$ rpki-client -vvf rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/EF5A16E89F3E11EB852AB17AC4F9AE02.roa File: EF5A16E89F3E11EB852AB17AC4F9AE02.roa (raw, json) Hash identifier: cX9Jr6xc2q7kpQ4bV2j0kItAk4ZpyW8j6vKTdZBHzDU= Subject key identifier: 41:AE:42:CB:AE:F6:C0:2B:9F:8B:B4:78:BE:12:59:AE:05:68:76:BC Certificate issuer: /CN=A915C83A/serialNumber=21E9359DE9607A78CCD3590E0B449CB52B17B6BB Certificate serial: 068E Authority key identifier: 21:E9:35:9D:E9:60:7A:78:CC:D3:59:0E:0B:44:9C:B5:2B:17:B6:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iek1nelgenjM01kOC0SctSsXtrs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/EF5A16E89F3E11EB852AB17AC4F9AE02.roa Signing time: Mon 26 Aug 2024 22:51:16 +0000 ROA not before: Mon 26 Aug 2024 22:51:16 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 63962 IP address blocks: 103.153.141.0/24 maxlen: 24 103.168.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/Iek1nelgenjM01kOC0SctSsXtrs.crl rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/Iek1nelgenjM01kOC0SctSsXtrs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iek1nelgenjM01kOC0SctSsXtrs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C83A/serialNumber=21E9359DE9607A78CCD3590E0B449CB52B17B6BB Validity Not Before: Aug 26 22:51:16 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cd06e3-f428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a7:d1:ab:ad:42:57:30:73:60:34:8d:cd:12: fc:2a:f0:be:82:e0:4d:96:03:1f:09:e3:f2:0a:6a: f7:56:04:01:ee:c9:60:ed:2f:8b:14:a5:4c:a5:ce: 91:32:15:aa:aa:14:62:2d:3b:40:8f:98:29:88:6b: f6:8b:59:31:78:51:6e:2c:da:67:16:b7:a1:df:32: 5a:ec:a7:f9:21:ff:9b:33:d5:a2:e6:a4:7d:35:06: 60:b3:6f:38:c5:ba:44:12:66:b1:29:ea:0e:db:46: 9c:09:18:1c:13:25:8e:c8:4d:0c:0b:53:b2:c7:1d: cd:b1:56:bc:85:93:fb:9c:88:e5:39:20:e1:f6:c4: 69:9f:77:ae:25:70:79:c2:ca:7a:e7:69:65:2f:76: 1b:0d:ac:99:5c:07:8e:b9:45:b9:19:ce:81:cb:01: f8:fd:42:9f:5c:cc:0d:58:b5:fa:cc:75:bd:25:7e: 29:a2:40:12:c6:88:89:92:30:6c:0e:7e:25:ff:a5: 41:a1:58:0d:b6:1f:6d:97:fa:a4:2e:8c:1a:5d:43: 74:17:83:f3:74:c7:37:8f:93:fe:ea:9e:ea:9e:dd: 72:9d:21:7f:37:37:88:b7:1c:e4:28:6d:78:f8:5e: 7f:83:86:b8:61:c6:d4:32:95:83:2d:f3:d3:d8:80: 6b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:AE:42:CB:AE:F6:C0:2B:9F:8B:B4:78:BE:12:59:AE:05:68:76:BC X509v3 Authority Key Identifier: keyid:21:E9:35:9D:E9:60:7A:78:CC:D3:59:0E:0B:44:9C:B5:2B:17:B6:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/Iek1nelgenjM01kOC0SctSsXtrs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iek1nelgenjM01kOC0SctSsXtrs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/EF5A16E89F3E11EB852AB17AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.141.0/24 