$ rpki-client -vvf rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/0E0E73A8EBFB11ED8184D438C4F9AE02.roa File: 0E0E73A8EBFB11ED8184D438C4F9AE02.roa (raw, json) Hash identifier: Nptpwy8aBE2O4nlz0N7k/Ll0b7PMoohVrgBQiRsW9tk= Subject key identifier: C3:38:67:36:88:31:E8:7C:16:EA:72:08:AD:C4:81:4D:EE:E2:AC:A2 Certificate issuer: /CN=A91889C2/serialNumber=65E52425FF841E0E348D52FB117CA9690A20BE54 Certificate serial: 018B Authority key identifier: 65:E5:24:25:FF:84:1E:0E:34:8D:52:FB:11:7C:A9:69:0A:20:BE:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeUkJf-EHg40jVL7EXypaQogvlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/0E0E73A8EBFB11ED8184D438C4F9AE02.roa Signing time: Mon 03 Jul 2023 02:52:16 +0000 ROA not before: Mon 03 Jul 2023 02:52:16 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 49367 IP address blocks: 103.188.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.crl rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeUkJf-EHg40jVL7EXypaQogvlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889C2/serialNumber=65E52425FF841E0E348D52FB117CA9690A20BE54 Validity Not Before: Jul 3 02:52:16 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a237e0-7a65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:02:b5:06:29:a5:2e:31:5c:7d:ce:f5:15:cf: 9e:52:71:64:56:63:16:1f:6f:17:a2:0b:50:17:a7: 6d:99:82:f5:3a:27:dd:f6:55:d3:46:b0:c4:39:f6: 7f:33:2a:94:d7:15:8f:b3:ac:e9:51:2d:0a:59:a9: 6f:ca:eb:d5:86:fe:f9:8e:71:ce:ba:d5:3b:df:83: 81:df:11:39:e2:4c:24:aa:83:8a:a5:b7:2e:f9:b6: 79:a4:01:27:93:d3:d8:4b:74:ac:e0:0a:3b:fa:d2: fd:52:89:43:36:4f:ae:be:a1:21:e3:4e:24:d7:34: 44:7b:f6:7e:9d:c1:15:64:8e:7e:3c:e0:06:4c:7b: e1:c5:86:9a:6f:0a:db:8d:ea:2c:ed:66:6d:a0:f5: 52:44:74:25:21:05:ba:ae:b4:a1:5e:a9:7a:9b:4f: e3:9c:4f:4b:56:c8:0e:76:42:ed:0b:56:df:83:9b: ac:1d:b9:92:ee:f8:8e:37:f8:f1:b6:6b:2d:99:6a: 75:8d:f3:e0:db:bd:5b:23:18:40:de:3d:c1:d4:2f: 6a:4b:71:a7:ed:30:7b:f0:11:18:bb:9e:af:e6:11: 0b:6a:a8:0d:4c:bf:af:57:21:b7:73:93:ec:7e:ce: b9:bf:81:3f:8d:1e:1e:c1:37:c8:95:9b:8f:5e:b3: c6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:38:67:36:88:31:E8:7C:16:EA:72:08:AD:C4:81:4D:EE:E2:AC:A2 X509v3 Authority Key Identifier: keyid:65:E5:24:25:FF:84:1E:0E:34:8D:52:FB:11:7C:A9:69:0A:20:BE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeUkJf-EHg40jVL7EXypaQogvlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/0E0E73A8EBFB11ED8184D438C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.231.0/24 