$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1630/15274F0E114111EF8F17870FC4F9AE02/18141426114211EFA0FF3956C4F9AE02.roa File: 18141426114211EFA0FF3956C4F9AE02.roa (raw, json) Hash identifier: wOKkXFecaGXCjByRcpDkGbc7Cdo2VuRpcxeBnTZ+uS0= Subject key identifier: FF:25:FD:FA:24:78:CF:67:BE:26:DD:37:E5:96:F2:CC:BC:70:78:8C Certificate issuer: /CN=A91A1630/serialNumber=50E8F04B9008FEA1E5C31F64E763DADED253A60C Certificate serial: 04 Authority key identifier: 50:E8:F0:4B:90:08:FE:A1:E5:C3:1F:64:E7:63:DA:DE:D2:53:A6:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOjwS5AI_qHlwx9k52Pa3tJTpgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1630/15274F0E114111EF8F17870FC4F9AE02/18141426114211EFA0FF3956C4F9AE02.roa Signing time: Mon 13 May 2024 16:06:08 +0000 ROA not before: Mon 13 May 2024 16:06:08 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152850 IP address blocks: 103.154.192.0/23 maxlen: 23 103.154.192.0/24 maxlen: 24 103.154.193.0/24 maxlen: 24 2001:df3:cc40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1630/15274F0E114111EF8F17870FC4F9AE02/UOjwS5AI_qHlwx9k52Pa3tJTpgw.crl rsync://rpki.apnic.net/member_repository/A91A1630/15274F0E114111EF8F17870FC4F9AE02/UOjwS5AI_qHlwx9k52Pa3tJTpgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOjwS5AI_qHlwx9k52Pa3tJTpgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 05:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1630/serialNumber=50E8F04B9008FEA1E5C31F64E763DADED253A60C Validity Not Before: May 13 16:06:08 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66423a70-5a64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:41:f6:1b:d4:d0:49:4d:4c:a1:aa:a4:c1:8b: 81:82:22:3b:b9:cd:b4:4e:2f:fc:c5:e5:c3:1b:55: 6b:7c:78:a1:30:f7:35:81:18:42:6a:64:f7:7e:b8: 1e:dc:13:7d:21:7f:3c:44:0d:fd:16:f9:69:53:83: ee:4b:3a:a9:e3:6f:c8:75:3f:cc:f7:2b:ea:2c:2a: 0c:f5:85:c6:c7:a5:e7:3a:8f:c9:e1:ae:ad:b7:af: f3:ab:65:a2:0c:bc:48:38:f9:75:7a:9b:b5:74:3a: 7f:28:de:9e:5f:20:9e:eb:59:68:70:5d:3c:a7:f4: dd:45:bf:c7:25:69:fe:02:e3:0f:c5:46:9d:07:f9: 95:ed:36:88:5a:b5:fa:84:c7:7a:cd:bd:ae:cb:a1: 60:78:e9:fe:c4:b2:30:51:f3:a2:82:a9:17:b0:6e: 21:c0:2d:d8:d6:09:cb:39:e8:f0:33:03:bf:4e:f7: 5e:e4:de:7f:cd:96:6c:8c:f6:bc:08:a6:5c:5f:7b: fa:2b:5f:0c:43:f5:53:5d:4f:71:f0:5b:a4:c2:8b: 68:80:33:0b:4d:d1:8d:a9:12:28:3c:76:e6:6e:0f: 74:c1:44:1a:ce:d8:79:d9:d5:0c:3f:30:3c:8d:fc: f6:8f:3c:2c:93:e5:9d:a3:05:63:f2:2e:38:12:d1: f9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:25:FD:FA:24:78:CF:67:BE:26:DD:37:E5:96:F2:CC:BC:70:78:8C X509v3 Authority Key Identifier: