$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/8183B0FACAF111EBA40AF15BC4F9AE02.roa File: 8183B0FACAF111EBA40AF15BC4F9AE02.roa (raw, json) Hash identifier: XwG0FHSlMJ0rTygHTL6/8gSgzUHSXejVg64oWEJojIA= Subject key identifier: B5:FF:EA:9D:B8:78:D7:68:F6:B4:4B:64:63:92:7E:40:53:A7:C3:72 Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Certificate serial: 04CF Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/8183B0FACAF111EBA40AF15BC4F9AE02.roa Signing time: Wed 13 Mar 2024 00:43:37 +0000 ROA not before: Wed 13 Mar 2024 00:43:37 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55293 IP address blocks: 45.120.148.0/22 maxlen: 24 103.227.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Validity Not Before: Mar 13 00:43:37 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f0f6b9-4962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:aa:bc:60:38:57:77:be:b5:3d:53:53:ce:9b: 8d:2e:16:8f:8c:35:d0:9b:fd:49:df:13:e1:fe:67: 73:5c:f5:9b:15:3c:59:a9:de:38:f6:b7:81:a2:8e: 5e:3a:2e:07:dc:89:6e:d4:a4:a4:1f:8c:48:2a:84: ee:ac:4a:c4:cb:ee:0a:df:33:6e:3c:1c:91:19:df: 0c:5a:65:c5:bb:33:10:e9:a4:1d:e9:07:86:5c:34: dc:6c:41:18:f7:6d:45:29:ca:6c:ed:e0:5d:eb:da: ef:92:f0:35:06:fe:c6:05:46:14:0c:bd:78:3a:1d: 39:c9:2c:fa:f9:c9:11:d6:7a:2d:b9:a8:13:34:3f: 4c:9f:9a:03:d9:8f:88:63:9f:f5:59:2e:62:79:00: 14:b9:c4:0c:1b:c2:36:75:34:88:c0:3c:a6:39:b4: c8:75:14:ea:d3:7c:ff:89:7c:0d:48:25:47:63:20: a4:45:12:82:48:70:cb:12:96:f6:fb:06:ea:83:45: 64:7f:0d:1a:68:61:79:e9:20:a4:9f:20:d6:b2:e0: ab:3f:80:82:d5:80:fa:9b:34:55:f1:6a:56:42:63: d4:d3:a0:ea:89:14:99:e4:2b:36:10:f6:b4:07:5b: 8c:7d:f2:e6:f9:2d:d6:41:d4:bd:30:3b:2b:fc:05: 28:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:FF:EA:9D:B8:78:D7:68:F6:B4:4B:64:63:92:7E:40:53:A7:C3:72 X509v3 Authority Key Identifier: keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/8183B0FACAF111EBA40AF15BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.148.0/22 103.227.176.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:c9:f5:a8:d7:15:5f:72:59:f5:4b:53:57:6b:97:d8:6a:b3: 5b:91:e3:f0:0e:48:44:e9:f9:e6:1c:91:9e:fa:f8:17:fa:f7: 8f:51:76:b4:9b:6c:3a:67:c8:c8:f5:bf:05:87:99:83:2e:bf: d6:87:63:a4:a3:15:13:dc:4a:6b:84:18:35:c6:98:98:11:fc: 44:19:20:30:e9:3f:76:54:4e:f2:91:75:af:15:3e:8c:08:5e: 33:d3:b5:78:6d:aa:68:dd:ca:2a:17:dc:34:8c:a0:ad:21:9a: fc:8f:4c:2c:bf:76:db:53:c7:32:4f:9b:e3:8f:0b:43:d7:1f: ef:17:b7:83:84:47:6d:16:3d:bd:66:b6:e9:9b:97:8d:ae:40: 4a:03:26:8b:e8:57:ba:b1:19:19:1f:77:8f:a1:ed:5b:9c:4c: 90:ee:d7:55:ce:da:2b:f9:13:ae:3f:e6:29:81:e2:9b:2e:c8: 2e:43:fc:7d:3e:0d:1f:b0:79:2f:e1:a8:e1:65:79:82:70:53: 1b:69:18:b6:09:ca:53:ce:c2:de:c7:1b:a8:a0:26:f8:e1:44: d8:31:4a:7d:77:a3:3e:d7:3d:ff:2a:e3:5f:ec:ec:bf:f7:f3: 3e:2b:70:80:72:77:11:d1:5d:d0:9f:c9:54:8e:be:6e:dc:32: 73:4f:1e:eb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVEOEExMTAvBgNVBAUTKDc4NTdEMTFBNTFEQ0FFOUMyRTA4ODZBMTBDRTA2RjU1 RjVCODQzMDAwHhcNMjQwMzEzMDA0MzM3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwZjZiOS00OTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKq8YDhXd761PVNTzpuNLhaPjDXQm/1J3xPh/mdzXPWbFTxZqd449reBoo5e Oi4H3Ilu1KSkH4xIKoTurErEy+4K3zNuPByRGd8MWmXFuzMQ6aQd6QeGXDTcbEEY 921FKcps7eBd69rvkvA1Bv7GBUYUDL14Oh05ySz6+ckR1notuagTND9Mn5oD2Y+I Y5/1WS5ieQAUucQMG8I2dTSIwDymObTIdRTq03z/iXwNSCVHYyCkRRKCSHDLEpb2 +wbqg0Vkfw0aaGF56SCknyDWsuCrP4CC1YD6mzRV8WpWQmPU06DqiRSZ5Cs2EPa0 B1uMffLm+S3WQdS9MDsr/AUo/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLX/6p24 eNdo9rRLZGOSfkBTp8NyMB8GA1UdIwQYMBaAFHhX0RpR3K6cLgiGoQzgb1X1uEMA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUQ4QS9CQTJGMUI5QUNB RUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jwd3VDSWFoRE9CdlZmVzRR d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGZlJHbEhjcnB3dUNJYWhET0J2VmZXNFF3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVEOEEvQkEyRjFCOUFDQUVFMTFFQkEyRkJEMDU2QzRGOUFFMDIvODE4M0IwRkFD QUYxMTFFQkE0MEFGMTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteJQDBAJn47AwDQYJKoZIhvcNAQELBQADggEBABvJ9ajX FV9yWfVLU1drl9hqs1uR4/AOSETp+eYckZ76+Bf6949RdrSbbDpnyMj1vwWHmYMu v9aHY6SjFRPcSmuEGDXGmJgR/EQZIDDpP3ZUTvKRda8VPowIXjPTtXhtqmjdyioX 3DSMoK0hmvyPTCy/dttTxzJPm+OPC0PXH+8Xt4OER20WPb1mtumbl42uQEoDJovo V7qxGRkfd4+h7VucTJDu11XO2iv5E64/5imB4psuyC5D/H0+DR+weS/hqOFleYJw UxtpGLYJylPOwt7HG6igJvjhRNgxSn13oz7XPf8q41/s7L/38z4rcIBydxHRXdCf yVSOvm7cMnNPHus= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:23 2024 by rpki-client on console-fra.rpki-client.org