$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/7B34351E6C4011EFB07AFE4DC4F9AE02.roa File: 7B34351E6C4011EFB07AFE4DC4F9AE02.roa (raw, json) Hash identifier: a8hiZQY4feWw7cGzPQPoFMY0Vgh/L0UfvR1IyLlgJEI= Subject key identifier: 25:0D:2D:63:B2:81:14:22:FE:6E:4C:61:99:32:2C:FE:94:95:9E:C0 Certificate issuer: /CN=A91A6353/serialNumber=AAAEC71CA34DEF08D88EE77BD91C157175CC3C09 Certificate serial: 0608 Authority key identifier: AA:AE:C7:1C:A3:4D:EF:08:D8:8E:E7:7B:D9:1C:15:71:75:CC:3C:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/7B34351E6C4011EFB07AFE4DC4F9AE02.roa Signing time: Fri 06 Sep 2024 11:09:27 +0000 ROA not before: Fri 06 Sep 2024 11:09:27 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151640 IP address blocks: 103.151.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.crl rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1544 (0x608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6353/serialNumber=AAAEC71CA34DEF08D88EE77BD91C157175CC3C09 Validity Not Before: Sep 6 11:09:27 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66dae2e7-6def Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:89:c4:b7:19:4c:81:b8:6a:7d:d5:2a:73: ea:34:99:1a:0b:37:e2:f7:90:2c:47:08:50:7d:02: f1:54:2e:42:82:ac:33:94:d3:47:26:c7:96:34:5b: 99:cf:6e:d6:cc:a7:21:e2:b9:96:f1:23:93:fc:5f: e0:5f:57:7c:73:d2:4e:e8:fd:48:45:70:82:ca:f8: 82:d8:3d:dc:71:d1:8f:4c:41:13:67:60:f0:86:68: 6b:c7:da:b7:60:20:0c:21:f9:bb:94:7f:62:21:e6: 32:95:fa:1f:81:3b:e0:02:b4:2c:56:ce:5a:47:8a: 95:a8:48:f1:b5:4e:4f:74:af:21:c3:a1:fd:ee:d7: e8:55:57:a9:f6:66:93:ce:d7:4a:a8:60:79:15:e7: fc:04:ec:66:f3:72:9b:e4:0c:eb:d0:73:30:03:f1: e6:df:c3:f9:1e:a3:27:43:5f:5a:32:7e:9b:f3:7a: 1d:9c:01:79:72:90:fe:71:4a:75:7a:48:fb:0f:3c: dc:3e:0c:cd:16:36:0c:7b:71:8d:26:f6:bd:1e:e6: 15:91:71:3e:8f:b7:be:02:c8:ae:3c:71:7e:29:11: 0a:10:69:77:82:15:c2:e5:d2:81:89:84:db:ba:f1: 6f:2b:14:90:e9:a7:2f:c0:43:2b:bc:94:a7:f4:27: 97:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0D:2D:63:B2:81:14:22:FE:6E:4C:61:99:32:2C:FE:94:95:9E:C0 X509v3 Authority Key Identifier: keyid:AA:AE:C7:1C:A3:4D:EF:08:D8:8E:E7:7B:D9:1C:15:71:75:CC:3C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/7B34351E6C4011EFB07AFE4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.4.0/24 Signature Algorithm: sha256WithRSAEncryption 24:5f:82:3a:9f:23:0d:63:ff:21:67:17:b7:44:15:7f:cf:0c: 