$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/4B2F1F725E7811EE9307D234C4F9AE02.roa File: 4B2F1F725E7811EE9307D234C4F9AE02.roa (raw, json) Hash identifier: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY= Subject key identifier: 5F:B8:66:43:7C:21:D3:F3:95:A9:D7:88:BB:C9:48:FD:85:07:24:9B Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: B0 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/4B2F1F725E7811EE9307D234C4F9AE02.roa Signing time: Tue 03 Sep 2024 06:19:33 +0000 ROA not before: Tue 03 Sep 2024 06:19:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140891 IP address blocks: 103.152.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Sep 3 06:19:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d6aa75-5ae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cc:dd:a8:40:f7:d4:33:f0:46:0c:4f:ac:4a: 6d:a6:44:40:8e:4d:c7:ad:93:07:2c:25:da:97:90: 79:07:a9:42:d5:2b:8d:7b:d9:17:dc:6d:66:79:a4: 34:7c:18:97:03:30:6d:13:29:eb:db:84:ef:54:ab: fe:bb:ec:e4:57:bd:05:28:32:a1:41:48:21:8d:c6: 01:84:5a:ba:bf:a9:24:be:0d:db:cd:4e:6d:e2:6f: 42:ca:f3:e8:a3:40:35:6e:b6:27:94:00:39:6e:11: 34:ec:af:3a:30:82:ee:69:c3:4e:43:cb:13:18:39: 20:5c:d9:3b:19:08:7d:9f:84:bb:cb:0c:ee:e4:ae: 9a:15:a5:d9:eb:3a:a3:68:ac:0b:e2:eb:ec:a0:ad: 24:c5:bd:4d:c8:a4:0e:28:57:42:71:1a:42:0a:b6: d3:2f:f1:c7:21:9b:b5:32:00:06:9f:99:62:04:02: 64:6a:27:22:4c:ad:89:79:46:08:58:7c:1c:62:30: db:6a:a4:50:e1:77:c9:0d:a0:5a:8d:b6:06:a8:34: 3c:d6:83:29:e1:c4:d5:a7:2f:ef:0c:f0:0f:eb:34: 16:13:e5:3d:42:96:44:da:0a:2e:cb:5e:5a:ec:3d: a8:fd:54:65:51:58:43:4d:15:6a:48:b5:1d:56:49: cd:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B8:66:43:7C:21:D3:F3:95:A9:D7:88:BB:C9:48:FD:85:07:24:9B X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/4B2F1F725E7811EE9307D234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.245.0/24 Signature Algorithm: sha256WithRSAEncryption 22:8d:2d:20:cc:15:90:cd:1e:b4:38:b8:11:a0:dc:a7:23:52: 41:02:f1:aa:71:9b:7f:ec:45:94:6b:ae:2d:ca:95:a1:d7:e5: 34:f2:54:ab:32:7e:cf:90:5e:68:40:86:90:18:df:b9:36:30: 42:63:2d:2d:1c:95:cc:f0:36:a6:9e:fe:08:fb:9b:50:60:fd: 83:9d:01:d6:d5:08:5f:6c:d0:f8:df:64:25:08:4d:7e:fd:10: 55:fc:f1:38:b7:bc:4e:7b:87:0c:b9:1b:e8:fb:cb:51:36:a5: 34:88:ff:34:59:96:93:f4:7d:09:44:a2:67:56:fe:5b:d7:70: 3c:84:05:b9:1b:ed:cb:05:68:f8:10:c0:d6:c4:96:4c:4c:8b: 28:a9:ff:39:59:53:29:12:b6:8d:97:89:00:60:21:7f:38:ea: 15:bf:2d:55:6f:15:3d:cb:d0:06:c7:64:93:02:21:c7:25:ba: b7:2c:00:a7:e1:0c:3e:5f:ec:39:77:b3:ec:29:ea:c9:36:08: a9:6e:cf:f7:e2:a4:ef:81:4e:8d:1d:92:c9:b3:4f:ce:a9:57: 85:95:fa:98:ef:55:20:99:76:a3:44:0a:47:0e:e6:ec:d4:db: 51:48:3f:c4:7a:e3:d5:51:eb:ba:92:08:88:cd:77:84:a1:e1: 4a:9c:36:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjQwOTAzMDYxOTMzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2YWE3NS01YWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28zdqED31DPwRgxPrEptpkRAjk3HrZMHLCXal5B5B6lC1SuNe9kX3G1meaQ0 fBiXAzBtEynr24TvVKv+u+zkV70FKDKhQUghjcYBhFq6v6kkvg3bzU5t4m9CyvPo o0A1brYnlAA5bhE07K86MILuacNOQ8sTGDkgXNk7GQh9n4S7ywzu5K6aFaXZ6zqj aKwL4uvsoK0kxb1NyKQOKFdCcRpCCrbTL/HHIZu1MgAGn5liBAJkaiciTK2JeUYI WHwcYjDbaqRQ4XfJDaBajbYGqDQ81oMp4cTVpy/vDPAP6zQWE+U9QpZE2gouy15a 7D2o/VRlUVhDTRVqSLUdVknNWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF+4ZkN8 IdPzlanXiLvJSP2FBySbMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFGNzMvRDVGRjFGNDA1RTcyMTFFRUJDMkM0OTI2QzRGOUFFMDIvNEIyRjFGNzI1 RTc4MTFFRTkzMDdEMjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmPUwDQYJKoZIhvcNAQELBQADggEBACKNLSDMFZDNHrQ4 uBGg3KcjUkEC8apxm3/sRZRrri3KlaHX5TTyVKsyfs+QXmhAhpAY37k2MEJjLS0c lczwNqae/gj7m1Bg/YOdAdbVCF9s0PjfZCUITX79EFX88Ti3vE57hwy5G+j7y1E2 pTSI/zRZlpP0fQlEomdW/lvXcDyEBbkb7csFaPgQwNbElkxMiyip/zlZUykSto2X iQBgIX846hW/LVVvFT3L0AbHZJMCIcclurcsAKfhDD5f7Dl3s+wp6sk2CKluz/fi pO+BTo0dksmzT86pV4WV+pjvVSCZdqNECkcO5uzU21FIP8R649VR67qSCIjNd4Sh 4UqcNsk= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:19 2024 by rpki-client on console-ams.rpki-client.org