$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53AF/1F49325C1DB811EB91D04319C4F9AE02/5E802AC41DB911EB90A5461AC4F9AE02.roa File: 5E802AC41DB911EB90A5461AC4F9AE02.roa (raw, json) Hash identifier: VYmAaIWXtOM49U72kqYNWP/gYJulw+7csprKEDsQLfI= Subject key identifier: 10:F8:25:F4:56:75:8F:05:4D:81:C4:86:31:70:A8:1A:61:E9:59:FB Certificate issuer: /CN=A91B53AF/serialNumber=9FAD23023A155BD25B22428063AC19787CE7C2BE Certificate serial: 0685 Authority key identifier: 9F:AD:23:02:3A:15:5B:D2:5B:22:42:80:63:AC:19:78:7C:E7:C2:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n60jAjoVW9JbIkKAY6wZeHznwr4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53AF/1F49325C1DB811EB91D04319C4F9AE02/5E802AC41DB911EB90A5461AC4F9AE02.roa Signing time: Sat 16 Mar 2024 23:02:02 +0000 ROA not before: Sat 16 Mar 2024 23:02:02 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140223 IP address blocks: 103.148.184.0/24 maxlen: 24 103.148.185.0/24 maxlen: 24 2405:d540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53AF/1F49325C1DB811EB91D04319C4F9AE02/n60jAjoVW9JbIkKAY6wZeHznwr4.crl rsync://rpki.apnic.net/member_repository/A91B53AF/1F49325C1DB811EB91D04319C4F9AE02/n60jAjoVW9JbIkKAY6wZeHznwr4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n60jAjoVW9JbIkKAY6wZeHznwr4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53AF/serialNumber=9FAD23023A155BD25B22428063AC19787CE7C2BE Validity Not Before: Mar 16 23:02:02 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f624ea-75a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:19:d6:f8:2a:33:cb:59:55:9b:03:04:85:44: ff:cc:8c:b6:21:b5:27:81:c0:80:7c:1d:02:6c:2c: 05:99:b6:02:67:d0:03:83:b5:c9:19:25:fd:11:8f: e7:3c:e0:b3:dc:46:87:55:24:35:09:f0:77:1d:09: 91:2d:55:53:ff:3a:e8:61:5b:07:55:67:b0:d1:e1: fd:5c:96:a0:c1:4c:f9:4c:9f:3a:24:89:81:84:a8: 31:ec:cb:a9:c7:53:56:4b:70:ac:82:ae:13:ee:ba: d9:54:f3:26:98:8f:a3:45:77:92:3e:94:6e:ed:7e: 5b:5a:aa:d6:af:18:4f:7c:58:a6:d3:2b:a3:86:d7: 77:01:73:f7:14:85:fb:7c:dd:11:f6:0a:0c:59:00: 62:8c:ca:ff:ef:a8:c3:ae:6f:dc:4a:6d:f0:43:f3: fc:91:1e:25:a4:45:d9:23:dc:2d:74:43:c1:bd:84: 9a:5e:46:1d:f0:c2:a5:c1:00:65:37:05:1a:fb:95: 6e:75:75:80:53:c9:c2:a8:60:12:2a:20:e2:0e:0a: dc:39:b1:f3:75:7f:c2:43:3d:01:fa:13:6d:1e:e4: b5:cc:97:74:68:c7:03:4f:9b:a9:f8:64:e0:49:15: 25:65:80:4c:dd:19:dc:5e:10:4d:1a:e0:2e:3a:f4: 93:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F8:25:F4:56:75:8F:05:4D:81:C4:86:31:70:A8:1A:61:E9:59:FB X509v3 Authority Key Identifier: