$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/74CCA13ADBE811EA8D063B7DC4F9AE02.roa File: 74CCA13ADBE811EA8D063B7DC4F9AE02.roa (raw, json) Hash identifier: r8kplkUIga9YQn8b4xbaXWuaaJUEiwNgh+YYSbpeRUQ= Subject key identifier: 77:8F:2A:DD:A7:23:2A:15:32:1E:2A:1D:F5:CA:5F:55:EC:F6:31:94 Certificate issuer: /CN=A91CC564/serialNumber=0015DBA038CBCCB152ED17113AA0A8D5D7488D21 Certificate serial: 07DA Authority key identifier: 00:15:DB:A0:38:CB:CC:B1:52:ED:17:11:3A:A0:A8:D5:D7:48:8D:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABXboDjLzLFS7RcROqCo1ddIjSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/74CCA13ADBE811EA8D063B7DC4F9AE02.roa Signing time: Fri 26 Jul 2024 21:59:27 +0000 ROA not before: Fri 26 Jul 2024 21:59:27 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140989 IP address blocks: 103.152.144.0/23 maxlen: 24 2406:5740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/ABXboDjLzLFS7RcROqCo1ddIjSE.crl rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/ABXboDjLzLFS7RcROqCo1ddIjSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABXboDjLzLFS7RcROqCo1ddIjSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2010 (0x7da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC564/serialNumber=0015DBA038CBCCB152ED17113AA0A8D5D7488D21 Validity Not Before: Jul 26 21:59:27 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a41c3f-a036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:03:7d:a3:e2:03:fd:b9:c0:ec:f4:ca:62:57: 8c:d9:0d:bd:3b:99:fb:21:29:04:30:55:f2:b9:7f: ca:50:ef:a5:2c:c1:b8:f8:52:73:90:cc:ad:0e:a7: bc:4f:2b:18:d1:a9:89:4c:17:7e:c1:06:ec:6b:2a: d4:6a:c0:7d:55:70:d7:77:5a:de:e8:4b:d7:ec:56: 09:4b:5d:f9:2f:16:2e:ed:3d:5e:7e:e2:c6:c3:6e: fc:b8:31:99:5e:03:89:38:37:cb:df:dd:a2:8e:2c: 94:ec:8b:ac:f3:0f:1a:d4:11:18:28:ed:18:3b:ec: 1b:03:98:23:c6:5c:88:ad:46:d3:62:8e:49:43:d3: c9:da:27:83:74:1e:8d:9f:5d:56:12:54:d2:9d:fd: 87:57:89:aa:e7:9b:94:f4:ca:b4:44:77:2c:00:19: 10:d2:2a:5d:ca:63:01:2b:65:5d:77:fc:49:b5:f9: 71:4d:96:d4:01:ff:ab:86:a2:bf:8d:4c:d6:d2:00: 2b:6d:e8:28:3b:95:15:ec:45:a5:50:e4:49:d6:5f: cf:fa:84:b0:9e:b8:5b:f7:d7:8c:b2:40:05:8a:ac: 52:f9:e8:8c:7a:1d:ad:c3:db:98:30:6f:75:ef:02: 77:42:87:a4:94:32:e6:54:a9:64:86:5c:fd:8c:0b: 08:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8F:2A:DD:A7:23:2A:15:32:1E:2A:1D:F5:CA:5F:55:EC:F6:31:94 X509v3 Authority Key Identifier: keyid:00:15:DB:A0:38:CB:CC:B1:52:ED:17:11:3A:A0:A8:D5:D7:48:8D:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/ABXboDjLzLFS7RcROqCo1ddIjSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABXboDjLzLFS7RcROqCo1ddIjSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/74CCA13ADBE811EA8D063B7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.144.0/23 