$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8236/D428796E532711EA8C57E37AC4F9AE02/B5D3426854F111ED85A7AC66C4F9AE02.roa File: B5D3426854F111ED85A7AC66C4F9AE02.roa (raw, json) Hash identifier: IOzHtTbWHhgsZHthrmnKo8KE4uFqwhbjTMYbOTQH+38= Subject key identifier: 17:31:BF:1E:83:47:74:CC:62:B2:D9:84:9F:6C:86:88:CC:09:7E:7C Certificate issuer: /CN=A91C8236/serialNumber=ED85EF77343C55412B06A53C2A4E20767AD12F25 Certificate serial: 0A0F Authority key identifier: ED:85:EF:77:34:3C:55:41:2B:06:A5:3C:2A:4E:20:76:7A:D1:2F:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YXvdzQ8VUErBqU8Kk4gdnrRLyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8236/D428796E532711EA8C57E37AC4F9AE02/B5D3426854F111ED85A7AC66C4F9AE02.roa Signing time: Mon 22 Apr 2024 20:59:39 +0000 ROA not before: Mon 22 Apr 2024 20:59:38 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140216 IP address blocks: 103.148.178.0/24 maxlen: 24 2001:df2:e180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8236/D428796E532711EA8C57E37AC4F9AE02/7YXvdzQ8VUErBqU8Kk4gdnrRLyU.crl rsync://rpki.apnic.net/member_repository/A91C8236/D428796E532711EA8C57E37AC4F9AE02/7YXvdzQ8VUErBqU8Kk4gdnrRLyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YXvdzQ8VUErBqU8Kk4gdnrRLyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2575 (0xa0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8236/serialNumber=ED85EF77343C55412B06A53C2A4E20767AD12F25 Validity Not Before: Apr 22 20:59:38 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6626cfba-8469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:55:37:42:d7:1f:de:97:c6:db:35:bb:b1:54: 2c:88:f9:ce:30:e5:c3:a6:26:84:f6:10:fa:2f:5b: f9:b5:2c:73:3a:dd:c1:d2:a2:93:80:56:25:ad:02: 1b:91:b7:9f:4e:fe:7b:a7:db:d6:01:a2:fb:0c:49: 48:18:ac:4b:db:ab:bf:c2:d5:2c:7c:ba:3a:4d:9e: 66:37:61:12:5d:11:99:38:52:d4:b7:90:87:e6:bd: 9f:e4:1f:92:84:b5:cc:21:15:29:e4:7a:93:b0:e1: 20:bf:d0:b0:98:0b:6b:26:0b:2b:eb:03:77:6c:d2: 61:86:01:e0:8c:08:ce:06:1a:0b:85:28:1f:04:88: 48:10:03:ae:5c:55:84:2f:51:31:81:38:4d:fc:9d: 26:f3:62:a3:f2:c2:7a:dd:a6:c7:ef:52:8a:b5:61: 14:8c:81:d8:54:f3:42:16:d7:ea:5b:02:37:bd:38: cf:a4:84:c5:d0:fb:42:cb:5c:98:b2:bb:0d:d2:3f: ca:db:ad:42:52:70:80:b5:84:49:87:b9:74:0b:7b: 86:11:22:9a:fe:35:36:c7:c4:c3:63:e4:28:1d:c9: 0c:85:fd:72:6a:c2:7d:09:9b:bd:bc:9d:ad:2d:77: 7c:7f:bb:32:d9:ba:47:6d:3d:16:c5:f1:95:27:52: 4f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:31:BF:1E:83:47:74:CC:62:B2:D9:84:9F:6C:86:88:CC:09:7E:7C X509v3 Authority Key Identifier: keyid:ED:85:EF:77:34:3C:55:41:2B:06:A5:3C:2A:4E:20:76:7A:D1:2F:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8236/D428796E532711EA8C57E37AC4F9AE02/7YXvdzQ8VUErBqU8Kk4gdnrRLyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YXvdzQ8VUErBqU8Kk4gdnrRLyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8236/D428796E532711EA8C57E37AC4F9AE02/B5D3426854F111ED85A7AC66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.178.0/24 IPv6: 2001:df2:e180::/48 Signature Algorithm: sha256WithRSAEncryption 97:43:82:9f:97:bf:81:5f:9b:2b:db:19:10:00:09:90:dd:34: 87:13:c1:cc:7f:75:ae:a8:86:bc:56:bf:f2:69:2a:b7:62:32: b2:3a:07:e9:20:a4:c3:22:6a:bf:af:d4:0a:4c:cb:52:88:16: 9b:90:55:ad:73:e9:57:dc:b6:de:5c:1c:26:8f:dc:59:43:a5: 12:81:37:a7:8e:0c:ec:54:b1:a7:74:e2:bb:aa:26:cf:32:11: 0a:56:25:67:e7:40:78:85:c4:bd:d2:3f:7b:0b:72:e4:e4:19: 38:83:39:ef:ec:b1:be:39:de:89:09:25:5e:95:a1:b2:05:08: ef:e7:85:de:3b:b8:b7:8e:5a:9c:61:49:52:cf:6b:06:b3:15: 42:77:7c:bd:4c:0b:51:56:82:50:86:dd:f3:a3:07:21:1e:9c: d0:cc:97:f7:99:ad:de:12:38:44:64:1a:13:5b:98:91:79:13: 03:a0:8d:e7:4e:5e:39:5c:7d:b2:d9:4d:5b:12:95:1e:85:a8: 72:d4:85:63:9e:f3:60:7a:52:a7:f0:1d:1e:fe:43:0c:05:5d: 5d:26:1d:dd:72:2f:7e:c6:06:b3:ba:13:36:26:d8:da:fa:16: a2:e0:82:05:e1:ed:42:9e:bd:54:83:71:ae:8b:c5:cc:0b:b4: 78:c1:4e:25 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgyMzYxMTAvBgNVBAUTKEVEODVFRjc3MzQzQzU1NDEyQjA2QTUzQzJBNEUyMDc2 N0FEMTJGMjUwHhcNMjQwNDIyMjA1OTM4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2Y2ZiYS04NDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA81U3Qtcf3pfG2zW7sVQsiPnOMOXDpiaE9hD6L1v5tSxzOt3B0qKTgFYlrQIb kbefTv57p9vWAaL7DElIGKxL26u/wtUsfLo6TZ5mN2ESXRGZOFLUt5CH5r2f5B+S hLXMIRUp5HqTsOEgv9CwmAtrJgsr6wN3bNJhhgHgjAjOBhoLhSgfBIhIEAOuXFWE L1ExgThN/J0m82Kj8sJ63abH71KKtWEUjIHYVPNCFtfqWwI3vTjPpITF0PtCy1yY srsN0j/K261CUnCAtYRJh7l0C3uGESKa/jU2x8TDY+QoHckMhf1yasJ9CZu9vJ2t LXd8f7sy2bpHbT0WxfGVJ1JPEQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBcxvx6D R3TMYrLZhJ9shojMCX58MB8GA1UdIwQYMBaAFO2F73c0PFVBKwalPCpOIHZ60S8l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODIzNi9ENDI4Nzk2RTUz MjcxMUVBOEM1N0UzN0FDNEY5QUUwMi83WVh2ZHpROFZVRXJCcVU4S2s0Z2RuclJM eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZWHZkelE4VlVFckJxVThLazRnZG5yUkx5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgyMzYvRDQyODc5NkU1MzI3MTFFQThDNTdFMzdBQzRGOUFFMDIvQjVEMzQyNjg1 NEYxMTFFRDg1QTdBQzY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnlLIwDwQCAAIwCQMHACABDfLhgDANBgkqhkiG9w0BAQsF AAOCAQEAl0OCn5e/gV+bK9sZEAAJkN00hxPBzH91rqiGvFa/8mkqt2IysjoH6SCk wyJqv6/UCkzLUogWm5BVrXPpV9y23lwcJo/cWUOlEoE3p44M7FSxp3Tiu6omzzIR ClYlZ+dAeIXEvdI/ewty5OQZOIM57+yxvjneiQklXpWhsgUI7+eF3ju4t45anGFJ Us9rBrMVQnd8vUwLUVaCUIbd86MHIR6c0MyX95mt3hI4RGQaE1uYkXkTA6CN505e OVx9stlNWxKVHoWoctSFY57zYHpSp/AdHv5DDAVdXSYd3XIvfsYGs7oTNibY2voW ouCCBeHtQp69VINxrovFzAu0eMFOJQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org