$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/423EA4CC039B11EBB3C1465CC4F9AE02.roa File: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (raw, json) Hash identifier: +Lakmeku8+RHZ+2Qos9KTETrdWjDpNHkpVECvcnNXC4= Subject key identifier: 07:E4:3B:59:4A:22:70:93:A6:E1:98:11:AC:DC:D4:67:1A:39:1F:A3 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 06B0 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/423EA4CC039B11EBB3C1465CC4F9AE02.roa Signing time: Thu 28 Dec 2023 22:20:07 +0000 ROA not before: Thu 28 Dec 2023 22:20:07 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136000 IP address blocks: 103.145.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Dec 28 22:20:07 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658df497-aa17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:40:36:90:9c:5a:f5:e9:e3:89:90:dd:2e:32: d3:d6:92:ed:7e:06:ad:34:63:9f:a7:bd:c0:9f:9a: 90:7c:56:0e:15:4d:cb:1b:5d:e3:7d:08:1b:50:a0: bf:db:a7:43:f0:43:86:45:04:33:cf:da:2e:8e:6a: f3:22:8c:95:0f:a4:5d:3f:63:52:67:50:d5:27:c1: eb:57:56:69:49:15:89:b6:ef:1a:fa:61:50:85:a5: 59:35:6f:fc:ac:83:ca:d5:75:f1:35:43:7e:93:01: 50:70:0b:a2:0b:b1:84:06:33:df:0e:79:ff:75:53: 4c:7a:d8:fd:b4:d1:f6:68:17:86:59:33:a1:94:40: 58:bd:a7:28:ff:86:02:a6:8e:f8:cc:93:f4:00:1b: d4:27:28:26:de:74:9c:5e:b2:86:b6:69:83:91:93: 1b:e9:11:1b:38:fc:00:bf:71:16:09:36:07:c0:79: 38:20:e6:18:36:01:66:01:56:dc:76:21:30:73:7a: 94:13:a3:5e:da:12:95:09:c9:72:be:81:19:76:b6: 3f:5c:6a:12:62:11:4a:ff:d1:c6:56:22:91:3e:a9: 3d:fb:c8:ce:81:05:11:dc:4a:62:51:eb:7e:6b:4e: 86:5e:09:ea:3f:4b:9c:7e:69:9b:17:ef:8f:86:67: d2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E4:3B:59:4A:22:70:93:A6:E1:98:11:AC:DC:D4:67:1A:39:1F:A3 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/423EA4CC039B11EBB3C1465CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.238.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:ad:34:2a:07:f3:9b:b9:dd:e0:91:cb:90:96:46:59:70:9f: 2e:be:9d:b2:11:3e:5c:5a:91:6e:24:2a:af:91:49:fd:98:17: ae:9c:27:b5:7f:7f:23:5e:e1:13:ad:a9:ca:63:e2:be:ec:50: 18:72:4f:56:c3:e7:a6:46:4b:f9:bf:e7:2e:dc:85:17:8a:0d: fb:b5:52:c0:3a:d7:07:93:f3:b8:6d:a3:29:11:79:20:46:70: de:20:32:9d:24:fd:71:f2:0e:12:e1:e1:87:19:f5:80:ff:24: 55:f5:aa:10:7e:10:0b:95:2c:b1:89:9e:28:80:f9:6f:06:a4: 9e:e1:74:d0:5a:22:ba:66:ff:4c:5f:5a:f7:9a:84:97:1a:f6: 2e:15:1d:8e:ce:32:5b:92:25:af:86:fb:90:07:0a:f9:b0:84: 76:32:9a:61:58:85:f4:70:53:df:9e:eb:ae:03:e9:b9:d1:e5: f2:5b:81:a3:bf:72:b7:9c:8d:f3:ed:69:07:82:79:0a:ef:f8: 7d:13:0e:53:d4:95:05:2d:e6:24:d0:7d:73:c6:8f:e6:bf:12: 17:41:24:c0:b6:2e:cc:61:a3:c2:9e:16:be:cb:d3:23:f8:88: 68:c3:9b:7d:69:23:62:c4:59:b4:fb:87:26:09:ae:99:fe:28: d5:9a:d1:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjMxMjI4MjIyMDA3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkZjQ5Ny1hYTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UA2kJxa9enjiZDdLjLT1pLtfgatNGOfp73An5qQfFYOFU3LG13jfQgbUKC/ 26dD8EOGRQQzz9oujmrzIoyVD6RdP2NSZ1DVJ8HrV1ZpSRWJtu8a+mFQhaVZNW/8 rIPK1XXxNUN+kwFQcAuiC7GEBjPfDnn/dVNMetj9tNH2aBeGWTOhlEBYvaco/4YC po74zJP0ABvUJygm3nScXrKGtmmDkZMb6REbOPwAv3EWCTYHwHk4IOYYNgFmAVbc diEwc3qUE6Ne2hKVCclyvoEZdrY/XGoSYhFK/9HGViKRPqk9+8jOgQUR3EpiUet+ a06GXgnqP0ucfmmbF++PhmfS+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAfkO1lK InCTpuGYEazc1GcaOR+jMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQwODgvNDRCQTdDQTJGRDlEMTFFQUEwNEVCODdEQzRGOUFFMDIvNDIzRUE0Q0Mw MzlCMTFFQkIzQzE0NjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnke4wDQYJKoZIhvcNAQELBQADggEBACqtNCoH85u53eCR y5CWRllwny6+nbIRPlxakW4kKq+RSf2YF66cJ7V/fyNe4ROtqcpj4r7sUBhyT1bD 56ZGS/m/5y7chReKDfu1UsA61weT87htoykReSBGcN4gMp0k/XHyDhLh4YcZ9YD/ JFX1qhB+EAuVLLGJniiA+W8GpJ7hdNBaIrpm/0xfWveahJca9i4VHY7OMluSJa+G +5AHCvmwhHYymmFYhfRwU9+e664D6bnR5fJbgaO/crecjfPtaQeCeQrv+H0TDlPU lQUt5iTQfXPGj+a/EhdBJMC2Lsxho8KeFr7L0yP4iGjDm31pI2LEWbT7hyYJrpn+ KNWa0es= -----END CERTIFICATE-----Generated at Sun May 19 00:30:23 2024 by rpki-client on console-ams.rpki-client.org