$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCB4/3A7AD3B2E38611EA9FA23A36C4F9AE02/D5E920EC194A11EC83D2C21FC4F9AE02.roa File: D5E920EC194A11EC83D2C21FC4F9AE02.roa (raw, json) Hash identifier: cmaiEU/dqmVQrpTCo/qIiMDiynarYKTuA5D+uHv2d3g= Subject key identifier: D1:67:79:89:B1:75:36:FA:FE:6E:16:55:09:6F:3E:8A:3D:C4:40:B8 Certificate issuer: /CN=A918FCB4/serialNumber=DCE6227C0547C00AEC65C5E680F61793F49D5583 Certificate serial: 0797 Authority key identifier: DC:E6:22:7C:05:47:C0:0A:EC:65:C5:E6:80:F6:17:93:F4:9D:55:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3OYifAVHwArsZcXmgPYXk_SdVYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FCB4/3A7AD3B2E38611EA9FA23A36C4F9AE02/D5E920EC194A11EC83D2C21FC4F9AE02.roa Signing time: Thu 31 Oct 2024 21:10:57 +0000 ROA not before: Thu 31 Oct 2024 21:10:57 +0000 ROA not after: Sat 01 Mar 2025 00:00:00 +0000 asID: 137491 IP address blocks: 103.154.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FCB4/3A7AD3B2E38611EA9FA23A36C4F9AE02/3OYifAVHwArsZcXmgPYXk_SdVYM.crl rsync://rpki.apnic.net/member_repository/A918FCB4/3A7AD3B2E38611EA9FA23A36C4F9AE02/3OYifAVHwArsZcXmgPYXk_SdVYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3OYifAVHwArsZcXmgPYXk_SdVYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1943 (0x797) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FCB4/serialNumber=DCE6227C0547C00AEC65C5E680F61793F49D5583 Validity Not Before: Oct 31 21:10:57 2024 GMT Not After : Mar 1 00:00:00 2025 GMT Subject: CN=6723f261-54ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9b:e3:62:82:41:83:7c:a4:6b:4f:e1:8e:45: fa:ab:ed:52:d8:7b:05:1e:3f:4d:7d:12:93:3b:77: 70:ab:7e:30:b7:78:60:ae:d1:97:f3:23:e5:6b:64: 37:b7:33:a0:d9:e9:a8:48:16:bb:d7:46:df:62:f0: ab:46:84:79:1d:a4:e3:bc:dd:fb:31:7e:61:9c:ed: 60:b9:21:b8:69:1f:6e:1c:e4:17:a5:2c:2f:5e:c7: fa:a4:df:a3:ac:bf:7b:9b:c6:a3:3d:a3:1f:c6:fb: a3:0b:a6:b0:be:b7:42:31:7c:ed:94:52:7b:ef:c0: 5d:c5:2f:c9:aa:c0:85:76:78:11:1c:3d:02:ff:d4: 11:e2:44:bf:53:c4:0f:21:e0:9b:5e:5a:ca:e3:fb: 1c:d8:e8:00:94:e2:6d:03:20:34:69:f8:fe:06:a2: d5:08:4e:f5:c2:18:a4:be:ed:df:a1:36:4e:a7:03: 2e:54:94:95:d6:67:30:a7:ad:df:ca:67:30:7c:ce: 1b:e5:a4:3a:e4:5a:38:e3:a8:e5:c9:b8:e7:28:39: d7:2c:56:10:45:cd:60:99:97:cb:93:9a:c9:9e:cb: b7:fb:aa:63:d6:d0:9e:09:c1:4a:a4:c6:16:61:91: 2c:3c:86:3e:db:fe:5b:e5:39:99:06:e7:4a:85:cd: 59:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:67:79:89:B1:75:36:FA:FE:6E:16:55:09:6F:3E:8A:3D:C4:40:B8 X509v3 Authority Key Identifier: