$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E54A930293BD11EC8B2D9A58C4F9AE02.roa File: E54A930293BD11EC8B2D9A58C4F9AE02.roa (raw, json) Hash identifier: Cc4EcxyZMP+wjXscJ4MLCWec70SDrUVX5k3v3aHUVPU= Subject key identifier: 61:B9:2C:58:DD:17:09:69:62:62:5C:3B:BE:DD:B3:28:45:DF:DE:52 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4538 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E54A930293BD11EC8B2D9A58C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:51 +0000 ROA not before: Thu 05 Sep 2024 03:31:51 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131376 IP address blocks: 103.148.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17720 (0x4538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:51 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92626-678b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f2:c8:80:4d:72:80:b0:80:7f:99:d9:f0:ac: ac:76:d0:c0:95:82:4c:fe:cc:15:0d:ca:a8:25:51: 0d:87:73:17:e0:2d:37:a5:76:d3:54:ce:6d:5b:40: c5:95:f0:47:ca:d8:29:27:16:d3:14:86:ca:e0:d6: b2:17:dc:1a:a5:4f:d3:8f:cb:ab:ad:bc:d4:08:1e: 97:73:52:7c:97:89:cd:dd:2f:c4:73:cb:a0:02:41: 30:21:77:08:09:f9:46:31:a5:00:40:45:48:ff:6b: 88:90:fd:ef:a1:0d:c3:ac:5f:6f:7a:94:a2:2e:95: 26:37:3f:a8:77:db:34:dd:06:db:71:a8:0c:f9:bf: 4e:00:8b:0e:8a:31:e9:4e:7d:12:50:e5:1b:1c:6d: bc:2a:d5:70:ec:49:b9:6c:77:42:9a:1e:97:02:5e: 93:cd:20:5f:97:25:88:f4:ec:9b:f2:a0:9b:f6:41: dc:2c:a8:95:2f:0f:77:e2:38:03:1c:40:2e:4b:fd: 34:01:81:b9:b7:12:c0:61:b4:92:ac:80:c3:a8:ac: 2f:68:1d:77:a6:2f:d8:f7:7f:59:67:01:80:f6:e5: a8:e6:31:c9:c0:ec:d6:97:8d:9a:11:d8:f8:5d:f7: 6c:13:24:4c:7f:c4:8b:af:b0:f2:75:54:ed:13:88: 1b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B9:2C:58:DD:17:09:69:62:62:5C:3B:BE:DD:B3:28:45:DF:DE:52 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E54A930293BD11EC8B2D9A58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.158.0/23 Signature Algorithm: sha256WithRSAEncryption aa:df:6b:e0:8b:db:02:87:d9:35:49:3c:73:6b:f5:98:26:c5: 05:b7:2b:be:48:0e:b0:23:d0:1f:2c:4d:f6:9b:96:4a:59:7c: a3:2c:1a:8c:83:02:33:46:79:96:67:45:5a:03:75:e8:b4:99: 42:e4:ca:f7:10:60:b2:ef:2e:eb:fd:12:9c:c5:fd:80:94:5a: d1:06:d2:58:4a:3d:97:50:70:10:7e:de:14:6c:b5:4d:5f:c1: a3:8d:f1:dc:26:fc:a3:13:50:0b:0d:2e:de:35:38:22:83:b6: 09:20:9c:00:9d:54:7f:e2:3b:73:31:c8:ca:12:b3:99:92:87: 3f:d8:32:0e:37:37:7b:61:53:71:58:75:91:df:7d:2c:cb:5b: 76:15:c7:6c:23:ff:54:e5:21:9f:f1:a9:fb:b0:a7:d6:b1:b0: 68:8e:8a:1a:a8:dd:ae:f3:ea:d8:f7:f4:99:21:61:29:fe:60: e1:2b:e0:3f:6d:41:e8:5e:7f:a9:cc:38:80:96:b9:b4:23:ce: 8a:10:79:a5:3e:a7:cd:8d:ac:1b:95:68:e2:86:d8:98:5c:5d: 62:f2:b5:79:e4:9f:85:e7:04:2d:c1:10:8e:83:9c:b4:9e:2f: de:9f:ad:8e:b9:61:5b:09:49:41:e7:ed:10:16:31:d9:48:ac: d8:6d:2d:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTUxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYyNi02NzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPLIgE1ygLCAf5nZ8KysdtDAlYJM/swVDcqoJVENh3MX4C03pXbTVM5tW0DF lfBHytgpJxbTFIbK4NayF9wapU/Tj8urrbzUCB6Xc1J8l4nN3S/Ec8ugAkEwIXcI CflGMaUAQEVI/2uIkP3voQ3DrF9vepSiLpUmNz+od9s03QbbcagM+b9OAIsOijHp Tn0SUOUbHG28KtVw7Em5bHdCmh6XAl6TzSBflyWI9Oyb8qCb9kHcLKiVLw934jgD HEAuS/00AYG5txLAYbSSrIDDqKwvaB13pi/Y939ZZwGA9uWo5jHJwOzWl42aEdj4 XfdsEyRMf8SLr7DydVTtE4gb1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGG5LFjd FwlpYmJcO77dsyhF395SMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRTU0QTkzMDI5 M0JEMTFFQzhCMkQ5QTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlJ4wDQYJKoZIhvcNAQELBQADggEBAKrfa+CL2wKH2TVJ PHNr9ZgmxQW3K75IDrAj0B8sTfablkpZfKMsGoyDAjNGeZZnRVoDdei0mULkyvcQ YLLvLuv9EpzF/YCUWtEG0lhKPZdQcBB+3hRstU1fwaON8dwm/KMTUAsNLt41OCKD tgkgnACdVH/iO3MxyMoSs5mShz/YMg43N3thU3FYdZHffSzLW3YVx2wj/1TlIZ/x qfuwp9axsGiOihqo3a7z6tj39JkhYSn+YOEr4D9tQehef6nMOICWubQjzooQeaU+ p82NrBuVaOKG2JhcXWLytXnkn4XnBC3BEI6DnLSeL96frY65YVsJSUHn7RAWMdlI rNhtLS8= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org