$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/122052A03DD811EBAE99F45CC4F9AE02.roa File: 122052A03DD811EBAE99F45CC4F9AE02.roa (raw, json) Hash identifier: EohXolf65+4mOV0lpUcxHKxaaPPi5FKIJJ1IjSJxtCM= Subject key identifier: E5:B2:83:54:60:73:A8:DA:F5:7A:41:77:6E:B7:CF:D2:67:6C:DD:FC Certificate issuer: /CN=A91CB816/serialNumber=BD06BDBF8B0EEDBC9F07395A65254FCB8583989D Certificate serial: 060B Authority key identifier: BD:06:BD:BF:8B:0E:ED:BC:9F:07:39:5A:65:25:4F:CB:85:83:98:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/122052A03DD811EBAE99F45CC4F9AE02.roa Signing time: Tue 26 Dec 2023 23:11:30 +0000 ROA not before: Tue 26 Dec 2023 23:11:30 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139674 IP address blocks: 103.147.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.crl rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1547 (0x60b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB816/serialNumber=BD06BDBF8B0EEDBC9F07395A65254FCB8583989D Validity Not Before: Dec 26 23:11:30 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658b5da2-42be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:87:d6:fb:55:bf:0c:64:c1:07:39:3f:cc:06: 18:57:7b:40:63:1c:aa:e9:0a:27:a3:5f:bd:b5:ab: 12:ce:99:79:f8:39:fe:05:08:1c:06:30:a1:c8:90: 6c:76:ef:22:f3:29:f1:87:6f:ab:dd:a3:3d:e1:26: 9a:63:d9:cc:7d:b7:c3:d3:6e:bc:9c:ee:db:d2:cb: 0a:41:87:4d:2d:80:3f:65:26:c1:9a:1c:3d:d7:ca: 3a:7e:96:90:af:d3:73:d4:2a:46:5a:f6:97:1d:b8: ab:34:65:77:32:7e:0a:e2:7b:e4:a2:2f:e8:ac:31: 1c:67:04:0f:89:03:55:f2:66:b7:9e:af:ee:5c:ca: 24:04:af:ed:cd:64:98:e5:28:cb:7e:0f:ac:bb:b2: 73:d0:70:34:54:e8:43:45:bb:7e:22:95:9c:1f:3c: bb:3a:f8:e0:1d:b1:9b:a9:83:ac:1b:50:c6:70:54: 4f:63:48:74:7d:39:36:b6:bf:2d:d8:13:b9:d1:1f: d6:ee:95:dd:14:c5:97:06:76:35:41:d2:f8:0c:7e: 32:bc:7c:33:dc:a9:ed:ef:a4:c6:54:6d:ea:b7:d4: bd:ff:4a:97:35:76:62:23:1d:6f:8b:0c:af:55:36: 8c:9b:6c:35:9e:42:f8:c8:00:26:d2:7f:7b:86:d5: ff:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B2:83:54:60:73:A8:DA:F5:7A:41:77:6E:B7:CF:D2:67:6C:DD:FC X509v3 Authority Key Identifier: keyid:BD:06:BD:BF:8B:0E:ED:BC:9F:07:39:5A:65:25:4F:CB:85:83:98:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/vQa9v4sO7byfBzlaZSVPy4WDmJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQa9v4sO7byfBzlaZSVPy4WDmJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB816/610466103DD611EBA0602C5BC4F9AE02/122052A03DD811EBAE99F45CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.56.