$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/B3C41A60DD1B11EAAC9A0915C4F9AE02.roa File: B3C41A60DD1B11EAAC9A0915C4F9AE02.roa (raw, json) Hash identifier: BSpXz+Luvr8+353VTfwHRvV86BxwUFFmKEnBxGibaBk= Subject key identifier: 93:49:F3:59:E2:33:E9:0C:84:5D:27:2E:10:9C:00:36:4A:FC:F4:E3 Certificate issuer: /CN=A91A4543/serialNumber=FBC18144AED8A89D760D5D5E2DED8C38F31E59E0 Certificate serial: 075C Authority key identifier: FB:C1:81:44:AE:D8:A8:9D:76:0D:5D:5E:2D:ED:8C:38:F3:1E:59:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8GBRK7YqJ12DV1eLe2MOPMeWeA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/B3C41A60DD1B11EAAC9A0915C4F9AE02.roa Signing time: Tue 18 Jun 2024 23:00:01 +0000 ROA not before: Tue 18 Jun 2024 23:00:01 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140924 IP address blocks: 103.152.78.0/24 maxlen: 24 2001:df3:ff80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/-8GBRK7YqJ12DV1eLe2MOPMeWeA.crl rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/-8GBRK7YqJ12DV1eLe2MOPMeWeA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8GBRK7YqJ12DV1eLe2MOPMeWeA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1884 (0x75c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4543/serialNumber=FBC18144AED8A89D760D5D5E2DED8C38F31E59E0 Validity Not Before: Jun 18 23:00:01 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66721171-cbac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:26:ac:ae:dd:54:a4:94:20:f0:de:6c:f4:72: e7:60:57:b5:e0:28:1e:3e:42:2e:fb:84:4f:c7:7d: 89:8a:67:04:cc:9c:20:68:e6:13:c7:06:1b:15:9d: 0c:d2:2b:38:bb:12:3d:bb:c8:43:1e:32:3f:33:44: d3:54:41:1e:12:f9:4d:dd:48:11:4d:ad:5a:5a:15: ea:0d:11:8c:21:63:fd:69:d3:32:63:a2:b6:1e:6b: a9:d5:94:0d:ba:ec:60:df:66:3d:0a:b5:97:8c:88: df:52:f4:3e:3c:c7:65:85:c4:58:bd:dc:40:99:76: b7:74:dc:9a:7a:da:db:ae:3b:a6:80:f8:8f:6c:28: 10:e4:a6:22:1a:4f:75:26:0b:c0:9e:3b:8c:c8:e5: e1:01:41:cb:c0:b6:22:ca:94:a1:0c:01:8a:34:84: a2:e1:a4:8d:48:b0:48:84:a4:0d:73:eb:a8:f3:d3: 9c:23:3b:59:5d:7d:0a:81:45:ec:57:bf:81:4b:6c: ab:ce:ee:b5:3c:0a:9e:fd:a2:10:77:c3:77:6d:06: 73:ea:d4:e3:35:88:12:be:db:5b:b8:c1:ef:f0:3e: 18:f1:91:c5:79:3d:05:c9:a3:10:61:4a:1d:7a:bb: 2c:bb:52:a3:69:83:12:31:58:ac:07:ad:5e:c6:44: 7e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:49:F3:59:E2:33:E9:0C:84:5D:27:2E:10:9C:00:36:4A:FC:F4:E3 X509v3 Authority Key Identifier: keyid:FB:C1:81:44:AE:D8:A8:9D:76:0D:5D:5E:2D:ED:8C:38:F3:1E:59:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/-8GBRK7YqJ12DV1eLe2MOPMeWeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8GBRK7YqJ12DV1eLe2MOPMeWeA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/B3C41A60DD1B11EAAC9A0915C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.78.0/24 