keyid:9F:AD:23:02:3A:15:5B:D2:5B:22:42:80:63:AC:19:78:7C:E7:C2:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53AF/1F49325C1DB811EB91D04319C4F9AE02/n60jAjoVW9JbIkKAY6wZeHznwr4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n60jAjoVW9JbIkKAY6wZeHznwr4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53AF/1F49325C1DB811EB91D04319C4F9AE02/5E802AC41DB911EB90A5461AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.184.0/23 IPv6: 2405:d540::/32 Signature Algorithm: sha256WithRSAEncryption 18:6c:60:30:74:17:f8:d8:36:21:bf:ef:8f:b5:09:e0:ec:99: a4:1d:0c:80:b2:d0:13:78:5a:52:e9:09:31:21:01:27:46:f4: 4c:c5:bd:57:7d:05:4a:6c:92:03:11:37:cb:09:98:a2:20:66: 48:14:39:32:69:ec:cb:07:d3:03:05:4e:a5:3d:b9:b6:63:54: 4d:05:af:5b:05:07:40:82:15:34:87:5d:08:0f:a8:45:31:5d: 55:ea:ee:b2:2d:72:2c:30:3a:20:0c:5d:82:32:0c:79:0d:9a: af:e8:79:96:9a:3d:05:d9:76:7e:13:09:18:5f:ae:a1:35:df: 40:ef:10:00:6b:6d:22:02:56:53:92:6e:1d:88:74:76:9b:93: 33:be:40:39:f8:19:e0:6c:d9:ce:0d:65:d9:3c:a8:50:8d:78: 6c:85:0d:44:fe:de:72:5e:e2:e8:8d:99:f2:72:1c:41:1a:2f: de:57:1a:56:a2:be:69:c2:a4:9d:62:17:f6:50:3f:d1:c3:5b: bb:fe:6b:96:54:b5:ca:23:df:95:f7:40:e1:ee:2e:8c:2d:e4: e3:62:b8:76:95:4f:3c:96:66:12:36:07:50:5c:b6:f2:e0:ab: be:c9:ef:64:4a:f5:dc:9f:59:ae:c5:58:1d:72:cd:7c:66:41: c7:18:32:2a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQUYxMTAvBgNVBAUTKDlGQUQyMzAyM0ExNTVCRDI1QjIyNDI4MDYzQUMxOTc4 N0NFN0MyQkUwHhcNMjQwMzE2MjMwMjAyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWY2MjRlYS03NWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BnW+Cozy1lVmwMEhUT/zIy2IbUngcCAfB0CbCwFmbYCZ9ADg7XJGSX9EY/n POCz3EaHVSQ1CfB3HQmRLVVT/zroYVsHVWew0eH9XJagwUz5TJ86JImBhKgx7Mup x1NWS3Csgq4T7rrZVPMmmI+jRXeSPpRu7X5bWqrWrxhPfFim0yujhtd3AXP3FIX7 fN0R9goMWQBijMr/76jDrm/cSm3wQ/P8kR4lpEXZI9wtdEPBvYSaXkYd8MKlwQBl NwUa+5VudXWAU8nCqGASKiDiDgrcObHzdX/CQz0B+hNtHuS1zJd0aMcDT5up+GTg SRUlZYBM3RncXhBNGuAuOvSTLQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBD4JfRW dY8FTYHEhjFwqBph6Vn7MB8GA1UdIwQYMBaAFJ+tIwI6FVvSWyJCgGOsGXh858K+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBRi8xRjQ5MzI1QzFE QjgxMUVCOTFEMDQzMTlDNEY5QUUwMi9uNjBqQWpvVlc5SmJJa0tBWTZ3WmVIem53 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL242MGpBam9WVzlKYklrS0FZNndaZUh6bndyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjUzQUYvMUY0OTMyNUMxREI4MTFFQjkxRDA0MzE5QzRGOUFFMDIvNUU4MDJBQzQx REI5MTFFQjkwQTU0NjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnlLgwDQQCAAIwBwMFACQF1UAwDQYJKoZIhvcNAQELBQAD ggEBABhsYDB0F/jYNiG/74+1CeDsmaQdDICy0BN4WlLpCTEhASdG9EzFvVd9BUps kgMRN8sJmKIgZkgUOTJp7MsH0wMFTqU9ubZjVE0Fr1sFB0CCFTSHXQgPqEUxXVXq 7rItciwwOiAMXYIyDHkNmq/oeZaaPQXZdn4TCRhfrqE130DvEABrbSICVlOSbh2I dHabkzO+QDn4GeBs2c4NZdk8qFCNeGyFDUT+3nJe4uiNmfJyHEEaL95XGlaivmnC pJ1iF/ZQP9HDW7v+a5ZUtcoj35X3QOHuLowt5ONiuHaVTzyWZhI2B1BctvLgq77J 72RK9dyfWa7FWB1yzXxmQccYMio= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org