$ rpki-client -vvf rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/EF5A16E89F3E11EB852AB17AC4F9AE02.roa File: EF5A16E89F3E11EB852AB17AC4F9AE02.roa (raw, json) Hash identifier: egE4N/qKr2iW2AJr7yaLioX9jscnmyrfB7Bs35ulzKU= Subject key identifier: F8:C2:1E:A5:4E:57:09:D3:36:87:7F:DC:74:FC:77:DC:B7:10:5C:03 Certificate issuer: /CN=A915C83A/serialNumber=21E9359DE9607A78CCD3590E0B449CB52B17B6BB Certificate serial: 05D3 Authority key identifier: 21:E9:35:9D:E9:60:7A:78:CC:D3:59:0E:0B:44:9C:B5:2B:17:B6:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iek1nelgenjM01kOC0SctSsXtrs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/EF5A16E89F3E11EB852AB17AC4F9AE02.roa Signing time: Thu 31 Aug 2023 23:10:36 +0000 ROA not before: Thu 31 Aug 2023 23:10:36 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 63962 IP address blocks: 103.153.141.0/24 maxlen: 24 103.168.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/Iek1nelgenjM01kOC0SctSsXtrs.crl rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/Iek1nelgenjM01kOC0SctSsXtrs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iek1nelgenjM01kOC0SctSsXtrs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1491 (0x5d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C83A/serialNumber=21E9359DE9607A78CCD3590E0B449CB52B17B6BB Validity Not Before: Aug 31 23:10:36 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f11dec-251b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:48:a0:ab:7c:f5:c8:76:7b:f2:3f:58:98:24: 6e:7e:ba:12:80:4d:02:de:40:17:4c:bc:b9:d1:e7: 7d:06:e8:f3:7e:d1:c6:22:46:b1:93:be:dc:d2:da: cb:56:24:3b:4a:af:90:75:d7:4a:94:fe:77:c1:53: d0:d7:ac:05:8a:37:1e:59:19:cc:15:bf:3f:fd:ea: 59:a4:9f:55:ce:68:5a:3d:e9:c8:90:4c:e9:97:2b: dc:b1:0d:44:77:74:6a:d3:f3:d4:cb:49:ad:14:60: 4b:b4:78:b7:27:1d:49:03:73:96:d7:a9:3f:91:7e: ba:98:53:ab:d1:12:fa:a6:f2:61:71:9c:53:fa:42: d5:53:7c:00:b1:ca:16:bc:5f:d1:34:34:c9:1c:83: 64:68:13:05:63:73:c1:ff:0f:4b:a3:a3:47:b9:d1: 7f:3e:56:e7:ed:76:3c:36:19:55:82:88:1e:11:98: cf:47:b6:41:e2:16:38:79:83:a2:26:b6:a7:a0:6e: d3:79:f0:f0:50:42:f9:66:e4:d0:51:ad:61:97:aa: 68:1d:12:a6:23:f9:c1:d4:9e:d5:7f:98:67:f1:76: 96:28:2e:dc:b9:1c:31:01:f1:23:07:04:b7:c1:09: f4:b1:4c:ee:85:ec:c6:55:5c:ce:90:88:76:4f:f5: 4a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C2:1E:A5:4E:57:09:D3:36:87:7F:DC:74:FC:77:DC:B7:10:5C:03 X509v3 Authority Key Identifier: keyid:21:E9:35:9D:E9:60:7A:78:CC:D3:59:0E:0B:44:9C:B5:2B:17:B6:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/Iek1nelgenjM01kOC0SctSsXtrs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iek1nelgenjM01kOC0SctSsXtrs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C83A/47170CD83DEC11EB904A0C65C4F9AE02/EF5A16E89F3E11EB852AB17AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.141.0/24 