$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/F145A4846C3E11EEA0F26B63C4F9AE02.roa File: F145A4846C3E11EEA0F26B63C4F9AE02.roa (raw, json) Hash identifier: JKRkAuL9yffO/Fe1PSsX5t/Ot6ARnJ9I/G6iI6zoO/g= Subject key identifier: D0:EE:38:BD:E9:E9:DD:E8:68:1C:83:7E:7E:CE:34:4A:14:A7:D1:46 Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 06F7 Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/F145A4846C3E11EEA0F26B63C4F9AE02.roa Signing time: Tue 18 Jun 2024 23:52:10 +0000 ROA not before: Tue 18 Jun 2024 23:52:10 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149448 IP address blocks: 103.54.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jun 18 23:52:10 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66721daa-afba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6f:15:79:d2:ed:6a:59:69:15:88:21:67:82: 44:86:11:b9:ab:ca:8c:83:83:59:c7:d3:79:6c:a3: 16:21:ce:b0:61:6d:87:15:2d:6f:7d:97:67:7e:48: 3b:d2:21:fb:91:b0:96:3e:31:9a:f0:dc:5a:09:bd: 23:3b:12:c0:19:49:57:e7:17:73:3b:d0:58:93:ae: 29:1f:fa:98:3c:51:f9:6d:12:19:65:2f:44:c0:d0: dd:45:16:28:44:b4:e9:9f:4d:ae:dc:fa:7e:bb:37: 9f:2c:84:6d:92:da:f5:00:07:11:78:ac:1f:6b:fb: ea:77:74:f4:b4:e6:ee:11:60:c0:bd:6e:ee:e5:7b: 6f:2f:ee:65:1f:26:2c:e2:52:d0:c7:27:03:52:4f: 12:20:be:13:c4:61:a9:d6:f5:8f:07:81:0a:aa:70: 03:84:0e:2d:0e:ce:05:6c:32:f2:27:7f:9f:8e:5a: 86:0a:e3:6f:2f:c9:b5:b1:3a:84:e7:f3:10:d4:b1: 23:61:f5:0e:bb:46:75:cb:92:6c:69:c5:86:82:eb: 01:65:53:40:94:52:2e:e7:df:0a:6e:4a:fd:c7:6b: dc:64:87:e6:59:39:ed:a4:a9:17:66:28:92:b7:b5: 3e:6f:9f:e9:d3:ae:ef:44:a8:48:74:ff:60:ba:33: 67:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:EE:38:BD:E9:E9:DD:E8:68:1C:83:7E:7E:CE:34:4A:14:A7:D1:46 X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/F145A4846C3E11EEA0F26B63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.152.0/24 Signature Algorithm: sha256WithRSAEncryption 35:c2:10:09:12:c0:10:2b:ca:7e:b9:09:37:01:41:c6:9e:da: 8a:7e:95:30:c2:3f:ad:98:b2:39:b8:7e:8f:59:f5:31:50:e3: 92:bf:a1:e6:f7:75:67:01:d0:13:08:b0:7b:ea:72:c8:68:29: 76:1b:81:08:b4:ff:af:a8:9c:2e:33:98:ce:90:68:71:e3:c3: 7b:ac:3b:d6:6e:99:c3:92:e7:9c:30:9d:7f:80:74:66:6a:15: ed:0a:20:af:5d:d7:2d:5c:fe:b6:c1:b6:21:27:06:eb:f9:b4: d0:df:a7:1f:6c:e2:a2:6e:b4:89:59:5f:39:a4:f7:c0:4d:46: 16:5c:42:cf:4b:05:79:7a:81:e6:0f:e0:b2:0c:f1:77:4f:1f: 65:54:a3:3e:9f:16:55:8e:77:c8:55:35:78:8e:87:c3:14:55: 13:45:52:6a:92:1d:70:00:52:ee:ba:cf:4f:e3:7d:f2:3b:1c: 40:ba:e2:9f:ac:db:8e:57:92:57:49:c4:bf:e8:9b:bb:13:cb: 3f:51:5e:cd:dc:4d:b9:68:a1:51:65:b7:b1:14:f6:0d:be:bb: 2a:f1:80:f8:13:d8:ca:da:61:0b:ab:91:72:11:aa:9a:59:ff: 7a:56:6b:3e:7f:a9:f7:a6:b8:72:93:20:c0:a5:97:20:47:73: 56:67:3a:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjQwNjE4MjM1MjEwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyMWRhYS1hZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW8VedLtallpFYghZ4JEhhG5q8qMg4NZx9N5bKMWIc6wYW2HFS1vfZdnfkg7 0iH7kbCWPjGa8NxaCb0jOxLAGUlX5xdzO9BYk64pH/qYPFH5bRIZZS9EwNDdRRYo RLTpn02u3Pp+uzefLIRtktr1AAcReKwfa/vqd3T0tObuEWDAvW7u5XtvL+5lHyYs 4lLQxycDUk8SIL4TxGGp1vWPB4EKqnADhA4tDs4FbDLyJ3+fjlqGCuNvL8m1sTqE 5/MQ1LEjYfUOu0Z1y5JsacWGgusBZVNAlFIu598Kbkr9x2vcZIfmWTntpKkXZiiS t7U+b5/p067vRKhIdP9gujNnFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNDuOL3p 6d3oaByDfn7ONEoUp9FGMB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvRjE0NUE0ODQ2 QzNFMTFFRUEwRjI2QjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnNpgwDQYJKoZIhvcNAQELBQADggEBADXCEAkSwBAryn65 CTcBQcae2op+lTDCP62Ysjm4fo9Z9TFQ45K/oeb3dWcB0BMIsHvqcshoKXYbgQi0 /6+onC4zmM6QaHHjw3usO9ZumcOS55wwnX+AdGZqFe0KIK9d1y1c/rbBtiEnBuv5 tNDfpx9s4qJutIlZXzmk98BNRhZcQs9LBXl6geYP4LIM8XdPH2VUoz6fFlWOd8hV NXiOh8MUVRNFUmqSHXAAUu66z0/jffI7HEC64p+s245XkldJxL/om7sTyz9RXs3c TblooVFlt7EU9g2+uyrxgPgT2MraYQurkXIRqppZ/3pWaz5/qfemuHKTIMCllyBH c1ZnOjA= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:45 2024 by rpki-client on console-fra.rpki-client.org