$ rpki-client -vvf rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/1BB004005A5F11ED87558C5DC4F9AE02.roa File: 1BB004005A5F11ED87558C5DC4F9AE02.roa (raw, json) Hash identifier: gzhiY6733nAsRQa6TZbVTFq5lHDaOVITl4ckSX4MK2c= Subject key identifier: F7:03:42:12:99:43:22:04:FE:E5:8D:3D:39:0F:D0:E4:51:F9:53:79 Certificate issuer: /CN=A91B12FB/serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Certificate serial: 0179 Authority key identifier: 59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/1BB004005A5F11ED87558C5DC4F9AE02.roa Signing time: Tue 01 Aug 2023 03:43:35 +0000 ROA not before: Tue 01 Aug 2023 03:43:35 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 136146 IP address blocks: 103.189.140.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B12FB/serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Validity Not Before: Aug 1 03:43:35 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c87f66-2bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:12:9b:4f:22:7e:24:ca:f3:de:be:04:99:b3: 71:ec:e2:7c:c3:c4:d5:3c:f3:d9:26:d3:84:6a:be: d1:35:3e:fe:6b:a4:dc:ed:0d:e0:4f:3b:78:00:32: f7:8f:42:62:1d:48:6a:24:4a:36:55:db:41:a9:33: df:af:50:d9:77:f5:1b:f0:9e:a0:89:62:56:8e:aa: c0:d4:68:34:a3:bc:19:cb:25:8d:55:b6:5f:da:b3: bd:31:85:24:cf:74:42:d4:31:17:af:6e:f3:98:3d: 8c:10:7a:85:8e:ac:e5:f4:d8:cc:cf:ab:51:ab:81: 8d:20:b0:dd:79:33:66:e7:52:79:31:cf:6b:64:f1: 5e:93:a1:c7:10:e2:c6:80:b2:d7:75:83:50:40:40: 65:82:cc:d3:2c:27:e6:16:55:9e:e2:1f:80:f7:ef: b6:20:e3:a0:5d:87:0f:16:9e:14:e2:61:8e:7a:85: 5f:2a:63:2f:29:0d:fe:f7:21:2a:6c:01:d7:49:2c: e4:aa:f0:83:59:48:57:27:67:57:28:b7:7d:db:54: 8e:d0:29:c5:8b:61:84:15:e1:53:08:b4:16:78:5a: 2b:2c:0b:38:eb:e5:f7:f4:7c:cb:e3:e9:20:01:2a: df:86:36:37:06:49:a3:8a:02:f7:f4:83:55:9d:e9: 4e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:03:42:12:99:43:22:04:FE:E5:8D:3D:39:0F:D0:E4:51:F9:53:79 X509v3 Authority Key Identifier: keyid:59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/1BB004005A5F11ED87558C5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.140.0/23 Signature Algorithm: sha256WithRSAEncryption b5:f5:51:e4:b0:2d:94:29:c8:36:04:db:15:d9:c5:ec:7a:9b: 8c:3e:1e:7b:33:5c:f9:14:86:22:e2:5a:10:8d:2b:80:67:2a: 39:67:d7:dc:b9:41:4e:b7:78:55:89:6e:63:13:4b:ae:15:4a: de:28:c6:24:34:c1:a6:5c:10:54:c8:c4:67:e3:69:f5:a4:72: 00:14:d6:85:da:1a:d1:3d:1c:7c:a1:de:84:1c:bf:e6:8f:61: 5a:6e:33:30:b8:a9:9b:d6:0c:9c:f2:33:6f:e5:03:36:b8:21: 27:72:03:6e:d4:5f:05:cd:f0:3f:96:a8:06:a8:13:d7:bc:59: 6d:04:bb:33:50:80:ac:ad:f2:03:98:85:47:10:b9:71:6a:12: 56:45:0e:ee:fc:c0:d8:39:14:5f:8b:1c:d6:04:85:51:20:ef: 44:84:09:41:8f:98:11:4c:65:fb:66:a5:e5:e8:eb:95:88:01: 87:6a:f6:25:76:8b:68:3e:2c:68:c4:08:87:6d:0c:7b:fb:5b: 75:45:e2:9d:fc:ec:9a:0e:ad:2a:1d:54:d4:d1:4b:b4:b8:a9: b4:7e:b7:11:c1:6b:52:f5:16:19:cc:ac:41:d2:85:1c:83:07: b4:2c:12:d5:d9:65:f4:4d:98:fe:ad:dd:96:ea:90:8b:e0:5c: 4f:cf:4c:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEyRkIxMTAvBgNVBAUTKDU5MTE4REQ3NTNGMDUzMEVEQzJCOEMzQkUyNjNCRURC MENDRUJDMEUwHhcNMjMwODAxMDM0MzM1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4N2Y2Ni0yYmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xKbTyJ+JMrz3r4EmbNx7OJ8w8TVPPPZJtOEar7RNT7+a6Tc7Q3gTzt4ADL3 j0JiHUhqJEo2VdtBqTPfr1DZd/Ub8J6giWJWjqrA1Gg0o7wZyyWNVbZf2rO9MYUk z3RC1DEXr27zmD2MEHqFjqzl9NjMz6tRq4GNILDdeTNm51J5Mc9rZPFek6HHEOLG gLLXdYNQQEBlgszTLCfmFlWe4h+A9++2IOOgXYcPFp4U4mGOeoVfKmMvKQ3+9yEq bAHXSSzkqvCDWUhXJ2dXKLd921SO0CnFi2GEFeFTCLQWeForLAs46+X39HzL4+kg ASrfhjY3BkmjigL39INVnelO3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPcDQhKZ QyIE/uWNPTkP0ORR+VN5MB8GA1UdIwQYMBaAFFkRjddT8FMO3CuMO+JjvtsMzrwO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTJGQi9FMEQ2NDUxNEVE MUQxMUVDQjVGRjJCMjRDNEY5QUUwMi9XUkdOMTFQd1V3N2NLNHc3NG1PLTJ3ek92 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dSR04xMVB3VXc3Y0s0dzc0bU8tMnd6T3ZBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjEyRkIvRTBENjQ1MTRFRDFEMTFFQ0I1RkYyQjI0QzRGOUFFMDIvMUJCMDA0MDA1 QTVGMTFFRDg3NTU4QzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvYwwDQYJKoZIhvcNAQELBQADggEBALX1UeSwLZQpyDYE 2xXZxex6m4w+HnszXPkUhiLiWhCNK4BnKjln19y5QU63eFWJbmMTS64VSt4oxiQ0 waZcEFTIxGfjafWkcgAU1oXaGtE9HHyh3oQcv+aPYVpuMzC4qZvWDJzyM2/lAza4 ISdyA27UXwXN8D+WqAaoE9e8WW0EuzNQgKyt8gOYhUcQuXFqElZFDu78wNg5FF+L HNYEhVEg70SECUGPmBFMZftmpeXo65WIAYdq9iV2i2g+LGjECIdtDHv7W3VF4p38 7JoOrSodVNTRS7S4qbR+txHBa1L1FhnMrEHShRyDB7QsEtXZZfRNmP6t3ZbqkIvg XE/PTGM= -----END CERTIFICATE-----Generated at Fri May 17 06:18:09 2024 by rpki-client on console-fra.rpki-client.org