$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/21028CF67EF811EAAD47CD30C4F9AE02.roa File: 21028CF67EF811EAAD47CD30C4F9AE02.roa (raw, json) Hash identifier: da/2gdOLCBqrM4Y2Sh8kJ0Zg7oyPtJNr17w3bSTCMO0= Subject key identifier: 4C:2B:D1:84:E8:52:2C:3C:0B:D1:47:B6:AA:7C:00:11:5D:67:62:9A Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 08FE Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/21028CF67EF811EAAD47CD30C4F9AE02.roa Signing time: Sat 30 Mar 2024 21:30:19 +0000 ROA not before: Sat 30 Mar 2024 21:30:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138684 IP address blocks: 103.136.132.0/22 maxlen: 22 103.136.132.0/24 maxlen: 24 103.136.133.0/24 maxlen: 24 103.136.134.0/24 maxlen: 24 103.136.135.0/24 maxlen: 24 2404:93c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2302 (0x8fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Mar 30 21:30:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6608846b-a48b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5c:b4:78:6d:4c:bf:84:95:18:a9:b9:f4:e4: c3:9d:83:c8:1d:58:e3:f9:89:30:47:f7:38:e5:9f: 11:12:41:fb:52:19:96:9a:2f:a5:58:a9:a3:af:20: 5c:20:5d:34:fb:8c:30:4b:99:26:41:8b:31:90:30: e0:83:6e:ce:3d:e2:c4:a4:c0:83:e3:e0:ca:15:05: 95:95:d7:92:dc:ab:c2:7b:02:a6:2b:8b:fe:9b:c6: aa:31:e4:84:41:2e:7b:07:ca:3c:12:af:17:53:6e: 26:8e:75:f2:8a:fe:f4:cf:39:7d:b5:31:73:1f:09: 90:14:82:40:e0:cb:76:a3:54:d3:30:d6:98:e7:a1: 3a:04:13:24:33:a4:6f:1f:86:af:9e:3e:6a:67:76: bf:68:24:36:32:52:f8:23:79:ad:45:cc:49:47:e3: 75:4c:66:1b:8c:c0:f7:62:a0:16:48:32:58:b6:05: f9:cb:31:fb:2f:61:34:02:1b:1b:24:0c:18:78:13: 18:2c:4d:7f:f0:3a:fa:c0:ba:9e:1e:6e:bd:ce:d6: 55:8f:70:22:46:a6:6b:66:b8:05:88:6c:0b:48:fb: 6a:9c:9f:e0:57:bf:15:6c:50:0d:5a:48:66:1b:ee: d8:a7:1b:fa:cf:66:e7:8b:55:37:50:82:61:65:fe: 25:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:2B:D1:84:E8:52:2C:3C:0B:D1:47:B6:AA:7C:00:11:5D:67:62:9A X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/21028CF67EF811EAAD47CD30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.132.0/22 IPv6: 2404:93c0::/32 Signature Algorithm: sha256WithRSAEncryption 31:45:b2:b7:e2:c3:57:5c:3d:b4:53:d8:ac:90:3b:67:e5:28: 52:6b:bd:4d:c5:98:24:01:e2:00:64:f3:40:cf:aa:10:c4:98: 9d:35:ae:a5:8e:7d:c9:8e:44:6a:5a:87:24:a9:f9:ca:79:d5: 1e:fc:22:8e:4d:0a:41:51:a5:14:e8:19:34:53:0c:88:23:c0: 00:34:74:51:34:39:bd:6a:7d:3f:03:b1:65:a5:55:d5:22:16: 17:03:16:8d:76:bd:09:c1:88:96:bf:5e:24:bb:ae:39:5a:d4: 4e:9c:07:26:5a:49:d4:bc:5c:5b:fd:c0:af:34:01:09:70:6d: a5:38:17:7f:c3:36:21:b7:3f:66:95:d4:47:07:6e:5a:0b:d6: e2:ab:4b:b4:b2:d2:72:bf:99:86:c8:8f:50:e9:3d:22:69:2a: b7:65:73:7d:ee:5b:c6:9e:46:1f:f4:81:e8:ab:cf:55:ab:0e: fb:30:3d:bf:ca:88:f8:75:80:79:fb:78:4c:36:bc:2e:42:1e: 19:db:6f:26:15:73:fc:33:bf:fa:c7:45:c5:37:fa:0e:79:83: c5:80:e5:6b:58:56:45:17:eb:72:33:23:d3:ad:62:10:a2:24: a1:8f:55:95:39:7f:23:aa:89:a9:2f:43:fc:f2:75:93:17:c9: fe:4f:a8:de -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjQwMzMwMjEzMDE5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4ODQ2Yi1hNDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1y0eG1Mv4SVGKm59OTDnYPIHVjj+YkwR/c45Z8REkH7UhmWmi+lWKmjryBc IF00+4wwS5kmQYsxkDDgg27OPeLEpMCD4+DKFQWVldeS3KvCewKmK4v+m8aqMeSE QS57B8o8Eq8XU24mjnXyiv70zzl9tTFzHwmQFIJA4Mt2o1TTMNaY56E6BBMkM6Rv H4avnj5qZ3a/aCQ2MlL4I3mtRcxJR+N1TGYbjMD3YqAWSDJYtgX5yzH7L2E0Ahsb JAwYeBMYLE1/8Dr6wLqeHm69ztZVj3AiRqZrZrgFiGwLSPtqnJ/gV78VbFANWkhm G+7Ypxv6z2bni1U3UIJhZf4l2QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEwr0YTo Uiw8C9FHtqp8ABFdZ2KaMB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1OUQvNUZBQjk3MkU3RUY2MTFFQUE5NzlBMzJEQzRGOUFFMDIvMjEwMjhDRjY3 RUY4MTFFQUFENDdDRDMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJniIQwDQQCAAIwBwMFACQEk8AwDQYJKoZIhvcNAQELBQAD ggEBADFFsrfiw1dcPbRT2KyQO2flKFJrvU3FmCQB4gBk80DPqhDEmJ01rqWOfcmO RGpahySp+cp51R78Io5NCkFRpRToGTRTDIgjwAA0dFE0Ob1qfT8DsWWlVdUiFhcD Fo12vQnBiJa/XiS7rjla1E6cByZaSdS8XFv9wK80AQlwbaU4F3/DNiG3P2aV1EcH bloL1uKrS7Sy0nK/mYbIj1DpPSJpKrdlc33uW8aeRh/0geirz1WrDvswPb/KiPh1 gHn7eEw2vC5CHhnbbyYVc/wzv/rHRcU3+g55g8WA5WtYVkUX63IzI9OtYhCiJKGP VZU5fyOqiakvQ/zydZMXyf5PqN4= -----END CERTIFICATE-----Generated at Fri May 10 23:55:03 2024 by rpki-client on console-fra.rpki-client.org