$ rpki-client -vvf rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/4153A4B6A55C11EE9D833C0EC4F9AE02.roa File: 4153A4B6A55C11EE9D833C0EC4F9AE02.roa (raw, json) Hash identifier: tklQtRdfCN4iqfDmzAmeABu5HqMOj1WU2XQNE+bTVBE= Subject key identifier: 55:C2:8F:57:76:17:01:EB:52:D6:CD:C3:9E:E7:9B:9D:9F:48:19:62 Certificate issuer: /CN=A91D190A/serialNumber=8E70D3A5240E3388A3F1C0D8F72D8F8AE159C46C Certificate serial: 0600 Authority key identifier: 8E:70:D3:A5:24:0E:33:88:A3:F1:C0:D8:F7:2D:8F:8A:E1:59:C4:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnDTpSQOM4ij8cDY9y2PiuFZxGw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/4153A4B6A55C11EE9D833C0EC4F9AE02.roa Signing time: Wed 24 Jan 2024 23:41:45 +0000 ROA not before: Wed 24 Jan 2024 23:41:45 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134502 IP address blocks: 103.161.70.0/23 maxlen: 23 103.161.70.0/24 maxlen: 24 103.161.71.0/24 maxlen: 24 2001:df5:bd80::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/jnDTpSQOM4ij8cDY9y2PiuFZxGw.crl rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/jnDTpSQOM4ij8cDY9y2PiuFZxGw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnDTpSQOM4ij8cDY9y2PiuFZxGw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1536 (0x600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D190A/serialNumber=8E70D3A5240E3388A3F1C0D8F72D8F8AE159C46C Validity Not Before: Jan 24 23:41:45 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b1a039-3cf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3f:93:ac:00:81:b7:cf:92:4f:ec:c4:c0:ce: f1:fb:a1:cd:03:17:ed:f8:00:4c:36:83:73:7d:3b: 87:24:f4:d2:cc:92:b6:3b:88:4e:03:f1:a8:42:32: ca:65:38:8f:15:12:af:21:53:55:b8:d0:16:1e:8b: c0:f2:5e:24:ac:fb:e9:df:5e:67:8a:1c:23:1a:d9: 08:de:89:d6:65:be:13:84:23:79:94:1c:2c:37:25: 7e:72:1a:bd:b6:5a:0f:4b:cb:a5:f0:26:b1:34:d8: 9e:ec:16:7f:3e:b2:f2:e7:29:7e:8f:43:ce:82:e8: f5:61:ec:9f:56:35:05:df:bf:5b:f9:b0:c3:47:00: 98:eb:33:97:fb:96:a8:14:03:70:05:de:e6:7c:ac: ad:3b:50:d9:e5:71:a7:71:fd:70:b3:f5:9d:52:b4: 2a:80:ed:55:0f:88:cd:23:9a:ba:9e:92:6c:e4:a4: 98:b8:f4:82:7d:82:14:34:45:c6:94:6e:45:5a:62: d7:2d:ef:9a:ab:25:2c:01:7a:fc:7a:ab:f8:93:6b: 2c:f4:50:1f:f8:56:ba:c3:6c:2c:d0:a7:72:76:57: 97:2f:d0:4a:c5:ee:7c:5c:c9:e9:b6:0f:04:4b:49: a7:fc:60:26:95:bd:c2:73:0d:32:25:c8:82:fa:37: 31:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C2:8F:57:76:17:01:EB:52:D6:CD:C3:9E:E7:9B:9D:9F:48:19:62 X509v3 Authority Key Identifier: keyid:8E:70:D3:A5:24:0E:33:88:A3:F1:C0:D8:F7:2D:8F:8A:E1:59:C4:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/jnDTpSQOM4ij8cDY9y2PiuFZxGw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnDTpSQOM4ij8cDY9y2PiuFZxGw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/4153A4B6A55C11EE9D833C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.70.0/23 