$ rpki-client -vvf rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/5D5B0F7C34CA11EDA301482BC4F9AE02.roa File: 5D5B0F7C34CA11EDA301482BC4F9AE02.roa (raw, json) Hash identifier: QdE82JCa+rzN4wKDDSZqFCcZCfWColrn6QaXFC11S4g= Subject key identifier: A1:79:1B:4C:BE:94:17:79:9E:92:3F:FE:88:A5:AA:6E:F0:AD:B4:EE Certificate issuer: /CN=A91175F6/serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Certificate serial: 0106 Authority key identifier: B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/5D5B0F7C34CA11EDA301482BC4F9AE02.roa Signing time: Sat 09 Dec 2023 04:15:14 +0000 ROA not before: Sat 09 Dec 2023 04:15:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139863 IP address blocks: 103.146.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175F6/serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Validity Not Before: Dec 9 04:15:14 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6573e9d2-6246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9b:ca:b6:e9:20:70:c1:c1:20:2a:72:fa:91: 1d:f7:18:f4:2d:e1:3a:9e:35:01:61:b2:3a:30:93: 33:e7:42:6d:20:33:a8:c6:15:95:02:7c:f2:f1:b5: 2c:d4:31:2d:35:35:62:f7:f6:f7:fd:79:fd:29:f3: 72:ee:bb:0e:2a:47:65:ba:79:0d:76:cb:25:93:9d: cc:5d:c0:5a:e1:83:29:04:91:2a:e5:f8:20:14:53: 84:d8:81:3b:d1:53:29:3b:fd:5b:4e:01:c2:80:e7: ca:3e:1c:eb:12:2d:da:c7:d2:46:fa:73:f7:89:4a: 06:72:29:ca:f9:b0:1d:7a:9f:ec:53:cd:ce:81:8c: 25:a9:6f:41:0f:4d:98:2e:af:6c:fa:d2:20:6a:33: 9d:be:ed:bd:e9:3d:90:78:21:1c:b6:2b:f0:41:d3: 45:55:36:42:63:c9:42:82:60:5b:1f:e9:94:17:e0: 2a:c2:5f:07:67:5b:0c:d2:77:c7:47:0b:62:3d:d3: 06:7f:55:40:36:74:38:dc:af:78:0e:17:fc:c7:32: 79:33:7f:c7:60:fd:f1:d8:b1:03:e1:9f:e0:9e:96: 65:a4:a0:79:06:11:9e:38:e6:72:eb:e4:70:c5:af: 21:c8:15:1d:5a:77:66:7d:3b:94:f1:00:2f:c6:d4: 76:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:79:1B:4C:BE:94:17:79:9E:92:3F:FE:88:A5:AA:6E:F0:AD:B4:EE X509v3 Authority Key Identifier: keyid:B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/5D5B0F7C34CA11EDA301482BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.92.0/23 Signature Algorithm: sha256WithRSAEncryption 55:38:16:cc:f9:36:06:c2:2b:b1:01:3f:d8:7b:68:48:94:d8: 00:ef:3c:1f:ae:84:f0:20:43:2e:4a:a4:b6:e2:95:2a:eb:fe: f3:53:f9:10:c2:36:4b:43:e8:e3:75:c2:51:74:ed:a0:f1:40: ce:7c:ed:0b:23:e4:2e:53:28:89:70:52:e2:e9:2c:03:1b:e4: 0c:a4:83:d3:e4:53:68:99:21:a1:6f:b0:db:60:3e:e9:f0:ae: d1:9c:c3:98:b8:02:8a:bf:08:cb:30:3c:1b:f1:82:32:75:21: 17:74:4e:7e:c7:63:a2:b7:67:13:8a:1f:5e:57:9e:7c:90:12: d3:f9:89:de:0e:39:d5:54:6d:cb:d4:3d:71:50:58:0d:d3:20: 4a:7f:6c:bb:af:8c:64:ac:d0:60:cc:57:54:7d:90:79:79:51: 7f:6b:cc:f9:cc:c5:62:bd:ce:2d:9c:5e:ec:86:c9:ad:3b:ec: 04:ba:5f:7d:4c:07:30:ea:3b:73:ec:23:87:63:99:d2:02:4a: 6d:0c:91:96:34:b4:3a:61:a3:44:30:3a:a8:e7:9c:86:0c:37: fc:dc:03:b6:a6:bf:ab:2a:25:07:3b:bd:f5:27:86:08:ad:f9: d9:b4:08:1d:02:15:1e:28:67:df:d4:7b:48:da:e8:c8:e5:ad: e3:be:33:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RjYxMTAvBgNVBAUTKEI3RDRBQTRGNUQ3MjMxQUY0RTc0N0Y3NzIyNDVBQzAz NzEwMjEwRjAwHhcNMjMxMjA5MDQxNTE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczZTlkMi02MjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZvKtukgcMHBICpy+pEd9xj0LeE6njUBYbI6MJMz50JtIDOoxhWVAnzy8bUs 1DEtNTVi9/b3/Xn9KfNy7rsOKkdlunkNdsslk53MXcBa4YMpBJEq5fggFFOE2IE7 0VMpO/1bTgHCgOfKPhzrEi3ax9JG+nP3iUoGcinK+bAdep/sU83OgYwlqW9BD02Y Lq9s+tIgajOdvu296T2QeCEctivwQdNFVTZCY8lCgmBbH+mUF+Aqwl8HZ1sM0nfH RwtiPdMGf1VANnQ43K94Dhf8xzJ5M3/HYP3x2LED4Z/gnpZlpKB5BhGeOOZy6+Rw xa8hyBUdWndmfTuU8QAvxtR2DQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKF5G0y+ lBd5npI//oilqm7wrbTuMB8GA1UdIwQYMBaAFLfUqk9dcjGvTnR/dyJFrANxAhDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGNi8xM0E0MjBBODM0 MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1hOU9kSDkzSWtXc0EzRUNF UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5U3FUMTF5TWE5T2RIOTNJa1dzQTNFQ0VQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc1RjYvMTNBNDIwQTgzNDIwMTFFRDg1RUNCRjMzQzRGOUFFMDIvNUQ1QjBGN0Mz NENBMTFFREEzMDE0ODJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnklwwDQYJKoZIhvcNAQELBQADggEBAFU4Fsz5NgbCK7EB P9h7aEiU2ADvPB+uhPAgQy5KpLbilSrr/vNT+RDCNktD6ON1wlF07aDxQM587Qsj 5C5TKIlwUuLpLAMb5Aykg9PkU2iZIaFvsNtgPunwrtGcw5i4Aoq/CMswPBvxgjJ1 IRd0Tn7HY6K3ZxOKH15XnnyQEtP5id4OOdVUbcvUPXFQWA3TIEp/bLuvjGSs0GDM V1R9kHl5UX9rzPnMxWK9zi2cXuyGya077AS6X31MBzDqO3PsI4djmdICSm0MkZY0 tDpho0QwOqjnnIYMN/zcA7amv6sqJQc7vfUnhgit+dm0CB0CFR4oZ9/Ue0ja6Mjl reO+M3s= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:30 2024 by rpki-client on console-fra.rpki-client.org