$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/4E150C0890FD11E98DB54881C4F9AE02.roa File: 4E150C0890FD11E98DB54881C4F9AE02.roa (raw, json) Hash identifier: DXd0O/8ls5ANNeC6x8yGV0fTxj5dRHnm9itNt6T5fvQ= Subject key identifier: 33:1B:F2:65:B9:FA:E0:20:91:49:8B:22:F5:68:7D:2D:90:04:B9:A2 Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0D20 Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/4E150C0890FD11E98DB54881C4F9AE02.roa Signing time: Thu 08 Jun 2023 19:29:09 +0000 ROA not before: Thu 08 Jun 2023 19:29:09 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 139196 IP address blocks: 103.139.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 18:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Jun 8 19:29:09 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64822c04-22f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:07:c5:70:89:34:1c:fb:16:15:9f:49:11:d2: d1:19:95:b5:98:71:27:8f:47:60:2b:84:c8:4f:de: ad:57:8b:3a:6e:a4:ba:22:c0:21:16:36:19:ab:bf: 0d:b2:1a:b8:ae:fa:82:ba:95:57:b5:87:a3:98:02: 78:fc:35:12:10:43:5a:bc:cf:b4:f0:e2:f1:44:37: 74:24:95:86:14:6a:55:f0:a3:ee:80:a3:c4:e5:73: 3a:7c:e4:eb:9d:0d:71:31:06:a4:8d:aa:64:d0:26: 8a:37:d0:3c:e6:1b:76:bd:b0:a5:13:ff:82:16:cf: 13:a8:d5:99:3f:7c:7d:ae:e8:f8:c2:a4:d3:69:42: 20:13:40:a4:0a:99:9f:4c:82:dd:15:11:1e:98:eb: 11:97:fd:80:d4:be:b8:3c:ed:f7:ac:49:00:6a:38: 68:b8:7a:03:01:0a:f5:23:7e:86:6e:a2:e3:5f:04: 8e:fb:57:e7:a4:ca:2b:ee:40:6c:f4:89:eb:86:74: 33:22:c7:c3:16:c0:59:15:bb:c8:f1:52:4f:b9:02: 2c:5a:39:ee:32:b2:2c:f1:9c:d8:5f:c1:d2:69:2f: 08:75:1d:ef:4f:be:6d:72:b3:a3:20:e6:49:a5:35: 73:bc:8c:91:70:16:8c:46:18:68:13:45:99:12:14: 96:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:1B:F2:65:B9:FA:E0:20:91:49:8B:22:F5:68:7D:2D:90:04:B9:A2 X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/4E150C0890FD11E98DB54881C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.152.0/24 Signature Algorithm: sha256WithRSAEncryption 51:7e:d1:41:f2:31:c4:54:ec:e5:f0:5d:05:bd:9e:a0:cd:31: b0:e4:f1:b7:29:29:78:dc:92:d9:40:2a:27:1e:fd:58:cc:25: 4d:fa:29:e2:9e:18:4f:be:68:5a:ae:26:53:ac:1c:af:20:c8: b8:62:fc:f5:83:32:49:e9:a8:21:b8:9f:a7:6d:a3:45:57:58: 38:90:ec:9c:83:42:8a:69:db:de:af:4d:2d:52:32:ec:f9:ab: d3:fc:43:6c:77:fa:c5:e4:c3:3d:32:d4:e1:aa:38:ad:0e:a0: 24:b5:30:a9:bd:f5:00:47:0d:89:d7:59:c5:db:42:d6:9d:ae: a3:2b:a1:09:74:41:7b:02:06:fd:08:db:5b:bd:57:61:4b:0b: a8:92:7a:d1:8a:9c:3c:b3:3d:82:8e:26:d3:90:37:23:9a:98: e5:df:c2:69:44:68:d2:1e:dd:d7:34:03:04:80:c0:7d:3a:1f: 91:ab:30:45:e3:e1:2b:00:40:d7:85:14:ec:dc:26:64:7a:a0: e8:dd:22:85:db:a8:ab:f4:92:6b:91:51:84:05:75:fa:b1:e3: 58:66:11:cc:91:31:3c:51:d1:e2:f6:f9:95:28:25:db:ab:18: 15:45:18:50:1e:eb:78:43:38:64:0d:ad:f2:6a:30:16:32:75: 1a:71:d6:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjMwNjA4MTkyOTA5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgyMmMwNC0yMmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgfFcIk0HPsWFZ9JEdLRGZW1mHEnj0dgK4TIT96tV4s6bqS6IsAhFjYZq78N shq4rvqCupVXtYejmAJ4/DUSEENavM+08OLxRDd0JJWGFGpV8KPugKPE5XM6fOTr nQ1xMQakjapk0CaKN9A85ht2vbClE/+CFs8TqNWZP3x9ruj4wqTTaUIgE0CkCpmf TILdFREemOsRl/2A1L64PO33rEkAajhouHoDAQr1I36GbqLjXwSO+1fnpMor7kBs 9InrhnQzIsfDFsBZFbvI8VJPuQIsWjnuMrIs8ZzYX8HSaS8IdR3vT75tcrOjIOZJ pTVzvIyRcBaMRhhoE0WZEhSWRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDMb8mW5 +uAgkUmLIvVofS2QBLmiMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkMxQjgvRkJERTk5RkE5MEZCMTFFOTkyRDU5ODdGQzRGOUFFMDIvNEUxNTBDMDg5 MEZEMTFFOThEQjU0ODgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABni5gwDQYJKoZIhvcNAQELBQADggEBAFF+0UHyMcRU7OXw XQW9nqDNMbDk8bcpKXjcktlAKice/VjMJU36KeKeGE++aFquJlOsHK8gyLhi/PWD MknpqCG4n6dto0VXWDiQ7JyDQopp296vTS1SMuz5q9P8Q2x3+sXkwz0y1OGqOK0O oCS1MKm99QBHDYnXWcXbQtadrqMroQl0QXsCBv0I21u9V2FLC6iSetGKnDyzPYKO JtOQNyOamOXfwmlEaNIe3dc0AwSAwH06H5GrMEXj4SsAQNeFFOzcJmR6oOjdIoXb qKv0kmuRUYQFdfqx41hmEcyRMTxR0eL2+ZUoJdurGBVFGFAe63hDOGQNrfJqMBYy dRpx1hg= -----END CERTIFICATE-----Generated at Mon May 20 19:20:13 2024 by rpki-client on console-fra.rpki-client.org