keyid:50:E8:F0:4B:90:08:FE:A1:E5:C3:1F:64:E7:63:DA:DE:D2:53:A6:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1630/15274F0E114111EF8F17870FC4F9AE02/UOjwS5AI_qHlwx9k52Pa3tJTpgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOjwS5AI_qHlwx9k52Pa3tJTpgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1630/15274F0E114111EF8F17870FC4F9AE02/18141426114211EFA0FF3956C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.192.0/23 IPv6: 2001:df3:cc40::/48 Signature Algorithm: sha256WithRSAEncryption c0:fe:6b:83:38:45:96:a7:37:ae:83:59:c6:e0:2c:28:2e:59: 1d:b6:e0:e7:b9:c9:f4:18:ac:be:7b:e3:da:cf:75:26:56:4f: dc:e8:38:a4:1e:4e:a3:06:45:99:2e:d7:ba:ce:b0:09:f9:00: 68:c7:8e:d8:a5:ed:23:29:49:58:92:37:5d:57:67:f7:e0:63: a1:02:76:13:5e:a5:ba:a8:cb:5a:56:d7:9f:f9:58:e3:2b:53: 9c:f6:7f:f7:36:30:36:e7:bb:65:a1:a2:38:81:95:f8:be:75: 8b:ac:61:01:f7:8e:3d:7b:ae:cb:60:87:3f:e0:6d:56:0e:5a: 4a:cc:5a:a1:29:d5:08:87:27:af:60:ea:cf:e7:dd:2a:9d:39: 6f:b5:0b:4f:bd:2f:0d:77:51:dd:e9:8a:43:19:59:64:90:d0: 05:14:0c:7a:50:30:ac:b1:3e:82:91:23:03:0b:7b:bd:64:d8: 8b:31:fc:35:9c:77:67:75:cb:b7:76:b7:65:d1:78:3b:70:62: 19:18:18:11:d4:d0:c4:0e:4a:d6:85:37:65:cf:d7:bc:9f:bf: 07:f9:46:99:09:80:a7:77:6b:ad:a7:03:0c:c4:88:49:94:4e: f9:2b:bf:0c:94:d1:83:fc:0b:ee:a8:80:c9:57:eb:9b:bc:24: ce:41:1c:fb -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTYzMDExMC8GA1UEBRMoNTBFOEYwNEI5MDA4RkVBMUU1QzMxRjY0RTc2M0RBREVE MjUzQTYwQzAeFw0yNDA1MTMxNjA2MDhaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDIzYTcwLTVhNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvQfYb1NBJTUyhqqTBi4GCIju5zbROL/zF5cMbVWt8eKEw9zWBGEJqZPd+uB7c E30hfzxEDf0W+WlTg+5LOqnjb8h1P8z3K+osKgz1hcbHpec6j8nhrq23r/OrZaIM vEg4+XV6m7V0On8o3p5fIJ7rWWhwXTyn9N1Fv8claf4C4w/FRp0H+ZXtNohatfqE x3rNva7LoWB46f7EsjBR86KCqRewbiHALdjWCcs56PAzA79O917k3n/NlmyM9rwI plxfe/orXwxD9VNdT3HwW6TCi2iAMwtN0Y2pEig8duZuD3TBRBrO2HnZ1Qw/MDyN /PaPPCyT5Z2jBWPyLjgS0fknAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU/yX9+iR4 z2e+Jt035ZbyzLxweIwwHwYDVR0jBBgwFoAUUOjwS5AI/qHlwx9k52Pa3tJTpgww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExNjMwLzE1Mjc0RjBFMTE0 MTExRUY4RjE3ODcwRkM0RjlBRTAyL1VPandTNUFJX3FIbHd4OWs1MlBhM3RKVHBn dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVU9qd1M1QUlfcUhsd3g5azUyUGEzdEpUcGd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTYzMC8xNTI3NEYwRTExNDExMUVGOEYxNzg3MEZDNEY5QUUwMi8xODE0MTQyNjEx NDIxMUVGQTBGRjM5NTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeawDAPBAIAAjAJAwcAIAEN88xAMA0GCSqGSIb3DQEBCwUA A4IBAQDA/muDOEWWpzeug1nG4CwoLlkdtuDnucn0GKy+e+Paz3UmVk/c6DikHk6j BkWZLte6zrAJ+QBox47Ype0jKUlYkjddV2f34GOhAnYTXqW6qMtaVtef+VjjK1Oc 9n/3NjA257tloaI4gZX4vnWLrGEB9449e67LYIc/4G1WDlpKzFqhKdUIhyevYOrP 590qnTlvtQtPvS8Nd1Hd6YpDGVlkkNAFFAx6UDCssT6CkSMDC3u9ZNiLMfw1nHdn dcu3drdl0Xg7cGIZGBgR1NDEDkrWhTdlz9e8n78H+UaZCYCnd2utpwMMxIhJlE75 K78MlNGD/AvuqIDJV+ubvCTOQRz7 -----END CERTIFICATE-----Generated at Thu Oct 17 08:06:24 2024 by rpki-client on console-ams.rpki-client.org