$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/3F2B1C3AB48E11EBB0455C2DC4F9AE02.roa File: 3F2B1C3AB48E11EBB0455C2DC4F9AE02.roa (raw, json) Hash identifier: sivEYBO7PXdxBzs49Sa2/GKGpQYDM3gFjYXpi1+OrJA= Subject key identifier: 55:DD:B0:A8:FC:B0:77:1A:6A:7E:F2:6E:3E:BA:5B:84:29:E9:8B:07 Certificate issuer: /CN=A91B7C0E/serialNumber=9FD2E866B1EB82277AB6F562FE32E08359B30165 Certificate serial: 05E7 Authority key identifier: 9F:D2:E8:66:B1:EB:82:27:7A:B6:F5:62:FE:32:E0:83:59:B3:01:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n9LoZrHrgid6tvVi_jLgg1mzAWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/3F2B1C3AB48E11EBB0455C2DC4F9AE02.roa Signing time: Sat 15 Jun 2024 00:55:32 +0000 ROA not before: Sat 15 Jun 2024 00:55:32 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 213035 IP address blocks: 103.151.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/n9LoZrHrgid6tvVi_jLgg1mzAWU.crl rsync://rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/n9LoZrHrgid6tvVi_jLgg1mzAWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n9LoZrHrgid6tvVi_jLgg1mzAWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1511 (0x5e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7C0E/serialNumber=9FD2E866B1EB82277AB6F562FE32E08359B30165 Validity Not Before: Jun 15 00:55:32 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666ce684-3e09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:dd:74:58:1c:ed:7a:11:d5:04:7e:39:50:c1: 63:11:39:ea:9e:51:6f:f3:9a:83:20:16:23:92:99: 6f:9f:78:cc:23:38:1a:01:ba:1b:02:0d:d6:49:75: 21:d8:60:60:d7:f5:8a:98:52:40:bd:82:6b:ab:16: a6:c3:46:89:17:76:93:84:e3:8d:0f:03:4c:71:29: 65:1b:39:d6:9d:0f:fd:d1:08:31:82:d2:e0:1e:46: 52:b6:dc:0c:40:60:f2:f9:dd:b4:03:8f:e5:12:8c: df:cd:26:ae:d9:e2:58:c0:02:66:30:49:ea:4e:a5: 9c:f7:b1:91:f4:9e:f6:5f:84:b7:08:f1:91:0c:c3: e1:4b:fb:ab:eb:66:98:86:55:97:f6:37:19:17:da: 6c:3c:f9:41:e0:3c:ac:0e:b2:f9:62:ef:ed:c5:84: 31:47:04:df:52:37:1b:9b:f1:d3:fc:7f:9e:e9:2a: 7d:15:a9:e7:91:8f:c9:f8:55:a1:28:7f:cd:bc:8b: d7:85:53:72:61:53:8c:36:a1:93:46:46:d1:df:60: ff:a4:39:68:ac:70:cd:2e:d2:76:4a:f1:40:bd:9f: f5:36:53:e3:22:6e:45:3f:96:f1:15:a7:80:be:ee: a8:6c:d4:d3:d1:6e:fe:a0:4b:21:a9:5b:7e:f5:71: 65:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:DD:B0:A8:FC:B0:77:1A:6A:7E:F2:6E:3E:BA:5B:84:29:E9:8B:07 X509v3 Authority Key Identifier: keyid:9F:D2:E8:66:B1:EB:82:27:7A:B6:F5:62:FE:32:E0:83:59:B3:01:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/n9LoZrHrgid6tvVi_jLgg1mzAWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n9LoZrHrgid6tvVi_jLgg1mzAWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/3F2B1C3AB48E11EBB0455C2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.41.0/24 