwbvUHQ RYc7iB6B8yQxESsGHXzXwSF2qbV1EHD3YrizTMnKLC/yguQuwm77dvByg1qHGbAo kqHc25e266Qty4i8obtLLfi6eaM0CH0Xog+ZQdURRHMXLTOzz/LXs2t/GZFvixpl cL3kKmVc+6VLUcvtEThcWE51Wn5DTtzecSfDWWBVUMlA703TlgUA+Wizk8XfRaEm H382mQb9obGIHKD1JOWgUsFwmG40pmja3WRBuWmw1OH+H66kXownAM2pBz1Sby6c /s52662AgyuhUQsunQD0YJk63wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBD50ELd ugEnM5qpYpBBzQAB0bf7MB8GA1UdIwQYMBaAFIPZbx3qcqmdI0tEVtb2Z13H5gYe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZCNy85NUVGN0RCQTk2 N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFaMGpTMFJXMXZablhjZm1C aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c5bHZIZXB5cVowalMwUlcxdlpuWGNmbUJoNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU2QjcvOTVFRjdEQkE5NjdEMTFFQkFERDUwRDJDQzRGOUFFMDIvMTM2Rjk4Q0VC QTM0MTFFRUJGRjU4QzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnpZ8DBAHKXqQwDQYJKoZIhvcNAQELBQADggEBADdye6Zy tXYC65TR8JJdVIMTcKH/rKQ8bcKlvN6q0RRIvJmUrIJTweqsefyHnhqjCHeUmGG/ TgMXtpjc4r/onJoVZQGwIFXze3oYL7rNK3g6Kx/iEpntD+wdIbqJu7Q4ZPxCoIVM 38J0QZm0crnb7ZfzEctUNr42SQw86mTK2foZelg2O0XRW3jY+wh8uBGBD6ZRhKak K+r1IYJEvcYjtBOlL+Z+OlLQ6wCnd5AVKUR7x7rRCdy6e/d/jbaOLa8V9eNhxFTI T7Q9HIAF9EjjImQpIOE+skw2sXHGbMiCQLc2RzmysL64+brucMfC/9DzSsyzvla0 k2pDORgQ+od53Ek= -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-fra.rpki-client.org