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:e0:d7:95:c3:56:14:3c:03:f0:8a:8c:5d:d8:15:bb:8f:77: 8e:60:77:76:0e:a5:78:a0:9b:ff:80:e9:d3:2c:b5:87:a7:cc: 27:a3:5e:f4:43:c7:23:18:73:bf:0a:ca:d1:12:7a:96:f1:93: 27:72:3e:19:ee:06:b7:47:08:2c:3f:ad:02:59:6d:7f:4e:2e: 46:f3:4d:7c:60:8e:d3:44:54:46:16:fc:eb:bb:7a:60:cb:3f: e5:14:46:d2:9f:bd:96:eb:7f:3c:8c:ab:71:89:7b:5d:5e:29: e5:25:ca:20:da:98:08:f4:52:9f:58:27:34:3a:ad:b9:df:15: 16:b0:35:5d:f6:f5:03:37:ea:b7:70:c7:1b:e6:e5:70:64:5e: d9:0f:3d:01:e0:2a:ca:a0:ef:45:a6:3d:33:2c:65:cc:49:db: cd:a1:df:45:41:df:3f:59:df:8c:bb:ec:cf:1a:bf:f5:9c:35: e8:fb:d3:59:90:05:6d:45:9c:8e:f7:cd:06:a6:df:d9:84:d8: a8:ad:86:33:15:87:22:bd:3c:25:8a:35:c9:fe:bf:87:1c:16: a7:e2:05:cc:92:f7:e7:4b:89:fc:7a:f9:0e:d7:ec:f5:5f:0e: c0:68:4b:eb:79:df:a6:d5:54:99:ec:96:b1:1b:eb:48:6d:c0: ca:b6:e8:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4MTYxMTAvBgNVBAUTKEJEMDZCREJGOEIwRUVEQkM5RjA3Mzk1QTY1MjU0RkNC ODU4Mzk4OUQwHhcNMjMxMjI2MjMxMTMwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThiNWRhMi00MmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYfW+1W/DGTBBzk/zAYYV3tAYxyq6Qono1+9tasSzpl5+Dn+BQgcBjChyJBs du8i8ynxh2+r3aM94SaaY9nMfbfD0268nO7b0ssKQYdNLYA/ZSbBmhw918o6fpaQ r9Nz1CpGWvaXHbirNGV3Mn4K4nvkoi/orDEcZwQPiQNV8ma3nq/uXMokBK/tzWSY 5SjLfg+su7Jz0HA0VOhDRbt+IpWcHzy7OvjgHbGbqYOsG1DGcFRPY0h0fTk2tr8t 2BO50R/W7pXdFMWXBnY1QdL4DH4yvHwz3Knt76TGVG3qt9S9/0qXNXZiIx1viwyv VTaMm2w1nkL4yAAm0n97htX/1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOWyg1Rg c6ja9XpBd263z9JnbN38MB8GA1UdIwQYMBaAFL0Gvb+LDu28nwc5WmUlT8uFg5id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjgxNi82MTA0NjYxMDNE RDYxMUVCQTA2MDJDNUJDNEY5QUUwMi92UWE5djRzTzdieWZCemxhWlNWUHk0V0Rt SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZRYTl2NHNPN2J5ZkJ6bGFaU1ZQeTRXRG1KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I4MTYvNjEwNDY2MTAzREQ2MTFFQkEwNjAyQzVCQzRGOUFFMDIvMTIyMDUyQTAz REQ4MTFFQkFFOTlGNDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkzgwDQYJKoZIhvcNAQELBQADggEBAErg15XDVhQ8A/CK jF3YFbuPd45gd3YOpXigm/+A6dMstYenzCejXvRDxyMYc78KytESepbxkydyPhnu BrdHCCw/rQJZbX9OLkbzTXxgjtNEVEYW/Ou7emDLP+UURtKfvZbrfzyMq3GJe11e KeUlyiDamAj0Up9YJzQ6rbnfFRawNV329QM36rdwxxvm5XBkXtkPPQHgKsqg70Wm PTMsZcxJ282h30VB3z9Z34y77M8av/WcNej701mQBW1FnI73zQam39mE2KithjMV hyK9PCWKNcn+v4ccFqfiBcyS9+dLifx6+Q7X7PVfDsBoS+t536bVVJnslrEb60ht wMq26B4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org