$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/0D09EE14D79411EC955CCA68C4F9AE02.roa File: 0D09EE14D79411EC955CCA68C4F9AE02.roa (raw, json) Hash identifier: xDaxNUrqvD6a5hjlSfEz/jW4SGZRcJkrXH5w6PVshz8= Subject key identifier: B5:D9:DD:B0:46:09:7B:BF:09:E0:1B:46:6E:2C:A5:02:5A:6B:20:DD Certificate issuer: /CN=A91DD112/serialNumber=36E4E359E20DDA65133E121A92D6D6ACB1E53123 Certificate serial: 0190 Authority key identifier: 36:E4:E3:59:E2:0D:DA:65:13:3E:12:1A:92:D6:D6:AC:B1:E5:31:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NuTjWeIN2mUTPhIaktbWrLHlMSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/0D09EE14D79411EC955CCA68C4F9AE02.roa Signing time: Wed 07 Jun 2023 05:45:24 +0000 ROA not before: Wed 07 Jun 2023 05:45:24 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149831 IP address blocks: 103.187.124.0/23 maxlen: 23 103.187.124.0/24 maxlen: 24 103.187.125.0/24 maxlen: 24 2001:df0:bcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/NuTjWeIN2mUTPhIaktbWrLHlMSM.crl rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/NuTjWeIN2mUTPhIaktbWrLHlMSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NuTjWeIN2mUTPhIaktbWrLHlMSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD112/serialNumber=36E4E359E20DDA65133E121A92D6D6ACB1E53123 Validity Not Before: Jun 7 05:45:24 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64801974-1841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:70:8e:2b:97:c6:c2:bb:4d:ad:5a:73:2b:a9: 7e:9b:8f:46:b5:b5:fd:50:a2:15:06:d8:70:6f:30: 17:01:3e:a5:f9:93:2e:03:f8:77:04:ab:e9:8d:6f: 05:0f:4c:5d:7d:f1:0a:d6:65:fc:a6:58:45:4f:8f: b8:11:b7:42:b3:d5:ba:fb:86:34:13:8e:b8:8b:6b: d7:b3:77:f0:2e:c7:b2:e5:00:4d:d6:d8:b4:d2:92: 98:3f:30:dc:16:27:a5:a4:61:83:1a:55:60:21:82: 75:fd:e9:eb:dc:5d:0c:d3:ea:4c:f5:4f:97:4f:aa: 53:57:a2:62:50:34:6c:30:a5:94:eb:46:9b:f0:28: 91:84:f5:90:71:e0:de:4b:6e:b7:d9:95:ed:58:ec: c7:8e:e1:e0:96:19:ba:77:38:8c:62:a0:ef:77:1d: c1:fd:63:0d:64:75:bc:01:f2:4d:be:84:68:73:22: 63:a5:12:8f:3b:d1:f5:36:0e:63:8f:5e:13:5c:66: 96:22:7c:a5:0d:ce:12:92:85:84:e7:96:b5:5e:a0: 4f:91:f8:d6:79:53:5f:e7:d7:4d:de:cd:60:c6:81: 66:43:75:04:6c:a0:fd:8f:52:3b:cf:16:a8:44:ac: 0f:f8:17:4c:d5:1a:85:f3:a6:24:ac:fb:6a:3e:ad: 26:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D9:DD:B0:46:09:7B:BF:09:E0:1B:46:6E:2C:A5:02:5A:6B:20:DD X509v3 Authority Key Identifier: keyid:36:E4:E3:59:E2:0D:DA:65:13:3E:12:1A:92:D6:D6:AC:B1:E5:31:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/NuTjWeIN2mUTPhIaktbWrLHlMSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NuTjWeIN2mUTPhIaktbWrLHlMSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/0D09EE14D79411EC955CCA68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.124.0/23 