$ rpki-client -vvf rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/5B1534BE29E011EB80A2FF13C4F9AE02.roa File: 5B1534BE29E011EB80A2FF13C4F9AE02.roa (raw, json) Hash identifier: 1CIYo//bwjYUMyQBStYQUQ8rbC/A2KlKjD1S8BvGyiU= Subject key identifier: 32:F5:67:AE:34:6E:BB:46:07:7C:95:DD:C3:4E:6B:B6:0C:4B:C0:B2 Certificate issuer: /CN=A91C91A6/serialNumber=CC5D5CE0DC1821090CBC7538D7BB7123719082E7 Certificate serial: 0795 Authority key identifier: CC:5D:5C:E0:DC:18:21:09:0C:BC:75:38:D7:BB:71:23:71:90:82:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zF1c4NwYIQkMvHU417txI3GQguc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/5B1534BE29E011EB80A2FF13C4F9AE02.roa Signing time: Sat 31 Aug 2024 21:49:34 +0000 ROA not before: Sat 31 Aug 2024 21:49:34 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140980 IP address blocks: 103.154.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/zF1c4NwYIQkMvHU417txI3GQguc.crl rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/zF1c4NwYIQkMvHU417txI3GQguc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zF1c4NwYIQkMvHU417txI3GQguc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C91A6/serialNumber=CC5D5CE0DC1821090CBC7538D7BB7123719082E7 Validity Not Before: Aug 31 21:49:34 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d38fed-5d21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:19:ef:82:c5:d4:a0:58:af:35:55:c8:67:fe: 45:3a:d7:0f:d1:77:2e:8f:c7:a1:0e:12:9d:e6:e0: 39:a3:0b:e0:63:58:25:1f:85:63:5c:e4:94:a5:e0: ef:d7:c2:52:4c:f8:9e:48:38:d8:a5:20:9c:88:05: 5d:08:18:bd:73:ce:54:f7:73:e2:9a:4d:ec:ba:0d: 44:91:66:24:5c:60:6e:81:91:b3:3f:28:e5:31:68: 1a:8a:38:5e:da:4b:44:ad:4b:06:cc:d0:20:11:d1: 8e:35:da:e2:59:db:3f:e2:d4:80:b8:20:19:53:c5: c6:42:43:fb:52:14:5a:3d:06:88:92:f3:e8:cf:e6: 51:f5:04:11:32:a2:1f:61:85:29:07:9d:bb:cc:76: 82:95:25:f5:e8:8e:c9:b8:2a:d5:80:39:02:4d:1d: 8c:e4:30:49:62:ba:de:90:36:75:28:e6:68:bf:c6: 96:5c:2d:07:f4:34:fa:1a:91:da:5c:fc:ae:ff:ac: 02:8d:e3:10:2b:32:de:f2:d3:6d:57:b8:23:11:95: 3c:fc:48:74:8f:4d:95:db:ba:b5:94:47:66:b9:84: 51:db:fe:e0:41:92:e0:90:e5:3d:6d:df:e6:9a:e8: f8:94:7f:3a:1a:de:c5:ee:54:a7:4f:c8:35:15:8e: 00:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F5:67:AE:34:6E:BB:46:07:7C:95:DD:C3:4E:6B:B6:0C:4B:C0:B2 X509v3 Authority Key Identifier: keyid:CC:5D:5C:E0:DC:18:21:09:0C:BC:75:38:D7:BB:71:23:71:90:82:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/zF1c4NwYIQkMvHU417txI3GQguc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zF1c4NwYIQkMvHU417txI3GQguc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C91A6/BA4CCE0ED72B11EA8C1BBD4DC4F9AE02/5B1534BE29E011EB80A2FF13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.16.0/24 