$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/CC57D98CE1A511EC8AB72944C4F9AE02.roa File: CC57D98CE1A511EC8AB72944C4F9AE02.roa (raw, json) Hash identifier: KGmpX6V6GwHwuicQlQLq7ntPEMjkSVAxnjSlxc3wQ2A= Subject key identifier: E0:82:07:1A:18:4A:84:E1:83:8E:89:CA:9F:1B:0F:AD:8E:A2:29:F7 Certificate issuer: /CN=A91CE39F/serialNumber=4FFFAC717813392EE1C876A321671E1D6C2AB9B4 Certificate serial: 0716 Authority key identifier: 4F:FF:AC:71:78:13:39:2E:E1:C8:76:A3:21:67:1E:1D:6C:2A:B9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_-scXgTOS7hyHajIWceHWwqubQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/CC57D98CE1A511EC8AB72944C4F9AE02.roa Signing time: Tue 28 May 2024 23:03:56 +0000 ROA not before: Tue 28 May 2024 23:03:56 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.151.192.0/24 maxlen: 24 103.151.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/T_-scXgTOS7hyHajIWceHWwqubQ.crl rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/T_-scXgTOS7hyHajIWceHWwqubQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_-scXgTOS7hyHajIWceHWwqubQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1814 (0x716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE39F/serialNumber=4FFFAC717813392EE1C876A321671E1D6C2AB9B4 Validity Not Before: May 28 23:03:56 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=665662dc-9692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0b:3d:33:0c:13:03:c8:74:97:de:33:77:0a: d4:66:9d:11:cf:fa:f6:a5:b4:2a:48:00:68:c8:45: db:cb:ac:e3:66:d2:51:19:d4:d2:9c:5f:90:8d:1e: cf:76:d0:a7:0a:d7:8c:72:32:92:e8:e9:db:3a:a2: 60:b4:65:af:a5:52:40:2c:55:c3:50:93:c4:63:e7: ad:6d:de:35:8d:cc:54:3c:f1:e6:e5:30:06:6c:de: e3:cc:1c:ed:9b:f0:8c:c4:ac:a1:94:0c:50:17:88: b4:af:41:de:10:d3:c4:d7:3c:e6:82:1f:43:ca:1f: 72:ac:07:f7:0b:76:0a:9b:af:83:71:09:47:40:9b: c9:1e:8f:eb:c4:2a:d7:33:18:c4:9d:d5:08:f6:20: 45:a4:db:f9:d6:84:7d:5f:a3:72:81:37:78:16:c7: f0:a0:33:83:46:c1:3d:3b:dd:20:ea:cf:e7:ab:aa: 5c:a4:49:2e:c3:3f:99:41:47:eb:0a:e5:99:90:12: 7d:46:e3:62:91:c5:6a:53:54:69:ba:ec:67:e0:b3: 8b:cb:57:d0:f7:e8:47:a3:3a:a4:71:29:2e:1d:60: d2:1a:2c:c3:9d:54:a9:fe:4a:c7:dc:52:1c:75:98: a2:3d:40:3a:62:a7:b3:be:ee:20:2e:39:47:ed:e1: ed:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:82:07:1A:18:4A:84:E1:83:8E:89:CA:9F:1B:0F:AD:8E:A2:29:F7 X509v3 Authority Key Identifier: keyid:4F:FF:AC:71:78:13:39:2E:E1:C8:76:A3:21:67:1E:1D:6C:2A:B9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/T_-scXgTOS7hyHajIWceHWwqubQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_-scXgTOS7hyHajIWceHWwqubQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE39F/C15C41B4FD5711EABC3CA24DC4F9AE02/CC57D98CE1A511EC8AB72944C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.192.