keyid:DC:E6:22:7C:05:47:C0:0A:EC:65:C5:E6:80:F6:17:93:F4:9D:55:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FCB4/3A7AD3B2E38611EA9FA23A36C4F9AE02/3OYifAVHwArsZcXmgPYXk_SdVYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3OYifAVHwArsZcXmgPYXk_SdVYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCB4/3A7AD3B2E38611EA9FA23A36C4F9AE02/D5E920EC194A11EC83D2C21FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.236.0/23 Signature Algorithm: sha256WithRSAEncryption 97:3f:fc:9b:00:34:75:f2:62:48:79:02:12:08:51:b0:ef:e6: 1d:c6:be:98:ab:90:df:1a:31:59:bf:ec:09:29:db:ed:a4:d4: d5:19:f5:36:28:5a:a1:d5:df:57:4c:c8:93:47:68:16:5b:e4: 98:25:61:cc:ea:8e:37:f8:47:d5:c5:a4:76:ee:1a:c5:cc:a8: fc:88:bd:9c:9f:e1:19:a3:60:84:dd:39:0e:20:8c:d4:97:92: 05:f0:6d:7f:60:1f:2e:c3:3a:e9:5e:dc:91:f0:72:70:45:7d: 1d:4d:98:4e:30:70:2b:05:d0:13:45:b7:4f:60:18:f4:56:0e: ad:c3:7a:71:39:02:94:b7:61:bd:b9:fd:d6:3d:85:1b:64:b8: 35:42:d8:b0:ec:50:12:0c:eb:52:5b:b0:98:84:b4:08:b1:64: 09:5b:8a:3e:37:ca:00:e0:1e:de:b0:40:b9:c9:8e:d8:9d:fd: 62:80:6d:b7:bb:f4:e6:ae:d2:b8:5e:e1:72:b7:15:c2:61:4f: 4c:0e:33:1e:64:ac:0f:f2:d4:df:fa:1d:10:79:63:fa:09:66: b3:d8:a6:c5:9f:fd:56:70:90:90:bf:72:b9:55:b0:0f:57:b3: 6b:86:a6:aa:30:2b:a1:15:68:a4:72:25:71:1c:66:b2:e7:43: 2e:0c:4f:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDQjQxMTAvBgNVBAUTKERDRTYyMjdDMDU0N0MwMEFFQzY1QzVFNjgwRjYxNzkz RjQ5RDU1ODMwHhcNMjQxMDMxMjExMDU3WhcNMjUwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIzZjI2MS01NGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZvjYoJBg3yka0/hjkX6q+1S2HsFHj9NfRKTO3dwq34wt3hgrtGX8yPla2Q3 tzOg2emoSBa710bfYvCrRoR5HaTjvN37MX5hnO1guSG4aR9uHOQXpSwvXsf6pN+j rL97m8ajPaMfxvujC6awvrdCMXztlFJ778BdxS/JqsCFdngRHD0C/9QR4kS/U8QP IeCbXlrK4/sc2OgAlOJtAyA0afj+BqLVCE71whikvu3foTZOpwMuVJSV1mcwp63f ymcwfM4b5aQ65Fo446jlybjnKDnXLFYQRc1gmZfLk5rJnsu3+6pj1tCeCcFKpMYW YZEsPIY+2/5b5TmZBudKhc1ZvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNFneYmx dTb6/m4WVQlvPoo9xEC4MB8GA1UdIwQYMBaAFNzmInwFR8AK7GXF5oD2F5P0nVWD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNCNC8zQTdBRDNCMkUz ODYxMUVBOUZBMjNBMzZDNEY5QUUwMi8zT1lpZkFWSHdBcnNaY1htZ1BZWGtfU2RW WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNPWWlmQVZId0Fyc1pjWG1nUFlYa19TZFZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDQjQvM0E3QUQzQjJFMzg2MTFFQTlGQTIzQTM2QzRGOUFFMDIvRDVFOTIwRUMx OTRBMTFFQzgzRDJDMjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmuwwDQYJKoZIhvcNAQELBQADggEBAJc//JsANHXyYkh5 AhIIUbDv5h3GvpirkN8aMVm/7Akp2+2k1NUZ9TYoWqHV31dMyJNHaBZb5JglYczq jjf4R9XFpHbuGsXMqPyIvZyf4RmjYITdOQ4gjNSXkgXwbX9gHy7DOule3JHwcnBF fR1NmE4wcCsF0BNFt09gGPRWDq3DenE5ApS3Yb25/dY9hRtkuDVC2LDsUBIM61Jb sJiEtAixZAlbij43ygDgHt6wQLnJjtid/WKAbbe79Oau0rhe4XK3FcJhT0wOMx5k rA/y1N/6HRB5Y/oJZrPYpsWf/VZwkJC/crlVsA9Xs2uGpqowK6EVaKRyJXEcZrLn Qy4MT+k= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org