$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/859B9868927E11EEB878AA50C4F9AE02.roa File: 859B9868927E11EEB878AA50C4F9AE02.roa (raw, json) Hash identifier: OpcmyzujUrlr3ZQPQLRyT8eyWYNuIn2U5UC/mkkDA5c= Subject key identifier: 88:53:68:72:4B:54:6D:7D:B0:57:18:FD:9C:8C:72:C0:58:B2:8D:9A Certificate issuer: /CN=A91EF35B/serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Certificate serial: 035C Authority key identifier: E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/859B9868927E11EEB878AA50C4F9AE02.roa Signing time: Mon 04 Dec 2023 08:24:20 +0000 ROA not before: Mon 04 Dec 2023 08:24:20 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 137967 IP address blocks: 103.172.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 860 (0x35c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF35B/serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Validity Not Before: Dec 4 08:24:20 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=656d8cb4-da18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c1:bd:8e:4c:12:9c:72:79:95:a3:bc:fe:25: 6f:4c:cf:5b:ff:0e:96:df:af:55:b5:60:99:a4:cd: 7f:16:fb:27:e2:29:f0:d3:8d:f6:f2:99:ee:69:d5: 77:31:81:6e:61:b2:d1:2c:eb:8d:f3:7e:6c:fc:e2: f9:ef:f4:a8:0e:53:e9:2c:a9:e4:44:29:3f:57:34: c3:7f:8a:af:69:64:a0:22:dd:57:d0:fc:ac:07:f9: 72:0c:95:bc:de:22:34:15:06:a3:00:87:89:16:77: 5c:21:3e:e9:85:d7:c2:06:88:80:93:47:b0:d5:7b: 47:0b:88:f0:21:10:ab:18:38:2e:bf:98:b7:09:55: 70:e6:3a:49:c5:10:e2:53:48:e6:86:30:a7:98:50: 85:92:0a:e5:1b:cb:5a:c9:47:d9:53:56:7d:6b:3f: 4b:2a:6e:7a:dd:e7:b6:38:78:f0:d4:f2:85:d7:ca: 7d:dc:d3:c3:b5:84:db:69:0f:69:8b:b5:e2:f6:42: 50:df:c4:84:74:ae:2f:02:3e:98:bb:e0:f2:07:16: 24:38:9b:2b:06:13:26:d8:7f:a6:9c:2a:57:2d:06: 91:da:62:02:ae:8f:90:c6:47:9c:12:9a:b5:41:4a: 4b:03:6a:fd:74:41:64:fc:ae:85:bf:c9:ba:4a:7a: dc:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:53:68:72:4B:54:6D:7D:B0:57:18:FD:9C:8C:72:C0:58:B2:8D:9A X509v3 Authority Key Identifier: keyid:E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/859B9868927E11EEB878AA50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.139.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:de:e4:90:ce:e1:26:f2:8a:2f:b9:c0:44:03:e9:b6:90:d9: 72:7f:fd:cb:a6:bd:14:c4:89:5e:c9:95:a8:23:72:fa:43:c9: 55:49:92:27:04:57:4c:9b:ca:19:2f:3d:d7:96:6b:16:fb:be: ed:a8:f6:44:15:1b:10:6f:85:00:9e:36:f2:6d:59:00:86:1c: e0:d9:ed:75:27:9c:5e:86:d8:1a:f9:54:2e:a1:3b:ad:e2:04: 5a:f2:51:20:35:05:f4:34:c7:88:97:58:41:8d:6e:02:cf:3d: bf:ea:d9:57:7f:e8:4b:17:e3:4d:15:2b:16:ff:73:3c:8b:b3: 66:b7:83:4f:c8:33:0d:d2:8c:58:8f:4c:da:ad:07:e5:40:15: 09:b0:2c:27:8a:08:1f:25:40:e0:0f:68:07:56:a4:1c:82:fb: b0:01:2f:bf:60:59:b9:bf:88:aa:9b:6d:03:49:ce:6c:c7:6f: 01:12:38:45:4b:f1:fb:79:d1:ff:38:5c:5e:6c:a3:fd:67:69: ab:6c:3d:5a:0f:78:60:ac:8a:03:8c:c4:68:d1:f8:71:80:2a: fb:e3:45:45:3e:38:25:d6:27:4a:3a:a3:75:f9:60:fa:37:ad: ad:83:15:0f:d5:6e:c0:0b:e6:92:8c:d7:e1:cb:8a:1c:32:7f: 20:cd:56:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYzNUIxMTAvBgNVBAUTKEU0MDcyMEJBMjkzQkFGMjVCQzBBMTc3OEM2NUNGMEQy RTBGMzUxNjAwHhcNMjMxMjA0MDgyNDIwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZkOGNiNC1kYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMG9jkwSnHJ5laO8/iVvTM9b/w6W369VtWCZpM1/Fvsn4inw04328pnuadV3 MYFuYbLRLOuN835s/OL57/SoDlPpLKnkRCk/VzTDf4qvaWSgIt1X0PysB/lyDJW8 3iI0FQajAIeJFndcIT7phdfCBoiAk0ew1XtHC4jwIRCrGDguv5i3CVVw5jpJxRDi U0jmhjCnmFCFkgrlG8tayUfZU1Z9az9LKm563ee2OHjw1PKF18p93NPDtYTbaQ9p i7Xi9kJQ38SEdK4vAj6Yu+DyBxYkOJsrBhMm2H+mnCpXLQaR2mICro+QxkecEpq1 QUpLA2r9dEFk/K6Fv8m6SnrcZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIhTaHJL VG19sFcY/ZyMcsBYso2aMB8GA1UdIwQYMBaAFOQHILopO68lvAoXeMZc8NLg81Fg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjM1Qi9FMDEwMTU4QTU2 NEUxMUVDODU4ODU5MTRDNEY5QUUwMi81QWNndWlrN3J5VzhDaGQ0eGx6dzB1RHpV V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVBY2d1aWs3cnlXOENoZDR4bHp3MHVEelVXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYzNUIvRTAxMDE1OEE1NjRFMTFFQzg1ODg1OTE0QzRGOUFFMDIvODU5Qjk4Njg5 MjdFMTFFRUI4NzhBQTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrIswDQYJKoZIhvcNAQELBQADggEBAEre5JDO4Sbyii+5 wEQD6baQ2XJ//cumvRTEiV7JlagjcvpDyVVJkicEV0ybyhkvPdeWaxb7vu2o9kQV GxBvhQCeNvJtWQCGHODZ7XUnnF6G2Br5VC6hO63iBFryUSA1BfQ0x4iXWEGNbgLP Pb/q2Vd/6EsX400VKxb/czyLs2a3g0/IMw3SjFiPTNqtB+VAFQmwLCeKCB8lQOAP aAdWpByC+7ABL79gWbm/iKqbbQNJzmzHbwESOEVL8ft50f84XF5so/1naatsPVoP eGCsigOMxGjR+HGAKvvjRUU+OCXWJ0o6o3X5YPo3ra2DFQ/VbsAL5pKM1+HLihwy fyDNVvI= -----END CERTIFICATE-----Generated at Fri May 17 03:52:23 2024 by rpki-client on console-ams.rpki-client.org