$ rpki-client -vvf rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/D661BF1821E111EB85E9C824C4F9AE02.roa File: D661BF1821E111EB85E9C824C4F9AE02.roa (raw, json) Hash identifier: VaYW5XVqy5zl5lpqnEYWS9FtMV51Bf/m8xOkw2cjG0Y= Subject key identifier: B1:86:F8:E5:1B:03:48:74:01:29:AB:71:96:44:A2:8F:5B:38:7D:D0 Certificate issuer: /CN=A919F207/serialNumber=E73A79440444FE34C310F784894C4AB21EACAA04 Certificate serial: 0804 Authority key identifier: E7:3A:79:44:04:44:FE:34:C3:10:F7:84:89:4C:4A:B2:1E:AC:AA:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zp5RARE_jTDEPeEiUxKsh6sqgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/D661BF1821E111EB85E9C824C4F9AE02.roa Signing time: Wed 28 Aug 2024 21:39:46 +0000 ROA not before: Wed 28 Aug 2024 21:39:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135386 IP address blocks: 103.153.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/5zp5RARE_jTDEPeEiUxKsh6sqgQ.crl rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/5zp5RARE_jTDEPeEiUxKsh6sqgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zp5RARE_jTDEPeEiUxKsh6sqgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2052 (0x804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F207/serialNumber=E73A79440444FE34C310F784894C4AB21EACAA04 Validity Not Before: Aug 28 21:39:46 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cf9921-49ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c0:f5:21:18:14:38:f9:99:75:37:09:e7:57: fb:0c:6e:35:47:57:68:86:ed:a6:99:f2:5d:69:31: 00:77:2e:78:30:a0:32:f0:7a:44:3a:08:40:82:71: 9c:ee:5d:e7:ae:65:7f:c3:29:8d:94:8b:7a:ef:f2: 5b:43:35:b7:1f:61:f0:25:e6:d8:0e:29:fe:3a:98: f3:b2:17:ba:f0:22:31:00:a8:8c:a4:0c:6e:43:ff: 38:b9:93:8c:d0:2e:16:5b:6f:9d:73:f9:84:e0:50: d9:13:f8:9c:67:25:b4:f4:70:08:d8:05:af:b2:78: 7c:4d:8f:93:96:00:2c:10:02:9e:6e:02:60:a2:2f: b5:e2:16:db:4c:e0:2d:5b:9e:74:a0:af:c6:d0:aa: 76:ae:b8:43:35:f7:e5:27:b0:68:b7:d0:9f:82:b7: 81:e5:a0:80:27:79:0e:2d:bb:f3:83:65:da:ee:55: c2:72:fc:52:09:23:36:ab:91:ed:d2:9f:48:dc:40: ad:57:15:2b:9a:17:91:2e:06:46:56:5e:94:55:26: fb:b9:30:ac:53:f7:f7:6e:cd:b5:a1:53:19:63:6f: 17:f1:cd:42:4d:9e:26:48:36:f9:e4:7b:2b:38:ab: f9:3c:d5:eb:87:9c:33:81:65:79:be:e4:a6:27:17: a0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:86:F8:E5:1B:03:48:74:01:29:AB:71:96:44:A2:8F:5B:38:7D:D0 X509v3 Authority Key Identifier: keyid:E7:3A:79:44:04:44:FE:34:C3:10:F7:84:89:4C:4A:B2:1E:AC:AA:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/5zp5RARE_jTDEPeEiUxKsh6sqgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zp5RARE_jTDEPeEiUxKsh6sqgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/D661BF1821E111EB85E9C824C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.36.0/23 