$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/F145A4846C3E11EEA0F26B63C4F9AE02.roa File: F145A4846C3E11EEA0F26B63C4F9AE02.roa (raw, json) Hash identifier: poFmJ0FtSdjknkvhbTPMxSLNtd422YdP9YDzIcZoH4g= Subject key identifier: 5B:45:9D:4C:B4:29:2E:FB:46:95:A8:28:F1:5C:C3:5B:AC:9F:1C:E1 Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 0661 Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/F145A4846C3E11EEA0F26B63C4F9AE02.roa Signing time: Mon 16 Oct 2023 16:13:29 +0000 ROA not before: Mon 16 Oct 2023 16:13:29 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 149448 IP address blocks: 103.54.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 23:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Oct 16 16:13:29 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=652d6128-4b77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0c:38:ea:95:83:5f:ce:f7:09:dd:88:1a:46: 11:fa:56:32:1e:c2:01:62:2a:51:ae:da:06:99:37: 58:c6:c7:d4:63:43:e4:0f:27:ef:6b:14:85:c3:cf: d2:f8:7b:6a:7a:81:6c:9f:99:4c:f1:6a:f1:cc:3f: ca:4c:94:b3:7c:87:30:73:84:3f:e2:bf:49:54:3d: b1:f1:40:be:3b:69:6b:52:a2:44:79:24:8c:e1:86: b5:a3:09:a0:0b:64:19:01:98:12:b9:1f:33:8c:63: d9:17:03:d6:0f:ef:59:12:74:99:e9:39:36:20:ed: 2c:95:3b:83:c7:b8:ff:4f:1b:4b:0a:0e:46:61:e0: cc:89:a9:5e:0f:66:44:6b:af:ae:16:06:0e:42:02: d1:9e:20:69:0f:78:a2:23:07:4e:81:28:11:c1:89: 39:66:85:62:40:57:4b:f5:13:00:d0:a5:27:8e:b6: b9:b5:e2:80:04:29:dd:bb:45:67:41:15:d4:24:5c: 91:5b:53:bf:df:20:07:7a:ce:a6:f2:1f:d1:a0:e8: e9:6a:e1:df:8a:02:d5:36:66:fb:25:41:25:c0:cc: 18:e3:ed:f9:6a:2e:5f:f7:4c:e9:94:f3:7c:6a:24: 48:36:35:74:fd:00:53:8a:a0:d7:1d:42:83:c8:20: 55:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:45:9D:4C:B4:29:2E:FB:46:95:A8:28:F1:5C:C3:5B:AC:9F:1C:E1 X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/F145A4846C3E11EEA0F26B63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.152.0/24 Signature Algorithm: sha256WithRSAEncryption a3:ab:63:0a:1e:33:49:78:d2:aa:fc:9c:fc:38:25:f8:0f:08: d0:33:9a:90:d3:16:52:ff:66:8e:1c:3b:25:46:af:02:f4:72: fa:a1:71:59:09:d0:b0:a7:1d:b6:ba:3a:f7:3a:5d:63:68:e2: 96:77:93:d6:d1:53:4b:b0:82:ac:b8:7d:68:e2:93:46:98:22: 0c:74:16:0e:18:c1:5f:73:51:01:4c:e1:55:fc:39:11:87:6a: 46:45:1b:14:2e:2e:92:bf:bc:86:30:0a:4d:bb:15:3f:13:24: b8:23:f4:c1:b4:77:96:bf:82:27:cc:c3:b0:48:4d:38:b5:6d: ce:2a:b5:60:ba:89:46:c2:f3:d9:b8:9a:d6:73:6d:10:d3:33: f8:94:eb:6f:da:2b:0c:8a:86:d1:55:53:2d:e6:7a:18:e6:d8: e1:0a:a2:f9:f9:c9:5e:c7:72:cb:9d:06:c6:aa:d3:ba:cb:19: 81:7a:2a:af:29:76:c6:58:b5:3c:19:57:5d:ee:37:c8:06:8d: 56:85:d2:35:03:98:7a:6c:0e:05:f5:ae:de:d2:92:b3:c8:56: 32:99:e5:25:d9:56:d4:94:38:bb:37:62:54:1d:19:56:bf:7d: f9:82:29:4e:74:4c:41:3a:26:4b:a5:0a:db:fe:f7:97:24:e9: 6d:5c:b5:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjMxMDE2MTYxMzI5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkNjEyOC00Yjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gw46pWDX873Cd2IGkYR+lYyHsIBYipRrtoGmTdYxsfUY0PkDyfvaxSFw8/S +HtqeoFsn5lM8WrxzD/KTJSzfIcwc4Q/4r9JVD2x8UC+O2lrUqJEeSSM4Ya1owmg C2QZAZgSuR8zjGPZFwPWD+9ZEnSZ6Tk2IO0slTuDx7j/TxtLCg5GYeDMialeD2ZE a6+uFgYOQgLRniBpD3iiIwdOgSgRwYk5ZoViQFdL9RMA0KUnjra5teKABCndu0Vn QRXUJFyRW1O/3yAHes6m8h/RoOjpauHfigLVNmb7JUElwMwY4+35ai5f90zplPN8 aiRINjV0/QBTiqDXHUKDyCBVNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFtFnUy0 KS77RpWoKPFcw1usnxzhMB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvRjE0NUE0ODQ2 QzNFMTFFRUEwRjI2QjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnNpgwDQYJKoZIhvcNAQELBQADggEBAKOrYwoeM0l40qr8 nPw4JfgPCNAzmpDTFlL/Zo4cOyVGrwL0cvqhcVkJ0LCnHba6Ovc6XWNo4pZ3k9bR U0uwgqy4fWjik0aYIgx0Fg4YwV9zUQFM4VX8ORGHakZFGxQuLpK/vIYwCk27FT8T JLgj9MG0d5a/gifMw7BITTi1bc4qtWC6iUbC89m4mtZzbRDTM/iU62/aKwyKhtFV Uy3mehjm2OEKovn5yV7HcsudBsaq07rLGYF6Kq8pdsZYtTwZV13uN8gGjVaF0jUD mHpsDgX1rt7SkrPIVjKZ5SXZVtSUOLs3YlQdGVa/ffmCKU50TEE6JkulCtv+95ck 6W1ctZE= -----END CERTIFICATE-----Generated at Wed May 15 02:26:54 2024 by rpki-client on console-fra.rpki-client.org