IPv6: 2406:5740::/32 Signature Algorithm: sha256WithRSAEncryption 46:cf:93:f6:4a:27:62:ac:59:73:a7:50:a7:9c:32:18:f7:ae: 2d:0f:db:63:c9:06:b4:23:6c:81:cc:d9:3b:75:17:7d:21:34: cc:32:1e:89:a4:56:b6:76:70:e2:11:7a:94:0f:9e:36:25:fa: 9a:e8:31:1d:46:e3:05:5d:3f:ae:24:52:e6:61:8d:d2:5f:c2: 82:f5:ad:04:3e:b9:0e:02:57:00:c3:85:39:e4:60:4f:bb:86: ca:6d:85:23:ba:37:2f:50:07:ed:18:71:68:46:d0:07:86:06: 66:ee:a4:d7:2f:32:e0:f6:5e:78:57:79:bb:e4:96:1f:75:21: 6f:f6:8b:3e:fc:b6:03:5a:e1:ea:c0:c8:6a:73:b6:fb:da:d5: 84:dc:0d:b0:61:23:0f:b3:95:f7:3f:5b:ef:e1:4d:14:dd:53: 8d:3e:65:0a:1f:e3:cb:e7:5e:de:6f:54:fa:be:d9:e6:ed:d6: c1:ab:5d:0c:ec:9b:5f:d7:60:f3:94:f7:f8:aa:2a:33:6f:51: 03:0b:09:8e:a0:98:e2:3f:4f:11:23:e2:15:58:89:f6:db:e0: 2b:78:61:5a:1e:9a:cd:d3:b9:5b:74:57:2f:55:2a:ec:8f:bd: 04:fb:12:9b:0d:31:d5:bd:dc:05:d1:75:4d:04:31:00:e0:3e: b2:7e:17:d9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjQxMTAvBgNVBAUTKDAwMTVEQkEwMzhDQkNDQjE1MkVEMTcxMTNBQTBBOEQ1 RDc0ODhEMjEwHhcNMjQwNzI2MjE1OTI3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE0MWMzZi1hMDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAN9o+ID/bnA7PTKYleM2Q29O5n7ISkEMFXyuX/KUO+lLMG4+FJzkMytDqe8 TysY0amJTBd+wQbsayrUasB9VXDXd1re6EvX7FYJS135LxYu7T1efuLGw278uDGZ XgOJODfL392ijiyU7Ius8w8a1BEYKO0YO+wbA5gjxlyIrUbTYo5JQ9PJ2ieDdB6N n11WElTSnf2HV4mq55uU9Mq0RHcsABkQ0ipdymMBK2Vdd/xJtflxTZbUAf+rhqK/ jUzW0gArbegoO5UV7EWlUORJ1l/P+oSwnrhb99eMskAFiqxS+eiMeh2tw9uYMG91 7wJ3QoeklDLmVKlkhlz9jAsICQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHePKt2n IyoVMh4qHfXKX1Xs9jGUMB8GA1UdIwQYMBaAFAAV26A4y8yxUu0XETqgqNXXSI0h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2NC80RjI5RDBDNEM0 MEYxMUVBOUMxNUI0NzBDNEY5QUUwMi9BQlhib0RqTHpMRlM3UmNST3FDbzFkZElq U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCWGJvRGpMekxGUzdSY1JPcUNvMWRkSWpTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0M1NjQvNEYyOUQwQzRDNDBGMTFFQTlDMTVCNDcwQzRGOUFFMDIvNzRDQ0ExM0FE QkU4MTFFQThEMDYzQjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnmJAwDQQCAAIwBwMFACQGV0AwDQYJKoZIhvcNAQELBQAD ggEBAEbPk/ZKJ2KsWXOnUKecMhj3ri0P22PJBrQjbIHM2Tt1F30hNMwyHomkVrZ2 cOIRepQPnjYl+proMR1G4wVdP64kUuZhjdJfwoL1rQQ+uQ4CVwDDhTnkYE+7hspt hSO6Ny9QB+0YcWhG0AeGBmbupNcvMuD2XnhXebvklh91IW/2iz78tgNa4erAyGpz tvva1YTcDbBhIw+zlfc/W+/hTRTdU40+ZQof48vnXt5vVPq+2ebt1sGrXQzsm1/X YPOU9/iqKjNvUQMLCY6gmOI/TxEj4hVYifbb4Ct4YVoems3TuVt0Vy9VKuyPvQT7 EpsNMdW93AXRdU0EMQDgPrJ+F9k= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org