$ rpki-client -vvf rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/118BA98C51CA11EC9067E22CC4F9AE02.roa File: 118BA98C51CA11EC9067E22CC4F9AE02.roa (raw, json) Hash identifier: 1XjeHDQ66gK9l4CFDY2wsyvhO3mqIEjFkltw+gwNQXM= Subject key identifier: 95:71:47:B2:77:00:75:AC:D8:0E:6D:BE:27:1B:D7:9B:A0:34:94:65 Certificate issuer: /CN=A91B423C/serialNumber=309F16239A13B0D010428DB551146E52EEB70BB7 Certificate serial: 0361 Authority key identifier: 30:9F:16:23:9A:13:B0:D0:10:42:8D:B5:51:14:6E:52:EE:B7:0B:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJ8WI5oTsNAQQo21URRuUu63C7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/118BA98C51CA11EC9067E22CC4F9AE02.roa Signing time: Thu 11 Jan 2024 02:24:11 +0000 ROA not before: Thu 11 Jan 2024 02:24:11 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 55967 IP address blocks: 103.145.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/MJ8WI5oTsNAQQo21URRuUu63C7c.crl rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/MJ8WI5oTsNAQQo21URRuUu63C7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJ8WI5oTsNAQQo21URRuUu63C7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:43:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B423C/serialNumber=309F16239A13B0D010428DB551146E52EEB70BB7 Validity Not Before: Jan 11 02:24:11 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659f514b-58a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d6:bf:3d:07:09:ee:8f:e2:13:c1:8b:81:c7: 9f:71:4a:21:b9:c2:f7:04:08:4a:00:aa:d0:26:7d: 66:b1:24:20:9f:35:36:da:64:45:b0:47:c3:a1:f1: 50:9c:f4:c4:3e:dd:38:03:2a:e0:1f:d5:71:d1:d2: cf:68:e2:25:c9:ef:13:e9:22:ed:be:10:59:f4:86: 87:67:8e:df:a5:28:ff:94:e3:f7:cc:92:9e:4d:6d: 36:a6:53:8e:f6:6f:b3:92:d8:17:b5:53:ec:ac:bc: 8e:df:11:85:5b:9f:f5:e0:a3:6d:86:39:6e:38:85: 38:33:bb:a3:11:02:ca:a3:28:88:51:4e:ac:01:97: 24:12:12:25:37:94:6d:14:5a:3d:0a:e5:ec:74:20: 2f:54:56:73:7b:a2:33:88:c7:85:26:e4:80:f6:6f: d1:e0:04:70:16:94:d2:ef:8a:d1:fb:20:8a:0f:da: e2:45:6c:aa:84:be:aa:ed:f4:f0:2d:eb:01:1e:b3: 6d:a2:ac:d8:60:d2:82:f8:f5:f0:c3:4d:0d:7b:97: ea:ca:d5:e1:d3:26:b4:41:4e:32:88:6e:14:91:0a: b8:50:79:b0:58:6f:95:61:63:fa:87:09:35:17:c4: 6b:e8:52:8c:37:1e:5e:d7:92:34:db:f5:92:5f:9d: 5a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:71:47:B2:77:00:75:AC:D8:0E:6D:BE:27:1B:D7:9B:A0:34:94:65 X509v3 Authority Key Identifier: keyid:30:9F:16:23:9A:13:B0:D0:10:42:8D:B5:51:14:6E:52:EE:B7:0B:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/MJ8WI5oTsNAQQo21URRuUu63C7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJ8WI5oTsNAQQo21URRuUu63C7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/118BA98C51CA11EC9067E22CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.72.