$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/A880F416819311ECB7B48D5EC4F9AE02.roa File: A880F416819311ECB7B48D5EC4F9AE02.roa (raw, json) Hash identifier: uIu7Yzx8aW3PdZoa93ewcT/liJTG3WGKaYLEgS36mBY= Subject key identifier: 4A:E5:92:21:80:FD:FD:F3:52:07:FB:E8:3B:D0:B8:DF:3C:85:65:CB Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 03A5 Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/A880F416819311ECB7B48D5EC4F9AE02.roa Signing time: Wed 31 Jan 2024 03:05:15 +0000 ROA not before: Wed 31 Jan 2024 03:05:15 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138997 IP address blocks: 103.168.154.0/24 maxlen: 24 103.168.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Validity Not Before: Jan 31 03:05:15 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b9b8ea-81b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a0:ed:c2:20:68:7f:d0:c8:f8:5b:ea:eb:4f: 43:21:0f:6a:d2:91:d3:cd:03:d5:0f:8a:f9:bc:b5: ac:10:93:34:be:95:f3:9b:81:e6:eb:34:91:a8:09: 7a:f1:69:4b:2e:5f:99:31:8a:54:83:71:03:17:e8: 06:06:08:4b:23:db:93:e0:3a:f6:e9:7f:24:61:eb: de:70:45:ba:c0:58:1a:fb:38:ea:59:9b:75:0b:ce: 5c:04:42:ef:cc:8e:7c:89:af:c4:df:28:09:03:eb: 21:5a:66:4c:cf:db:d9:c0:ad:83:a9:15:65:5a:75: 7c:86:79:16:88:62:a5:a0:aa:e6:1a:78:76:33:9d: 5b:37:8d:08:58:37:d8:30:47:e2:ef:ee:53:3a:3e: e6:30:ce:6c:c8:ba:51:47:22:6f:8d:0b:0e:96:8f: e1:6c:af:3a:ee:05:60:e1:33:58:73:3b:12:45:45: bd:7c:0a:73:7c:63:bd:c6:70:ab:23:1f:d9:1c:f3: 38:ec:af:4f:a7:7c:9e:d2:78:fc:87:37:e8:1a:8a: 48:f7:fb:fa:64:50:1b:73:17:2a:4b:67:fe:0f:8c: 4b:fd:03:cf:9c:6e:ce:6f:cf:fa:88:4d:af:e7:cc: 13:6b:08:4d:7b:4c:6b:21:6a:7b:37:26:4c:b0:cd: dd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E5:92:21:80:FD:FD:F3:52:07:FB:E8:3B:D0:B8:DF:3C:85:65:CB X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/A880F416819311ECB7B48D5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.154.0/23 Signature Algorithm: sha256WithRSAEncryption 36:df:39:39:e8:53:39:18:5e:3e:a8:cc:5f:29:bb:dd:00:17: 22:b0:46:30:a1:8f:5a:0c:4e:aa:bb:80:78:6a:08:f2:47:5b: 69:c1:2a:fd:35:14:31:79:22:41:ab:25:15:a6:bd:f8:72:ea: 5d:67:e6:fc:9e:35:91:d3:d8:7a:46:ee:d2:fd:2f:75:4f:27: 66:b2:ce:a9:df:48:63:76:05:0a:40:c5:f1:24:2c:8b:a0:da: 03:2d:6f:f5:a0:d9:bd:17:c5:ba:49:7f:67:72:3d:c1:7d:9e: 6f:5d:ac:00:b3:cd:ca:d5:c5:c0:44:d2:84:ac:8e:be:81:98: 87:c6:ba:1e:98:45:c0:88:ee:cd:4e:ec:a0:5a:b7:f6:17:8c: be:0d:a4:5c:ce:9f:fd:98:99:1f:1f:6e:5e:69:8c:94:da:f5: c3:68:90:06:a3:3d:fd:15:56:78:28:66:eb:c1:f4:b9:c0:e8: ab:f4:a6:df:72:6e:63:2f:85:05:98:ac:7b:87:cb:25:38:2c: ca:74:dc:e3:3d:8e:d4:3b:9a:56:54:f3:4c:22:34:47:fe:a2: 32:5e:4d:6a:2b:c3:e5:30:57:25:8e:9c:55:a4:75:ea:27:e9: 26:7c:30:df:a3:eb:cd:8f:b4:d3:0f:69:72:c6:af:f4:97:e0: d6:d5:5d:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjQwMTMxMDMwNTE1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YjhlYS04MWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaDtwiBof9DI+Fvq609DIQ9q0pHTzQPVD4r5vLWsEJM0vpXzm4Hm6zSRqAl6 8WlLLl+ZMYpUg3EDF+gGBghLI9uT4Dr26X8kYevecEW6wFga+zjqWZt1C85cBELv zI58ia/E3ygJA+shWmZMz9vZwK2DqRVlWnV8hnkWiGKloKrmGnh2M51bN40IWDfY MEfi7+5TOj7mMM5syLpRRyJvjQsOlo/hbK867gVg4TNYczsSRUW9fApzfGO9xnCr Ix/ZHPM47K9Pp3ye0nj8hzfoGopI9/v6ZFAbcxcqS2f+D4xL/QPPnG7Ob8/6iE2v 58wTawhNe0xrIWp7NyZMsM3dNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFErlkiGA /f3zUgf76DvQuN88hWXLMB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvQTg4MEY0MTY4 MTkzMTFFQ0I3QjQ4RDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqJowDQYJKoZIhvcNAQELBQADggEBADbfOTnoUzkYXj6o zF8pu90AFyKwRjChj1oMTqq7gHhqCPJHW2nBKv01FDF5IkGrJRWmvfhy6l1n5vye NZHT2HpG7tL9L3VPJ2ayzqnfSGN2BQpAxfEkLIug2gMtb/Wg2b0XxbpJf2dyPcF9 nm9drACzzcrVxcBE0oSsjr6BmIfGuh6YRcCI7s1O7KBat/YXjL4NpFzOn/2YmR8f bl5pjJTa9cNokAajPf0VVngoZuvB9LnA6Kv0pt9ybmMvhQWYrHuHyyU4LMp03OM9 jtQ7mlZU80wiNEf+ojJeTWorw+UwVyWOnFWkdeon6SZ8MN+j682PtNMPaXLGr/SX 4NbVXcs= -----END CERTIFICATE-----Generated at Fri May 17 03:16:59 2024 by rpki-client on console-fra.rpki-client.org