$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D59FA3EADF311E980380735C4F9AE02.roa File: 1D59FA3EADF311E980380735C4F9AE02.roa (raw, json) Hash identifier: H2LFByHCGl67eJSX+O7peLobB2Xyb4BQ81wW7F5Xst0= Subject key identifier: 33:64:93:E5:55:DA:34:FE:45:C5:8B:78:7A:F9:8A:99:6A:38:4B:0B Certificate issuer: /CN=A91CEF3E/serialNumber=F896CC4F53C2A67B3046E7AB29033D50F482D488 Certificate serial: 0D78 Authority key identifier: F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D59FA3EADF311E980380735C4F9AE02.roa Signing time: Tue 16 Jan 2024 18:36:17 +0000 ROA not before: Tue 16 Jan 2024 18:36:17 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 46844 IP address blocks: 103.15.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3448 (0xd78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E/serialNumber=F896CC4F53C2A67B3046E7AB29033D50F482D488 Validity Not Before: Jan 16 18:36:17 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a6cca1-229b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:40:f1:d2:3a:87:64:12:39:9b:9d:94:41:e9: da:6d:48:b2:b0:a0:c9:57:72:4c:7b:30:07:3c:74: 2d:f6:6a:89:70:be:6d:16:5f:24:c1:48:65:31:a4: 15:29:cd:0e:8b:2c:9a:5d:21:83:76:d4:f4:15:23: 7c:8f:c6:41:00:f8:81:29:76:87:1f:7e:57:ae:0f: f4:f9:73:33:77:46:5b:f9:52:00:b3:ff:45:a9:3a: 77:d9:75:e0:4f:8d:e3:47:4e:b3:95:73:e6:72:89: 5b:df:56:20:2a:f2:c1:d5:66:bd:eb:01:6d:0e:8d: c5:86:94:02:9f:6f:57:c0:ce:9e:e2:ef:ad:f3:0a: 17:f0:52:f8:74:f4:a4:6a:83:02:e0:2f:ea:69:6c: 72:19:e1:74:0d:7f:5e:0b:98:31:b8:aa:2e:7f:06: b2:72:29:b4:f8:3f:88:75:5a:1f:f7:b2:14:43:70: 2b:b3:32:49:d5:54:92:3c:6d:28:6f:dc:b7:d7:24: 30:d4:db:06:2f:fe:f5:99:83:ed:9b:e1:b1:fb:3a: 77:d6:da:72:64:6d:59:83:c2:4c:3d:60:a2:3e:29: 47:4c:3f:6f:df:ac:95:eb:21:56:18:a6:29:86:0b: da:43:b0:db:7f:6f:42:b2:40:0c:fb:a5:7a:64:ce: 9b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:64:93:E5:55:DA:34:FE:45:C5:8B:78:7A:F9:8A:99:6A:38:4B:0B X509v3 Authority Key Identifier: keyid:F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D59FA3EADF311E980380735C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.15.182.0/24 Signature Algorithm: sha256WithRSAEncryption 94:ca:8f:fb:2b:7c:2c:6d:ab:38:f1:82:64:fd:b4:ab:fd:4f: d2:b0:26:81:5f:a9:8e:2a:c6:c8:2c:5f:2a:55:ac:03:e0:9f: b4:a1:79:7d:82:4f:e5:89:5b:12:0e:6f:4c:96:0f:8e:02:f7: 98:6e:a6:b1:dd:9d:da:cb:8f:ef:37:6a:c4:74:77:2d:f1:81: 8d:ce:86:5b:d2:e6:b2:c4:b9:41:5a:ec:8a:71:d8:d8:ce:3a: ca:62:00:9e:ca:87:4e:e4:79:ec:0b:ea:20:8e:d8:49:c6:d7: ce:d4:14:9b:9e:c4:7e:7f:79:d6:0e:8e:ef:a4:50:1d:09:74: e3:7f:0b:4f:6c:1b:a8:5d:21:6d:20:65:56:2f:ad:21:5d:cf: 0c:b1:19:c2:c1:3c:a6:fc:f4:54:52:d8:0f:be:f5:80:bb:94: f4:ee:97:eb:39:38:2a:9e:bd:13:1e:b6:83:a3:77:7f:68:54: 68:f4:ad:59:9c:b1:71:20:11:7c:43:ca:68:c8:0c:91:b2:ff: ac:4a:6e:ca:81:26:62:18:89:61:81:9f:b0:ff:9d:b9:cf:ab: 85:21:a3:97:ea:fe:71:b0:79:99:9d:2f:25:9d:97:be:c9:1d: 90:aa:1d:e7:99:e6:1d:de:c9:4d:b8:a1:c6:95:9b:35:28:76: 21:5c:aa:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKEY4OTZDQzRGNTNDMkE2N0IzMDQ2RTdBQjI5MDMzRDUw RjQ4MkQ0ODgwHhcNMjQwMTE2MTgzNjE3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE2Y2NhMS0yMjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkDx0jqHZBI5m52UQenabUiysKDJV3JMezAHPHQt9mqJcL5tFl8kwUhlMaQV Kc0OiyyaXSGDdtT0FSN8j8ZBAPiBKXaHH35Xrg/0+XMzd0Zb+VIAs/9FqTp32XXg T43jR06zlXPmcolb31YgKvLB1Wa96wFtDo3FhpQCn29XwM6e4u+t8woX8FL4dPSk aoMC4C/qaWxyGeF0DX9eC5gxuKoufwaycim0+D+IdVof97IUQ3ArszJJ1VSSPG0o b9y31yQw1NsGL/71mYPtm+Gx+zp31tpyZG1Zg8JMPWCiPilHTD9v36yV6yFWGKYp hgvaQ7Dbf29CskAM+6V6ZM6b2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDNkk+VV 2jT+RcWLeHr5iplqOEsLMB8GA1UdIwQYMBaAFPiWzE9TwqZ7MEbnqykDPVD0gtSI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9EMjU0QjVDNDk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi8tSmJNVDFQQ3Buc3dSdWVyS1FNOVVQU0Mx SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1KYk1UMVBDcG5zd1J1ZXJLUU05VVBTQzFJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VGM0UvRDI1NEI1QzQ5ODdCMTFFOTgzRUNDRjEzQzRGOUFFMDIvMUQ1OUZBM0VB REYzMTFFOTgwMzgwNzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnD7YwDQYJKoZIhvcNAQELBQADggEBAJTKj/srfCxtqzjx gmT9tKv9T9KwJoFfqY4qxsgsXypVrAPgn7SheX2CT+WJWxIOb0yWD44C95huprHd ndrLj+83asR0dy3xgY3OhlvS5rLEuUFa7Ipx2NjOOspiAJ7Kh07keewL6iCO2EnG 187UFJuexH5/edYOju+kUB0JdON/C09sG6hdIW0gZVYvrSFdzwyxGcLBPKb89FRS 2A++9YC7lPTul+s5OCqevRMetoOjd39oVGj0rVmcsXEgEXxDymjIDJGy/6xKbsqB JmIYiWGBn7D/nbnPq4Uho5fq/nGweZmdLyWdl77JHZCqHeeZ5h3eyU24ocaVmzUo diFcqt4= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:25 2024 by rpki-client on console-fra.rpki-client.org