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:04:a8:cd:a6:f6:27:cc:aa:e4:e1:43:76:ed:b1:b5:c7:32: 14:65:18:d1:4e:4e:46:45:05:9e:b2:ff:e5:9e:cf:b1:40:ff: 97:25:f6:5d:83:d7:d2:45:84:d2:59:7e:7e:ca:29:63:3f:0b: e2:79:99:0a:34:fb:18:c7:f9:52:43:38:21:9f:8d:2b:cf:e9: a0:e3:fa:7f:11:25:14:b3:7b:cb:b8:9d:44:41:f6:75:03:6c: 41:e0:00:ed:b8:aa:e5:38:8b:8f:cd:23:af:14:8c:a5:02:96: 6a:b7:59:f4:c0:24:d8:df:a6:6e:03:e4:89:43:04:29:ec:53: 27:b7:f4:a4:0b:9f:79:7e:c0:55:01:17:9e:93:f6:f8:e6:89: 40:21:2a:16:55:3f:6b:a6:66:99:61:0a:b2:b3:a4:b3:3e:ec: 95:a1:fb:de:d1:b1:fc:68:66:28:ad:08:1d:1d:f7:0f:45:07: 7f:8f:3b:cc:e1:a7:95:63:3a:7e:d4:4b:32:55:59:1c:ba:d7: 49:f9:ed:12:dd:3b:d1:2d:05:93:af:d4:2c:a2:b3:6b:9d:17: 26:55:07:8a:44:b1:33:67:67:84:84:dd:ac:e2:49:56:d1:ca: c5:ff:c5:1d:40:bb:13:6a:be:b1:46:97:36:6c:ea:5c:c1:a9: 66:ba:58:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyM0MxMTAvBgNVBAUTKDMwOUYxNjIzOUExM0IwRDAxMDQyOERCNTUxMTQ2RTUy RUVCNzBCQjcwHhcNMjQwMTExMDIyNDExWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNTE0Yi01OGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNa/PQcJ7o/iE8GLgcefcUohucL3BAhKAKrQJn1msSQgnzU22mRFsEfDofFQ nPTEPt04AyrgH9Vx0dLPaOIlye8T6SLtvhBZ9IaHZ47fpSj/lOP3zJKeTW02plOO 9m+zktgXtVPsrLyO3xGFW5/14KNthjluOIU4M7ujEQLKoyiIUU6sAZckEhIlN5Rt FFo9CuXsdCAvVFZze6IziMeFJuSA9m/R4ARwFpTS74rR+yCKD9riRWyqhL6q7fTw LesBHrNtoqzYYNKC+PXww00Ne5fqytXh0ya0QU4yiG4UkQq4UHmwWG+VYWP6hwk1 F8Rr6FKMNx5e15I02/WSX51arQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJVxR7J3 AHWs2A5tvicb15ugNJRlMB8GA1UdIwQYMBaAFDCfFiOaE7DQEEKNtVEUblLutwu3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDIzQy8yNzM3RTZCMjUw RUMxMUVDQUEzQzEzN0NDNEY5QUUwMi9NSjhXSTVvVHNOQVFRbzIxVVJSdVV1NjND N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01KOFdJNW9Uc05BUVFvMjFVUlJ1VXU2M0M3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQyM0MvMjczN0U2QjI1MEVDMTFFQ0FBM0MxMzdDQzRGOUFFMDIvMTE4QkE5OEM1 MUNBMTFFQzkwNjdFMjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkUgwDQYJKoZIhvcNAQELBQADggEBAE4EqM2m9ifMquTh Q3btsbXHMhRlGNFOTkZFBZ6y/+Wez7FA/5cl9l2D19JFhNJZfn7KKWM/C+J5mQo0 +xjH+VJDOCGfjSvP6aDj+n8RJRSze8u4nURB9nUDbEHgAO24quU4i4/NI68UjKUC lmq3WfTAJNjfpm4D5IlDBCnsUye39KQLn3l+wFUBF56T9vjmiUAhKhZVP2umZplh CrKzpLM+7JWh+97RsfxoZiitCB0d9w9FB3+PO8zhp5VjOn7USzJVWRy610n57RLd O9EtBZOv1Cyis2udFyZVB4pEsTNnZ4SE3aziSVbRysX/xR1AuxNqvrFGlzZs6lzB qWa6WGc= -----END CERTIFICATE-----Generated at Fri May 17 03:52:22 2024 by rpki-client on console-ams.rpki-client.org