$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/521500EE15C611EF88C07237C4F9AE02.roa File: 521500EE15C611EF88C07237C4F9AE02.roa (raw, json) Hash identifier: 7G18lldauue0JgBMEepJdfGHvczXknVIL7zaeMIsSYY= Subject key identifier: F9:9C:79:53:59:4A:A6:51:15:AD:44:1B:D5:58:BA:88:C4:E2:D0:84 Certificate issuer: /CN=A91A5A93/serialNumber=780B5BC6CE5E469837ADEB368574ED48304801CB Certificate serial: 07 Authority key identifier: 78:0B:5B:C6:CE:5E:46:98:37:AD:EB:36:85:74:ED:48:30:48:01:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eAtbxs5eRpg3res2hXTtSDBIAcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/521500EE15C611EF88C07237C4F9AE02.roa Signing time: Sun 19 May 2024 10:03:21 +0000 ROA not before: Sun 19 May 2024 10:03:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152844 IP address blocks: 103.154.132.0/23 maxlen: 23 103.154.132.0/24 maxlen: 24 103.154.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/eAtbxs5eRpg3res2hXTtSDBIAcs.crl rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/eAtbxs5eRpg3res2hXTtSDBIAcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eAtbxs5eRpg3res2hXTtSDBIAcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A93/serialNumber=780B5BC6CE5E469837ADEB368574ED48304801CB Validity Not Before: May 19 10:03:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6649ce68-d6a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f6:a8:2a:ee:08:91:eb:d9:25:e8:36:d2:7f: be:35:e2:56:d4:a7:97:b0:0b:9e:9f:28:59:b9:cb: 1a:57:86:48:50:bf:99:1a:da:6e:7c:b2:d4:13:44: 61:d8:18:18:c3:5a:12:0c:74:45:9f:75:4b:71:e8: d2:b4:02:99:f6:76:b3:76:e8:d6:cb:0e:be:76:06: 1d:52:26:c8:a9:d8:54:fb:92:42:3a:b9:eb:ca:fa: ee:1d:10:63:85:d2:90:d6:50:2c:89:af:b9:58:e9: 5e:f9:20:d6:56:f7:0e:1c:86:f2:9e:4a:8a:54:40: ae:a2:66:f0:31:0f:50:f3:2e:85:02:42:ce:53:8a: a4:d2:af:61:e4:0f:a5:bb:3b:0e:d5:bb:e9:79:4f: 6c:df:39:3a:d1:37:59:70:79:6d:15:0f:8f:bf:88: 69:bb:8a:9c:54:5a:ca:fb:8c:87:5d:8c:fb:fb:16: 8c:83:d9:ce:d0:62:a2:b2:ff:44:1c:26:c7:45:4a: 94:05:8e:ce:06:5a:a5:d7:e4:40:e6:6e:ad:88:8b: de:26:a9:a4:0d:49:9e:1e:79:51:b7:99:84:60:c8: 46:a1:f6:14:fb:b9:62:ee:e4:4b:63:83:9f:ef:53: 1a:e1:0e:90:c1:bb:a2:2a:ac:14:5b:12:c8:8e:60: a9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:9C:79:53:59:4A:A6:51:15:AD:44:1B:D5:58:BA:88:C4:E2:D0:84 X509v3 Authority Key Identifier: keyid:78:0B:5B:C6:CE:5E:46:98:37:AD:EB:36:85:74:ED:48:30:48:01:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/eAtbxs5eRpg3res2hXTtSDBIAcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eAtbxs5eRpg3res2hXTtSDBIAcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A93/C01AF5F415C511EFAA338236C4F9AE02/521500EE15C611EF88C07237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.132.0/23 