$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/BBAEFE90D3A111EEB1EBBB1EC4F9AE02.roa File: BBAEFE90D3A111EEB1EBBB1EC4F9AE02.roa (raw, json) Hash identifier: i6QopCT3wMyI5V4oS5AOopBe2SziRTgfYrO+6jKs/XA= Subject key identifier: 1E:95:39:A2:DD:9D:DB:15:25:35:E9:44:E0:C7:B6:2D:04:19:79:FD Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 06F5 Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/BBAEFE90D3A111EEB1EBBB1EC4F9AE02.roa Signing time: Tue 18 Jun 2024 23:52:08 +0000 ROA not before: Tue 18 Jun 2024 23:52:08 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136557 IP address blocks: 103.54.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jun 18 23:52:08 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66721da8-d70e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a7:1e:8f:72:a9:25:06:d2:f5:fb:2f:a1:d7: da:33:3a:0e:84:4d:4e:21:19:e5:2b:e4:b3:20:39: 6c:f3:7e:1a:b5:c1:a7:01:4a:8d:8c:d8:8f:d0:40: a6:e5:9f:4e:55:fa:2d:6d:fb:c1:ce:ec:7c:53:31: cf:48:a3:b0:13:83:47:04:0c:31:77:38:65:6a:47: c7:05:a4:86:07:7d:8d:2d:32:40:7f:68:70:b3:37: 66:09:46:ef:70:a5:70:e1:63:bb:aa:6d:cf:a5:fc: 52:49:66:93:ae:d8:f5:11:71:6d:65:11:49:2e:27: 7d:0d:6e:ea:19:c3:a1:9a:21:f4:27:ed:12:12:66: 83:c8:a6:c3:9a:fe:eb:d4:72:11:3e:d2:a5:af:4b: d1:e6:c9:70:ec:a2:e8:bd:46:42:c0:e3:7e:e8:e5: c0:b6:5a:bb:07:5c:3f:06:69:d4:93:7b:40:9b:80: c7:61:a3:ca:24:87:cf:05:ad:10:85:8a:3c:18:6a: a5:2d:34:83:f8:56:d7:95:fe:dd:35:52:f8:38:41: 3c:d1:d7:d7:72:f6:53:11:c8:76:65:c1:20:11:db: a5:d2:ec:24:7c:d9:ac:79:ce:10:29:9f:88:9f:41: 8e:63:a6:4a:36:cb:99:6e:85:ed:5c:3a:05:ed:16: 0c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:95:39:A2:DD:9D:DB:15:25:35:E9:44:E0:C7:B6:2D:04:19:79:FD X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/BBAEFE90D3A111EEB1EBBB1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.153.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:40:e0:a2:94:62:25:a0:53:15:dc:6d:5f:5b:17:64:b6:67: b3:eb:d9:a3:d5:a1:d6:2d:8b:62:1e:c8:06:c3:42:43:33:c4: 2c:c1:c8:f4:6f:36:d4:d7:1c:91:f1:1a:c7:94:41:a7:1e:e1: bd:85:91:53:91:77:b2:d0:29:f4:6d:a9:7f:1f:ee:0a:2d:95: 20:46:80:24:11:75:36:5a:99:31:22:94:28:41:1e:9e:14:e4: 11:71:53:d2:0b:94:f3:e2:b9:8f:07:6f:b6:f4:35:bc:c9:2e: 68:a8:f6:71:5c:99:a6:f8:0b:fc:59:35:ae:a6:f8:5b:80:5b: fd:c9:6a:0b:ab:52:d2:8c:d3:62:e9:7d:1e:6a:73:a1:70:2b: e1:f2:a2:34:7f:c2:1e:f1:70:db:7e:84:12:87:5f:3c:2a:64: 78:77:d4:10:6f:db:e8:4c:02:1d:45:14:54:39:5a:75:53:48: d2:f1:83:c6:f5:5f:2e:1e:06:72:62:a4:d4:82:b2:dd:89:c5: 44:3d:19:72:5d:f9:1c:b6:92:94:63:75:1b:3c:0d:e9:fe:f3: 9a:a6:b6:49:bc:c9:95:ef:c2:c1:bc:c7:91:5f:10:e9:66:8a: 5f:09:a7:2e:22:c3:9c:ce:9a:32:27:2c:72:b2:4e:aa:21:8d: 1a:1f:b2:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjQwNjE4MjM1MjA4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyMWRhOC1kNzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66cej3KpJQbS9fsvodfaMzoOhE1OIRnlK+SzIDls834atcGnAUqNjNiP0ECm 5Z9OVfotbfvBzux8UzHPSKOwE4NHBAwxdzhlakfHBaSGB32NLTJAf2hwszdmCUbv cKVw4WO7qm3PpfxSSWaTrtj1EXFtZRFJLid9DW7qGcOhmiH0J+0SEmaDyKbDmv7r 1HIRPtKlr0vR5slw7KLovUZCwON+6OXAtlq7B1w/BmnUk3tAm4DHYaPKJIfPBa0Q hYo8GGqlLTSD+FbXlf7dNVL4OEE80dfXcvZTEch2ZcEgEdul0uwkfNmsec4QKZ+I n0GOY6ZKNsuZboXtXDoF7RYMSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB6VOaLd ndsVJTXpRODHti0EGXn9MB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvQkJBRUZFOTBE M0ExMTFFRUIxRUJCQjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnNpkwDQYJKoZIhvcNAQELBQADggEBAD9A4KKUYiWgUxXc bV9bF2S2Z7Pr2aPVodYti2IeyAbDQkMzxCzByPRvNtTXHJHxGseUQace4b2FkVOR d7LQKfRtqX8f7gotlSBGgCQRdTZamTEilChBHp4U5BFxU9ILlPPiuY8Hb7b0NbzJ Lmio9nFcmab4C/xZNa6m+FuAW/3JagurUtKM02LpfR5qc6FwK+HyojR/wh7xcNt+ hBKHXzwqZHh31BBv2+hMAh1FFFQ5WnVTSNLxg8b1Xy4eBnJipNSCst2JxUQ9GXJd +Ry2kpRjdRs8Den+85qmtkm8yZXvwsG8x5FfEOlmil8Jpy4iw5zOmjInLHKyTqoh jRofsrw= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:45 2024 by rpki-client on console-fra.rpki-client.org