$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/353932A29B3111EEAFB64748C4F9AE02.roa File: 353932A29B3111EEAFB64748C4F9AE02.roa (raw, json) Hash identifier: 9uk0usjnIlSyDjwPsAY9kObLcGremCDO3bEAYN35jzU= Subject key identifier: 69:E5:0A:0C:DD:05:8F:77:0A:CE:89:2A:2C:6E:38:0E:33:81:96:4E Certificate issuer: /CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Certificate serial: 0736 Authority key identifier: 2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/353932A29B3111EEAFB64748C4F9AE02.roa Signing time: Thu 22 Aug 2024 21:59:59 +0000 ROA not before: Thu 22 Aug 2024 21:59:59 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140930 IP address blocks: 103.153.154.0/23 maxlen: 23 103.153.154.0/24 maxlen: 24 2406:4740:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1846 (0x736) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Validity Not Before: Aug 22 21:59:59 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c7b4df-eb0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:de:e2:3d:e5:fe:75:41:ca:e8:ac:0b:2c:6d: 2c:4d:9a:d8:2d:4b:12:d0:d5:f1:9b:6d:33:86:26: 1c:2b:95:3d:14:dc:8f:41:31:78:e1:1b:c8:f0:3b: 2d:59:ef:21:99:16:73:66:4b:11:e0:d6:f1:63:ec: 55:e1:93:e1:f8:f0:3e:97:19:32:b9:0b:89:4a:31: 38:b0:a0:4d:05:97:89:8d:ff:31:51:0f:8a:52:2c: 59:c9:6c:38:fb:41:72:76:47:4b:dc:c6:6d:ff:be: 6f:17:27:03:f1:a7:5e:4a:7e:15:48:1d:b9:6b:66: 3d:78:e1:cc:46:ed:d9:03:0e:51:f8:18:8c:57:94: ab:54:0c:8d:63:fb:0a:31:4e:3d:9d:ad:70:7f:3c: 65:a0:26:93:1e:ce:2d:23:03:86:f6:df:7a:2e:b5: 6a:89:aa:fa:91:1d:f1:88:46:6a:06:18:4c:5a:6d: 78:cf:c3:bd:4b:fa:0d:f0:27:25:f0:c5:e6:f3:a1: 13:5b:a0:08:45:f1:44:14:53:dc:b2:1c:df:39:99: 30:56:67:dd:2c:65:61:f4:38:da:c2:bd:18:63:09: 58:4d:47:dc:a1:6c:5f:c8:c8:aa:fb:a4:91:3b:02: 4d:f9:7c:f7:4a:7b:56:e7:d2:3c:7e:de:26:c9:02: 8e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E5:0A:0C:DD:05:8F:77:0A:CE:89:2A:2C:6E:38:0E:33:81:96:4E X509v3 Authority Key Identifier: keyid:2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/353932A29B3111EEAFB64748C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.154.0/23 IPv6: 2406:4740:1::/48 Signature Algorithm: sha256WithRSAEncryption 16:7f:00:af:48:ec:7c:b3:23:09:76:e7:72:52:64:a3:24:33: 08:97:0a:ba:a9:e2:45:9e:c3:14:c8:6a:0b:bd:86:e2:94:68: f2:d1:1b:05:9f:69:10:5a:dc:a0:cd:eb:e3:9c:b1:c9:46:c9: d3:d9:b4:f5:a9:de:6a:92:45:06:c5:87:bc:6a:5d:40:d1:8f: ef:82:c7:59:57:be:0a:f5:87:7e:b6:91:00:34:22:ab:23:27: cc:7f:09:07:0a:ea:0a:86:fe:24:d5:7d:91:75:3b:44:5a:a0: b1:b1:22:02:3d:b5:84:af:3d:b7:4e:c0:ec:09:20:6a:50:e8: e8:2a:8a:d7:03:d3:93:c8:9d:f9:97:fc:15:6f:dd:0e:6b:3e: a5:b6:a1:3b:a6:4f:b4:31:c2:fc:80:de:20:96:49:f3:b0:4c: 04:f7:df:17:0a:08:6b:f0:42:14:95:3b:3d:24:8d:0a:4e:cb: 23:73:03:d9:2a:33:f9:c5:5f:19:e0:15:1e:b4:ed:f1:7a:88: 57:1f:8f:2a:49:94:eb:ad:2e:0d:91:ea:eb:2a:3b:78:ca:77: d3:c8:6b:7e:5e:fb:2a:12:c9:a1:9d:09:3e:0a:84:f6:37:78: 97:49:69:ec:0a:25:18:d3:60:dd:99:b3:fe:ae:b9:76:64:15: 3b:f6:ff:1c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMDAxMTAvBgNVBAUTKDJCREY1Q0IzMjI4QkVDODczRUNFRTc1RDY3NTgzNTQ2 NTM4MjM0OTIwHhcNMjQwODIyMjE1OTU5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3YjRkZi1lYjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0d7iPeX+dUHK6KwLLG0sTZrYLUsS0NXxm20zhiYcK5U9FNyPQTF44RvI8Dst We8hmRZzZksR4NbxY+xV4ZPh+PA+lxkyuQuJSjE4sKBNBZeJjf8xUQ+KUixZyWw4 +0FydkdL3MZt/75vFycD8adeSn4VSB25a2Y9eOHMRu3ZAw5R+BiMV5SrVAyNY/sK MU49na1wfzxloCaTHs4tIwOG9t96LrVqiar6kR3xiEZqBhhMWm14z8O9S/oN8Ccl 8MXm86ETW6AIRfFEFFPcshzfOZkwVmfdLGVh9Djawr0YYwlYTUfcoWxfyMiq+6SR OwJN+Xz3SntW59I8ft4myQKOfwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGnlCgzd BY93Cs6JKixuOA4zgZZOMB8GA1UdIwQYMBaAFCvfXLMii+yHPs7nXWdYNUZTgjSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODEwMC9BQUM3MkUwQ0ZD Q0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJYy16dWRkWjFnMVJsT0NO SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s5OWNzeUtMN0ljLXp1ZGRaMWcxUmxPQ05KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgxMDAvQUFDNzJFMENGQ0NFMTFFQThDMTlEODdGQzRGOUFFMDIvMzUzOTMyQTI5 QjMxMTFFRUFGQjY0NzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmZowDwQCAAIwCQMHACQGR0AAATANBgkqhkiG9w0BAQsF AAOCAQEAFn8Ar0jsfLMjCXbnclJkoyQzCJcKuqniRZ7DFMhqC72G4pRo8tEbBZ9p EFrcoM3r45yxyUbJ09m09aneapJFBsWHvGpdQNGP74LHWVe+CvWHfraRADQiqyMn zH8JBwrqCob+JNV9kXU7RFqgsbEiAj21hK89t07A7AkgalDo6CqK1wPTk8id+Zf8 FW/dDms+pbahO6ZPtDHC/IDeIJZJ87BMBPffFwoIa/BCFJU7PSSNCk7LI3MD2Soz +cVfGeAVHrTt8XqIVx+PKkmU660uDZHq6yo7eMp308hrfl77KhLJoZ0JPgqE9jd4 l0lp7AolGNNg3Zmz/q65dmQVO/b/HA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:13 2024 by rpki-client on console-fra.rpki-client.org