$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/1B2E0738BB7011EA93F7DE4EC4F9AE02.roa File: 1B2E0738BB7011EA93F7DE4EC4F9AE02.roa (raw, json) Hash identifier: pqiDB7OjyL3iferKT2pUNrFSVfpSHUFlIIzETqmIpYE= Subject key identifier: 55:6A:E1:FC:63:52:94:1F:87:3B:FC:95:6B:C6:69:77:30:17:20:52 Certificate issuer: /CN=A91E4743/serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Certificate serial: 0766 Authority key identifier: 65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/1B2E0738BB7011EA93F7DE4EC4F9AE02.roa Signing time: Thu 14 Sep 2023 21:19:30 +0000 ROA not before: Thu 14 Sep 2023 21:19:30 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 140865 IP address blocks: 103.152.154.0/23 maxlen: 24 2001:df4:1380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 22:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1894 (0x766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4743/serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Validity Not Before: Sep 14 21:19:30 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=650378e1-3eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a2:9d:55:8d:3b:c1:c7:fd:fe:d1:d1:52:7e: 1d:3d:d5:3e:43:d3:9f:58:86:69:88:ea:1f:73:67: 99:f5:7e:c2:42:30:3c:de:f4:98:5a:cf:d5:08:2d: 50:1b:7d:5b:8f:36:e2:ce:2d:d6:46:90:15:bb:dc: e3:ef:cc:62:a4:08:c6:e9:ee:05:84:c9:d2:d7:fc: 4b:88:86:f7:4a:64:f3:8b:f9:78:0e:69:28:8d:e5: 18:52:be:62:25:54:63:d8:b3:f0:4a:d2:19:48:81: 4d:79:db:33:20:45:dc:21:96:f3:3f:b5:7e:55:64: 1e:36:c8:6a:97:a3:0d:31:e1:4e:b8:34:76:6c:63: 85:fe:5f:2d:6f:76:af:6d:8e:4a:60:c5:20:a7:ae: fc:6a:08:02:18:00:d6:6b:75:bf:f1:19:44:7c:d0: 66:c0:f5:c3:31:74:d6:b1:ee:d6:20:4c:03:46:09: b9:7f:a0:92:65:df:f0:b5:38:50:b6:0e:c7:c7:fa: 98:03:8c:8a:7c:f9:4a:cc:fa:b7:78:4a:0e:c5:ec: 6b:d6:72:f4:99:0a:30:52:2f:8c:2f:88:1b:a1:b5: f4:69:05:5a:68:b6:f5:a6:90:f2:26:b5:1b:43:03: d0:80:33:fb:d7:51:f7:2a:ae:5f:0a:13:ad:e1:b5: c6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:6A:E1:FC:63:52:94:1F:87:3B:FC:95:6B:C6:69:77:30:17:20:52 X509v3 Authority Key Identifier: keyid:65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/1B2E0738BB7011EA93F7DE4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.154.0/23 IPv6: 2001:df4:1380::/48 Signature Algorithm: sha256WithRSAEncryption 8a:60:20:72:22:c2:3f:17:fc:cd:51:9b:9d:2f:77:1c:3b:da: fa:85:6a:8d:3f:30:30:fd:b7:e6:2f:04:4b:62:77:ec:0d:ec: 52:9b:bf:e5:6f:0d:48:b7:5d:1c:a7:5a:45:1e:78:84:57:0c: 77:82:9c:e7:1f:fc:d0:4e:10:f6:7e:c9:d8:a3:4b:c5:29:e0: 35:40:fa:b2:ea:a0:d7:18:ed:01:8c:0a:e6:b1:ab:ff:f2:91: 19:57:34:a9:6f:ad:4a:0f:7c:67:22:a7:14:e5:f4:23:c3:47: f8:43:1f:39:21:b0:c5:b9:d6:fd:40:44:16:b5:87:80:09:da: a3:b2:08:f1:f1:9c:9e:13:13:69:01:81:9f:87:29:11:da:cc: 5b:c2:b0:42:85:1d:07:76:07:e8:ad:0c:cd:b8:9d:02:7f:fb: 95:b9:c7:9e:88:14:35:3c:f9:f4:dd:67:d9:7d:87:ba:93:00: 31:2b:27:af:1d:02:1e:11:0a:31:5b:2f:b2:89:72:45:59:e9: 35:1d:9e:aa:60:a1:8b:e7:f3:fb:48:2f:09:f3:6b:77:b1:8f: 23:4b:11:70:48:e9:01:81:0c:92:fc:bf:e4:67:5c:7b:c8:33: 55:d9:ca:d9:5d:24:e7:ae:f8:bf:9e:78:e0:3c:8b:26:25:5b: e2:1e:25:2a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ3NDMxMTAvBgNVBAUTKDY1NTQyQ0VDMjgxMTFGQzU0QkEzRDJBRUUzM0Y0Q0U4 N0I3RjkwQUQwHhcNMjMwOTE0MjExOTMwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAzNzhlMS0zZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KKdVY07wcf9/tHRUn4dPdU+Q9OfWIZpiOofc2eZ9X7CQjA83vSYWs/VCC1Q G31bjzbizi3WRpAVu9zj78xipAjG6e4FhMnS1/xLiIb3SmTzi/l4DmkojeUYUr5i JVRj2LPwStIZSIFNedszIEXcIZbzP7V+VWQeNshql6MNMeFOuDR2bGOF/l8tb3av bY5KYMUgp678aggCGADWa3W/8RlEfNBmwPXDMXTWse7WIEwDRgm5f6CSZd/wtThQ tg7Hx/qYA4yKfPlKzPq3eEoOxexr1nL0mQowUi+ML4gbobX0aQVaaLb1ppDyJrUb QwPQgDP711H3Kq5fChOt4bXGHQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFVq4fxj UpQfhzv8lWvGaXcwFyBSMB8GA1UdIwQYMBaAFGVULOwoER/FS6PSruM/TOh7f5Ct MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDc0My82NzBGODA5MkJC NkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4VkxvOUt1NHo5TTZIdF9r SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUXM3Q2dSSDhWTG85S3U0ejlNNkh0X2tLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ3NDMvNjcwRjgwOTJCQjZGMTFFQTk2MUZCODRFQzRGOUFFMDIvMUIyRTA3MzhC QjcwMTFFQTkzRjdERTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmJowDwQCAAIwCQMHACABDfQTgDANBgkqhkiG9w0BAQsF AAOCAQEAimAgciLCPxf8zVGbnS93HDva+oVqjT8wMP235i8ES2J37A3sUpu/5W8N SLddHKdaRR54hFcMd4Kc5x/80E4Q9n7J2KNLxSngNUD6suqg1xjtAYwK5rGr//KR GVc0qW+tSg98ZyKnFOX0I8NH+EMfOSGwxbnW/UBEFrWHgAnao7II8fGcnhMTaQGB n4cpEdrMW8KwQoUdB3YH6K0MzbidAn/7lbnHnogUNTz59N1n2X2HupMAMSsnrx0C HhEKMVsvsolyRVnpNR2eqmChi+fz+0gvCfNrd7GPI0sRcEjpAYEMkvy/5Gdce8gz VdnK2V0k5674v5544DyLJiVb4h4lKg== -----END CERTIFICATE-----Generated at Fri May 24 23:25:45 2024 by rpki-client on console-fra.rpki-client.org