IPv6: 2001:df0:bcc0::/48 Signature Algorithm: sha256WithRSAEncryption 43:09:9d:0b:6d:1c:d6:6d:87:8a:0f:e3:83:21:4d:6e:2c:9b: ec:5c:a0:9c:05:a0:dc:69:8c:dc:0f:d3:11:46:e7:29:86:11: 7c:44:f3:fd:65:29:b7:11:2f:47:56:63:00:59:f4:fd:22:d5: 9d:15:96:60:54:c1:3a:80:b4:6f:cd:04:1d:6c:35:a2:6c:54: 0a:8d:dd:dd:4c:0a:68:d9:21:d9:77:48:84:52:30:a4:07:60: 93:cd:75:89:42:6c:4b:53:dd:a6:85:76:e9:76:f5:d2:7b:26: b5:62:4e:15:bf:ed:d7:d2:ff:f5:e1:5b:eb:9c:2b:25:71:10: 60:51:31:aa:2b:30:4f:24:66:64:2f:5e:df:4b:2d:59:98:de: c2:46:58:59:f7:5f:0b:57:19:d6:7c:60:65:8a:00:b9:21:d6: 6e:7e:df:75:2e:47:1f:83:20:a7:28:2a:62:4d:26:f5:dc:9c: 1b:79:35:bb:7c:1a:38:4e:88:09:2d:25:7e:b6:04:5a:72:df: 19:37:74:6c:41:24:d7:53:35:55:34:d6:2a:04:65:03:e0:29: b4:3e:ed:05:95:1b:80:34:e4:be:c1:53:88:aa:4b:20:ed:69: 5e:07:4d:2e:62:1c:40:ad:be:45:c8:cc:dc:4d:36:ee:aa:5a: b0:fe:64:e0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQxMTIxMTAvBgNVBAUTKDM2RTRFMzU5RTIwRERBNjUxMzNFMTIxQTkyRDZENkFD QjFFNTMxMjMwHhcNMjMwNjA3MDU0NTI0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgwMTk3NC0xODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3COK5fGwrtNrVpzK6l+m49GtbX9UKIVBthwbzAXAT6l+ZMuA/h3BKvpjW8F D0xdffEK1mX8plhFT4+4EbdCs9W6+4Y0E464i2vXs3fwLsey5QBN1ti00pKYPzDc FielpGGDGlVgIYJ1/enr3F0M0+pM9U+XT6pTV6JiUDRsMKWU60ab8CiRhPWQceDe S2632ZXtWOzHjuHglhm6dziMYqDvdx3B/WMNZHW8AfJNvoRocyJjpRKPO9H1Ng5j j14TXGaWInylDc4SkoWE55a1XqBPkfjWeVNf59dN3s1gxoFmQ3UEbKD9j1I7zxao RKwP+BdM1RqF86YkrPtqPq0mgwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLXZ3bBG CXu/CeAbRm4spQJaayDdMB8GA1UdIwQYMBaAFDbk41niDdplEz4SGpLW1qyx5TEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDExMi9EQUJBQjVEQ0Q3 OEYxMUVDOTdCNTlFNjJDNEY5QUUwMi9OdVRqV2VJTjJtVVRQaElha3RiV3JMSGxN U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051VGpXZUlOMm1VVFBoSWFrdGJXckxIbE1TTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQxMTIvREFCQUI1RENENzhGMTFFQzk3QjU5RTYyQzRGOUFFMDIvMEQwOUVFMTRE Nzk0MTFFQzk1NUNDQTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnu3wwDwQCAAIwCQMHACABDfC8wDANBgkqhkiG9w0BAQsF AAOCAQEAQwmdC20c1m2Hig/jgyFNbiyb7FygnAWg3GmM3A/TEUbnKYYRfETz/WUp txEvR1ZjAFn0/SLVnRWWYFTBOoC0b80EHWw1omxUCo3d3UwKaNkh2XdIhFIwpAdg k811iUJsS1PdpoV26Xb10nsmtWJOFb/t19L/9eFb65wrJXEQYFExqiswTyRmZC9e 30stWZjewkZYWfdfC1cZ1nxgZYoAuSHWbn7fdS5HH4MgpygqYk0m9dycG3k1u3wa OE6ICS0lfrYEWnLfGTd0bEEk11M1VTTWKgRlA+AptD7tBZUbgDTkvsFTiKpLIO1p XgdNLmIcQK2+RcjM3E027qpasP5k4A== -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org