$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/53B6E5D212CF11EBA8D2C037C4F9AE02.roa File: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (raw, json) Hash identifier: UHLbtcY+MssUReji2ZDnPxouuMqAchFNbY9lf4jGoV8= Subject key identifier: 43:E7:8F:8C:6D:CA:B4:2D:F1:46:89:F7:F0:A4:91:E3:F9:BF:1C:7D Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 06B2 Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/53B6E5D212CF11EBA8D2C037C4F9AE02.roa Signing time: Thu 04 Apr 2024 23:32:54 +0000 ROA not before: Thu 04 Apr 2024 23:32:54 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132269 IP address blocks: 103.148.234.0/24 maxlen: 24 103.149.217.0/24 maxlen: 24 2001:df2:f680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 22:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1714 (0x6b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Apr 4 23:32:54 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f38a6-d2e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b4:3a:17:49:4e:19:cd:25:80:60:7c:0c:28: ef:55:c3:ec:f7:0d:5f:e3:12:3e:dc:fe:de:6b:17: 87:1c:ac:33:26:98:3b:d9:72:19:39:e2:11:c4:94: 0d:d6:33:fa:51:ca:ec:43:81:06:1a:4a:83:e0:af: cd:19:52:43:22:65:ed:b5:17:1a:af:5b:e6:c6:86: 08:58:15:b6:9c:86:17:00:47:ee:33:57:57:5e:a5: b0:d6:84:df:eb:a4:af:95:cc:0a:a2:76:6d:06:1f: cb:c5:90:18:cd:18:41:50:45:ec:3c:69:46:bb:2d: f7:0e:a7:1d:5d:3a:75:8e:a4:f0:38:17:7f:8b:4b: 55:29:d8:03:26:5b:a4:5e:a7:f1:89:52:e3:2f:fc: a6:b4:5f:f8:cd:a0:ae:33:ea:0d:65:0d:0b:03:3f: c0:a1:48:67:34:9d:d1:ce:eb:ad:3a:ca:42:09:99: 7e:fa:6d:0c:f9:87:8d:bb:6d:a4:ce:2e:47:cb:5f: 4b:2b:01:12:1c:21:d9:dc:be:30:7e:5f:14:ab:3b: 8a:8e:ca:9f:9b:b9:5f:95:a8:6a:86:80:2e:32:4a: e8:37:f6:97:8e:e0:3a:4c:40:03:4e:73:54:c1:d8: 3a:22:32:48:09:c3:4a:78:d3:06:4b:7e:82:44:88: ed:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E7:8F:8C:6D:CA:B4:2D:F1:46:89:F7:F0:A4:91:E3:F9:BF:1C:7D X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/53B6E5D212CF11EBA8D2C037C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.234.0/24 103.149.217.0/24 IPv6: 2001:df2:f680::/48 Signature Algorithm: sha256WithRSAEncryption 36:a4:c2:85:04:87:17:c1:2f:b7:23:ea:94:5b:03:a8:51:05: cd:ef:0d:42:01:1e:11:5a:64:27:08:14:f4:ef:2a:88:de:aa: 18:85:26:e9:90:c6:b9:fc:4e:6a:aa:72:91:70:ab:f7:bc:fc: 50:10:92:67:c1:8a:b8:21:b3:78:dd:35:90:6b:9d:52:b2:e5: c7:d0:74:02:e7:0a:34:d3:1c:db:8b:65:27:92:e6:df:47:b5: 78:8b:e0:48:51:97:32:85:6d:5e:e7:24:95:c2:55:21:23:ff: a9:26:5b:0f:43:83:b8:e5:f5:2f:cf:1e:81:f3:74:be:20:b6: d2:96:8b:a6:10:0d:00:9c:37:59:3f:52:1a:72:4f:d2:be:69: b3:f0:ca:84:0f:56:db:40:07:30:eb:ed:9f:1d:6e:66:52:88: d3:b1:e4:0d:d2:ef:8c:a9:29:af:67:c0:e8:dc:0c:ed:b1:7d: 74:3e:6f:51:53:f1:f8:1b:bd:29:8d:27:04:52:43:5b:1e:16: 02:fe:20:8e:28:59:fa:6f:ff:7b:b8:28:bd:2d:df:e9:b9:21: 94:09:38:c6:ef:c8:9e:e5:27:45:d9:09:76:6b:b1:2d:b5:b7: af:3c:4f:78:b8:d0:cb:f5:36:58:46:2a:83:ae:3a:09:5b:de: 05:b9:63:8c -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjQwNDA0MjMzMjU0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmMzhhNi1kMmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bQ6F0lOGc0lgGB8DCjvVcPs9w1f4xI+3P7eaxeHHKwzJpg72XIZOeIRxJQN 1jP6UcrsQ4EGGkqD4K/NGVJDImXttRcar1vmxoYIWBW2nIYXAEfuM1dXXqWw1oTf 66SvlcwKonZtBh/LxZAYzRhBUEXsPGlGuy33DqcdXTp1jqTwOBd/i0tVKdgDJluk XqfxiVLjL/ymtF/4zaCuM+oNZQ0LAz/AoUhnNJ3RzuutOspCCZl++m0M+YeNu22k zi5Hy19LKwESHCHZ3L4wfl8UqzuKjsqfm7lflahqhoAuMkroN/aXjuA6TEADTnNU wdg6IjJICcNKeNMGS36CRIjtNwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEPnj4xt yrQt8UaJ9/CkkeP5vxx9MB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlCODUvNDJEN0MwMEMxMkNFMTFFQjk1MzMxOTM3QzRGOUFFMDIvNTNCNkU1RDIx MkNGMTFFQkE4RDJDMDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnlOoDBABnldkwDwQCAAIwCQMHACABDfL2gDANBgkqhkiG 9w0BAQsFAAOCAQEANqTChQSHF8EvtyPqlFsDqFEFze8NQgEeEVpkJwgU9O8qiN6q GIUm6ZDGufxOaqpykXCr97z8UBCSZ8GKuCGzeN01kGudUrLlx9B0AucKNNMc24tl J5Lm30e1eIvgSFGXMoVtXucklcJVISP/qSZbD0ODuOX1L88egfN0viC20paLphAN AJw3WT9SGnJP0r5ps/DKhA9W20AHMOvtnx1uZlKI07HkDdLvjKkpr2fA6NwM7bF9 dD5vUVPx+Bu9KY0nBFJDWx4WAv4gjihZ+m//e7govS3f6bkhlAk4xu/InuUnRdkJ dmuxLbW3rzxPeLjQy/U2WEYqg646CVveBbljjA== -----END CERTIFICATE-----Generated at Mon May 20 23:42:25 2024 by rpki-client on console-ams.rpki-client.org