$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/E22ECDEAC4F811EAB8D31113C4F9AE02.roa File: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (raw, json) Hash identifier: tlDd7aRrzNeu6uslbfPluCcOk663EDpRsH8KL9nqlD4= Subject key identifier: 79:D4:18:91:B1:1A:E9:93:14:69:E8:9D:FC:81:29:2D:1D:FE:3A:56 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 082D Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/E22ECDEAC4F811EAB8D31113C4F9AE02.roa Signing time: Tue 20 Aug 2024 21:29:31 +0000 ROA not before: Tue 20 Aug 2024 21:29:31 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137443 IP address blocks: 103.152.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2093 (0x82d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Aug 20 21:29:31 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c50abb-72e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1a:70:60:07:7b:d8:28:78:32:aa:94:df:d9: c9:92:05:93:0e:77:5b:d0:df:d6:d7:71:f9:f7:15: e1:e9:85:97:6d:c9:43:64:28:9a:b9:8c:37:e1:d3: b6:88:f0:10:9f:df:14:87:3d:9e:db:5f:6b:eb:c0: 55:de:b8:ac:f0:63:b4:39:42:68:8d:2e:68:9e:a6: 38:e8:0c:de:c3:09:85:89:45:64:b8:e6:24:f8:42: d4:e1:fb:03:00:75:eb:0f:99:f2:52:41:64:39:44: fe:48:9c:62:b5:9c:dd:88:39:06:81:d9:05:fd:a1: a3:7a:af:3f:d3:04:52:a0:92:1e:f3:4d:d0:41:e4: 9d:16:67:b7:cc:cf:3d:e4:18:36:85:52:44:bf:56: 21:1c:43:1b:64:05:b4:53:9c:24:cb:83:29:b7:9e: 49:f5:c7:ca:b9:51:2d:97:a0:78:28:70:eb:31:38: 27:30:c0:5c:d8:af:14:12:8c:77:6a:cd:23:d2:a8: ab:6f:ee:9b:65:0a:da:c6:6e:cb:42:f3:10:43:aa: 5f:ac:e9:12:36:47:95:d2:f5:42:6e:3c:d4:e5:6d: 59:48:5f:12:19:9e:2f:4a:ff:70:cf:4a:c7:1a:d6: f8:47:40:72:89:91:bf:50:16:f6:15:a6:ca:a4:65: 31:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D4:18:91:B1:1A:E9:93:14:69:E8:9D:FC:81:29:2D:1D:FE:3A:56 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/E22ECDEAC4F811EAB8D31113C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.170.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:c6:5f:79:51:39:e4:58:44:60:b1:1d:c5:6b:6a:8d:19:f9: ab:5a:da:f9:ae:36:69:31:80:da:2b:12:c9:85:d0:3c:e4:76: 5b:28:16:77:1d:02:d4:7b:a1:60:30:d8:8c:fa:47:e5:50:95: 26:12:16:57:36:8e:65:68:45:ec:d8:e6:1e:ff:58:79:1c:a3: a4:37:99:0c:2a:fd:93:20:5b:86:75:03:06:75:fd:e3:04:a9: 1f:e7:20:e5:61:03:e3:7e:02:95:ff:58:10:52:e5:c3:2b:4e: ae:24:f5:a8:16:fe:bd:ce:44:66:fc:28:36:23:94:74:67:66: 0a:56:29:f9:3b:b0:de:bf:41:c1:58:9d:fa:a0:b4:46:8e:c5: 11:f6:b0:86:aa:67:9d:da:73:47:c7:4f:dc:76:ac:e8:63:4f: c3:5b:cc:d2:e6:aa:70:0d:83:d4:7f:67:f7:ba:81:a6:5a:dd: ca:28:de:c0:36:3c:c2:47:1d:4e:a0:3c:d0:0f:c0:a7:33:50: fa:8e:40:91:2c:87:b0:bb:7f:42:d5:61:8f:6d:a7:93:6e:a6: 87:6d:3f:e1:cb:01:ff:ca:64:2f:29:bb:6c:14:bf:ff:22:a2: ff:6c:da:09:19:cd:a0:35:e5:a6:58:b8:42:40:b5:9e:a4:6d: a1:c8:88:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjQwODIwMjEyOTMxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1MGFiYi03MmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxpwYAd72Ch4MqqU39nJkgWTDndb0N/W13H59xXh6YWXbclDZCiauYw34dO2 iPAQn98Uhz2e219r68BV3ris8GO0OUJojS5onqY46AzewwmFiUVkuOYk+ELU4fsD AHXrD5nyUkFkOUT+SJxitZzdiDkGgdkF/aGjeq8/0wRSoJIe803QQeSdFme3zM89 5Bg2hVJEv1YhHEMbZAW0U5wky4Mpt55J9cfKuVEtl6B4KHDrMTgnMMBc2K8UEox3 as0j0qirb+6bZQraxm7LQvMQQ6pfrOkSNkeV0vVCbjzU5W1ZSF8SGZ4vSv9wz0rH Gtb4R0ByiZG/UBb2FabKpGUx7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHnUGJGx GumTFGnonfyBKS0d/jpWMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJGRDkvNEFFODA0MUVCOUQ3MTFFQTlDRjUxRTVGQzRGOUFFMDIvRTIyRUNERUFD NEY4MTFFQUI4RDMxMTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmKowDQYJKoZIhvcNAQELBQADggEBAH/GX3lROeRYRGCx HcVrao0Z+ata2vmuNmkxgNorEsmF0DzkdlsoFncdAtR7oWAw2Iz6R+VQlSYSFlc2 jmVoRezY5h7/WHkco6Q3mQwq/ZMgW4Z1AwZ1/eMEqR/nIOVhA+N+ApX/WBBS5cMr Tq4k9agW/r3ORGb8KDYjlHRnZgpWKfk7sN6/QcFYnfqgtEaOxRH2sIaqZ53ac0fH T9x2rOhjT8NbzNLmqnANg9R/Z/e6gaZa3coo3sA2PMJHHU6gPNAPwKczUPqOQJEs h7C7f0LVYY9tp5NupodtP+HLAf/KZC8pu2wUv/8iov9s2gkZzaA15aZYuEJAtZ6k baHIiIo= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:57 2024 by rpki-client on console-ams.rpki-client.org