IPv6: 2001:df5:bd80::/48 Signature Algorithm: sha256WithRSAEncryption 4b:73:9d:3a:da:09:41:95:09:d1:56:8a:ec:65:6b:5f:39:0e: 66:38:65:bc:f3:3b:c0:cd:c4:ae:0d:c7:54:ae:11:e1:68:a5: e5:9f:b1:ae:80:1d:56:bf:3e:b2:15:8a:6f:14:16:4f:21:40: e5:f2:3b:2e:c1:fb:13:a0:3b:8c:9c:b3:b2:78:14:2e:3d:d7: 05:06:9e:05:aa:c4:67:17:d7:9b:6d:8c:b0:89:a2:c3:7a:16: ff:1b:09:8e:0c:2c:85:d4:ea:70:b7:95:06:44:84:85:0a:e4: f7:11:49:55:a3:7e:8d:e9:89:11:ef:18:c3:83:4b:22:5e:d1: be:bc:31:6c:0b:f4:07:f3:a1:6d:3f:3b:05:62:48:7a:91:43: ca:ee:f3:8b:48:8c:af:81:7c:d1:bb:f1:fe:70:f1:55:07:9b: ef:3a:db:a5:b0:a8:58:bf:7b:fa:84:6b:ce:03:0a:c1:81:53: 9e:d3:c2:c3:e8:5c:26:55:fe:44:e2:20:a5:38:6a:ef:28:86: fa:cb:02:71:4f:79:96:21:51:27:4d:d4:e5:ba:28:6f:67:fa: fc:0e:96:7d:89:89:d9:60:87:a2:ab:55:dc:ac:1e:44:08:66: d0:7a:0a:a4:03:ab:a4:8f:4d:04:00:7f:8d:4e:44:ee:b0:ec: 7f:69:e9:0f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE5MEExMTAvBgNVBAUTKDhFNzBEM0E1MjQwRTMzODhBM0YxQzBEOEY3MkQ4RjhB RTE1OUM0NkMwHhcNMjQwMTI0MjM0MTQ1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIxYTAzOS0zY2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtj+TrACBt8+ST+zEwM7x+6HNAxft+ABMNoNzfTuHJPTSzJK2O4hOA/GoQjLK ZTiPFRKvIVNVuNAWHovA8l4krPvp315nihwjGtkI3onWZb4ThCN5lBwsNyV+chq9 tloPS8ul8CaxNNie7BZ/PrLy5yl+j0POguj1YeyfVjUF379b+bDDRwCY6zOX+5ao FANwBd7mfKytO1DZ5XGncf1ws/WdUrQqgO1VD4jNI5q6npJs5KSYuPSCfYIUNEXG lG5FWmLXLe+aqyUsAXr8eqv4k2ss9FAf+Fa6w2ws0KdydleXL9BKxe58XMnptg8E S0mn/GAmlb3Ccw0yJciC+jcxOwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFXCj1d2 FwHrUtbNw57nm52fSBliMB8GA1UdIwQYMBaAFI5w06UkDjOIo/HA2Pctj4rhWcRs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTkwQS8wNzFDNERFNDUw MEUxMUVCQTczQTYzMkJDNEY5QUUwMi9qbkRUcFNRT000aWo4Y0RZOXkyUGl1Rlp4 R3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puRFRwU1FPTTRpajhjRFk5eTJQaXVGWnhHdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE5MEEvMDcxQzRERTQ1MDBFMTFFQkE3M0E2MzJCQzRGOUFFMDIvNDE1M0E0QjZB NTVDMTFFRTlEODMzQzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnoUYwDwQCAAIwCQMHACABDfW9gDANBgkqhkiG9w0BAQsF AAOCAQEAS3OdOtoJQZUJ0VaK7GVrXzkOZjhlvPM7wM3Erg3HVK4R4Wil5Z+xroAd Vr8+shWKbxQWTyFA5fI7LsH7E6A7jJyzsngULj3XBQaeBarEZxfXm22MsImiw3oW /xsJjgwshdTqcLeVBkSEhQrk9xFJVaN+jemJEe8Yw4NLIl7RvrwxbAv0B/OhbT87 BWJIepFDyu7zi0iMr4F80bvx/nDxVQeb7zrbpbCoWL97+oRrzgMKwYFTntPCw+hc JlX+ROIgpThq7yiG+ssCcU95liFRJ03U5boob2f6/A6WfYmJ2WCHoqtV3KweRAhm 0HoKpAOrpI9NBAB/jU5E7rDsf2npDw== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org