$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/52EFDBAE687D11ECBF82F558C4F9AE02.roa File: 52EFDBAE687D11ECBF82F558C4F9AE02.roa (raw, json) Hash identifier: PpY92vzjj6ria8mUcHDsvEuEtG2KQRLALa23baz90vk= Subject key identifier: 55:1C:E5:A4:28:7C:9D:82:19:9F:DB:47:6F:DC:C5:90:60:1D:AA:BC Certificate issuer: /CN=A91AC726/serialNumber=4D847523E5BDD9E3B8969828A04BFEDA2B0C031B Certificate serial: 0688 Authority key identifier: 4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/52EFDBAE687D11ECBF82F558C4F9AE02.roa Signing time: Mon 01 Jul 2024 14:18:13 +0000 ROA not before: Mon 01 Jul 2024 14:18:13 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 137000 IP address blocks: 103.159.192.0/24 maxlen: 24 103.159.193.0/24 maxlen: 24 2001:df5:8680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.crl rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1672 (0x688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC726/serialNumber=4D847523E5BDD9E3B8969828A04BFEDA2B0C031B Validity Not Before: Jul 1 14:18:13 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6682baa5-1015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:bd:18:d7:c5:00:7f:0c:18:f9:9f:b6:58:5c: 70:f9:82:f6:46:d5:d6:56:0d:3b:7d:4b:1a:7d:ce: 19:36:81:42:bd:3e:1f:49:f8:de:e5:1c:c1:0c:ae: e8:eb:81:15:ff:86:6b:c9:5d:c6:f5:08:ac:7e:00: e9:f1:62:e9:01:e9:97:27:24:42:86:0e:39:56:fc: fe:fb:1b:e5:f4:5b:96:ad:41:3e:28:00:d9:2a:d7: 29:4a:67:0e:86:8d:36:12:9d:61:12:1c:fc:8b:24: ae:f4:57:b8:29:b8:7c:e4:5d:48:c5:9b:e3:b0:be: 18:aa:2a:0f:28:02:61:1f:bd:b8:43:76:82:61:e5: c2:de:76:ef:a6:11:be:20:4a:cc:09:81:24:fc:58: 3a:33:94:84:07:f9:7c:31:ff:b9:b9:af:ec:d1:72: 77:c6:a9:9e:5c:fc:58:19:07:2c:52:96:99:74:17: 0a:3d:40:da:5c:db:9e:c6:6d:1c:20:27:29:62:8e: 17:8b:00:d8:11:e0:37:a5:fa:06:d5:ab:2e:a8:53: 58:2d:e9:c4:a1:2c:43:c5:42:31:d6:af:b5:cb:18: 29:ad:69:d9:34:35:67:42:a5:d2:67:ba:55:c0:1f: f8:8a:72:33:ba:4d:8a:e2:e4:de:d7:b4:05:df:25: d6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1C:E5:A4:28:7C:9D:82:19:9F:DB:47:6F:DC:C5:90:60:1D:AA:BC X509v3 Authority Key Identifier: keyid:4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/52EFDBAE687D11ECBF82F558C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.192.0/23 IPv6: 2001:df5:8680::/48 Signature Algorithm: sha256WithRSAEncryption 0b:19:9c:c6:ae:65:54:74:9e:ed:01:46:f0:db:2d:fc:43:fb: fd:4b:a6:6d:93:81:46:8e:da:09:aa:b3:93:e5:ee:d8:a8:59: d5:f0:ea:a6:5c:86:1a:df:37:1f:98:3a:14:1e:19:cb:8f:49: 08:17:4c:57:67:65:07:17:7c:6e:0a:71:22:f4:f5:7b:55:5a: 63:cf:32:7c:21:f0:71:55:0b:e5:4e:b2:84:c5:a0:fd:57:10: 73:b3:a7:61:07:64:13:42:d9:49:de:e4:6d:8d:17:25:07:f2: 86:bd:7a:f1:06:d6:92:26:91:a6:ab:ae:7d:b1:b7:93:37:b3: 73:61:22:8e:9a:33:02:fa:16:77:e2:4e:ae:21:f5:4a:3a:53: 7b:cb:38:35:80:c6:93:b0:48:8e:fa:11:6b:c8:af:5a:9d:9b: 24:b4:61:19:a7:5d:6f:da:7e:c1:22:24:71:93:35:00:4e:21: b8:3f:96:79:6f:f8:3c:4b:a4:81:8a:b9:43:3b:93:c2:dd:09: ac:c8:39:6c:10:53:72:8a:25:49:4b:e7:d2:63:1f:0e:30:5d: 78:b3:ad:b5:e6:ba:97:93:c5:4f:c2:8d:a1:2e:0d:e9:07:f6: 1a:59:57:63:fa:14:69:93:83:a8:3d:85:db:be:77:c0:9b:71: fd:2b:2c:e2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3MjYxMTAvBgNVBAUTKDREODQ3NTIzRTVCREQ5RTNCODk2OTgyOEEwNEJGRURB MkIwQzAzMUIwHhcNMjQwNzAxMTQxODEzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgyYmFhNS0xMDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA570Y18UAfwwY+Z+2WFxw+YL2RtXWVg07fUsafc4ZNoFCvT4fSfje5RzBDK7o 64EV/4ZryV3G9QisfgDp8WLpAemXJyRChg45Vvz++xvl9FuWrUE+KADZKtcpSmcO ho02Ep1hEhz8iySu9Fe4Kbh85F1IxZvjsL4YqioPKAJhH724Q3aCYeXC3nbvphG+ IErMCYEk/Fg6M5SEB/l8Mf+5ua/s0XJ3xqmeXPxYGQcsUpaZdBcKPUDaXNuexm0c ICcpYo4XiwDYEeA3pfoG1asuqFNYLenEoSxDxUIx1q+1yxgprWnZNDVnQqXSZ7pV wB/4inIzuk2K4uTe17QF3yXWrQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFUc5aQo fJ2CGZ/bR2/cxZBgHaq8MB8GA1UdIwQYMBaAFE2EdSPlvdnjuJaYKKBL/torDAMb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzcyNi85QzRGNTMwQTM4 QUYxMUVCODkxM0RFNDFDNEY5QUUwMi9UWVIxSS1XOTJlTzRscGdvb0V2LTJpc01B eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RZUjFJLVc5MmVPNGxwZ29vRXYtMmlzTUF4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUM3MjYvOUM0RjUzMEEzOEFGMTFFQjg5MTNERTQxQzRGOUFFMDIvNTJFRkRCQUU2 ODdEMTFFQ0JGODJGNTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnn8AwDwQCAAIwCQMHACABDfWGgDANBgkqhkiG9w0BAQsF AAOCAQEACxmcxq5lVHSe7QFG8Nst/EP7/UumbZOBRo7aCaqzk+Xu2KhZ1fDqplyG Gt83H5g6FB4Zy49JCBdMV2dlBxd8bgpxIvT1e1VaY88yfCHwcVUL5U6yhMWg/VcQ c7OnYQdkE0LZSd7kbY0XJQfyhr168QbWkiaRpquufbG3kzezc2EijpozAvoWd+JO riH1SjpTe8s4NYDGk7BIjvoRa8ivWp2bJLRhGaddb9p+wSIkcZM1AE4huD+WeW/4 PEukgYq5QzuTwt0JrMg5bBBTcoolSUvn0mMfDjBdeLOttea6l5PFT8KNoS4N6Qf2 GllXY/oUaZODqD2F2753wJtx/Sss4g== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org