35:62:1a:7d:0e:50:14:32:e1:27:06:8c:47:11:b7:e7:36:10: 6f:4f:21:1f:29:fd:7c:ea:c9:18:83:2d:bb:3b:7d:16:bb:1b: e1:6d:66:a3:1b:b0:9a:d5:41:82:2f:1d:23:79:3b:8a:6a:e3: 1f:5f:10:38:ee:4c:8b:c2:38:aa:e0:cb:ac:28:1d:65:7c:0d: de:76:22:b6:e5:d2:a8:49:a8:30:b9:6b:72:76:ee:a2:93:aa: ee:44:de:10:27:ab:cf:3c:f2:25:1e:e3:ba:b8:c8:06:d4:f1: af:7d:19:1f:74:4e:28:64:24:e5:4a:7b:2a:c2:b0:a3:d8:78: f6:04:a6:10:66:af:23:f5:fa:7d:17:4a:62:2b:ba:54:c5:8d: 11:ca:5d:f0:54:bc:33:e0:e9:c2:7a:cd:95:ec:19:4f:cc:5e: 1f:7e:a7:ff:6b:1c:0e:79:ef:36:31:a3:8d:33:f7:ae:6d:b9: 4c:b3:be:ff:a1:44:96:3a:73:8d:ec:40:9e:5b:e1:7d:bc:10: 14:6b:5a:f6:84:d3:18:2a:c9:7c:d7:df:3a:5a:21:ce:83:0b: ae:c3:0b:d3:af:da:89:54:bc:bf:7a:8d:a9:b5:5e:6b:a8:37: 88:2c:1d:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTYzNTMxMTAvBgNVBAUTKEFBQUVDNzFDQTM0REVGMDhEODhFRTc3QkQ5MUMxNTcx NzVDQzNDMDkwHhcNMjQwOTA2MTEwOTI3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRhZTJlNy02ZGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoK+JxLcZTIG4an3VKnPqNJkaCzfi95AsRwhQfQLxVC5CgqwzlNNHJseWNFuZ z27WzKch4rmW8SOT/F/gX1d8c9JO6P1IRXCCyviC2D3ccdGPTEETZ2Dwhmhrx9q3 YCAMIfm7lH9iIeYylfofgTvgArQsVs5aR4qVqEjxtU5PdK8hw6H97tfoVVep9maT ztdKqGB5Fef8BOxm83Kb5Azr0HMwA/Hm38P5HqMnQ19aMn6b83odnAF5cpD+cUp1 ekj7DzzcPgzNFjYMe3GNJva9HuYVkXE+j7e+AsiuPHF+KREKEGl3ghXC5dKBiYTb uvFvKxSQ6acvwEMrvJSn9CeXmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCUNLWOy gRQi/m5MYZkyLP6UlZ7AMB8GA1UdIwQYMBaAFKquxxyjTe8I2I7ne9kcFXF1zDwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjM1My8zQkZERUQ2NDg2 QkExMUVCQkNDMzk4NzVDNEY5QUUwMi9xcTdISEtOTjd3allqdWQ3MlJ3VmNYWE1Q QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FxN0hIS05ON3dqWWp1ZDcyUndWY1hYTVBBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTYzNTMvM0JGREVENjQ4NkJBMTFFQkJDQzM5ODc1QzRGOUFFMDIvN0IzNDM1MUU2 QzQwMTFFRkIwN0FGRTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlwQwDQYJKoZIhvcNAQELBQADggEBACRfgjqfIw1j/yFn F7dEFX/PDDViGn0OUBQy4ScGjEcRt+c2EG9PIR8p/XzqyRiDLbs7fRa7G+FtZqMb sJrVQYIvHSN5O4pq4x9fEDjuTIvCOKrgy6woHWV8Dd52Irbl0qhJqDC5a3J27qKT qu5E3hAnq8888iUe47q4yAbU8a99GR90TihkJOVKeyrCsKPYePYEphBmryP1+n0X SmIrulTFjRHKXfBUvDPg6cJ6zZXsGU/MXh9+p/9rHA557zYxo40z965tuUyzvv+h RJY6c43sQJ5b4X28EBRrWvaE0xgqyXzX3zpaIc6DC67DC9Ov2olUvL96jam1Xmuo N4gsHWc= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:47 2024 by rpki-client on console-fra.rpki-client.org