$ rpki-client -vvf rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/531D1196CEA011EAB60D4C55C4F9AE02.roa File: 531D1196CEA011EAB60D4C55C4F9AE02.roa (raw, json) Hash identifier: OeIck/1EPBjo8M19lN1k9E7JXvV4IEOUQvRuLFZpjKw= Subject key identifier: 53:8A:ED:E2:FB:5F:E5:B3:BC:75:EA:4E:FA:18:93:9E:AD:31:A0:4B Certificate issuer: /CN=A9141A6A/serialNumber=6A4A074EE5BE7F3BA850B3BA214296B65B1A2DAD Certificate serial: 07EC Authority key identifier: 6A:4A:07:4E:E5:BE:7F:3B:A8:50:B3:BA:21:42:96:B6:5B:1A:2D:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akoHTuW-fzuoULO6IUKWtlsaLa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/531D1196CEA011EAB60D4C55C4F9AE02.roa Signing time: Mon 14 Oct 2024 20:59:48 +0000 ROA not before: Mon 14 Oct 2024 20:59:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140900 IP address blocks: 103.153.38.0/24 maxlen: 24 103.153.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/akoHTuW-fzuoULO6IUKWtlsaLa0.crl rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/akoHTuW-fzuoULO6IUKWtlsaLa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akoHTuW-fzuoULO6IUKWtlsaLa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2028 (0x7ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141A6A/serialNumber=6A4A074EE5BE7F3BA850B3BA214296B65B1A2DAD Validity Not Before: Oct 14 20:59:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=670d8644-c044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2d:eb:7c:6e:45:04:6d:db:9f:ab:95:5d:13: 80:55:57:a7:03:85:53:ad:a0:75:84:04:41:79:40: 40:11:81:df:42:75:c9:05:3f:3a:81:52:8d:dc:cc: a2:6e:dc:c0:bb:7e:bc:b9:90:71:a1:e4:8a:0d:c5: 23:0a:48:fe:a9:38:77:d8:43:68:30:65:51:79:f7: c8:b3:fe:6b:0e:a2:78:9a:00:92:de:e4:73:44:6e: 27:5c:72:ce:2b:6c:0b:30:68:21:3c:f6:50:e6:44: ee:18:09:99:56:32:1d:8a:62:d1:9a:36:a7:f9:23: d8:84:f1:6e:c0:76:47:9c:76:25:68:4b:24:80:4d: 79:79:12:60:10:aa:dc:d9:11:69:ef:64:a4:a3:8b: 3e:c6:9f:db:c0:9c:25:3a:9c:57:f2:b6:4d:98:30: b9:d5:fe:3b:41:f7:56:d4:0d:89:d3:f5:41:8b:41: 5f:04:3e:3e:39:8e:9b:88:32:3d:9d:51:e6:38:ea: ff:ac:83:90:f0:81:14:d1:01:fa:b3:31:43:f6:79: de:92:39:7b:98:86:44:61:c2:f0:8c:d4:d4:94:0c: 3a:a5:db:0a:0b:2a:d4:cf:2f:0e:b8:e0:6a:e4:a4: 4f:1c:1d:70:cc:5f:4e:a4:d6:e0:7e:37:a3:5f:3a: 74:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8A:ED:E2:FB:5F:E5:B3:BC:75:EA:4E:FA:18:93:9E:AD:31:A0:4B X509v3 Authority Key Identifier: keyid:6A:4A:07:4E:E5:BE:7F:3B:A8:50:B3:BA:21:42:96:B6:5B:1A:2D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/akoHTuW-fzuoULO6IUKWtlsaLa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akoHTuW-fzuoULO6IUKWtlsaLa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/531D1196CEA011EAB60D4C55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.38.0/23 