$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa File: 0BFA0C9C927E11EEA47AD74FC4F9AE02.roa (raw, json) Hash identifier: fhWfXuCA6p+vk9M3U34/ucRqZ7Yybcd/1gRI19pt87k= Subject key identifier: 87:E4:9D:2F:62:0F:87:04:63:87:8B:1C:25:01:F0:05:07:F1:97:EE Certificate issuer: /CN=A91EF35B/serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Certificate serial: 035A Authority key identifier: E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa Signing time: Mon 04 Dec 2023 08:20:56 +0000 ROA not before: Mon 04 Dec 2023 08:20:56 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 146990 IP address blocks: 103.172.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 858 (0x35a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF35B/serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Validity Not Before: Dec 4 08:20:56 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=656d8be8-d74f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:36:10:75:dd:7c:5b:c0:9e:45:82:31:c2:48: ac:30:4c:1e:7f:a7:73:54:c1:f0:cd:3c:4a:63:02: 3a:3e:37:10:52:df:1b:d2:94:33:ca:61:6a:2e:aa: 84:a6:3b:94:fb:d9:45:7e:1b:df:a8:2e:68:2c:71: 3a:f2:9d:d9:16:fc:a3:df:81:6d:a2:6e:5d:40:b4: 63:c9:d3:6e:5b:74:8f:65:62:02:ec:a9:8b:24:df: 70:6c:29:cb:45:3e:ea:69:8e:9e:32:09:25:23:a1: 72:73:ff:75:a8:4f:62:5b:a3:6e:0c:78:31:65:58: e0:e8:08:3c:96:49:34:d3:c1:4f:73:8e:bc:e0:d7: ae:41:d9:78:a3:af:33:3c:51:c4:6e:aa:ba:19:17: 4c:13:ce:12:99:7a:e0:a9:49:07:46:8c:7a:ae:fd: 37:20:da:4b:65:c9:e1:42:76:e3:f7:02:95:44:ac: 51:bd:1f:4c:0b:75:63:3e:05:1b:e8:45:02:32:b1: ad:58:c5:79:a1:9f:ae:6e:cc:57:5b:22:7e:b3:5a: 60:72:b5:6d:83:d6:ff:b2:e1:f6:5a:22:39:98:5f: 91:17:da:e4:73:22:ff:a7:f5:3c:c1:10:ab:f0:21: d6:d7:7b:9f:aa:65:a5:fc:8d:c4:53:5b:1b:50:8c: f5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E4:9D:2F:62:0F:87:04:63:87:8B:1C:25:01:F0:05:07:F1:97:EE X509v3 Authority Key Identifier: keyid:E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.138.0/24 Signature Algorithm: sha256WithRSAEncryption 66:26:5e:9d:05:9b:a7:5c:e6:dd:1c:e7:49:e4:53:4b:8d:89: 85:27:5f:08:c0:a8:e0:d4:be:5e:7d:97:3d:19:e9:0a:c5:3a: 2b:cb:67:5e:9c:55:fa:50:f3:20:14:1a:fd:ff:d0:a9:e0:98: 39:99:df:db:86:9c:a2:81:4c:6d:0e:bb:49:ee:5e:4e:49:97: 07:e2:e3:6e:63:71:37:67:e7:a8:10:99:67:3e:24:f2:a2:f1: d9:74:2b:f1:97:82:f9:1f:34:24:95:67:d3:ac:8f:de:f1:b7: 22:60:b4:0b:93:c9:5c:43:68:af:5f:8e:62:98:45:24:27:dc: 8f:e3:2c:8c:e5:54:8b:a9:91:80:82:0a:a8:b9:73:eb:6d:b2: f9:1b:da:de:ef:6e:8c:01:8c:69:81:57:81:31:4e:8e:55:75: 09:8c:80:63:46:3d:ec:1a:61:6b:42:06:f5:a4:7b:da:de:fd: 99:af:02:ee:e1:0c:92:7d:40:ba:bf:e0:0b:a7:44:0d:d3:83: be:44:a7:26:b6:49:87:44:8a:3b:fd:85:0a:df:3a:13:a1:47: 12:f3:6b:ff:bc:92:e7:37:eb:c5:fc:e7:d6:24:16:b6:c7:da: 10:3e:0f:bb:4c:fe:92:56:d6:01:36:c1:b6:03:1c:53:d5:ae: 56:15:b4:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYzNUIxMTAvBgNVBAUTKEU0MDcyMEJBMjkzQkFGMjVCQzBBMTc3OEM2NUNGMEQy RTBGMzUxNjAwHhcNMjMxMjA0MDgyMDU2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZkOGJlOC1kNzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzYQdd18W8CeRYIxwkisMEwef6dzVMHwzTxKYwI6PjcQUt8b0pQzymFqLqqE pjuU+9lFfhvfqC5oLHE68p3ZFvyj34Ftom5dQLRjydNuW3SPZWIC7KmLJN9wbCnL RT7qaY6eMgklI6Fyc/91qE9iW6NuDHgxZVjg6Ag8lkk008FPc4684NeuQdl4o68z PFHEbqq6GRdME84SmXrgqUkHRox6rv03INpLZcnhQnbj9wKVRKxRvR9MC3VjPgUb 6EUCMrGtWMV5oZ+ubsxXWyJ+s1pgcrVtg9b/suH2WiI5mF+RF9rkcyL/p/U8wRCr 8CHW13ufqmWl/I3EU1sbUIz1BwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIfknS9i D4cEY4eLHCUB8AUH8ZfuMB8GA1UdIwQYMBaAFOQHILopO68lvAoXeMZc8NLg81Fg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjM1Qi9FMDEwMTU4QTU2 NEUxMUVDODU4ODU5MTRDNEY5QUUwMi81QWNndWlrN3J5VzhDaGQ0eGx6dzB1RHpV V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVBY2d1aWs3cnlXOENoZDR4bHp3MHVEelVXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYzNUIvRTAxMDE1OEE1NjRFMTFFQzg1ODg1OTE0QzRGOUFFMDIvMEJGQTBDOUM5 MjdFMTFFRUE0N0FENzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrIowDQYJKoZIhvcNAQELBQADggEBAGYmXp0Fm6dc5t0c 50nkU0uNiYUnXwjAqODUvl59lz0Z6QrFOivLZ16cVfpQ8yAUGv3/0KngmDmZ39uG nKKBTG0Ou0nuXk5Jlwfi425jcTdn56gQmWc+JPKi8dl0K/GXgvkfNCSVZ9Osj97x tyJgtAuTyVxDaK9fjmKYRSQn3I/jLIzlVIupkYCCCqi5c+ttsvkb2t7vbowBjGmB V4ExTo5VdQmMgGNGPewaYWtCBvWke9re/ZmvAu7hDJJ9QLq/4AunRA3Tg75Epya2 SYdEijv9hQrfOhOhRxLza/+8kuc368X859YkFrbH2hA+D7tM/pJW1gE2wbYDHFPV rlYVtMY= -----END CERTIFICATE-----Generated at Fri May 17 03:17:01 2024 by rpki-client on console-fra.rpki-client.org