$ rpki-client -vvf rpki.apnic.net/member_repository/A91C05E4/78A4D446054611EE95ED7A83C4F9AE02/91BD6980054A11EEAC0B1484C4F9AE02.roa File: 91BD6980054A11EEAC0B1484C4F9AE02.roa (raw, json) Hash identifier: 4lTwXJNy8UAsVUNrxw2jbFpsl+WyFB6Z2ysqzLuaypw= Subject key identifier: EE:39:15:C8:D9:31:2F:DA:F6:F5:4B:9B:CA:A7:6E:55:58:EF:5C:B0 Certificate issuer: /CN=A91C05E4/serialNumber=4D406D4EB184D66A4E2DE900FD4C7AEA5C9C7159 Certificate serial: 6B Authority key identifier: 4D:40:6D:4E:B1:84:D6:6A:4E:2D:E9:00:FD:4C:7A:EA:5C:9C:71:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUBtTrGE1mpOLekA_Ux66lyccVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C05E4/78A4D446054611EE95ED7A83C4F9AE02/91BD6980054A11EEAC0B1484C4F9AE02.roa Signing time: Fri 29 Dec 2023 05:47:25 +0000 ROA not before: Fri 29 Dec 2023 05:47:25 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141361 IP address blocks: 103.157.154.0/24 maxlen: 24 103.157.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C05E4/78A4D446054611EE95ED7A83C4F9AE02/TUBtTrGE1mpOLekA_Ux66lyccVk.crl rsync://rpki.apnic.net/member_repository/A91C05E4/78A4D446054611EE95ED7A83C4F9AE02/TUBtTrGE1mpOLekA_Ux66lyccVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUBtTrGE1mpOLekA_Ux66lyccVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C05E4/serialNumber=4D406D4EB184D66A4E2DE900FD4C7AEA5C9C7159 Validity Not Before: Dec 29 05:47:25 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=658e5d6d-d6f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6b:76:d5:7a:44:70:87:97:8f:4b:5e:bb:01: 81:d5:72:bb:93:1d:4c:3c:92:45:60:01:2e:5c:91: 8c:a3:c7:fb:83:11:f9:6a:fb:d4:51:b3:f1:ce:6f: 4f:c4:dc:ff:45:68:0c:12:7d:e7:25:8e:82:93:45: dc:26:28:a3:63:e5:5c:3f:5b:7b:11:b1:ee:63:d4: 89:99:c4:e3:74:43:53:41:ae:d3:d1:5b:9c:b6:99: d3:19:bb:6e:40:08:17:3d:ec:08:19:1e:35:6e:5f: e0:e4:b6:29:7d:68:00:3c:f1:e3:0e:a5:9f:b9:61: 15:1d:4f:16:1c:7b:01:f9:4f:8c:2f:af:ff:2a:98: 2e:6f:bb:1a:0c:4a:e1:a0:32:4d:a9:c3:60:83:76: 71:dc:da:92:34:cf:d8:65:49:35:ad:33:f6:14:db: 39:99:6c:d8:85:fc:f8:5f:b2:a0:65:e1:69:fe:31: cb:e2:50:c0:39:7d:59:97:e6:ee:87:ca:97:66:55: 5c:09:ce:5a:b2:23:aa:bd:68:22:30:37:73:9f:ab: 18:09:b2:ac:10:6f:39:62:58:47:46:95:24:05:a0: 5e:25:20:ff:f4:a7:09:65:7c:cd:53:b3:2e:db:91: 65:22:29:72:3c:96:9f:7c:8f:56:90:82:a0:5d:9b: 92:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:39:15:C8:D9:31:2F:DA:F6:F5:4B:9B:CA:A7:6E:55:58:EF:5C:B0 X509v3 Authority Key Identifier: keyid:4D:40:6D:4E:B1:84:D6:6A:4E:2D:E9:00:FD:4C:7A:EA:5C:9C:71:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C05E4/78A4D446054611EE95ED7A83C4F9AE02/TUBtTrGE1mpOLekA_Ux66lyccVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUBtTrGE1mpOLekA_Ux66lyccVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C05E4/78A4D446054611EE95ED7A83C4F9AE02/91BD6980054A11EEAC0B1484C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.154.0/23 Signature Algorithm: sha256WithRSAEncryption 81:88:71:8f:66:a3:02:ca:21:52:c7:83:f6:10:48:0e:2b:ff: e1:a1:ac:7c:32:60:f4:81:53:87:2c:55:34:cc:2c:5d:1e:28: ae:da:fd:b8:c3:ba:8b:24:64:0e:54:4d:77:c6:d0:d1:04:9f: 20:e7:ff:6f:98:63:f0:97:c2:87:13:47:f0:9d:24:8f:e6:c6: 3b:57:e6:e9:4c:2f:3a:3c:4c:81:04:be:f4:33:45:97:14:fa: b9:3c:0c:9b:cc:15:7f:0d:fb:00:fe:03:47:70:8f:fd:80:8d: 32:66:e3:a7:89:58:91:70:56:2e:9f:5f:1f:0a:ee:67:06:9b: 5c:5d:33:e5:81:2c:f6:b0:b2:0e:c4:dd:80:5f:6f:17:82:ff: e1:a4:61:a3:9f:1d:16:a5:78:a2:0c:a1:e5:5e:08:e7:f5:91: a7:ac:37:9b:ef:23:ec:21:3a:e5:df:c8:e6:51:db:ba:f3:40: 72:c4:4c:98:ae:cb:2c:7f:cd:b5:76:20:59:98:bb:2a:84:4c: 84:de:be:a3:63:05:38:bf:dd:82:21:af:76:df:e1:43:f2:ce: 7a:ed:a9:de:46:47:a9:0f:ae:aa:79:83:d2:57:18:4c:1e:dc: 42:2f:af:48:c2:71:af:a8:41:f1:74:df:1d:15:66:f1:c1:f1: 1b:4b:09:ec -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDVFNDExMC8GA1UEBRMoNEQ0MDZENEVCMTg0RDY2QTRFMkRFOTAwRkQ0QzdBRUE1 QzlDNzE1OTAeFw0yMzEyMjkwNTQ3MjVaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OGU1ZDZkLWQ2ZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8a3bVekRwh5ePS167AYHVcruTHUw8kkVgAS5ckYyjx/uDEflq+9RRs/HOb0/E 3P9FaAwSfecljoKTRdwmKKNj5Vw/W3sRse5j1ImZxON0Q1NBrtPRW5y2mdMZu25A CBc97AgZHjVuX+Dktil9aAA88eMOpZ+5YRUdTxYcewH5T4wvr/8qmC5vuxoMSuGg Mk2pw2CDdnHc2pI0z9hlSTWtM/YU2zmZbNiF/PhfsqBl4Wn+McviUMA5fVmX5u6H ypdmVVwJzlqyI6q9aCIwN3OfqxgJsqwQbzliWEdGlSQFoF4lIP/0pwllfM1Tsy7b kWUiKXI8lp98j1aQgqBdm5LZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU7jkVyNkx L9r29UubyqduVVjvXLAwHwYDVR0jBBgwFoAUTUBtTrGE1mpOLekA/Ux66lyccVkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwNUU0Lzc4QTRENDQ2MDU0 NjExRUU5NUVEN0E4M0M0RjlBRTAyL1RVQnRUckdFMW1wT0xla0FfVXg2Nmx5Y2NW ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVFVCdFRyR0UxbXBPTGVrQV9VeDY2bHljY1ZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDVFNC83OEE0RDQ0NjA1NDYxMUVFOTVFRDdBODNDNEY5QUUwMi85MUJENjk4MDA1 NEExMUVFQUMwQjE0ODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWedmjANBgkqhkiG9w0BAQsFAAOCAQEAgYhxj2ajAsohUseD 9hBIDiv/4aGsfDJg9IFThyxVNMwsXR4ortr9uMO6iyRkDlRNd8bQ0QSfIOf/b5hj 8JfChxNH8J0kj+bGO1fm6UwvOjxMgQS+9DNFlxT6uTwMm8wVfw37AP4DR3CP/YCN Mmbjp4lYkXBWLp9fHwruZwabXF0z5YEs9rCyDsTdgF9vF4L/4aRho58dFqV4ogyh 5V4I5/WRp6w3m+8j7CE65d/I5lHbuvNAcsRMmK7LLH/NtXYgWZi7KoRMhN6+o2MF OL/dgiGvdt/hQ/LOeu2p3kZHqQ+uqnmD0lcYTB7cQi+vSMJxr6hB8XTfHRVm8cHx G0sJ7A== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org