$ rpki-client -vvf rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C437B01282C211EBBB08B280C4F9AE02.roa File: C437B01282C211EBBB08B280C4F9AE02.roa (raw, json) Hash identifier: ebikP0CQcFTiYsMhZeewEi6wK9BzO2WIxC3f77Ull+4= Subject key identifier: 3B:07:92:69:FF:77:1E:9E:40:93:5B:3C:4E:92:AE:0C:2B:C9:A3:A3 Certificate issuer: /CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Certificate serial: 0540 Authority key identifier: 54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C437B01282C211EBBB08B280C4F9AE02.roa Signing time: Thu 12 Oct 2023 23:52:15 +0000 ROA not before: Thu 12 Oct 2023 23:52:15 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 139700 IP address blocks: 103.143.185.0/24 maxlen: 24 103.168.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Validity Not Before: Oct 12 23:52:15 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652886af-2118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:cf:51:13:99:be:77:14:85:36:eb:d2:d4:c5: eb:cc:94:47:93:33:d1:aa:54:3a:b6:dc:8d:08:2f: 04:f0:a4:bb:90:49:6c:1f:c7:14:ac:1c:c6:52:72: 90:ad:53:4b:da:6e:dd:f8:3b:72:38:ad:1c:d5:1f: 1f:ad:6b:e4:4c:9e:30:d3:98:a8:d5:2e:d5:d9:33: 19:2d:ea:ac:95:57:6d:a3:3a:94:13:8b:91:58:e3: e2:f2:d4:93:53:4d:72:28:de:14:1d:1b:2b:64:ea: 9b:98:76:d1:35:2d:d5:8f:03:75:ac:01:5b:0a:f4: b4:01:ca:77:7b:af:61:4c:db:0f:97:27:e8:e5:2c: 3f:cb:fa:60:db:ad:8e:0f:6d:f4:90:8c:aa:30:bc: c2:82:9f:16:d2:fa:5b:ab:23:68:cc:db:d8:9a:66: 26:2a:92:df:d8:f8:4d:81:51:d9:41:7f:b4:b4:d6: 73:a0:0c:7a:3c:57:67:c8:36:a2:48:84:1c:8e:5e: 18:52:df:ec:98:cd:ff:e8:bd:9d:4c:ba:6b:56:6d: 1d:ab:94:af:8c:81:88:55:f2:5b:4a:89:73:18:5a: 28:48:8e:18:f6:36:b7:7d:2d:80:2e:9f:55:13:be: 10:62:aa:0c:22:2e:c4:bc:b2:2b:f7:4f:06:f6:7b: 82:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:07:92:69:FF:77:1E:9E:40:93:5B:3C:4E:92:AE:0C:2B:C9:A3:A3 X509v3 Authority Key Identifier: keyid:54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C437B01282C211EBBB08B280C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.185.0/24 103.168.45.0/24 Signature Algorithm: sha256WithRSAEncryption 95:db:00:ac:e5:65:ed:99:48:20:97:04:31:a1:d0:42:f4:25: f1:5b:a7:90:eb:7b:96:19:b4:1f:45:92:ae:3c:3a:af:25:e2: 26:00:2e:21:d7:2b:eb:b8:1b:4d:3c:e3:eb:f7:1a:28:e9:e4: 25:52:b6:87:0e:62:c9:8f:d3:73:bd:50:ef:3f:58:39:0e:d8: 29:e9:4f:ce:c9:02:14:93:77:6d:e4:4b:a2:28:b5:97:9f:27: 54:dd:0d:f2:a1:73:56:8b:41:b8:f2:ec:8b:4a:40:fb:53:a2: 56:c7:e8:c0:1d:ad:da:8b:87:c4:82:7c:2e:59:35:50:64:c8: 83:b6:46:fb:12:7e:6f:22:e0:83:ed:a7:12:24:e7:c1:1a:a5: 4a:56:ad:02:0d:44:66:83:f5:8f:3e:a2:46:93:48:77:f2:d9: fd:65:1c:ed:8b:07:65:11:88:ae:b0:57:8f:54:2f:6d:e0:1e: ff:e5:40:66:f3:c5:4c:a3:8e:d9:26:f7:b3:34:4c:46:9b:24: 89:7a:68:c9:63:44:56:4e:48:e2:0b:15:7d:e2:a5:4a:80:50: e2:51:1d:ac:df:10:f0:66:1e:f1:d1:58:be:68:7d:df:89:6c: 29:15:19:6b:f5:48:14:ca:e1:cc:ff:d9:e3:bf:54:b8:a9:3d: 01:5f:e4:d4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwQzMxMTAvBgNVBAUTKDU0ODdCNjNGNDRENjkxRDQzNTY4OEFGRTNDOEFDMjdC RkQ5MTEyQUQwHhcNMjMxMDEyMjM1MjE1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4ODZhZi0yMTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4c9RE5m+dxSFNuvS1MXrzJRHkzPRqlQ6ttyNCC8E8KS7kElsH8cUrBzGUnKQ rVNL2m7d+DtyOK0c1R8frWvkTJ4w05io1S7V2TMZLeqslVdtozqUE4uRWOPi8tST U01yKN4UHRsrZOqbmHbRNS3VjwN1rAFbCvS0Acp3e69hTNsPlyfo5Sw/y/pg262O D230kIyqMLzCgp8W0vpbqyNozNvYmmYmKpLf2PhNgVHZQX+0tNZzoAx6PFdnyDai SIQcjl4YUt/smM3/6L2dTLprVm0dq5SvjIGIVfJbSolzGFooSI4Y9ja3fS2ALp9V E74QYqoMIi7EvLIr908G9nuCUwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDsHkmn/ dx6eQJNbPE6SrgwryaOjMB8GA1UdIwQYMBaAFFSHtj9E1pHUNWiK/jyKwnv9kRKt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBDMy84NTUzMDVFMjgy QzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tkUTFhSXItUElyQ2VfMlJF cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJZTJQMFRXa2RRMWFJci1QSXJDZV8yUkVxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzkwQzMvODU1MzA1RTI4MkMwMTFFQkJBQ0UyQTdCQzRGOUFFMDIvQzQzN0IwMTI4 MkMyMTFFQkJCMDhCMjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnj7kDBABnqC0wDQYJKoZIhvcNAQELBQADggEBAJXbAKzl Ze2ZSCCXBDGh0EL0JfFbp5Dre5YZtB9Fkq48Oq8l4iYALiHXK+u4G0084+v3Gijp 5CVStocOYsmP03O9UO8/WDkO2CnpT87JAhSTd23kS6IotZefJ1TdDfKhc1aLQbjy 7ItKQPtTolbH6MAdrdqLh8SCfC5ZNVBkyIO2RvsSfm8i4IPtpxIk58EapUpWrQIN RGaD9Y8+okaTSHfy2f1lHO2LB2URiK6wV49UL23gHv/lQGbzxUyjjtkm97M0TEab JIl6aMljRFZOSOILFX3ipUqAUOJRHazfEPBmHvHRWL5ofd+JbCkVGWv1SBTK4cz/ 2eO/VLipPQFf5NQ= -----END CERTIFICATE-----Generated at Fri May 17 01:06:59 2024 by rpki-client on console-fra.rpki-client.org