$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/5B6AD2DCF1C811ECBBC34549C4F9AE02.roa File: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (raw, json) Hash identifier: tIjRYvm7kHb3Z/vuy4/Hasw9Jy2neJdJRNnPansBj78= Subject key identifier: 18:EC:5E:BD:0A:49:94:20:CD:06:CB:74:B7:2C:78:44:1E:ED:3F:0D Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 021D Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/5B6AD2DCF1C811ECBBC34549C4F9AE02.roa Signing time: Sat 29 Jun 2024 04:14:06 +0000 ROA not before: Sat 29 Jun 2024 04:14:06 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.58.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: Jun 29 04:14:06 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667f8a0e-80bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:91:1d:9a:ff:03:18:c1:db:a4:7c:58:28: 84:f7:8a:33:25:a0:33:ce:50:fb:db:b0:8e:ae:61: 92:36:28:be:a7:f2:50:f0:f9:12:92:90:cb:83:55: 97:ec:3b:01:35:6d:dd:5b:a4:70:c8:e9:ad:7a:5e: 17:f5:41:e0:f4:df:09:91:28:1d:cf:40:83:42:1a: 19:9d:52:bf:4a:5d:0d:3b:ea:66:d3:b5:ff:40:7a: 78:3a:5f:50:20:0e:c2:4e:aa:1b:e3:0f:8e:7c:9a: d8:bf:8d:51:15:3e:bb:11:66:6e:b5:42:9d:98:4c: 26:af:9a:76:8f:d8:11:38:c9:61:5e:a7:c0:b5:2f: 00:40:bc:b0:bc:7d:bd:c4:1e:34:54:ad:81:55:cd: 52:44:a9:d6:3d:49:44:ea:08:8a:38:8b:6a:36:4f: ca:3b:bc:ad:ee:15:29:83:b9:8f:fd:71:b7:c8:e8: 9a:47:6b:fb:ea:85:81:06:60:79:54:b0:bf:f2:7a: a6:81:fa:7d:be:cd:f3:d6:a1:e3:18:7e:31:04:27: 2a:cf:c5:cd:c2:8a:bd:52:ec:61:1b:64:66:e7:0e: fe:40:df:33:ed:ef:70:d0:a1:f0:e5:8c:84:32:ac: e5:53:98:f0:c9:89:07:92:3d:c5:52:23:a3:ba:c4: 6a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EC:5E:BD:0A:49:94:20:CD:06:CB:74:B7:2C:78:44:1E:ED:3F:0D X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/5B6AD2DCF1C811ECBBC34549C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.192.0/24 Signature Algorithm: sha256WithRSAEncryption 52:df:a3:6a:8b:a4:ec:4c:53:a8:cf:ca:e6:3f:48:91:42:fe: 21:35:42:d6:33:18:3c:2b:d9:3f:ce:af:da:71:f5:95:d1:e0: b3:67:ff:f9:5e:af:9d:ec:84:4f:49:ca:24:c6:8a:01:ca:ba: 42:99:44:4b:dc:98:e4:63:50:60:d3:a8:32:f0:9f:ef:99:5c: 81:7c:75:f9:e3:f0:de:29:f1:17:da:42:15:78:5c:fd:7c:31: ee:6a:79:cc:f7:33:76:3f:17:1d:3b:46:b1:c9:f8:b2:18:fe: 3e:5f:92:2e:12:6d:b7:dd:96:01:bb:f4:f7:ab:c9:dc:f0:91: d3:cd:1e:4f:ac:4d:77:ca:86:56:de:f3:1e:2c:8b:fe:48:1a: d9:df:b9:e1:c2:b4:f7:5f:7f:ff:79:6d:ab:bf:f4:ff:b7:7b: c1:13:87:98:1e:5a:b0:86:9f:82:36:50:4d:7a:fa:d2:1d:6c: 0b:5e:44:83:cc:9e:ee:2c:5d:e2:55:8c:a5:fa:fc:90:bd:a1: 52:ef:d4:27:cd:45:cf:2f:7a:1a:6f:d5:ac:a8:f6:11:32:08: 3b:17:e4:9f:c6:ac:42:c9:3e:a4:64:86:90:d8:26:ab:cf:62: 4c:d0:bb:76:ec:d2:ab:51:fc:50:50:8f:df:fe:bc:6e:83:92: 2c:1d:bb:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjQwNjI5MDQxNDA2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmOGEwZS04MGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw52RHZr/AxjB26R8WCiE94ozJaAzzlD727COrmGSNii+p/JQ8PkSkpDLg1WX 7DsBNW3dW6RwyOmtel4X9UHg9N8JkSgdz0CDQhoZnVK/Sl0NO+pm07X/QHp4Ol9Q IA7CTqob4w+OfJrYv41RFT67EWZutUKdmEwmr5p2j9gROMlhXqfAtS8AQLywvH29 xB40VK2BVc1SRKnWPUlE6giKOItqNk/KO7yt7hUpg7mP/XG3yOiaR2v76oWBBmB5 VLC/8nqmgfp9vs3z1qHjGH4xBCcqz8XNwoq9UuxhG2Rm5w7+QN8z7e9w0KHw5YyE MqzlU5jwyYkHkj3FUiOjusRq8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBjsXr0K SZQgzQbLdLcseEQe7T8NMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY1QzAvQkNCRDRGQjZGMUMyMTFFQ0ExNjNGRDQyQzRGOUFFMDIvNUI2QUQyRENG MUM4MTFFQ0JCQzM0NTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOsAwDQYJKoZIhvcNAQELBQADggEBAFLfo2qLpOxMU6jP yuY/SJFC/iE1QtYzGDwr2T/Or9px9ZXR4LNn//ler53shE9JyiTGigHKukKZREvc mORjUGDTqDLwn++ZXIF8dfnj8N4p8RfaQhV4XP18Me5qecz3M3Y/Fx07RrHJ+LIY /j5fki4SbbfdlgG79PerydzwkdPNHk+sTXfKhlbe8x4si/5IGtnfueHCtPdff/95 bau/9P+3e8ETh5geWrCGn4I2UE16+tIdbAteRIPMnu4sXeJVjKX6/JC9oVLv1CfN Rc8vehpv1ayo9hEyCDsX5J/GrELJPqRkhpDYJqvPYkzQu3bs0qtR/FBQj9/+vG6D kiwduxk= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:51 2024 by rpki-client on console-ams.rpki-client.org