Signature Algorithm: sha256WithRSAEncryption 65:7f:1a:8b:6b:64:8a:85:87:4f:13:1f:90:31:65:1f:bb:68: 45:52:81:5d:32:b4:3c:99:90:8e:76:76:44:55:ad:18:57:5b: 7b:ce:a2:47:6d:4f:04:13:13:c7:0a:f4:0c:12:90:f4:93:c6: e1:df:34:19:c5:34:e6:be:f5:92:18:51:28:9c:0a:d8:9b:fc: 89:a2:38:df:23:3e:e9:a1:78:73:18:9b:44:e1:82:e1:26:30: bf:52:08:0f:f8:a6:69:4d:88:cb:0b:ca:49:df:95:e6:2f:06: 58:43:19:61:a9:9e:ca:a6:53:de:54:63:18:9c:50:09:4a:71: 93:a0:af:b5:f4:95:df:39:63:6f:50:bf:67:c1:84:f2:0b:1c: da:84:d5:a9:27:d4:3c:57:4d:2f:09:05:cb:20:f1:6a:20:a5: 6b:78:e8:60:6b:9d:dc:91:a9:1b:2c:b1:45:f2:2f:b1:31:a5: 8d:5b:5e:63:6a:a2:d7:b0:77:e1:06:7f:aa:c4:03:51:f0:6b: f4:28:3c:9e:52:a1:36:58:a7:17:75:99:df:92:5f:86:cc:29: 75:78:40:91:1a:4c:90:e4:d1:b1:3f:15:5a:48:11:03:a0:f4: 31:72:ea:7f:73:cb:a0:d0:de:41:ed:a1:39:a2:1b:60:60:8c: 10:2e:5a:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFBNkExMTAvBgNVBAUTKDZBNEEwNzRFRTVCRTdGM0JBODUwQjNCQTIxNDI5NkI2 NUIxQTJEQUQwHhcNMjQxMDE0MjA1OTQ4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkODY0NC1jMDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC3rfG5FBG3bn6uVXROAVVenA4VTraB1hARBeUBAEYHfQnXJBT86gVKN3Myi btzAu368uZBxoeSKDcUjCkj+qTh32ENoMGVReffIs/5rDqJ4mgCS3uRzRG4nXHLO K2wLMGghPPZQ5kTuGAmZVjIdimLRmjan+SPYhPFuwHZHnHYlaEskgE15eRJgEKrc 2RFp72Sko4s+xp/bwJwlOpxX8rZNmDC51f47QfdW1A2J0/VBi0FfBD4+OY6biDI9 nVHmOOr/rIOQ8IEU0QH6szFD9nnekjl7mIZEYcLwjNTUlAw6pdsKCyrUzy8OuOBq 5KRPHB1wzF9OpNbgfjejXzp0AwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFOK7eL7 X+WzvHXqTvoYk56tMaBLMB8GA1UdIwQYMBaAFGpKB07lvn87qFCzuiFClrZbGi2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUE2QS82MkJFMEFDNkNF OUUxMUVBODg1NEExNTBDNEY5QUUwMi9ha29IVHVXLWZ6dW9VTE82SVVLV3Rsc2FM YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Frb0hUdVctZnp1b1VMTzZJVUtXdGxzYUxhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDFBNkEvNjJCRTBBQzZDRTlFMTFFQTg4NTRBMTUwQzRGOUFFMDIvNTMxRDExOTZD RUEwMTFFQUI2MEQ0QzU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmSYwDQYJKoZIhvcNAQELBQADggEBAGV/GotrZIqFh08T H5AxZR+7aEVSgV0ytDyZkI52dkRVrRhXW3vOokdtTwQTE8cK9AwSkPSTxuHfNBnF NOa+9ZIYUSicCtib/ImiON8jPumheHMYm0ThguEmML9SCA/4pmlNiMsLyknfleYv BlhDGWGpnsqmU95UYxicUAlKcZOgr7X0ld85Y29Qv2fBhPILHNqE1akn1DxXTS8J Bcsg8WogpWt46GBrndyRqRsssUXyL7ExpY1bXmNqotewd+EGf6rEA1Hwa/QoPJ5S oTZYpxd1md+SX4bMKXV4QJEaTJDk0bE/FVpIEQOg9DFy6n9zy6DQ3kHtoTmiG2Bg jBAuWs8= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org