$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/3A489388B4F511EC83B0B46AC4F9AE02.roa File: 3A489388B4F511EC83B0B46AC4F9AE02.roa (raw, json) Hash identifier: G/uDm13Bf6tJyVNQOP+pm5ESZ5VRhWW8Z+gH8Z0T6aw= Subject key identifier: 30:16:44:03:C4:F0:19:AE:95:D6:6B:33:E0:73:4A:FD:71:71:D9:A9 Certificate issuer: /CN=A91B5C70/serialNumber=B8E549698953F65E71FB84B6D338C08AC1781A5A Certificate serial: 08D6 Authority key identifier: B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/3A489388B4F511EC83B0B46AC4F9AE02.roa Signing time: Sun 02 Jun 2024 22:28:33 +0000 ROA not before: Sun 02 Jun 2024 22:28:33 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 141723 IP address blocks: 103.151.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.crl rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2262 (0x8d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5C70/serialNumber=B8E549698953F65E71FB84B6D338C08AC1781A5A Validity Not Before: Jun 2 22:28:33 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665cf211-e2a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7b:91:e8:d4:1e:7c:a6:fc:46:b6:72:cc:fc: 74:96:56:c1:c7:6b:82:dd:3d:19:64:cc:7b:82:e6: b4:56:20:7e:61:31:4e:ab:11:53:a0:d4:f6:2c:c2: d6:e0:65:b2:32:0d:a8:22:98:ba:a9:3c:25:1c:e7: 6e:6e:ab:42:d5:d5:29:e9:c5:61:2d:0a:19:4b:0e: 2a:b4:87:b7:22:88:06:26:aa:0e:85:75:c8:e8:ed: 7d:74:e3:2f:01:26:64:e3:1f:3c:1c:96:27:c8:e7: 9d:a1:a5:da:1d:c7:45:46:c6:b3:c2:df:16:f9:2f: 2c:6e:ff:1b:87:6b:43:fb:5f:f7:4b:31:5a:4b:3b: 4e:9c:f6:be:9f:74:94:4e:2c:61:08:0e:ef:53:c9: 08:18:ac:e6:73:50:59:25:88:23:f5:a3:0c:eb:9e: 47:a1:0f:08:52:58:6b:61:7e:ad:2f:0c:f7:93:ca: f0:4c:91:8a:8c:46:da:88:d6:7b:3b:ec:fd:bd:4f: 4f:a1:5b:7c:2a:d2:f9:a8:78:2b:fd:34:b5:d7:d3: ab:8e:bb:84:70:ef:c4:8e:11:da:b1:f1:2f:ee:dc: 1d:e3:b1:91:ed:d4:e2:c5:40:18:3b:1f:d4:4c:c4: 84:24:cf:b7:09:77:4d:5a:e0:e6:69:a8:7c:e1:b7: c4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:16:44:03:C4:F0:19:AE:95:D6:6B:33:E0:73:4A:FD:71:71:D9:A9 X509v3 Authority Key Identifier: keyid:B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/3A489388B4F511EC83B0B46AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.61.0/24 Signature Algorithm: sha256WithRSAEncryption 59:4c:0e:7b:91:9b:20:ed:ad:ab:2b:69:46:5c:cd:fa:11:b1: 9d:d3:78:fb:d9:1a:ce:c2:f4:44:52:a3:59:7c:16:00:4f:67: c5:ff:a6:97:32:a3:41:df:a9:a6:b7:f7:77:4f:95:69:f4:b0: 48:02:2d:43:8a:47:2d:c0:2a:3f:b2:41:c0:43:b8:90:fc:50: 00:5e:b4:0a:48:f9:d9:e1:24:0d:84:0b:db:e7:e4:54:1d:f8: 8b:cc:48:22:6e:b1:d9:01:2d:70:86:80:21:f1:c2:71:17:66: d4:1f:bc:43:c9:e9:d8:4e:b6:ae:2c:26:c8:b8:20:b2:78:dd: 21:45:1d:66:22:f6:02:d7:03:9d:ff:3a:88:df:f8:66:b3:f6: 7f:db:3f:3b:ec:f7:68:97:1a:e0:f8:ca:7d:ed:61:8e:5b:a5: 92:8f:8c:ed:0c:ef:d9:63:7a:ea:f1:f3:dd:64:88:c4:7f:e0: 84:56:a0:e1:8f:44:d3:1d:96:b6:5e:45:f6:44:e2:eb:b9:85: a3:9c:a7:99:5e:ec:a6:af:72:fa:39:b0:29:99:13:f4:28:f9: 5c:37:39:dd:18:4d:86:6b:11:87:15:ba:14:d3:80:90:a1:2c: 02:d0:41:b9:fe:e2:1d:26:75:4d:74:98:c9:01:44:a5:10:85: e4:31:03:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDNzAxMTAvBgNVBAUTKEI4RTU0OTY5ODk1M0Y2NUU3MUZCODRCNkQzMzhDMDhB QzE3ODFBNUEwHhcNMjQwNjAyMjIyODMzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjZjIxMS1lMmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53uR6NQefKb8RrZyzPx0llbBx2uC3T0ZZMx7gua0ViB+YTFOqxFToNT2LMLW 4GWyMg2oIpi6qTwlHOdubqtC1dUp6cVhLQoZSw4qtIe3IogGJqoOhXXI6O19dOMv ASZk4x88HJYnyOedoaXaHcdFRsazwt8W+S8sbv8bh2tD+1/3SzFaSztOnPa+n3SU TixhCA7vU8kIGKzmc1BZJYgj9aMM655HoQ8IUlhrYX6tLwz3k8rwTJGKjEbaiNZ7 O+z9vU9PoVt8KtL5qHgr/TS119OrjruEcO/EjhHasfEv7twd47GR7dTixUAYOx/U TMSEJM+3CXdNWuDmaah84bfEeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDAWRAPE 8BmuldZrM+BzSv1xcdmpMB8GA1UdIwQYMBaAFLjlSWmJU/ZecfuEttM4wIrBeBpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUM3MC8yM0EwQUMwNjkx MDcxMUVBQTNFOTNBNUJDNEY5QUUwMi91T1ZKYVlsVDlsNXgtNFMyMHpqQWlzRjRH bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPVkphWWxUOWw1eC00UzIwempBaXNGNEdsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVDNzAvMjNBMEFDMDY5MTA3MTFFQUEzRTkzQTVCQzRGOUFFMDIvM0E0ODkzODhC NEY1MTFFQzgzQjBCNDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlz0wDQYJKoZIhvcNAQELBQADggEBAFlMDnuRmyDtrasr aUZczfoRsZ3TePvZGs7C9ERSo1l8FgBPZ8X/ppcyo0Hfqaa393dPlWn0sEgCLUOK Ry3AKj+yQcBDuJD8UABetApI+dnhJA2EC9vn5FQd+IvMSCJusdkBLXCGgCHxwnEX ZtQfvEPJ6dhOtq4sJsi4ILJ43SFFHWYi9gLXA53/Oojf+Gaz9n/bPzvs92iXGuD4 yn3tYY5bpZKPjO0M79ljeurx891kiMR/4IRWoOGPRNMdlrZeRfZE4uu5haOcp5le 7Kavcvo5sCmZE/Qo+Vw3Od0YTYZrEYcVuhTTgJChLALQQbn+4h0mdU10mMkBRKUQ heQxA7w= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org