$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/308C5012BE4C11ED9598AC4EC4F9AE02.roa File: 308C5012BE4C11ED9598AC4EC4F9AE02.roa (raw, json) Hash identifier: P7lzuIcT4OJPq2KVjR4hbm4014N8PEGkbXpO5IhqpWQ= Subject key identifier: 3E:6C:75:E8:37:21:7B:6A:01:2B:E4:F7:9A:F5:DA:85:BF:A4:EF:8B Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 0722 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/308C5012BE4C11ED9598AC4EC4F9AE02.roa Signing time: Fri 02 Aug 2024 22:40:49 +0000 ROA not before: Fri 02 Aug 2024 22:40:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9311 IP address blocks: 103.154.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Aug 2 22:40:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad6071-b959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ab:08:68:02:03:13:be:98:77:bd:fc:84:ec: f9:e9:88:63:9f:d5:e8:c1:46:94:27:37:f7:18:8f: a2:5b:3e:a2:71:9f:8b:29:76:e9:af:a9:39:a9:91: df:5b:89:26:d1:b7:b7:30:3b:fc:f0:cb:0b:3b:4c: cf:ba:e9:61:0e:b5:32:68:66:fe:40:63:20:f5:f9: 92:aa:e4:01:4d:69:79:e5:2d:8e:dc:bd:b5:78:0d: 7b:28:54:bd:b0:59:bd:65:59:dd:18:0f:92:21:21: 86:75:e1:b5:4a:85:0c:ac:54:dc:b5:ab:78:fa:21: e2:72:e1:e2:61:2e:ba:3b:97:4c:24:b7:9d:09:c8: 66:12:84:cc:c3:a2:2d:2b:ab:21:51:4b:84:98:20: b7:f6:c9:7f:38:12:29:99:49:e4:5f:ce:b4:e8:ef: 96:7f:09:e5:0b:01:3a:be:0c:f3:b7:e9:10:66:44: 67:a6:cd:a2:78:1a:fd:94:87:a3:2e:ec:05:12:56: 0f:39:78:6d:c3:5a:88:b2:21:14:7f:fd:db:04:94: 21:f4:51:13:1b:aa:2f:25:b9:3e:12:86:63:02:1e: 0a:09:12:10:76:51:dc:c1:28:bb:54:06:67:4d:c0: c9:92:74:af:1c:74:27:f5:4e:95:55:f6:55:f3:d4: 77:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:6C:75:E8:37:21:7B:6A:01:2B:E4:F7:9A:F5:DA:85:BF:A4:EF:8B X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/308C5012BE4C11ED9598AC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.20.0/24 Signature Algorithm: sha256WithRSAEncryption 10:dd:46:dd:c3:4c:41:6b:8a:0a:25:16:91:48:4a:ba:7a:63: af:b4:53:77:ee:ad:5a:48:3b:d5:5f:04:70:b5:0d:4a:39:20: 5d:62:57:b8:5c:ad:4f:cf:10:dd:3b:58:0b:8b:7b:f9:48:b1: 39:cb:91:9a:2e:b8:92:ec:1f:cb:f4:b1:47:56:01:d1:e8:5d: 1e:53:df:06:59:12:a1:be:42:6b:05:31:33:77:74:ab:5f:70: f7:24:4b:d4:92:f3:43:ce:54:af:7d:0b:d5:a8:92:31:81:09: 9b:6a:2e:b0:1c:a0:a1:62:1a:17:d3:b4:8a:2c:4c:86:14:f5: 89:67:ee:c2:70:1a:81:65:24:e8:00:18:3b:24:13:d6:6d:10: a6:6f:00:f4:fe:1a:1e:a1:eb:44:20:56:d6:c6:24:3a:44:8e: ca:51:ce:0b:6d:0e:5e:1c:d9:e1:ff:fb:1d:01:fe:5b:50:ef: c6:51:73:2c:da:0f:09:5e:d2:b6:89:bc:1f:d8:0a:5d:2b:79: 82:fe:8e:51:ab:21:fd:6b:fe:53:e5:a3:1b:4f:2a:11:dd:50: b8:86:5e:be:59:a5:36:e7:47:43:24:ea:fd:67:a6:00:e7:ab: a0:63:f3:05:72:b3:86:8a:e3:c6:bc:7c:ef:9a:c8:76:d2:cb: 66:5f:50:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjQwODAyMjI0MDQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkNjA3MS1iOTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1asIaAIDE76Yd738hOz56Yhjn9XowUaUJzf3GI+iWz6icZ+LKXbpr6k5qZHf W4km0be3MDv88MsLO0zPuulhDrUyaGb+QGMg9fmSquQBTWl55S2O3L21eA17KFS9 sFm9ZVndGA+SISGGdeG1SoUMrFTctat4+iHicuHiYS66O5dMJLedCchmEoTMw6It K6shUUuEmCC39sl/OBIpmUnkX8606O+WfwnlCwE6vgzzt+kQZkRnps2ieBr9lIej LuwFElYPOXhtw1qIsiEUf/3bBJQh9FETG6ovJbk+EoZjAh4KCRIQdlHcwSi7VAZn TcDJknSvHHQn9U6VVfZV89R36QIDAQABo4IClTCCApEwHQYDVR0OBBYEFD5sdeg3 IXtqASvk95r12oW/pO+LMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQxRTkvREFEOEZCODAwNzkwMTFFQkJCOThDMDc2QzRGOUFFMDIvMzA4QzUwMTJC RTRDMTFFRDk1OThBQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmhQwDQYJKoZIhvcNAQELBQADggEBABDdRt3DTEFrigol FpFISrp6Y6+0U3furVpIO9VfBHC1DUo5IF1iV7hcrU/PEN07WAuLe/lIsTnLkZou uJLsH8v0sUdWAdHoXR5T3wZZEqG+QmsFMTN3dKtfcPckS9SS80POVK99C9WokjGB CZtqLrAcoKFiGhfTtIosTIYU9Yln7sJwGoFlJOgAGDskE9ZtEKZvAPT+Gh6h60Qg VtbGJDpEjspRzgttDl4c2eH/+x0B/ltQ78ZRcyzaDwle0raJvB/YCl0reYL+jlGr If1r/lPloxtPKhHdULiGXr5ZpTbnR0Mk6v1npgDnq6Bj8wVys4aK48a8fO+ayHbS y2ZfUAA= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org