$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/134DA870DC1611ECAACFC563C4F9AE02.roa File: 134DA870DC1611ECAACFC563C4F9AE02.roa (raw, json) Hash identifier: cW4I1UNoPJA8LD5gXTerXs0oFpEE949rMRy/rNvaBhE= Subject key identifier: 1E:07:A3:AC:B0:08:E9:D9:92:F6:DB:7F:94:B8:FD:67:B1:7B:BB:70 Certificate issuer: /CN=A91E91BC/serialNumber=6D5D50E88B9D65E8AFDA28C2CEA6150127038608 Certificate serial: 019F Authority key identifier: 6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/134DA870DC1611ECAACFC563C4F9AE02.roa Signing time: Sat 01 Jul 2023 02:52:41 +0000 ROA not before: Sat 01 Jul 2023 02:52:41 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 38220 IP address blocks: 203.14.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.crl rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC/serialNumber=6D5D50E88B9D65E8AFDA28C2CEA6150127038608 Validity Not Before: Jul 1 02:52:41 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649f94f9-938b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8d:c6:a3:ce:ff:73:51:89:06:6d:ed:30:7f: d3:bc:cf:34:49:67:9c:ce:54:14:b1:f9:51:9f:d7: f3:55:6e:85:40:cf:0f:2e:80:5a:7f:fd:b4:aa:b8: b1:2c:38:30:42:5b:36:a4:43:0c:e8:05:2c:36:b6: 3a:e1:04:ba:d9:fb:55:a9:51:ee:88:f8:42:55:cb: db:91:22:41:4c:34:dc:c8:7d:50:7a:cb:95:b2:f0: f9:61:52:37:f4:2f:2e:49:b3:b6:5b:e4:7f:4e:1c: 0d:05:eb:23:f0:46:c7:8b:2d:ff:d9:b1:ff:df:54: 42:4e:78:2d:2d:81:85:ab:9e:fe:b3:b8:18:85:78: c4:a8:92:62:57:b2:c4:26:53:e6:01:f0:10:f0:23: 76:23:bd:4e:7d:27:3e:c9:cb:e3:de:49:ce:9b:57: 69:ad:a9:4f:df:d9:21:2c:2e:f1:ca:f6:9b:14:84: 20:6a:c2:58:ed:bf:9e:8f:35:85:9f:72:cc:d7:cc: b2:b5:dd:ec:69:ef:e0:08:d2:a1:19:c1:ee:c4:2a: 2f:ad:cf:9a:57:c6:ee:07:70:44:3a:d3:45:5e:dc: 4e:4c:f2:e7:cf:0e:86:ed:17:e7:70:5d:9e:4c:c3: 4b:d9:59:32:08:ea:f9:ee:53:00:6b:fc:3c:95:84: a3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:07:A3:AC:B0:08:E9:D9:92:F6:DB:7F:94:B8:FD:67:B1:7B:BB:70 X509v3 Authority Key Identifier: keyid:6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/134DA870DC1611ECAACFC563C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.14.153.0/24 Signature Algorithm: sha256WithRSAEncryption 53:21:bc:a6:de:0c:8d:f7:78:87:9a:48:dd:3c:b2:4f:03:32: 79:c3:aa:d5:7b:f6:0d:2d:bd:e2:af:08:07:8f:da:8e:a0:99: 3e:df:af:6f:8b:c3:ab:b0:d1:89:77:06:3b:bd:f1:f3:92:a1: 78:ff:1c:0a:70:ae:0c:bd:b6:cb:97:6a:3a:86:80:d9:2d:74: 72:ba:dc:10:1d:29:13:92:61:11:53:6c:14:30:e1:50:ca:12: e9:41:93:52:0e:74:b4:e1:eb:9b:bb:cc:4b:28:c4:6e:e5:bc: 27:59:bb:09:2b:00:4c:9d:41:3b:0f:ef:c9:35:52:2a:48:28: d6:43:17:7a:59:45:6c:fd:8c:f6:64:6e:d2:d0:5f:34:c7:ca: 97:4e:66:29:19:b4:9b:a8:bb:9d:bb:52:aa:d5:e3:c1:64:40: 54:2c:27:e9:fa:60:05:49:7d:b5:01:d0:99:0b:28:c2:b1:4a: 36:27:5c:06:2b:43:48:25:d5:ee:f7:bb:0f:6f:95:2c:3f:f7: 42:84:5f:90:a7:1f:a3:00:eb:93:a5:64:63:34:77:88:72:b6: 87:86:2f:8b:92:90:1d:b3:90:f9:a5:c0:55:87:42:4c:8c:48: c9:62:f4:72:7a:36:34:59:05:3d:32:37:51:f8:93:c8:e8:91: 79:ae:0c:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDZENUQ1MEU4OEI5RDY1RThBRkRBMjhDMkNFQTYxNTAx MjcwMzg2MDgwHhcNMjMwNzAxMDI1MjQxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDlmOTRmOS05MzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI3Go87/c1GJBm3tMH/TvM80SWeczlQUsflRn9fzVW6FQM8PLoBaf/20qrix LDgwQls2pEMM6AUsNrY64QS62ftVqVHuiPhCVcvbkSJBTDTcyH1QesuVsvD5YVI3 9C8uSbO2W+R/ThwNBesj8EbHiy3/2bH/31RCTngtLYGFq57+s7gYhXjEqJJiV7LE JlPmAfAQ8CN2I71OfSc+ycvj3knOm1dpralP39khLC7xyvabFIQgasJY7b+ejzWF n3LM18yytd3sae/gCNKhGcHuxCovrc+aV8buB3BEOtNFXtxOTPLnzw6G7RfncF2e TMNL2VkyCOr57lMAa/w8lYSjDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB4Ho6yw COnZkvbbf5S4/Wexe7twMB8GA1UdIwQYMBaAFG1dUOiLnWXor9oows6mFQEnA4YI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BRTQ0RDI0QURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9iVjFRNkl1ZFplaXYyaWpDenFZVkFTY0Ro Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JWMVE2SXVkWmVpdjJpakN6cVlWQVNjRGhnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTkxQkMvQUU0NEQyNEFEQkU5MTFFQzk1MTEwNTE1QzRGOUFFMDIvMTM0REE4NzBE QzE2MTFFQ0FBQ0ZDNTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLDpkwDQYJKoZIhvcNAQELBQADggEBAFMhvKbeDI33eIea SN08sk8DMnnDqtV79g0tveKvCAeP2o6gmT7fr2+Lw6uw0Yl3Bju98fOSoXj/HApw rgy9tsuXajqGgNktdHK63BAdKROSYRFTbBQw4VDKEulBk1IOdLTh65u7zEsoxG7l vCdZuwkrAEydQTsP78k1UipIKNZDF3pZRWz9jPZkbtLQXzTHypdOZikZtJuou527 UqrV48FkQFQsJ+n6YAVJfbUB0JkLKMKxSjYnXAYrQ0gl1e73uw9vlSw/90KEX5Cn H6MA65OlZGM0d4hytoeGL4uSkB2zkPmlwFWHQkyMSMli9HJ6NjRZBT0yN1H4k8jo kXmuDO0= -----END CERTIFICATE-----Generated at Sun May 19 04:56:56 2024 by rpki-client on console-fra.rpki-client.org