Signature Algorithm: sha256WithRSAEncryption 94:cb:e0:22:c5:5f:ad:17:6a:bd:85:05:2c:d6:e0:99:22:47: a6:84:df:8b:f4:ee:20:c6:61:b4:49:26:7a:2c:f5:10:66:22: 37:17:3f:b0:53:76:47:48:b5:fe:92:ff:e9:50:ed:42:23:fd: 6d:f0:ed:52:97:db:4d:95:d4:5b:a8:3d:b5:8f:f0:35:46:d0: 7b:bf:b8:ef:b3:ef:b3:21:e2:19:75:cb:e2:17:fd:6c:b3:22: b5:ec:f7:ef:74:2f:27:63:5b:f0:2c:23:8f:48:73:61:8d:c7: e5:23:80:f7:7b:14:15:48:8c:81:46:01:cc:af:f0:ac:9f:4e: 2d:58:84:d9:76:a8:31:eb:38:26:97:23:87:fb:53:00:f0:b9: 13:4e:0d:1c:20:3f:ad:ab:c3:ca:74:dc:75:9c:a2:25:f6:22: fb:2e:d6:55:52:03:63:f0:4d:dc:82:46:88:3d:77:c4:37:19: 8e:39:6b:88:f7:d7:ef:5d:e9:11:c1:4a:e2:59:c1:7f:26:31: 91:14:34:cf:26:4d:3c:8e:df:34:8a:8c:c2:d6:68:07:08:ca: f0:97:4f:98:b7:56:f0:2d:ac:2d:59:dc:8d:fe:de:6b:d4:a3: f2:a8:5a:10:2e:3a:e9:5a:f4:cb:50:89:c4:71:d8:43:3f:c7: 1e:93:13:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdDMEUxMTAvBgNVBAUTKDlGRDJFODY2QjFFQjgyMjc3QUI2RjU2MkZFMzJFMDgz NTlCMzAxNjUwHhcNMjQwNjE1MDA1NTMyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZjZTY4NC0zZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7N10WBztehHVBH45UMFjETnqnlFv85qDIBYjkplvn3jMIzgaAbobAg3WSXUh 2GBg1/WKmFJAvYJrqxamw0aJF3aThOONDwNMcSllGznWnQ/90QgxgtLgHkZSttwM QGDy+d20A4/lEozfzSau2eJYwAJmMEnqTqWc97GR9J72X4S3CPGRDMPhS/ur62aY hlWX9jcZF9psPPlB4DysDrL5Yu/txYQxRwTfUjcbm/HT/H+e6Sp9FannkY/J+FWh KH/NvIvXhVNyYVOMNqGTRkbR32D/pDlorHDNLtJ2SvFAvZ/1NlPjIm5FP5bxFaeA vu6obNTT0W7+oEshqVt+9XFlTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFXdsKj8 sHcaan7ybj66W4Qp6YsHMB8GA1UdIwQYMBaAFJ/S6Gax64Inerb1Yv4y4INZswFl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0MwRS9FRTU5RTdGNDgw RjkxMUVCOTg1RjQzM0FDNEY5QUUwMi9uOUxvWnJIcmdpZDZ0dlZpX2pMZ2cxbXpB V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL245TG9ackhyZ2lkNnR2VmlfakxnZzFtekFXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdDMEUvRUU1OUU3RjQ4MEY5MTFFQjk4NUY0MzNBQzRGOUFFMDIvM0YyQjFDM0FC NDhFMTFFQkIwNDU1QzJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlykwDQYJKoZIhvcNAQELBQADggEBAJTL4CLFX60Xar2F BSzW4JkiR6aE34v07iDGYbRJJnos9RBmIjcXP7BTdkdItf6S/+lQ7UIj/W3w7VKX 202V1FuoPbWP8DVG0Hu/uO+z77Mh4hl1y+IX/WyzIrXs9+90LydjW/AsI49Ic2GN x+UjgPd7FBVIjIFGAcyv8KyfTi1YhNl2qDHrOCaXI4f7UwDwuRNODRwgP62rw8p0 3HWcoiX2Ivsu1lVSA2PwTdyCRog9d8Q3GY45a4j31+9d6RHBSuJZwX8mMZEUNM8m TTyO3zSKjMLWaAcIyvCXT5i3VvAtrC1Z3I3+3mvUo/KoWhAuOula9MtQicRx2EM/ xx6TE/Q= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:51 2024 by rpki-client on console-ams.rpki-client.org