Signature Algorithm: sha256WithRSAEncryption 61:ae:fa:6f:f8:e7:9f:13:54:f9:de:e4:0c:ee:7e:f4:dd:55: ad:7f:4e:27:29:b5:d8:00:36:dd:b6:75:64:a3:83:f1:35:aa: be:36:e8:a9:19:49:72:6e:13:74:77:a4:47:f0:10:a0:d5:93: 11:e0:20:6d:dc:be:4e:f7:50:45:f1:8c:78:bf:07:19:bd:97: 4d:bd:62:f3:50:3c:1b:df:dc:19:13:21:6f:bf:41:63:ea:53: f7:c0:07:a4:bc:86:49:54:ef:63:54:d5:34:69:08:90:24:fa: da:b9:58:ac:ae:81:4f:be:0d:ca:3e:1f:4d:01:e0:cf:8d:3a: b6:f1:93:e1:45:ac:55:27:cf:90:ba:4d:2f:12:52:10:73:ee: 82:79:94:ce:9a:98:50:a1:25:d8:d2:97:0e:38:af:45:72:c0: 6f:57:7f:5b:5e:d9:7e:b0:00:e5:36:a2:da:76:b0:18:a8:af: b6:2e:9e:cd:a8:c5:20:8a:b1:b2:b8:e6:de:26:c9:cc:f5:a1: 0d:8c:e0:02:f8:d8:47:f7:32:6c:b5:b1:4f:43:de:4c:a3:79: 49:71:4d:51:bc:80:a4:63:0d:eb:3a:ce:51:d6:b1:35:96:d2: 5c:be:33:41:6e:ea:d6:ca:66:ec:3e:f7:cb:8a:38:18:c3:f2: 37:f3:ff:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYyMDcxMTAvBgNVBAUTKEU3M0E3OTQ0MDQ0NEZFMzRDMzEwRjc4NDg5NEM0QUIy MUVBQ0FBMDQwHhcNMjQwODI4MjEzOTQ2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNmOTkyMS00OWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcD1IRgUOPmZdTcJ51f7DG41R1dohu2mmfJdaTEAdy54MKAy8HpEOghAgnGc 7l3nrmV/wymNlIt67/JbQzW3H2HwJebYDin+Opjzshe68CIxAKiMpAxuQ/84uZOM 0C4WW2+dc/mE4FDZE/icZyW09HAI2AWvsnh8TY+TlgAsEAKebgJgoi+14hbbTOAt W550oK/G0Kp2rrhDNfflJ7Bot9CfgreB5aCAJ3kOLbvzg2Xa7lXCcvxSCSM2q5Ht 0p9I3ECtVxUrmheRLgZGVl6UVSb7uTCsU/f3bs21oVMZY28X8c1CTZ4mSDb55Hsr OKv5PNXrh5wzgWV5vuSmJxegjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLGG+OUb A0h0ASmrcZZEoo9bOH3QMB8GA1UdIwQYMBaAFOc6eUQERP40wxD3hIlMSrIerKoE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjIwNy8xMkYyQ0MwQUMy NjExMUVBOTg2RUVGNDFDNEY5QUUwMi81enA1UkFSRV9qVERFUGVFaVV4S3NoNnNx Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV6cDVSQVJFX2pUREVQZUVpVXhLc2g2c3FnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYyMDcvMTJGMkNDMEFDMjYxMTFFQTk4NkVFRjQxQzRGOUFFMDIvRDY2MUJGMTgy MUUxMTFFQjg1RTlDODI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmSQwDQYJKoZIhvcNAQELBQADggEBAGGu+m/4558TVPne 5AzufvTdVa1/TicptdgANt22dWSjg/E1qr426KkZSXJuE3R3pEfwEKDVkxHgIG3c vk73UEXxjHi/Bxm9l029YvNQPBvf3BkTIW+/QWPqU/fAB6S8hklU72NU1TRpCJAk +tq5WKyugU++Dco+H00B4M+NOrbxk+FFrFUnz5C6TS8SUhBz7oJ5lM6amFChJdjS lw44r0VywG9Xf1te2X6wAOU2otp2sBior7Yuns2oxSCKsbK45t4mycz1oQ2M4AL4 2Ef3Mmy1sU9D3kyjeUlxTVG8gKRjDes6zlHWsTWW0ly+M0Fu6tbKZuw+98uKOBjD 8jfz//U= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:43 2024 by rpki-client on console-fra.rpki-client.org