103.168.56.0/24 Signature Algorithm: sha256WithRSAEncryption 19:19:33:80:59:8b:8f:ff:a1:2e:ee:f8:df:73:d6:27:bf:20: d9:be:d8:55:a5:ae:cc:7f:ce:02:b0:69:12:3b:4b:6f:f2:12: e4:d6:bc:65:11:ae:5b:df:a6:13:5e:c9:ab:64:4b:0c:c3:b1: 8f:cf:b1:c3:ae:eb:6b:07:50:ed:45:ec:20:9e:c1:10:9d:eb: 77:95:b9:b1:3f:1e:b2:c7:30:2a:26:b8:a9:bd:e2:3d:9a:c6: 6d:bc:a7:8b:63:e3:1a:99:38:48:c9:62:52:8d:38:06:5c:2a: 7f:90:10:8e:5d:36:2e:fa:6b:ce:b2:d6:3d:75:38:1e:6e:3d: a5:de:03:c0:ac:18:6d:34:5b:d2:0e:b5:f1:9d:99:8f:53:7f: 80:10:1e:b3:da:f5:74:89:24:16:a3:ca:2a:a0:1b:51:20:68: 6b:67:9f:57:0c:18:67:23:db:7c:d9:df:3d:cc:5b:18:db:50: a4:1f:f9:9c:76:59:a8:42:71:c6:ec:44:54:81:38:d9:76:0b: 67:56:e3:a7:9d:a3:78:78:71:f9:0b:d3:57:39:74:fb:4a:a9: 74:13:67:92:fd:97:d0:62:b3:e4:24:04:36:ae:57:b2:b3:18: b2:99:91:21:d5:7f:29:97:2b:ea:95:c1:0c:10:7b:2a:cf:d7: f2:99:3d:cd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM4M0ExMTAvBgNVBAUTKDIxRTkzNTlERTk2MDdBNzhDQ0QzNTkwRTBCNDQ5Q0I1 MkIxN0I2QkIwHhcNMjMwODMxMjMxMDM2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYxMWRlYy0yNTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUigq3z1yHZ78j9YmCRufroSgE0C3kAXTLy50ed9BujzftHGIkaxk77c0trL ViQ7Sq+QdddKlP53wVPQ16wFijceWRnMFb8//epZpJ9VzmhaPenIkEzplyvcsQ1E d3Rq0/PUy0mtFGBLtHi3Jx1JA3OW16k/kX66mFOr0RL6pvJhcZxT+kLVU3wAscoW vF/RNDTJHINkaBMFY3PB/w9Lo6NHudF/Plbn7XY8NhlVgogeEZjPR7ZB4hY4eYOi JranoG7TefDwUEL5ZuTQUa1hl6poHRKmI/nB1J7Vf5hn8XaWKC7cuRwxAfEjBwS3 wQn0sUzuhezGVVzOkIh2T/VKuQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPjCHqVO VwnTNod/3HT8d9y3EFwDMB8GA1UdIwQYMBaAFCHpNZ3pYHp4zNNZDgtEnLUrF7a7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzgzQS80NzE3MENEODNE RUMxMUVCOTA0QTBDNjVDNEY5QUUwMi9JZWsxbmVsZ2Vuak0wMWtPQzBTY3RTc1h0 cnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0llazFuZWxnZW5qTTAxa09DMFNjdFNzWHRycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM4M0EvNDcxNzBDRDgzREVDMTFFQjkwNEEwQzY1QzRGOUFFMDIvRUY1QTE2RTg5 RjNFMTFFQjg1MkFCMTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnmY0DBABnqDgwDQYJKoZIhvcNAQELBQADggEBABkZM4BZ i4//oS7u+N9z1ie/INm+2FWlrsx/zgKwaRI7S2/yEuTWvGURrlvfphNeyatkSwzD sY/PscOu62sHUO1F7CCewRCd63eVubE/HrLHMComuKm94j2axm28p4tj4xqZOEjJ YlKNOAZcKn+QEI5dNi76a86y1j11OB5uPaXeA8CsGG00W9IOtfGdmY9Tf4AQHrPa 9XSJJBajyiqgG1EgaGtnn1cMGGcj23zZ3z3MWxjbUKQf+Zx2WahCccbsRFSBONl2 C2dW46edo3h4cfkL01c5dPtKqXQTZ5L9l9Bis+QkBDauV7KzGLKZkSHVfymXK+qV wQwQeyrP1/KZPc0= -----END CERTIFICATE-----Generated at Sun May 19 00:16:14 2024 by rpki-client on console-fra.rpki-client.org