$ rpki-client -vvf rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/B5A31A8E660F11EB8A1DB351C4F9AE02.roa File: B5A31A8E660F11EB8A1DB351C4F9AE02.roa (raw, json) Hash identifier: avX93lYjNGPU0QBDXZmo4QQhmDBOoggvH8lp86XWLOU= Subject key identifier: 6E:E4:80:34:3A:5B:F7:72:FA:97:97:82:09:A3:4B:44:18:FD:BE:A8 Certificate issuer: /CN=A91755F6/serialNumber=F68B86268B37DE810B968DB8F357F773E983BF6D Certificate serial: 09C3 Authority key identifier: F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/B5A31A8E660F11EB8A1DB351C4F9AE02.roa Signing time: Mon 20 May 2024 20:59:44 +0000 ROA not before: Mon 20 May 2024 20:59:44 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 1221 IP address blocks: 103.149.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.crl rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2499 (0x9c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91755F6/serialNumber=F68B86268B37DE810B968DB8F357F773E983BF6D Validity Not Before: May 20 20:59:44 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664bb9c0-0b02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:85:e9:c8:20:79:72:25:3e:0c:c9:c6:d4:58: 26:b3:dc:e6:ad:85:e3:89:e9:86:18:89:71:e6:52: 27:e8:4c:fc:4c:4b:dd:52:c0:30:57:2c:e4:50:c5: 2f:0d:46:9a:49:10:bc:7c:d9:ec:e2:02:30:24:c7: cc:05:6a:3e:98:0c:d9:54:67:61:df:2b:61:64:57: 27:db:5f:fd:bf:c2:9a:30:67:36:ef:ee:07:9e:cf: 31:a3:7e:86:7c:25:36:36:ed:a0:4e:c4:79:eb:87: 46:81:11:8f:fa:44:e6:89:23:90:2b:b6:fd:50:84: 2e:b7:72:5a:95:5d:a8:64:f5:33:cf:d2:49:68:0f: 5e:f9:0d:46:fe:c5:45:c3:86:7f:62:56:fd:ca:ef: 16:79:73:0b:eb:a6:f8:77:b0:31:34:c2:9a:c9:e1: 5c:7c:6a:f8:96:20:e1:79:44:43:9c:14:b8:c8:b4: 2c:d9:03:98:6c:6a:5f:f4:b4:18:43:1c:0a:1a:1b: 9b:f3:aa:38:62:00:83:08:77:71:72:b6:28:e0:ba: ab:b8:39:fd:6f:35:96:0d:40:e6:08:e7:b8:00:49: 49:c6:c0:78:5a:e4:0b:59:42:21:0a:a1:68:75:f6: 03:ff:91:a6:f9:ef:e4:bd:57:65:4c:74:21:40:65: ff:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E4:80:34:3A:5B:F7:72:FA:97:97:82:09:A3:4B:44:18:FD:BE:A8 X509v3 Authority Key Identifier: keyid:F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/B5A31A8E660F11EB8A1DB351C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.43.0/24 Signature Algorithm: sha256WithRSAEncryption 23:3e:aa:2f:ad:72:0e:70:e2:f5:d2:32:e5:ee:e0:57:7d:b8: 42:fa:1e:b1:de:85:03:80:c0:69:72:f8:89:56:e4:ae:1b:7b: 6b:14:63:17:8b:06:d7:2d:4e:9b:98:13:cb:25:4f:92:99:e7: 12:18:0a:d1:1a:4b:cf:b7:6b:ed:d4:4a:90:57:f0:bb:be:3d: 98:7d:aa:52:89:bf:5e:c0:6d:5a:b0:f6:9a:9d:0c:c3:f0:f4: fe:e2:28:fa:3a:61:42:38:aa:f3:7f:a5:66:72:76:19:dd:dc: 5e:e4:27:f6:5c:01:08:e7:e1:9c:d4:e8:92:a4:04:18:02:43: 27:35:73:b9:db:62:4e:dd:f5:87:02:3f:a7:f6:54:05:53:f8: cc:93:57:d2:7b:bd:10:52:6d:29:35:40:5a:1f:ff:19:a6:8d: 9e:13:5e:ec:33:a1:73:89:c7:26:a6:b9:fe:47:fa:6b:1c:9d: 90:4c:29:2f:9d:f7:ea:5d:aa:0f:be:38:ff:5c:a2:b8:b0:eb: d9:17:04:22:15:5f:85:a8:52:f0:76:bb:2a:34:11:38:5a:53: f9:a8:05:eb:dd:d0:2d:4b:48:78:2b:1b:5d:9c:31:76:6b:be: c5:eb:c5:1a:8e:fd:2d:4c:6e:22:54:88:ad:c7:7a:2a:8b:9a: 67:02:2d:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU1RjYxMTAvBgNVBAUTKEY2OEI4NjI2OEIzN0RFODEwQjk2OERCOEYzNTdGNzcz RTk4M0JGNkQwHhcNMjQwNTIwMjA1OTQ0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRiYjljMC0wYjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIXpyCB5ciU+DMnG1Fgms9zmrYXjiemGGIlx5lIn6Ez8TEvdUsAwVyzkUMUv DUaaSRC8fNns4gIwJMfMBWo+mAzZVGdh3ythZFcn21/9v8KaMGc27+4Hns8xo36G fCU2Nu2gTsR564dGgRGP+kTmiSOQK7b9UIQut3JalV2oZPUzz9JJaA9e+Q1G/sVF w4Z/Ylb9yu8WeXML66b4d7AxNMKayeFcfGr4liDheURDnBS4yLQs2QOYbGpf9LQY QxwKGhub86o4YgCDCHdxcrYo4LqruDn9bzWWDUDmCOe4AElJxsB4WuQLWUIhCqFo dfYD/5Gm+e/kvVdlTHQhQGX/XQIDAQABo4IClTCCApEwHQYDVR0OBBYEFG7kgDQ6 W/dy+peXggmjS0QY/b6oMB8GA1UdIwQYMBaAFPaLhiaLN96BC5aNuPNX93Ppg79t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTVGNi9ENjlFQUFCMjVG NjQxMUVBOUNBQTNBNjRDNEY5QUUwMi85b3VHSm9zMzNvRUxsbzI0ODFmM2MtbUR2 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlvdUdKb3MzM29FTGxvMjQ4MWYzYy1tRHYyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU1RjYvRDY5RUFBQjI1RjY0MTFFQTlDQUEzQTY0QzRGOUFFMDIvQjVBMzFBOEU2 NjBGMTFFQjhBMURCMzUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlSswDQYJKoZIhvcNAQELBQADggEBACM+qi+tcg5w4vXS MuXu4Fd9uEL6HrHehQOAwGly+IlW5K4be2sUYxeLBtctTpuYE8slT5KZ5xIYCtEa S8+3a+3USpBX8Lu+PZh9qlKJv17AbVqw9pqdDMPw9P7iKPo6YUI4qvN/pWZydhnd 3F7kJ/ZcAQjn4ZzU6JKkBBgCQyc1c7nbYk7d9YcCP6f2VAVT+MyTV9J7vRBSbSk1 QFof/xmmjZ4TXuwzoXOJxyamuf5H+mscnZBMKS+d9+pdqg++OP9coriw69kXBCIV X4WoUvB2uyo0EThaU/moBevd0C1LSHgrG12cMXZrvsXrxRqO/S1MbiJUiK3HeiqL mmcCLQ8= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:29 2024 by rpki-client on console-fra.rpki-client.org