$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/8F9F2F823C0111EAB6CB9936C4F9AE02.roa File: 8F9F2F823C0111EAB6CB9936C4F9AE02.roa (raw, json) Hash identifier: 7KJPfBZhvIPaRhj9wlG1esKUxLEGwOUb5xu1CyMWqDM= Subject key identifier: BB:D1:30:10:2E:A6:81:02:A6:ED:6B:2B:96:31:D2:FE:81:55:2D:45 Certificate issuer: /CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Certificate serial: 09AD Authority key identifier: 35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/8F9F2F823C0111EAB6CB9936C4F9AE02.roa Signing time: Tue 02 May 2023 21:38:14 +0000 ROA not before: Tue 02 May 2023 21:38:14 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.136.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 20:19:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2477 (0x9ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Validity Not Before: May 2 21:38:14 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645182c6-1ad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:55:e1:f9:29:b1:9b:31:42:d2:d1:61:d1:ee: 31:18:cf:23:fe:aa:f8:c1:bf:24:34:48:8b:08:f1: 16:76:79:0d:4d:17:88:e5:36:ee:8e:1c:1c:81:9f: 38:ee:a4:12:79:11:4a:1f:51:a4:28:bc:6f:14:3d: 41:5c:c2:70:05:5d:c8:9c:49:1b:6b:5a:9a:e0:c3: e3:f7:bf:dc:40:76:1d:46:8c:45:7d:cc:1f:5a:fb: b6:2f:52:60:9f:84:0f:44:52:49:92:6f:15:1d:ac: 04:41:f0:ee:b5:ba:da:cf:44:69:3e:8e:2b:3e:14: a3:8e:80:0d:56:2d:f7:ea:24:c6:14:e6:e8:3a:52: 1a:b1:d7:7d:4e:c1:13:4a:78:7e:34:f8:19:17:13: c9:6e:35:54:11:4d:c1:25:5c:65:fe:9e:8a:5e:4e: cb:ed:78:0b:0b:50:bb:76:bd:eb:1b:15:86:d5:ee: 66:0c:c3:f9:dd:6c:52:5d:13:db:01:d3:03:8d:2c: 99:82:d8:76:47:c3:76:1f:b3:fd:bf:b2:0d:1b:4c: 7b:d7:ac:4a:4e:61:ee:7b:23:d7:c0:19:ec:49:5a: 67:3e:d6:82:d4:bc:4e:50:ba:22:53:4d:4e:7d:41: 15:12:85:6d:25:8c:2a:8d:7d:8f:76:14:b9:df:10: 56:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D1:30:10:2E:A6:81:02:A6:ED:6B:2B:96:31:D2:FE:81:55:2D:45 X509v3 Authority Key Identifier: keyid:35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/8F9F2F823C0111EAB6CB9936C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.10.0/24 Signature Algorithm: sha256WithRSAEncryption 19:f3:7a:1c:14:29:25:d4:53:d4:bc:46:02:5f:58:92:b4:85: 32:42:10:06:87:b0:9f:2c:bf:48:8a:ac:ab:b2:73:92:df:80: a3:90:84:22:a5:5e:34:e9:9a:90:be:7f:68:f0:8c:18:90:80: e3:8c:f1:28:d8:66:6c:7c:15:d1:66:67:eb:cf:7f:c7:f7:5a: 7d:09:08:cf:f0:b5:97:2c:93:57:c3:0b:cd:66:43:b5:e0:c7: 24:4c:cf:f3:38:5c:fd:c4:30:f3:d7:06:a5:a5:0b:8a:5f:3f: b0:7c:5b:ac:3e:b7:c5:86:5e:ac:10:71:d2:12:4b:78:4c:b7: b7:03:45:43:f0:63:39:a4:28:f4:bf:41:da:c4:09:80:8b:f4: bb:72:e7:bf:45:23:fb:a9:75:44:d6:04:23:e1:f2:76:2c:eb: 11:36:6c:7b:ce:0c:c1:3a:ac:1f:05:04:55:93:2a:9c:df:02: b2:1d:ae:d7:38:a7:7d:0d:6f:b3:94:28:e0:01:27:7e:fc:7a: 81:0b:93:fe:a8:e7:63:a3:97:d9:3c:fe:b0:dc:26:3a:8e:01: 9d:e8:35:94:ed:ea:fa:5c:31:d6:18:cb:fd:c5:77:d3:fc:52: e9:a1:43:56:29:c6:ca:4a:77:6b:1d:1e:4f:0a:bd:24:e0:fc: a1:52:77:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1QkIxMTAvBgNVBAUTKDM1RjU4RDg2MUM0MUJERkVBNDZCOEM3MjkwQjFBQUM2 NzBFN0NDMUIwHhcNMjMwNTAyMjEzODE0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxODJjNi0xYWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFXh+SmxmzFC0tFh0e4xGM8j/qr4wb8kNEiLCPEWdnkNTReI5TbujhwcgZ84 7qQSeRFKH1GkKLxvFD1BXMJwBV3InEkba1qa4MPj97/cQHYdRoxFfcwfWvu2L1Jg n4QPRFJJkm8VHawEQfDutbraz0RpPo4rPhSjjoANVi336iTGFOboOlIasdd9TsET Snh+NPgZFxPJbjVUEU3BJVxl/p6KXk7L7XgLC1C7dr3rGxWG1e5mDMP53WxSXRPb AdMDjSyZgth2R8N2H7P9v7ING0x716xKTmHueyPXwBnsSVpnPtaC1LxOULoiU01O fUEVEoVtJYwqjX2PdhS53xBWzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLvRMBAu poECpu1rK5Yx0v6BVS1FMB8GA1UdIwQYMBaAFDX1jYYcQb3+pGuMcpCxqsZw58wb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVCQi81Nzg5QjFBNDND MDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZmNmthNHh5a0xHcXhuRG56 QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mV05oaHhCdmY2a2E0eHlrTEdxeG5EbnpCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjM1QkIvNTc4OUIxQTQzQzAwMTFFQUI4MTc5NzM0QzRGOUFFMDIvOEY5RjJGODIz QzAxMTFFQUI2Q0I5OTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniAowDQYJKoZIhvcNAQELBQADggEBABnzehwUKSXUU9S8 RgJfWJK0hTJCEAaHsJ8sv0iKrKuyc5LfgKOQhCKlXjTpmpC+f2jwjBiQgOOM8SjY Zmx8FdFmZ+vPf8f3Wn0JCM/wtZcsk1fDC81mQ7XgxyRMz/M4XP3EMPPXBqWlC4pf P7B8W6w+t8WGXqwQcdISS3hMt7cDRUPwYzmkKPS/QdrECYCL9Lty579FI/updUTW BCPh8nYs6xE2bHvODME6rB8FBFWTKpzfArIdrtc4p30Nb7OUKOABJ378eoELk/6o 52Ojl9k8/rDcJjqOAZ3oNZTt6vpcMdYYy/3Fd9P8UumhQ1YpxspKd2sdHk8KvSTg /KFSdy8= -----END CERTIFICATE-----Generated at Thu Apr 18 22:03:43 2024 by rpki-client on console-fra.rpki-client.org