IPv6: 2001:df3:ff80::/48 Signature Algorithm: sha256WithRSAEncryption b9:84:19:73:ac:05:12:eb:aa:b7:82:8f:78:a3:7b:77:e1:77: 6e:1c:14:84:11:03:64:a3:e2:61:1e:c8:c3:f8:41:0f:ff:3d: 69:5d:9a:92:da:9e:53:4a:e4:0e:26:d3:34:4e:f2:89:37:a7: 16:e6:3b:2e:83:8c:f4:62:02:4f:4b:77:b8:d5:e4:12:e2:0d: 5d:e9:a3:e0:5c:51:fa:67:74:ea:4c:ef:f8:d0:91:3a:14:c1: 2f:4b:7d:61:97:05:06:d1:31:94:4c:97:07:a2:f5:c5:e8:ef: 2d:cc:bb:34:ea:f1:ba:92:6f:a0:10:22:fd:d7:04:37:9b:9f: 26:7d:25:30:fd:b3:31:9a:d5:46:2b:a1:91:4f:b8:4e:c0:c6: 5e:a8:6b:79:e7:f6:34:b0:61:53:76:5a:31:a6:a0:1a:39:95: bf:e7:f6:02:4d:35:68:59:40:fc:2a:14:aa:6e:ef:a9:01:45: 0f:a0:68:2f:83:1f:d6:cb:56:2a:bc:04:da:07:ec:4c:8a:20: 32:8f:51:af:83:fc:ab:c4:ee:ed:f4:3f:49:36:bb:5d:c4:23: f2:c8:a1:6d:e1:60:34:9c:bb:7c:c5:7d:7c:5e:eb:a2:ad:57: 11:bf:9b:ee:30:57:b9:3c:c4:cc:e7:d8:40:0a:88:a3:b8:93: 42:68:90:35 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1NDMxMTAvBgNVBAUTKEZCQzE4MTQ0QUVEOEE4OUQ3NjBENUQ1RTJERUQ4QzM4 RjMxRTU5RTAwHhcNMjQwNjE4MjMwMDAxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyMTE3MS1jYmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCasrt1UpJQg8N5s9HLnYFe14CgePkIu+4RPx32JimcEzJwgaOYTxwYbFZ0M 0is4uxI9u8hDHjI/M0TTVEEeEvlN3UgRTa1aWhXqDRGMIWP9adMyY6K2Hmup1ZQN uuxg32Y9CrWXjIjfUvQ+PMdlhcRYvdxAmXa3dNyaetrbrjumgPiPbCgQ5KYiGk91 JgvAnjuMyOXhAUHLwLYiypShDAGKNISi4aSNSLBIhKQNc+uo89OcIztZXX0KgUXs V7+BS2yrzu61PAqe/aIQd8N3bQZz6tTjNYgSvttbuMHv8D4Y8ZHFeT0FyaMQYUod erssu1KjaYMSMVisB61exkR+jwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJNJ81ni M+kMhF0nLhCcADZK/PTjMB8GA1UdIwQYMBaAFPvBgUSu2Kiddg1dXi3tjDjzHlng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU0My81N0VGOUY2Q0RE MUExMUVBOEE0MzlGMTNDNEY5QUUwMi8tOEdCUks3WXFKMTJEVjFlTGUyTU9QTWVX ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy04R0JSSzdZcUoxMkRWMWVMZTJNT1BNZVdlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1NDMvNTdFRjlGNkNERDFBMTFFQThBNDM5RjEzQzRGOUFFMDIvQjNDNDFBNjBE RDFCMTFFQUFDOUEwOTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnmE4wDwQCAAIwCQMHACABDfP/gDANBgkqhkiG9w0BAQsF AAOCAQEAuYQZc6wFEuuqt4KPeKN7d+F3bhwUhBEDZKPiYR7Iw/hBD/89aV2aktqe U0rkDibTNE7yiTenFuY7LoOM9GICT0t3uNXkEuINXemj4FxR+md06kzv+NCROhTB L0t9YZcFBtExlEyXB6L1xejvLcy7NOrxupJvoBAi/dcEN5ufJn0lMP2zMZrVRiuh kU+4TsDGXqhreef2NLBhU3ZaMaagGjmVv+f2Ak01aFlA/CoUqm7vqQFFD6BoL4Mf 1stWKrwE2gfsTIogMo9Rr4P8q8Tu7fQ/STa7XcQj8sihbeFgNJy7fMV9fF7roq1X Eb+b7jBXuTzEzOfYQAqIo7iTQmiQNQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org