$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/F1A54AC47A5611EB876D281FC4F9AE02.roa File: F1A54AC47A5611EB876D281FC4F9AE02.roa (raw, json) Hash identifier: LbbFjEbhHg5fzKZNW2jokQ6UuaIS/rDPKgFU2q0pJeg= Subject key identifier: 7A:33:01:13:BD:52:D7:0C:2D:DC:6B:A0:92:41:37:46:08:EA:AD:D6 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 082B Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/F1A54AC47A5611EB876D281FC4F9AE02.roa Signing time: Tue 20 Aug 2024 21:29:30 +0000 ROA not before: Tue 20 Aug 2024 21:29:30 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132825 IP address blocks: 103.152.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2091 (0x82b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Aug 20 21:29:30 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c50aba-0612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5c:09:51:fd:69:71:0b:c5:56:a7:66:a7:da: 52:97:03:57:fd:5f:cf:01:b6:e1:5b:a8:2d:f6:10: fa:7c:22:72:0d:ee:87:9a:ed:c5:73:27:13:07:a0: f2:98:fa:20:f5:40:a8:63:4d:21:e5:f0:0b:84:bc: a2:9f:1b:78:b5:7f:8b:7b:4a:49:6c:db:ef:2a:70: 39:e4:20:4b:c1:a3:8b:8a:33:39:3f:1d:d8:27:1b: 8d:10:a2:79:d7:e7:24:73:ba:05:0e:ab:df:0f:68: ff:18:33:88:59:4c:5b:57:c1:ac:5d:4a:37:26:7a: 48:e5:df:a8:7e:10:57:66:43:a5:35:b1:0d:27:47: 8c:56:c4:37:ba:23:b4:5f:e8:92:df:a7:3e:a9:9a: cb:dc:6a:19:94:e0:e9:a5:43:57:c9:60:40:bd:c9: 39:c5:52:13:bd:6d:e4:ae:dd:16:3b:d4:bf:6b:76: 61:9c:65:c7:b7:0e:29:fb:1c:f1:8f:7e:45:23:0e: 5d:02:b8:b4:0e:bb:11:53:35:5d:8e:de:00:e7:aa: be:ea:55:6a:52:08:1c:ee:d6:c4:3b:63:46:57:bf: 2e:fa:dd:08:de:93:e3:9b:53:4d:18:0d:97:34:55: 0b:e7:c9:34:5f:bb:c1:93:d2:b4:34:70:fa:c1:e5: 56:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:33:01:13:BD:52:D7:0C:2D:DC:6B:A0:92:41:37:46:08:EA:AD:D6 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/F1A54AC47A5611EB876D281FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.170.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:ca:ec:16:40:8e:35:46:50:1e:05:d6:93:66:d3:56:cd:a4: 0f:05:df:b9:dd:f8:a7:48:cd:fa:84:17:4b:f4:e1:a8:5c:89: ad:bb:1e:17:8f:fb:a9:e6:f9:25:69:ae:70:64:ff:40:4e:47: 08:22:b1:01:2d:fd:71:c0:c5:33:da:20:f3:2a:29:3a:8f:ab: dd:f5:21:09:b6:d6:ee:72:78:5e:1d:72:4c:02:e7:51:54:a9: 84:8a:bd:c2:2e:aa:42:1a:db:60:88:04:5b:25:29:d5:3e:2b: 92:54:e1:6e:02:7c:69:90:b2:e2:60:16:49:46:c0:a4:89:05: c9:66:bc:3f:e5:3a:cf:86:ed:18:62:7e:2b:4a:c7:4d:f4:b2: a2:7d:c8:99:6e:e0:be:4e:c3:84:63:d6:7a:3f:85:58:ba:97: 3b:10:6a:c6:5b:9c:4d:2a:c9:66:23:72:d8:e8:e8:1f:d7:7d: f4:7b:df:fa:85:6e:76:44:35:42:5f:af:d5:3b:5c:f0:ff:fc: 08:2c:b2:ce:e2:ac:62:42:33:12:de:b9:32:e0:bb:53:d9:18: 07:3e:c0:9d:8e:af:6c:f7:e4:ac:4e:14:c9:d8:34:86:1a:a7: 39:9d:cd:e1:b4:5d:2e:5f:2b:b1:84:24:e7:97:e4:9f:ab:67: fa:1d:e9:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjQwODIwMjEyOTMwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1MGFiYS0wNjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlwJUf1pcQvFVqdmp9pSlwNX/V/PAbbhW6gt9hD6fCJyDe6Hmu3FcycTB6Dy mPog9UCoY00h5fALhLyinxt4tX+Le0pJbNvvKnA55CBLwaOLijM5Px3YJxuNEKJ5 1+ckc7oFDqvfD2j/GDOIWUxbV8GsXUo3JnpI5d+ofhBXZkOlNbENJ0eMVsQ3uiO0 X+iS36c+qZrL3GoZlODppUNXyWBAvck5xVITvW3krt0WO9S/a3ZhnGXHtw4p+xzx j35FIw5dAri0DrsRUzVdjt4A56q+6lVqUggc7tbEO2NGV78u+t0I3pPjm1NNGA2X NFUL58k0X7vBk9K0NHD6weVWEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHozARO9 UtcMLdxroJJBN0YI6q3WMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJGRDkvNEFFODA0MUVCOUQ3MTFFQTlDRjUxRTVGQzRGOUFFMDIvRjFBNTRBQzQ3 QTU2MTFFQjg3NkQyODFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmKowDQYJKoZIhvcNAQELBQADggEBAC3K7BZAjjVGUB4F 1pNm01bNpA8F37nd+KdIzfqEF0v04ahcia27HheP+6nm+SVprnBk/0BORwgisQEt /XHAxTPaIPMqKTqPq931IQm21u5yeF4dckwC51FUqYSKvcIuqkIa22CIBFslKdU+ K5JU4W4CfGmQsuJgFklGwKSJBclmvD/lOs+G7RhifitKx030sqJ9yJlu4L5Ow4Rj 1no/hVi6lzsQasZbnE0qyWYjctjo6B/XffR73/qFbnZENUJfr9U7XPD//Agsss7i rGJCMxLeuTLgu1PZGAc+wJ2Or2z35KxOFMnYNIYapzmdzeG0XS5fK7GEJOeX5J+r Z/od6bU= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:57 2024 by rpki-client on console-ams.rpki-client.org