Signature Algorithm: sha256WithRSAEncryption 67:5e:90:90:b0:6f:25:e9:74:f8:61:05:a8:32:a1:37:7a:f9: 69:88:14:39:c7:f5:5a:8f:41:ba:63:21:cb:d6:49:eb:b9:af: c6:ef:6a:d1:14:33:3b:b0:cf:6f:06:a8:c0:2a:3f:cd:37:d1: 6a:fb:11:ee:a4:15:54:10:10:47:72:c7:4a:f5:12:87:05:b0: 61:91:cb:54:70:db:cc:1e:5e:76:88:05:e6:fa:d9:2d:9d:41: 1e:29:aa:50:17:bb:8b:57:f8:59:3c:ac:7d:a4:f4:f6:84:ed: db:90:7d:8a:40:4f:91:83:19:66:2b:d3:1e:a7:45:7a:e5:09: 03:00:0a:7a:69:ab:66:b7:fe:51:3c:59:1d:51:97:2b:70:e0: 43:80:10:a8:9b:ca:f8:28:f2:f4:c5:31:b0:9a:bf:7d:f0:6a: 05:64:d3:2c:f5:7b:d8:65:de:4c:d9:38:1d:07:43:8a:a8:c7: d3:d9:b3:f3:63:24:a2:7a:55:91:1a:d0:18:7b:52:a2:61:92: 1c:c5:13:39:c9:3b:90:53:af:53:02:cd:05:dc:94:1c:ee:ad: d6:32:bb:dc:e3:28:5e:45:fb:81:d4:bb:b6:57:88:b6:8c:b6: 7e:c6:9b:71:fb:29:d3:59:f7:c0:fa:20:47:97:51:fd:14:77: 9a:0d:c0:7c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QzIxMTAvBgNVBAUTKDY1RTUyNDI1RkY4NDFFMEUzNDhENTJGQjExN0NBOTY5 MEEyMEJFNTQwHhcNMjMwNzAzMDI1MjE2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGEyMzdlMC03YTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgK1BimlLjFcfc71Fc+eUnFkVmMWH28XogtQF6dtmYL1Oifd9lXTRrDEOfZ/ MyqU1xWPs6zpUS0KWalvyuvVhv75jnHOutU734OB3xE54kwkqoOKpbcu+bZ5pAEn k9PYS3Ss4Ao7+tL9UolDNk+uvqEh404k1zREe/Z+ncEVZI5+POAGTHvhxYaabwrb jeos7WZtoPVSRHQlIQW6rrShXql6m0/jnE9LVsgOdkLtC1bfg5usHbmS7viON/jx tmstmWp1jfPg271bIxhA3j3B1C9qS3Gn7TB78BEYu56v5hELaqgNTL+vVyG3c5Ps fs65v4E/jR4ewTfIlZuPXrPGMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMM4ZzaI Meh8FupyCK3EgU3u4qyiMB8GA1UdIwQYMBaAFGXlJCX/hB4ONI1S+xF8qWkKIL5U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlDMi9CRDczNjA0NEUy MzYxMUVDOEM3Rjg1MjBDNEY5QUUwMi9aZVVrSmYtRUhnNDBqVkw3RVh5cGFRb2d2 bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plVWtKZi1FSGc0MGpWTDdFWHlwYVFvZ3ZsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg5QzIvQkQ3MzYwNDRFMjM2MTFFQzhDN0Y4NTIwQzRGOUFFMDIvMEUwRTczQThF QkZCMTFFRDgxODRENDM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvOcwDQYJKoZIhvcNAQELBQADggEBAGdekJCwbyXpdPhh BagyoTd6+WmIFDnH9VqPQbpjIcvWSeu5r8bvatEUMzuwz28GqMAqP8030Wr7Ee6k FVQQEEdyx0r1EocFsGGRy1Rw28weXnaIBeb62S2dQR4pqlAXu4tX+Fk8rH2k9PaE 7duQfYpAT5GDGWYr0x6nRXrlCQMACnppq2a3/lE8WR1Rlytw4EOAEKibyvgo8vTF MbCav33wagVk0yz1e9hl3kzZOB0HQ4qox9PZs/NjJKJ6VZEa0Bh7UqJhkhzFEznJ O5BTr1MCzQXclBzurdYyu9zjKF5F+4HUu7ZXiLaMtn7Gm3H7KdNZ98D6IEeXUf0U d5oNwHw= -----END CERTIFICATE-----Generated at Sun May 19 05:08:05 2024 by rpki-client on console-ams.rpki-client.org