103.168.56.0/24 Signature Algorithm: sha256WithRSAEncryption c9:55:d6:9d:56:cd:b2:ca:b5:19:2a:b4:55:04:70:70:fd:74: 4c:45:f3:b7:54:4b:1f:ca:e7:ee:51:14:01:c7:d4:af:9c:78: c4:98:87:c7:26:64:20:d2:bf:d3:22:b0:f0:33:21:4f:63:59: 54:0d:78:a2:c9:bc:95:56:a0:ca:2d:0d:fe:ae:78:de:60:4a: 2b:01:62:c6:71:91:cb:fa:ee:0c:13:4e:3a:84:b4:32:ab:95: 2b:52:ae:46:0c:f9:7f:4c:ad:12:0f:13:e9:1f:eb:0a:14:b9: 37:b0:14:d3:de:6c:f0:67:06:16:b8:77:58:60:13:6c:87:16: 6f:99:2e:5b:49:12:d7:a9:b2:73:0c:de:86:86:9b:db:db:17: 0c:e4:25:87:4f:37:f4:ad:e7:0b:62:ea:7b:16:d4:d1:9a:f1: a3:5c:23:19:3e:ab:18:12:44:cc:08:ab:6a:7d:d5:82:40:bb: cb:c9:7a:3c:99:e4:8c:9b:8a:86:74:af:4b:b7:54:d3:57:e5: a8:1f:0b:ba:69:fc:c0:20:1c:c6:0b:e9:ca:95:61:80:86:12: cc:80:b2:2f:47:99:bd:b9:5c:bd:37:b5:7b:85:0f:15:86:0c: d3:79:21:27:a7:0f:1b:d6:8d:81:92:21:25:43:e7:f9:d1:0f: 07:9f:93:3e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM4M0ExMTAvBgNVBAUTKDIxRTkzNTlERTk2MDdBNzhDQ0QzNTkwRTBCNDQ5Q0I1 MkIxN0I2QkIwHhcNMjQwODI2MjI1MTE2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNkMDZlMy1mNDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46fRq61CVzBzYDSNzRL8KvC+guBNlgMfCePyCmr3VgQB7slg7S+LFKVMpc6R MhWqqhRiLTtAj5gpiGv2i1kxeFFuLNpnFreh3zJa7Kf5If+bM9Wi5qR9NQZgs284 xbpEEmaxKeoO20acCRgcEyWOyE0MC1Oyxx3NsVa8hZP7nIjlOSDh9sRpn3euJXB5 wsp652llL3YbDayZXAeOuUW5Gc6BywH4/UKfXMwNWLX6zHW9JX4pokASxoiJkjBs Dn4l/6VBoVgNth9tl/qkLowaXUN0F4PzdMc3j5P+6p7qnt1ynSF/NzeItxzkKG14 +F5/g4a4YcbUMpWDLfPT2IBrQQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEGuQsuu 9sArn4u0eL4SWa4FaHa8MB8GA1UdIwQYMBaAFCHpNZ3pYHp4zNNZDgtEnLUrF7a7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzgzQS80NzE3MENEODNE RUMxMUVCOTA0QTBDNjVDNEY5QUUwMi9JZWsxbmVsZ2Vuak0wMWtPQzBTY3RTc1h0 cnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0llazFuZWxnZW5qTTAxa09DMFNjdFNzWHRycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM4M0EvNDcxNzBDRDgzREVDMTFFQjkwNEEwQzY1QzRGOUFFMDIvRUY1QTE2RTg5 RjNFMTFFQjg1MkFCMTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnmY0DBABnqDgwDQYJKoZIhvcNAQELBQADggEBAMlV1p1W zbLKtRkqtFUEcHD9dExF87dUSx/K5+5RFAHH1K+ceMSYh8cmZCDSv9MisPAzIU9j WVQNeKLJvJVWoMotDf6ueN5gSisBYsZxkcv67gwTTjqEtDKrlStSrkYM+X9MrRIP E+kf6woUuTewFNPebPBnBha4d1hgE2yHFm+ZLltJEtepsnMM3oaGm9vbFwzkJYdP N/St5wti6nsW1NGa8aNcIxk+qxgSRMwIq2p91YJAu8vJejyZ5IybioZ0r0u3VNNX 5agfC7pp/MAgHMYL6cqVYYCGEsyAsi9Hmb25XL03tXuFDxWGDNN5ISenDxvWjYGS ISVD5/nRDwefkz4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org