$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/5D4B0B5E153611ECA897546BC4F9AE02.roa File: 5D4B0B5E153611ECA897546BC4F9AE02.roa (raw, json) Hash identifier: jQrr/0vTs0drz7C/43ZuoTAB+9+rBNBWg+VJTfcqQK8= Subject key identifier: 12:D3:64:C8:64:84:92:F4:A5:BE:C4:A7:3A:BE:0C:73:6E:07:17:82 Certificate issuer: /CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Certificate serial: 0458 Authority key identifier: 39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/5D4B0B5E153611ECA897546BC4F9AE02.roa Signing time: Wed 31 Jul 2024 01:27:37 +0000 ROA not before: Wed 31 Jul 2024 01:27:37 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140927 IP address blocks: 103.152.216.0/23 maxlen: 23 103.152.216.0/24 maxlen: 24 103.152.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1112 (0x458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Validity Not Before: Jul 31 01:27:37 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a99309-09f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:da:3c:e0:5f:9c:6c:4a:40:d8:75:a3:ea:54: 9f:9e:7d:18:cf:8c:c4:a2:b8:02:a4:c7:df:4d:84: 9a:4b:b1:ff:88:ee:16:3f:18:d3:24:10:cf:34:7e: 33:40:85:fe:cd:f5:f1:2c:eb:a0:fc:26:4b:f5:97: 70:8c:70:87:1f:be:9c:3c:88:0d:1f:18:5f:89:4b: ee:62:fc:fe:28:8f:4b:a1:f9:f7:7b:0d:bd:81:2f: 2b:13:3e:25:78:2d:9c:77:18:41:67:a8:0f:b2:06: 58:e8:32:92:30:75:1f:fa:79:56:4f:38:ad:1e:03: bd:19:01:1b:09:a2:99:bf:31:3c:6f:b0:ed:bf:65: fe:83:35:b1:87:14:a8:f2:16:26:43:cc:45:7f:dd: c6:19:bd:74:36:1e:b8:d4:bd:f1:29:23:2b:b5:be: 52:7a:fb:84:cd:f9:61:9f:ce:ae:6a:06:4c:69:f1: ce:3b:03:cd:6a:d6:dd:53:a8:43:e7:98:e5:7d:16: f7:4a:92:e1:6d:5f:f0:66:b0:95:92:36:69:9d:e9: a4:67:38:6d:bd:ae:b1:c6:7f:97:47:db:f3:9a:a6: 00:87:2e:c8:6f:23:c7:88:f8:0c:71:05:7b:eb:a2: ca:df:f5:ac:ae:66:cf:c9:57:a2:f6:dc:90:aa:1c: 60:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D3:64:C8:64:84:92:F4:A5:BE:C4:A7:3A:BE:0C:73:6E:07:17:82 X509v3 Authority Key Identifier: keyid:39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/5D4B0B5E153611ECA897546BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.216.0/23 Signature Algorithm: sha256WithRSAEncryption a6:b0:c5:62:e4:fa:e2:c8:29:93:30:56:38:c5:54:c8:37:69: d8:2e:eb:15:d5:fa:ab:48:ed:b9:44:44:26:a7:ba:45:49:fe: 2d:52:89:61:77:a6:ea:5b:81:b6:3f:bc:08:93:5b:6d:5c:ab: be:41:be:8e:b9:e5:f4:7a:4b:3b:ed:e3:6c:e3:22:d2:87:ee: 19:dc:80:b1:26:fc:2b:53:1c:79:10:ce:5c:c3:82:32:c8:15: 96:0e:d8:93:09:92:2a:e0:34:c4:37:cf:b0:19:61:64:b3:66: 35:97:e9:9c:e0:d6:e5:e8:e4:e3:d7:e5:ee:3e:57:44:9e:96: e9:dc:9f:5c:cf:51:d3:e9:e4:86:71:27:ca:f7:76:80:eb:f8: b7:77:0c:54:0f:35:2e:a3:5b:ee:d0:de:0c:c6:8b:c1:4e:92: 21:c2:67:0a:a4:8f:aa:7f:f9:ff:73:fe:67:61:d2:45:00:ae: 01:14:23:47:2f:c3:a3:3b:95:da:da:ce:6b:67:f1:2c:35:36: 6c:c5:08:b7:f2:51:3e:d0:ee:ff:87:dc:2b:ec:6a:2c:d0:a5: 6f:58:d4:f2:55:73:aa:4e:5c:07:cd:1e:78:69:30:27:64:d0: 5a:2d:20:a7:08:47:07:28:1e:2e:19:10:ad:6f:46:b0:2b:1a: 47:01:f2:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0MxMTAvBgNVBAUTKDM5QkIwQkZGMTRGQjZCNEI1Rjg2MTM3Mjc0RDQyNTEz RjM3NTNBNDcwHhcNMjQwNzMxMDEyNzM3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5OTMwOS0wOWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxto84F+cbEpA2HWj6lSfnn0Yz4zEorgCpMffTYSaS7H/iO4WPxjTJBDPNH4z QIX+zfXxLOug/CZL9ZdwjHCHH76cPIgNHxhfiUvuYvz+KI9Lofn3ew29gS8rEz4l eC2cdxhBZ6gPsgZY6DKSMHUf+nlWTzitHgO9GQEbCaKZvzE8b7Dtv2X+gzWxhxSo 8hYmQ8xFf93GGb10Nh641L3xKSMrtb5SevuEzflhn86uagZMafHOOwPNatbdU6hD 55jlfRb3SpLhbV/wZrCVkjZpnemkZzhtva6xxn+XR9vzmqYAhy7IbyPHiPgMcQV7 66LK3/WsrmbPyVei9tyQqhxgGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBLTZMhk hJL0pb7Epzq+DHNuBxeCMB8GA1UdIwQYMBaAFDm7C/8U+2tLX4YTcnTUJRPzdTpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDQy9GODlDM0VCNjE1 MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2EwdGZoaE55ZE5RbEVfTjFP a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ic0xfeFQ3YTB0ZmhoTnlkTlFsRV9OMU9rYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI0Q0MvRjg5QzNFQjYxNTMxMTFFQ0I1OTRGQjdEQzRGOUFFMDIvNUQ0QjBCNUUx NTM2MTFFQ0E4OTc1NDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmNgwDQYJKoZIhvcNAQELBQADggEBAKawxWLk+uLIKZMw VjjFVMg3adgu6xXV+qtI7blERCanukVJ/i1SiWF3pupbgbY/vAiTW21cq75Bvo65 5fR6Szvt42zjItKH7hncgLEm/CtTHHkQzlzDgjLIFZYO2JMJkirgNMQ3z7AZYWSz ZjWX6Zzg1uXo5OPX5e4+V0Seluncn1zPUdPp5IZxJ8r3doDr+Ld3DFQPNS6jW+7Q 3gzGi8FOkiHCZwqkj6p/+f9z/mdh0kUArgEUI0cvw6M7ldrazmtn8Sw1NmzFCLfy UT7Q7v+H3CvsaizQpW9Y1PJVc6pOXAfNHnhpMCdk0FotIKcIRwcoHi4ZEK1vRrAr GkcB8nE= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:31 2024 by rpki-client on console-fra.rpki-client.org