$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/0C86DB20F63E11EA9FF7B134C4F9AE02.roa File: 0C86DB20F63E11EA9FF7B134C4F9AE02.roa (raw, json) Hash identifier: LurmJ7QLRkm4UNwbxz+t6OH5Zu37E1jXfkrfx8UtdmI= Subject key identifier: A9:8B:04:CD:33:9C:D4:B1:A3:F9:E6:DE:B8:AB:32:2B:5A:FB:0C:41 Certificate issuer: /CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Certificate serial: 0673 Authority key identifier: 30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/0C86DB20F63E11EA9FF7B134C4F9AE02.roa Signing time: Sun 30 Jul 2023 21:58:58 +0000 ROA not before: Sun 30 Jul 2023 21:58:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140948 IP address blocks: 103.153.196.0/23 maxlen: 23 103.153.196.0/24 maxlen: 24 103.153.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Validity Not Before: Jul 30 21:58:58 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c6dd22-c6d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c7:98:34:e4:e0:c0:a1:1a:1c:3b:73:1e:c9: 8c:61:95:cd:ad:c2:7e:2e:38:de:a9:b1:4d:df:27: 68:1a:ed:6f:2a:e9:c3:7a:79:a0:35:41:cd:a3:a0: 21:1b:9f:d3:16:c2:8d:00:3b:2c:f9:f7:5b:9a:ef: 4d:7c:ab:16:4b:d7:b3:62:c3:5e:04:df:c3:d0:46: f0:bf:3d:4a:be:19:f7:58:f3:f7:3e:13:7c:3d:e7: 14:73:9e:bd:0c:3d:d9:df:1a:36:b0:c9:23:13:8e: a2:e0:8e:9a:d8:b5:75:d7:b9:72:0e:9b:b5:e7:8d: f8:f0:6d:c8:8c:1d:10:f8:ac:d5:22:63:be:08:5a: e6:76:b6:ea:87:55:54:17:2b:d5:3e:18:1e:96:db: cb:83:56:e6:b1:1a:bb:4f:b6:3e:02:ad:de:94:f4: 7c:d8:3f:6d:8a:ad:55:89:ff:17:35:21:18:92:c2: 36:58:88:84:e3:17:61:e1:0c:d3:06:b7:97:70:e9: 33:b3:c6:f3:69:aa:10:28:01:c7:f0:be:96:ba:b9: bd:f7:df:de:1d:60:51:af:5e:34:cd:67:25:06:0e: 4a:06:69:7e:4f:0d:7a:d6:3d:be:e6:10:b9:c2:33: 76:98:fa:bd:8c:cb:ea:7f:0b:6d:75:c5:c9:a2:16: 5b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:8B:04:CD:33:9C:D4:B1:A3:F9:E6:DE:B8:AB:32:2B:5A:FB:0C:41 X509v3 Authority Key Identifier: keyid:30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/0C86DB20F63E11EA9FF7B134C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.196.0/23 Signature Algorithm: sha256WithRSAEncryption a4:c0:cf:51:0e:fa:92:fe:55:72:69:ea:49:eb:aa:54:68:48: 92:f4:a9:99:53:01:fc:cb:f5:d2:cd:19:94:2c:0d:2d:d5:0b: 19:71:47:8c:24:f5:d2:5f:5b:75:4a:6f:7b:b8:6c:8d:47:b6: de:cc:68:a3:36:66:50:6a:ea:2d:74:4f:0d:30:08:d7:87:89: c1:c4:3d:a8:37:67:21:14:7f:50:9c:ec:7e:7c:80:d2:76:e1: 78:68:7b:38:b4:d5:59:86:36:f2:ba:18:fe:d2:77:d3:33:d8: ff:a6:86:c4:49:48:d4:de:5f:6f:8e:54:ce:14:0c:b8:0a:0e: 04:f0:29:02:2c:4c:df:0e:ec:4d:aa:f7:db:64:c8:30:b3:77: be:16:68:61:31:ef:9f:99:b9:40:eb:a0:0e:57:98:4b:74:ea: 57:6a:19:1a:7f:c9:0a:af:23:d9:b3:eb:c1:0d:ad:a4:6e:57: 58:b8:31:46:4f:11:2a:90:a9:7e:64:74:11:f6:94:0f:f9:f1: cb:a2:8c:43:4c:70:c2:2b:14:0b:df:ea:df:f6:ed:ab:73:5a: 07:be:b2:27:7c:d4:60:53:6a:f6:d9:93:9f:3b:bd:71:31:2a: 92:c9:db:46:0e:0c:87:31:ca:a0:76:02:81:65:b0:68:63:f4: 2d:00:1f:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIyNTIxMTAvBgNVBAUTKDMwOEEwRjA0MjM3MUQ3NDRFNENCNjJBQjUxRTkwNEY3 MENBQ0QzN0EwHhcNMjMwNzMwMjE1ODU4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM2ZGQyMi1jNmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwseYNOTgwKEaHDtzHsmMYZXNrcJ+LjjeqbFN3ydoGu1vKunDenmgNUHNo6Ah G5/TFsKNADss+fdbmu9NfKsWS9ezYsNeBN/D0Ebwvz1Kvhn3WPP3PhN8PecUc569 DD3Z3xo2sMkjE46i4I6a2LV117lyDpu154348G3IjB0Q+KzVImO+CFrmdrbqh1VU FyvVPhgeltvLg1bmsRq7T7Y+Aq3elPR82D9tiq1Vif8XNSEYksI2WIiE4xdh4QzT BreXcOkzs8bzaaoQKAHH8L6Wurm999/eHWBRr140zWclBg5KBml+Tw161j2+5hC5 wjN2mPq9jMvqfwttdcXJohZbNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKmLBM0z nNSxo/nm3rirMita+wxBMB8GA1UdIwQYMBaAFDCKDwQjcddE5Mtiq1HpBPcMrNN6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjI1Mi9DNThGOEI3QUY2 M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEwVGt5MktyVWVrRTl3eXMw M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Jb1BCQ054MTBUa3kyS3JVZWtFOXd5czAzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjIyNTIvQzU4RjhCN0FGNjNBMTFFQUI3MEEzNjFGQzRGOUFFMDIvMEM4NkRCMjBG NjNFMTFFQTlGRjdCMTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmcQwDQYJKoZIhvcNAQELBQADggEBAKTAz1EO+pL+VXJp 6knrqlRoSJL0qZlTAfzL9dLNGZQsDS3VCxlxR4wk9dJfW3VKb3u4bI1Htt7MaKM2 ZlBq6i10Tw0wCNeHicHEPag3ZyEUf1Cc7H58gNJ24Xhoezi01VmGNvK6GP7Sd9Mz 2P+mhsRJSNTeX2+OVM4UDLgKDgTwKQIsTN8O7E2q99tkyDCzd74WaGEx75+ZuUDr oA5XmEt06ldqGRp/yQqvI9mz68ENraRuV1i4MUZPESqQqX5kdBH2lA/58cuijENM cMIrFAvf6t/27atzWge+sid81GBTavbZk587vXExKpLJ20YODIcxyqB2AoFlsGhj 9C0AH/o= -----END CERTIFICATE-----Generated at Wed May 22 23:16:55 2024 by rpki-client on console-ams.rpki-client.org