$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/ACBB52981C8D11ED9C7E1024C4F9AE02.roa File: ACBB52981C8D11ED9C7E1024C4F9AE02.roa (raw, json) Hash identifier: 2GDTdwACz8VX3ogKme9iM7rhKRrlIErw7r1uWZhrhu8= Subject key identifier: 0C:C9:5B:53:64:3B:F4:85:D4:64:F7:4D:90:40:52:91:B5:CA:2A:2B Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 459F Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/ACBB52981C8D11ED9C7E1024C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:21 +0000 ROA not before: Thu 05 Sep 2024 03:33:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140801 IP address blocks: 103.154.102.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17823 (0x459f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:21 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92681-ec52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:93:cd:ab:38:e6:47:68:17:ab:ba:75:47:36: c7:ec:aa:7c:46:83:df:91:35:6f:e8:9b:b4:2f:e2: 82:8f:81:bf:af:7d:95:30:7f:fd:25:24:2c:79:1a: d6:6e:70:00:a1:ec:08:90:18:2c:50:d9:6e:7e:e5: 28:c9:4a:59:52:ac:db:62:3d:32:76:a4:bc:9d:a6: 32:e7:4a:50:ba:6e:c9:37:09:13:36:68:d1:a8:40: 6f:2f:41:c2:91:ad:1e:b7:11:3a:f8:f4:cd:76:18: 69:ec:20:fe:c0:1b:a9:f3:df:38:3c:be:c2:37:a5: 5c:e0:59:a2:03:71:9a:39:d6:10:9c:a2:5d:f9:ce: 1f:3b:6f:d3:8e:9d:05:58:f4:44:74:d2:12:71:22: ca:7d:e8:ab:34:a7:8f:5c:59:e4:b1:09:d2:cf:31: 0d:8d:70:d1:fa:9a:a4:70:93:bd:6a:22:de:42:ea: 08:14:11:30:f9:30:20:59:ed:56:9d:f4:4e:ac:94: 29:6d:77:fa:a3:e6:c4:20:9f:6d:02:9b:37:40:cf: de:76:23:c4:b7:2f:aa:56:08:ca:a2:1d:bc:46:fe: 40:d3:c2:52:a4:2c:d8:2f:50:a6:a4:f3:4b:3b:e9: 97:dc:cd:7d:a4:24:64:e6:a9:7d:e4:cb:84:07:2f: 08:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C9:5B:53:64:3B:F4:85:D4:64:F7:4D:90:40:52:91:B5:CA:2A:2B X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/ACBB52981C8D11ED9C7E1024C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.102.0/23 Signature Algorithm: sha256WithRSAEncryption ae:a6:cd:6b:7b:a4:12:19:52:86:ca:8d:bc:93:9e:34:0f:27: aa:14:b2:7f:51:4f:7e:6b:67:cd:e2:21:c3:f7:ff:06:da:e2: b0:d7:c6:fd:41:ea:e9:16:4b:bb:ca:44:d8:b6:d4:d0:fd:2a: 68:2d:99:3e:39:66:f0:eb:98:11:e7:96:12:3e:97:dc:7b:4e: fe:5a:73:29:b6:f4:cf:c8:2d:a8:58:4f:24:d5:24:45:8f:52: b0:61:f6:39:71:d5:46:99:76:08:19:d7:01:9a:5c:50:fe:19: a5:3c:b5:5c:e1:87:30:f0:90:78:fd:93:e3:b9:30:e7:60:95: af:a8:37:a8:4c:0f:b8:d3:99:ca:99:78:70:98:de:a0:9d:1c: e3:a6:80:59:f5:29:2f:56:a5:80:8c:6b:cc:c3:f1:00:41:8c: 96:94:00:49:41:0d:f6:94:57:bc:98:3d:d8:1b:db:df:36:4a: 2b:24:a6:a9:d7:75:f2:14:2c:4c:73:27:4f:db:0c:24:d7:3a: 5f:6d:a2:9d:0b:5a:f1:ab:fd:8b:33:2f:81:32:b4:23:e9:e8: 5e:47:14:c5:24:13:26:8e:7a:c7:c7:86:97:ab:e9:ef:66:38: c0:29:8c:a7:40:9c:a5:00:c5:fc:bf:ee:ea:cd:af:9d:81:bf: 98:9e:f6:ae -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY4MS1lYzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZPNqzjmR2gXq7p1RzbH7Kp8RoPfkTVv6Ju0L+KCj4G/r32VMH/9JSQseRrW bnAAoewIkBgsUNlufuUoyUpZUqzbYj0ydqS8naYy50pQum7JNwkTNmjRqEBvL0HC ka0etxE6+PTNdhhp7CD+wBup8984PL7CN6Vc4FmiA3GaOdYQnKJd+c4fO2/Tjp0F WPREdNIScSLKfeirNKePXFnksQnSzzENjXDR+pqkcJO9aiLeQuoIFBEw+TAgWe1W nfROrJQpbXf6o+bEIJ9tAps3QM/ediPEty+qVgjKoh28Rv5A08JSpCzYL1CmpPNL O+mX3M19pCRk5ql95MuEBy8IzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAzJW1Nk O/SF1GT3TZBAUpG1yiorMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQUNCQjUyOTgx QzhEMTFFRDlDN0UxMDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmmYwDQYJKoZIhvcNAQELBQADggEBAK6mzWt7pBIZUobK jbyTnjQPJ6oUsn9RT35rZ83iIcP3/wba4rDXxv1B6ukWS7vKRNi21ND9KmgtmT45 ZvDrmBHnlhI+l9x7Tv5acym29M/ILahYTyTVJEWPUrBh9jlx1UaZdggZ1wGaXFD+ GaU8tVzhhzDwkHj9k+O5MOdgla+oN6hMD7jTmcqZeHCY3qCdHOOmgFn1KS9WpYCM a8zD8QBBjJaUAElBDfaUV7yYPdgb2982SiskpqnXdfIULExzJ0/bDCTXOl9top0L WvGr/YszL4EytCPp6F5HFMUkEyaOesfHhper6e9mOMApjKdAnKUAxfy/7urNr52B v5ie9q4= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org