Signature Algorithm: sha256WithRSAEncryption 40:6a:ee:33:f8:bc:41:38:de:b0:89:5f:84:03:4b:d5:03:c9: fe:c7:ab:41:81:ad:45:a6:cf:36:7b:e6:be:c3:5e:1f:4e:77: fb:b4:55:2e:1a:99:ff:59:36:5e:e9:95:c1:37:a1:53:e3:90: 80:e7:ab:ae:c0:5c:47:3a:1b:59:2b:3e:56:be:5d:8e:08:b0: 35:55:c0:91:d5:2e:2a:77:d3:2d:d9:46:4c:c8:4a:5b:80:2a: 83:84:a7:c9:8a:17:bc:c2:3d:f9:33:60:8c:73:fe:a1:c1:35: c1:10:ea:20:0d:a2:15:b8:99:36:cc:33:4e:88:ed:3f:41:87: 4d:c0:6b:47:0a:05:d0:80:4d:a1:79:a1:ab:4f:66:be:ae:64: 4b:e3:36:c9:23:f1:f7:6e:82:9d:88:36:f5:49:87:8d:02:6a: a0:25:3f:95:a6:2b:a8:72:27:df:b9:49:13:32:22:df:ec:25: dd:ba:23:86:7a:9e:5d:fe:83:4f:d5:f6:d8:d4:69:80:e4:36: 13:99:7d:ff:a8:e3:e9:de:b0:b2:6d:82:81:31:01:f8:f0:42: 4c:4f:d1:4e:36:56:57:1c:60:1b:e7:72:12:52:6b:ff:f1:44: 5e:f2:81:db:b4:be:9d:d2:e3:bd:07:7c:01:be:1f:2e:f1:43: 43:12:c5:c8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUE5MzExMC8GA1UEBRMoNzgwQjVCQzZDRTVFNDY5ODM3QURFQjM2ODU3NEVENDgz MDQ4MDFDQjAeFw0yNDA1MTkxMDAzMjFaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDljZTY4LWQ2YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI9qgq7giR69kl6DbSf7414lbUp5ewC56fKFm5yxpXhkhQv5ka2m58stQTRGHY GBjDWhIMdEWfdUtx6NK0Apn2drN26NbLDr52Bh1SJsip2FT7kkI6uevK+u4dEGOF 0pDWUCyJr7lY6V75INZW9w4chvKeSopUQK6iZvAxD1DzLoUCQs5TiqTSr2HkD6W7 Ow7Vu+l5T2zfOTrRN1lweW0VD4+/iGm7ipxUWsr7jIddjPv7FoyD2c7QYqKy/0Qc JsdFSpQFjs4GWqXX5EDmbq2Ii94mqaQNSZ4eeVG3mYRgyEah9hT7uWLu5Etjg5/v UxrhDpDBu6IqrBRbEsiOYKkfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU+Zx5U1lK plEVrUQb1Vi6iMTi0IQwHwYDVR0jBBgwFoAUeAtbxs5eRpg3res2hXTtSDBIAcsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1QTkzL0MwMUFGNUY0MTVD NTExRUZBQTMzODIzNkM0RjlBRTAyL2VBdGJ4czVlUnBnM3JlczJoWFR0U0RCSUFj cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUF0YnhzNWVScGczcmVzMmhYVHRTREJJQWNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUE5My9DMDFBRjVGNDE1QzUxMUVGQUEzMzgyMzZDNEY5QUUwMi81MjE1MDBFRTE1 QzYxMUVGODhDMDcyMzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeahDANBgkqhkiG9w0BAQsFAAOCAQEAQGruM/i8QTjesIlf hANL1QPJ/serQYGtRabPNnvmvsNeH053+7RVLhqZ/1k2XumVwTehU+OQgOerrsBc RzobWSs+Vr5djgiwNVXAkdUuKnfTLdlGTMhKW4Aqg4SnyYoXvMI9+TNgjHP+ocE1 wRDqIA2iFbiZNswzTojtP0GHTcBrRwoF0IBNoXmhq09mvq5kS+M2ySPx926CnYg2 9UmHjQJqoCU/laYrqHIn37lJEzIi3+wl3bojhnqeXf6DT9X22NRpgOQ2E5l9/6jj 6d6wsm2CgTEB+PBCTE/RTjZWVxxgG+dyElJr//FEXvKB27S+ndLjvQd8Ab4fLvFD QxLFyA== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:31 2024 by rpki-client on console-fra.rpki-client.org