$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/6AE50E1C21E011EBBF36CD21C4F9AE02.roa File: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (raw, json) Hash identifier: Lg2iSZUiBgCc3+l3q9JExUq+jxWe1fvszct9oy4Ys3k= Subject key identifier: 7C:B1:AA:11:08:CF:E6:B4:FE:70:91:5A:56:8B:92:ED:50:51:F7:07 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 082C Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/6AE50E1C21E011EBBF36CD21C4F9AE02.roa Signing time: Tue 20 Aug 2024 21:29:30 +0000 ROA not before: Tue 20 Aug 2024 21:29:30 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135386 IP address blocks: 103.152.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Aug 20 21:29:30 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c50aba-d189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:4c:bb:fa:b0:97:47:3a:11:7d:98:fd:56: 75:6e:81:ed:41:0e:c8:56:22:c3:34:2d:3e:2b:0b: a1:0c:d1:a1:70:58:17:90:a9:0c:c8:75:3c:42:f9: f3:97:2b:7c:f5:85:8f:a8:ec:6b:12:b3:4e:0d:bb: 4f:fd:1d:ef:f1:65:65:c1:4b:03:ab:0e:e4:d6:4c: e3:75:b4:72:b3:15:8a:11:c4:de:c5:e3:07:d9:da: ca:57:7b:b9:3c:75:eb:6c:55:21:d1:ac:8c:d0:d7: 92:f6:7c:86:d5:dc:de:94:15:92:4f:2a:c3:88:87: c7:b5:3f:da:65:b0:f1:1c:84:5e:4d:0f:0b:6d:74: 73:c9:2b:e8:c7:fc:e6:7c:f9:87:76:94:92:a5:9c: 24:d7:84:71:d4:be:52:96:30:48:49:3d:a5:1f:b6: 2c:5f:7e:dc:f7:90:00:42:31:d1:c6:6f:75:f2:35: 37:27:b0:f0:46:1e:85:36:76:d1:fd:1b:43:32:42: 39:8e:1d:bb:59:70:83:b5:4a:f9:02:d1:60:95:1f: 9a:4a:54:4f:ad:7c:ef:f5:3c:ac:e5:da:b6:59:87: 11:43:43:4e:13:aa:df:dc:fd:fd:76:57:da:11:50: b6:02:f6:bc:66:0c:8c:e5:e6:b6:2b:7a:80:6b:5d: e5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:B1:AA:11:08:CF:E6:B4:FE:70:91:5A:56:8B:92:ED:50:51:F7:07 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/6AE50E1C21E011EBBF36CD21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.170.0/23 Signature Algorithm: sha256WithRSAEncryption 15:80:f5:db:04:dc:c9:bd:2a:c5:89:31:38:35:13:de:6c:1f: dc:47:69:a7:a0:6a:b5:49:8f:44:e6:44:93:6b:9f:63:0a:5e: da:94:29:05:e3:4d:a4:16:87:b9:46:54:6d:6c:0a:a4:89:4a: ff:54:af:4a:7d:c3:57:2e:25:ae:21:e2:60:02:8a:b7:08:46: 5b:2b:b0:e0:bb:39:57:51:01:a5:2b:35:79:a9:ab:4d:9c:51: d7:cb:cc:5a:ca:32:91:26:c2:dd:0a:29:ff:e5:06:ce:92:4e: 5c:0e:26:d1:06:6e:8b:47:d1:e2:2e:2c:94:e6:06:7c:86:03: ad:db:ab:6e:51:19:e0:03:f1:fb:69:03:bd:ee:5e:4d:60:5c: 7a:3c:64:25:11:06:5e:c4:d3:b8:e9:6f:7b:32:b9:10:1e:36: 60:1c:72:fb:79:21:7e:9e:9e:1e:da:b9:7b:a4:46:56:4f:f1: 4e:4f:09:af:91:01:0c:f0:c8:44:2b:23:4e:3b:1e:55:af:72: d5:b2:e2:63:cd:06:2e:04:89:d3:61:35:fc:4f:d0:03:af:57: 07:37:16:57:f7:5c:76:3e:a2:1f:34:9f:81:01:b1:7b:d5:8c: 54:bc:94:f1:b5:19:06:fd:86:82:30:0e:e2:e0:5b:2a:78:1c: 51:9f:92:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjQwODIwMjEyOTMwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1MGFiYS1kMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxdMu/qwl0c6EX2Y/VZ1boHtQQ7IViLDNC0+KwuhDNGhcFgXkKkMyHU8Qvnz lyt89YWPqOxrErNODbtP/R3v8WVlwUsDqw7k1kzjdbRysxWKEcTexeMH2drKV3u5 PHXrbFUh0ayM0NeS9nyG1dzelBWSTyrDiIfHtT/aZbDxHIReTQ8LbXRzySvox/zm fPmHdpSSpZwk14Rx1L5SljBIST2lH7YsX37c95AAQjHRxm918jU3J7DwRh6FNnbR /RtDMkI5jh27WXCDtUr5AtFglR+aSlRPrXzv9Tys5dq2WYcRQ0NOE6rf3P39dlfa EVC2Ava8ZgyM5ea2K3qAa13lqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHyxqhEI z+a0/nCRWlaLku1QUfcHMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJGRDkvNEFFODA0MUVCOUQ3MTFFQTlDRjUxRTVGQzRGOUFFMDIvNkFFNTBFMUMy MUUwMTFFQkJGMzZDRDIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmKowDQYJKoZIhvcNAQELBQADggEBABWA9dsE3Mm9KsWJ MTg1E95sH9xHaaegarVJj0TmRJNrn2MKXtqUKQXjTaQWh7lGVG1sCqSJSv9Ur0p9 w1cuJa4h4mACircIRlsrsOC7OVdRAaUrNXmpq02cUdfLzFrKMpEmwt0KKf/lBs6S TlwOJtEGbotH0eIuLJTmBnyGA63bq25RGeAD8ftpA73uXk1gXHo8ZCURBl7E07jp b3syuRAeNmAccvt5IX6enh7auXukRlZP8U5PCa+RAQzwyEQrI047HlWvctWy4mPN Bi4EidNhNfxP0AOvVwc3Flf3XHY+oh80n4EBsXvVjFS8lPG1GQb9hoIwDuLgWyp4 HFGfkqg= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:44 2024 by rpki-client on console-fra.rpki-client.org