$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa File: A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa (raw, json) Hash identifier: kNqmZ3FjK582qLYE+Ju01BtqotCDz4PwGxpxzQp9l4g= Subject key identifier: 31:95:A9:0C:BF:95:3D:5F:5E:E0:16:02:F0:17:96:58:95:C4:CE:46 Certificate issuer: /CN=A91A1C52/serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Certificate serial: B9 Authority key identifier: A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa Signing time: Tue 05 Mar 2024 05:48:05 +0000 ROA not before: Tue 05 Mar 2024 05:48:05 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136557 IP address blocks: 203.34.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C52/serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Validity Not Before: Mar 5 05:48:05 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e6b215-d375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:82:1b:64:75:e7:c8:09:16:a4:2e:bb:9c:76: 09:4f:36:85:88:b4:57:81:32:70:3b:7f:d6:7a:89: 4a:3c:a3:31:15:79:4f:81:95:26:04:41:b5:d4:e1: f8:4a:26:7a:c7:5a:36:df:a6:47:c5:01:28:f6:2b: bc:04:90:8d:14:c8:0e:e6:e7:7c:85:62:31:57:78: 0b:5b:c3:dc:99:ea:8b:4f:9a:58:80:d1:bb:d6:e9: 3c:89:a9:14:c1:ff:57:ed:9e:03:59:ed:67:e7:05: 03:65:bf:b0:fe:b7:77:8b:7f:b1:56:99:ea:96:78: f7:3b:a2:d2:ac:b7:95:d8:bb:5e:c0:17:4d:e4:50: 3e:0d:ba:7f:9f:5e:f5:7d:53:a9:6b:79:3e:5a:60: 7f:47:a8:b9:9a:f9:8b:f5:f1:ed:73:b4:38:0e:cb: eb:a1:ec:fc:0a:d9:dc:3f:36:44:d4:a7:21:f6:28: 2a:cd:23:75:b4:45:df:7d:15:2e:75:41:88:93:b7: d6:4a:68:e1:cc:92:1c:b7:af:11:44:ca:3a:18:f7: ab:68:e0:cf:c9:cc:8e:b2:1e:24:a2:35:45:ba:2c: a5:64:09:53:79:a7:1b:ae:bf:e0:05:61:bf:aa:32: 5a:8e:18:fd:2a:06:9a:96:de:8f:4f:bf:b7:b6:b3: 7c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:95:A9:0C:BF:95:3D:5F:5E:E0:16:02:F0:17:96:58:95:C4:CE:46 X509v3 Authority Key Identifier: keyid:A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.34.5.0/24 Signature Algorithm: sha256WithRSAEncryption 27:62:c4:2f:34:34:5d:4a:4f:c1:6a:91:80:3b:22:d2:92:63: 9a:dd:44:22:6b:28:2f:a5:02:2c:cf:32:ee:6b:29:06:02:29: a7:d8:31:a6:a5:22:69:31:ba:6e:78:71:16:46:f1:9e:26:93: f0:9f:96:b1:1a:8b:28:2d:b8:60:05:85:d4:d6:63:64:27:d1: 3d:29:64:87:5a:8a:cf:93:7c:e3:78:bd:27:2c:9f:94:1e:c7: 7b:14:7c:c0:a1:11:60:30:e1:38:3e:75:a6:98:77:be:8f:a3: 8a:dd:b5:45:a5:d4:e0:ec:e2:9f:91:0d:15:89:db:de:e1:6e: f2:38:8a:7f:14:52:84:ba:17:df:30:dc:f9:bc:6b:83:a5:43: 64:ca:b2:80:4b:fb:7a:78:67:22:d6:5c:5a:ee:41:29:5c:df: 4f:2a:c8:55:7a:da:20:f5:20:3d:da:a5:fb:76:d6:c0:45:f0: ee:5f:b0:6f:d0:a0:85:ff:87:ce:f8:6b:b1:19:81:f7:20:67: a3:a8:35:7d:0f:a9:0c:a5:85:70:37:ad:bb:97:09:99:9e:88: ed:a3:1b:c2:02:2d:78:d6:fd:bb:95:f5:c5:8b:d6:96:1c:c0: 08:93:83:0b:37:81:b4:cc:f9:c7:e1:28:63:93:0d:98:4d:1d: 44:e1:94:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDNTIxMTAvBgNVBAUTKEE5OTBEQTI1Q0Y0RTAxQkNFQjdFQzc1QzE3ODYwRkI5 NDdCRTA5MkEwHhcNMjQwMzA1MDU0ODA1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2YjIxNS1kMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoIbZHXnyAkWpC67nHYJTzaFiLRXgTJwO3/WeolKPKMxFXlPgZUmBEG11OH4 SiZ6x1o236ZHxQEo9iu8BJCNFMgO5ud8hWIxV3gLW8PcmeqLT5pYgNG71uk8iakU wf9X7Z4DWe1n5wUDZb+w/rd3i3+xVpnqlnj3O6LSrLeV2LtewBdN5FA+Dbp/n171 fVOpa3k+WmB/R6i5mvmL9fHtc7Q4Dsvroez8CtncPzZE1Kch9igqzSN1tEXffRUu dUGIk7fWSmjhzJIct68RRMo6GPeraODPycyOsh4kojVFuiylZAlTeacbrr/gBWG/ qjJajhj9Kgaalt6PT7+3trN8DQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDGVqQy/ lT1fXuAWAvAXlliVxM5GMB8GA1UdIwQYMBaAFKmQ2iXPTgG8637HXBeGD7lHvgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUM1Mi8wRTVEQkZCNEM0 QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0FienJmc2RjRjRZUHVVZS1D U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaRGFKYzlPQWJ6cmZzZGNGNFlQdVVlLUNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFDNTIvMEU1REJGQjRDNEJDMTFFRDg4NDAzQTQ4QzRGOUFFMDIvQTQwQzAzQjBE M0I1MTFFREEyQTlERDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLIgUwDQYJKoZIhvcNAQELBQADggEBACdixC80NF1KT8Fq kYA7ItKSY5rdRCJrKC+lAizPMu5rKQYCKafYMaalImkxum54cRZG8Z4mk/CflrEa iygtuGAFhdTWY2Qn0T0pZIdais+TfON4vScsn5Qex3sUfMChEWAw4Tg+daaYd76P o4rdtUWl1ODs4p+RDRWJ297hbvI4in8UUoS6F98w3Pm8a4OlQ2TKsoBL+3p4ZyLW XFruQSlc308qyFV62iD1ID3apft21sBF8O5fsG/QoIX/h874a7EZgfcgZ6OoNX0P qQylhXA3rbuXCZmeiO2jG8ICLXjW/buV9cWL1pYcwAiTgws3gbTM+cfhKGOTDZhN HUThlNU= -----END CERTIFICATE-----Generated at Tue May 21 06:39:47 2024 by rpki-client on console-fra.rpki-client.org