Signature Algorithm: sha256WithRSAEncryption 00:94:b3:cd:80:7c:2e:7b:e2:dc:ca:bc:e0:84:a8:1f:81:c5: 5a:79:c7:9d:cc:16:01:a5:7b:c4:ce:ec:cf:65:b4:94:4a:32: 3d:58:5d:48:32:46:4a:b5:17:f7:b8:ca:c1:de:56:19:9b:04: ae:22:de:e4:1e:af:d5:43:de:21:a2:25:dc:d1:13:97:e8:ce: 7f:8c:d6:af:65:13:bf:6d:15:31:89:c4:2b:c5:4a:ec:aa:94: fe:d2:49:66:ce:04:1f:bd:32:37:d0:2c:b6:b1:3a:a5:f3:0d: 9c:a9:6b:04:ce:d5:7e:52:42:b2:c3:0d:b5:a1:9f:f8:d8:07: d3:77:2f:f1:cf:21:bf:70:9a:ae:48:1f:8e:36:bf:18:0d:30: c4:a7:82:78:92:7d:69:df:ef:26:52:c2:4b:bd:e8:dd:1d:ce: f2:e1:11:ec:77:9f:69:2f:98:bc:9c:c3:5e:f3:86:92:d7:f4: 03:f3:96:a2:96:d7:ce:30:41:2f:18:49:12:cb:90:c2:dc:40: dc:46:0b:59:36:e7:85:4e:10:57:e0:83:2e:7b:55:b7:98:67: f7:a5:58:21:1e:8b:17:41:d5:9f:28:02:8b:50:ea:80:29:d4: dd:f3:63:75:50:15:5c:42:25:f5:2b:db:4c:7f:70:ff:42:08: 52:db:49:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkxQTYxMTAvBgNVBAUTKENDNUQ1Q0UwREMxODIxMDkwQ0JDNzUzOEQ3QkI3MTIz NzE5MDgyRTcwHhcNMjQwODMxMjE0OTM0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQzOGZlZC01ZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxnvgsXUoFivNVXIZ/5FOtcP0Xcuj8ehDhKd5uA5owvgY1glH4VjXOSUpeDv 18JSTPieSDjYpSCciAVdCBi9c85U93Pimk3sug1EkWYkXGBugZGzPyjlMWgaijhe 2ktErUsGzNAgEdGONdriWds/4tSAuCAZU8XGQkP7UhRaPQaIkvPoz+ZR9QQRMqIf YYUpB527zHaClSX16I7JuCrVgDkCTR2M5DBJYrrekDZ1KOZov8aWXC0H9DT6GpHa XPyu/6wCjeMQKzLe8tNtV7gjEZU8/Eh0j02V27q1lEdmuYRR2/7gQZLgkOU9bd/m muj4lH86Gt7F7lSnT8g1FY4ADwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDL1Z640 brtGB3yV3cNOa7YMS8CyMB8GA1UdIwQYMBaAFMxdXODcGCEJDLx1ONe7cSNxkILn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTFBNi9CQTRDQ0UwRUQ3 MkIxMUVBOEMxQkJENERDNEY5QUUwMi96RjFjNE53WUlRa012SFU0MTd0eEkzR1Fn dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGMWM0TndZSVFrTXZIVTQxN3R4STNHUWd1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkxQTYvQkE0Q0NFMEVENzJCMTFFQThDMUJCRDREQzRGOUFFMDIvNUIxNTM0QkUy OUUwMTFFQjgwQTJGRjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmhAwDQYJKoZIhvcNAQELBQADggEBAACUs82AfC574tzK vOCEqB+BxVp5x53MFgGle8TO7M9ltJRKMj1YXUgyRkq1F/e4ysHeVhmbBK4i3uQe r9VD3iGiJdzRE5fozn+M1q9lE79tFTGJxCvFSuyqlP7SSWbOBB+9MjfQLLaxOqXz DZypawTO1X5SQrLDDbWhn/jYB9N3L/HPIb9wmq5IH442vxgNMMSngniSfWnf7yZS wku96N0dzvLhEex3n2kvmLycw17zhpLX9APzlqKW184wQS8YSRLLkMLcQNxGC1k2 54VOEFfggy57VbeYZ/elWCEeixdB1Z8oAotQ6oAp1N3zY3VQFVxCJfUr20x/cP9C CFLbSYc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org