$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/0E49D1E024CC11EFB113A27BC4F9AE02.roa File: 0E49D1E024CC11EFB113A27BC4F9AE02.roa (raw, json) Hash identifier: uHBSb4Uiuo44AjfBHlJ3CH1SzIH4tzJ5cVtpzyKKnxY= Subject key identifier: 7F:40:2B:11:61:4D:86:3E:F2:3D:CA:73:03:24:9A:FD:12:88:17:EE Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: 0A Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/0E49D1E024CC11EFB113A27BC4F9AE02.roa Signing time: Fri 07 Jun 2024 12:48:19 +0000 ROA not before: Fri 07 Jun 2024 12:48:19 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 137268 IP address blocks: 103.55.52.0/24 maxlen: 24 103.55.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Validity Not Before: Jun 7 12:48:19 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=66630193-9883 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a1:e3:51:bd:5b:d2:e1:ad:d3:79:e0:87:91: b6:6d:80:0f:14:bc:8c:bc:37:91:a9:d0:f9:f3:ab: e9:6a:b3:3f:c3:47:54:f5:38:97:96:69:14:d3:52: c5:b1:ca:e6:ca:57:94:6c:81:02:5e:f8:c8:36:52: 62:14:61:39:ab:c6:35:14:3c:98:aa:8c:ef:93:c0: 63:45:1b:61:d1:77:18:85:e1:8d:57:d2:86:a2:bc: 96:f5:17:1c:0a:e3:d9:e4:50:df:70:dd:4f:0d:c7: ec:aa:4d:ed:48:2e:b3:15:8c:de:24:09:51:38:b3: 17:c6:70:45:48:69:11:b7:1c:d5:4d:bc:e5:b0:46: 4f:b2:2c:ad:b3:38:bb:c4:63:9c:25:f8:5f:e0:af: fd:ad:d3:85:88:61:9f:08:55:32:cc:76:93:02:fa: e5:8a:19:fe:45:4f:13:6a:78:ab:66:9e:e5:a1:84: d5:54:9d:ad:27:49:d5:d1:6f:8d:88:94:69:07:3c: 0c:b8:5f:82:9a:ea:9f:35:6b:ff:06:51:32:4d:c9: 8d:29:bb:01:c5:eb:c7:ee:c1:14:76:39:db:67:54: 4e:8c:9d:0a:06:51:61:99:7d:f4:4b:09:17:77:36: d0:32:40:86:14:e3:2d:05:c6:e9:22:a8:94:af:d6: c9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:40:2B:11:61:4D:86:3E:F2:3D:CA:73:03:24:9A:FD:12:88:17:EE X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/0E49D1E024CC11EFB113A27BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.52.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:db:4f:c6:75:d4:26:8b:7e:4a:df:4c:94:9e:a9:83:b5:c7: 52:21:2b:35:d0:72:24:76:c2:79:fd:b8:1d:1b:6e:c4:b3:18: 2d:12:dd:16:18:f4:f3:9c:51:d3:a1:de:17:4b:b2:4b:dd:b6: cb:ce:e2:fd:da:e1:eb:0f:1d:4b:4f:79:a4:fa:40:22:22:84: 90:b2:0b:3e:4b:b0:78:01:f0:a2:18:44:d0:68:af:4a:b0:20: 1e:46:72:8c:cc:b5:ab:db:3a:a3:61:b1:65:54:68:93:eb:bc: ee:d1:56:a5:c7:e2:c8:de:a6:a7:0d:00:92:f3:13:82:bf:ef: 2a:b8:c3:43:6f:44:c8:5b:be:2c:24:36:20:aa:b8:56:f1:b0: 46:c0:38:69:19:3d:48:9d:a1:59:1e:6d:19:eb:37:6f:51:cf: 33:ae:57:62:6b:71:a1:a9:76:40:4c:ba:7a:ee:98:8a:13:b3: f2:e2:93:c9:f5:bc:88:63:85:03:10:c5:55:10:17:f0:88:7d: 52:2d:df:d0:ee:f1:aa:8a:37:b3:4b:bf:4b:e9:3e:82:ef:cf: ca:f5:d4:98:f9:8f:de:d2:da:35:06:90:00:e2:b4:66:62:a4: e5:31:09:e4:8e:de:35:87:34:b6:d1:c8:49:72:46:12:30:76: 9b:ce:82:ed -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkM4QTExMC8GA1UEBRMoNkNFN0I1NzUwRTZFMTdEM0QzOUVCNUIwODdGRDNGQUQ1 OTU5RjMyNTAeFw0yNDA2MDcxMjQ4MTlaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjMwMTkzLTk4ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDooeNRvVvS4a3TeeCHkbZtgA8UvIy8N5Gp0Pnzq+lqsz/DR1T1OJeWaRTTUsWx yubKV5RsgQJe+Mg2UmIUYTmrxjUUPJiqjO+TwGNFG2HRdxiF4Y1X0oaivJb1FxwK 49nkUN9w3U8Nx+yqTe1ILrMVjN4kCVE4sxfGcEVIaRG3HNVNvOWwRk+yLK2zOLvE Y5wl+F/gr/2t04WIYZ8IVTLMdpMC+uWKGf5FTxNqeKtmnuWhhNVUna0nSdXRb42I lGkHPAy4X4Ka6p81a/8GUTJNyY0puwHF68fuwRR2OdtnVE6MnQoGUWGZffRLCRd3 NtAyQIYU4y0FxukiqJSv1smpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUf0ArEWFN hj7yPcpzAySa/RKIF+4wHwYDVR0jBBgwFoAUbOe1dQ5uF9PTnrWwh/0/rVlZ8yUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQzhBLzYxRUM0OTE2MjRD OTExRUY5QzhDNjI1OUM0RjlBRTAyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9lMWRRNXVGOVBUbnJXd2hfMF9yVmxaOHlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkM4QS82MUVDNDkxNjI0QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi8wRTQ5RDFFMDI0 Q0MxMUVGQjExM0EyN0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWc3NDANBgkqhkiG9w0BAQsFAAOCAQEAfNtPxnXUJot+St9M lJ6pg7XHUiErNdByJHbCef24HRtuxLMYLRLdFhj085xR06HeF0uyS922y87i/drh 6w8dS095pPpAIiKEkLILPkuweAHwohhE0GivSrAgHkZyjMy1q9s6o2GxZVRok+u8 7tFWpcfiyN6mpw0AkvMTgr/vKrjDQ29EyFu+LCQ2IKq4VvGwRsA4aRk9SJ2hWR5t Ges3b1HPM65XYmtxoal2QEy6eu6YihOz8uKTyfW8iGOFAxDFVRAX8Ih9Ui3f0O7x qoo3s0u/S+k+gu/PyvXUmPmP3tLaNQaQAOK0ZmKk5TEJ5I7eNYc0ttHISXJGEjB2 m86C7Q== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:32 2024 by rpki-client on console-fra.rpki-client.org