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:f7:28:ef:10:b5:c3:ae:52:cc:00:e0:b7:ca:ba:18:24:f3: 87:da:82:e1:82:57:f6:42:73:4f:4d:af:44:b5:eb:7f:76:5d: 0d:78:7f:4f:1f:d9:fa:2c:ac:a5:34:2a:32:3a:43:ca:f3:ce: 35:de:b3:19:38:0d:ad:65:fd:78:51:2b:de:4a:2d:0d:68:23: ac:1d:97:36:30:2d:77:8c:fe:bb:56:84:8f:5a:58:64:43:1c: ad:13:d4:94:bd:f9:ae:97:7e:6b:2e:73:75:40:46:50:1e:a3: 74:87:4e:76:be:62:2e:9d:37:85:1b:0b:82:6e:19:6a:3f:44: 64:e4:e3:d6:de:a0:c0:c0:8e:9c:a4:c2:95:d2:bf:23:7f:11: bd:d4:6e:05:38:84:ef:25:08:95:1c:24:9d:80:f0:8d:43:18: cb:56:c9:70:9c:24:de:48:b6:47:dc:88:a1:13:c8:57:ff:40: fb:da:89:c5:ef:0b:b2:fc:82:1d:26:68:dd:3e:0b:74:68:f4: 4f:a1:c4:32:50:35:e6:af:67:1f:04:13:a5:0f:5c:db:cf:76: bb:1d:20:4e:6f:80:ea:74:b5:30:b4:f8:33:c5:b8:6a:4c:f4: 90:ec:50:01:94:b4:24:06:1b:5e:19:99:c4:fe:d0:b5:8e:df: a5:ee:20:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzOUYxMTAvBgNVBAUTKDRGRkZBQzcxNzgxMzM5MkVFMUM4NzZBMzIxNjcxRTFE NkMyQUI5QjQwHhcNMjQwNTI4MjMwMzU2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2NjJkYy05NjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1As9MwwTA8h0l94zdwrUZp0Rz/r2pbQqSABoyEXby6zjZtJRGdTSnF+QjR7P dtCnCteMcjKS6OnbOqJgtGWvpVJALFXDUJPEY+etbd41jcxUPPHm5TAGbN7jzBzt m/CMxKyhlAxQF4i0r0HeENPE1zzmgh9Dyh9yrAf3C3YKm6+DcQlHQJvJHo/rxCrX MxjEndUI9iBFpNv51oR9X6NygTd4FsfwoDODRsE9O90g6s/nq6pcpEkuwz+ZQUfr CuWZkBJ9RuNikcVqU1Rpuuxn4LOLy1fQ9+hHozqkcSkuHWDSGizDnVSp/krH3FIc dZiiPUA6Yqezvu4gLjlH7eHttQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOCCBxoY SoThg46Jyp8bD62Ooin3MB8GA1UdIwQYMBaAFE//rHF4Ezku4ch2oyFnHh1sKrm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM5Ri9DMTVDNDFCNEZE NTcxMUVBQkMzQ0EyNERDNEY5QUUwMi9UXy1zY1hnVE9TN2h5SGFqSVdjZUhXd3F1 YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfLXNjWGdUT1M3aHlIYWpJV2NlSFd3cXViUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzOUYvQzE1QzQxQjRGRDU3MTFFQUJDM0NBMjREQzRGOUFFMDIvQ0M1N0Q5OENF MUE1MTFFQzhBQjcyOTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnl8AwDQYJKoZIhvcNAQELBQADggEBAJz3KO8QtcOuUswA 4LfKuhgk84faguGCV/ZCc09Nr0S16392XQ14f08f2fosrKU0KjI6Q8rzzjXesxk4 Da1l/XhRK95KLQ1oI6wdlzYwLXeM/rtWhI9aWGRDHK0T1JS9+a6Xfmsuc3VARlAe o3SHTna+Yi6dN4UbC4JuGWo/RGTk49beoMDAjpykwpXSvyN/Eb3UbgU4hO8lCJUc JJ2A8I1DGMtWyXCcJN5ItkfciKETyFf/QPvaicXvC7L8gh0maN0+C3Ro9E+hxDJQ NeavZx8EE6UPXNvPdrsdIE5vgOp0tTC0+DPFuGpM9JDsUAGUtCQGG14ZmcT+0LWO 36XuICg= -----END CERTIFICATE-----Generated at Sun Nov 24 22:12:01 2024 by rpki-client on console-fra.rpki-client.org