$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/FC358296CFA011EDA4AC5B18C4F9AE02.roa File: FC358296CFA011EDA4AC5B18C4F9AE02.roa (raw, json) Hash identifier: Kfs6t0RkTXatIBLPnXrK64Ffg/DQYtGVawG99/fXQls= Subject key identifier: 44:D2:8D:BD:B3:06:DC:B5:A2:73:10:F6:E2:1E:BC:F2:B5:00:0D:DF Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 025F Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/FC358296CFA011EDA4AC5B18C4F9AE02.roa Signing time: Fri 16 Aug 2024 21:44:26 +0000 ROA not before: Fri 16 Aug 2024 21:44:26 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 139009 IP address blocks: 103.154.48.0/23 maxlen: 23 103.154.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Validity Not Before: Aug 16 21:44:26 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bfc839-471c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:bf:a3:36:ff:ec:3d:c3:04:5f:44:99:57: db:9e:42:3f:ab:d7:bf:23:05:f8:17:3d:3b:9f:9b: c9:53:ab:c3:9b:b6:41:69:cb:9f:53:1c:d2:a5:b9: 88:50:de:b9:74:38:24:b4:44:8c:49:fe:29:bb:c8: 03:64:47:ae:08:22:d8:e6:65:87:42:58:4e:5d:51: 9d:6e:4b:2d:10:ba:93:40:31:67:e8:51:6d:7b:c7: f4:00:73:c1:18:7b:a8:f9:d7:70:32:64:e2:14:ef: cd:c5:2a:89:31:ef:35:b6:d6:80:2e:15:d6:6c:e7: 07:83:11:07:0c:0c:24:71:44:d6:92:1c:0a:bb:d0: 31:81:38:aa:20:91:3f:e8:8a:3e:3e:92:43:b1:20: be:a9:a2:37:d9:83:40:bb:25:80:ef:cb:09:53:33: 4d:f4:55:bc:c9:87:dc:e4:60:52:f1:31:8b:ab:1d: 65:90:cf:e1:bf:b7:87:19:c4:47:89:6b:75:4a:8f: 58:41:4d:f6:be:92:33:ff:40:e6:9e:20:4a:c4:ff: dd:82:6d:f5:e8:6d:e0:94:c8:17:de:bf:62:5c:64: 6a:5d:77:16:84:21:bb:6b:ac:d0:c1:ed:24:7e:be: 38:72:66:7d:21:35:49:1a:7a:f3:87:05:52:04:e5: 4b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D2:8D:BD:B3:06:DC:B5:A2:73:10:F6:E2:1E:BC:F2:B5:00:0D:DF X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/FC358296CFA011EDA4AC5B18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.48.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:7f:44:53:f2:29:42:56:20:a9:2f:9e:68:06:13:14:b0:1e: b4:4b:bb:cd:f9:11:2e:f2:90:a0:51:a0:ed:8e:6b:1d:71:de: 9e:a1:f8:08:e3:d0:3f:db:9a:5f:e9:a1:a4:93:ab:e2:98:c8: 87:20:52:cf:cd:b7:3b:f0:ba:9f:f7:0c:e6:ff:66:fb:21:95: 47:6a:22:5a:fc:68:f8:f8:56:6c:0e:5b:bc:8f:ee:f4:b3:d6: a4:a5:10:4c:01:0d:a3:fa:d5:54:5d:60:d6:e8:62:e9:93:0f: 7b:2b:da:9a:a2:36:ad:fc:e4:bd:f8:c0:80:88:ec:a6:55:67: 88:7f:dd:ef:31:dd:c6:6a:b0:4b:70:bf:ba:90:db:cd:29:2c: a7:bf:53:0a:fe:6c:35:b0:a7:b3:03:b7:56:36:85:c3:c8:c1: 86:23:e7:17:fa:7a:f9:99:0f:d4:a6:79:23:b5:03:61:08:1b: c1:67:db:19:71:e6:a3:68:23:cd:9c:6e:44:44:95:05:38:ec: 32:0e:6c:ec:df:2b:89:a2:d3:e4:6a:61:47:23:31:7e:8f:8f: d0:49:b1:73:6c:f4:99:c4:47:4d:5c:cc:2e:3f:12:ab:99:6f: 89:42:52:f1:19:ea:17:69:15:ef:2d:6f:51:e8:0b:0a:c8:a1: 0e:f6:4d:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjQwODE2MjE0NDI2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmYzgzOS00NzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswO/ozb/7D3DBF9EmVfbnkI/q9e/IwX4Fz07n5vJU6vDm7ZBacufUxzSpbmI UN65dDgktESMSf4pu8gDZEeuCCLY5mWHQlhOXVGdbkstELqTQDFn6FFte8f0AHPB GHuo+ddwMmTiFO/NxSqJMe81ttaALhXWbOcHgxEHDAwkcUTWkhwKu9AxgTiqIJE/ 6Io+PpJDsSC+qaI32YNAuyWA78sJUzNN9FW8yYfc5GBS8TGLqx1lkM/hv7eHGcRH iWt1So9YQU32vpIz/0DmniBKxP/dgm316G3glMgX3r9iXGRqXXcWhCG7a6zQwe0k fr44cmZ9ITVJGnrzhwVSBOVLkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFETSjb2z Bty1onMQ9uIevPK1AA3fMB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFFNEMvN0RBREE1NkNEOTREMTFFQUE2MDRBQzUzQzRGOUFFMDIvRkMzNTgyOTZD RkEwMTFFREE0QUM1QjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmjAwDQYJKoZIhvcNAQELBQADggEBAGt/RFPyKUJWIKkv nmgGExSwHrRLu835ES7ykKBRoO2Oax1x3p6h+Ajj0D/bml/poaSTq+KYyIcgUs/N tzvwup/3DOb/ZvshlUdqIlr8aPj4VmwOW7yP7vSz1qSlEEwBDaP61VRdYNboYumT D3sr2pqiNq385L34wICI7KZVZ4h/3e8x3cZqsEtwv7qQ280pLKe/Uwr+bDWwp7MD t1Y2hcPIwYYj5xf6evmZD9SmeSO1A2EIG8Fn2xlx5qNoI82cbkRElQU47DIObOzf K4mi0+RqYUcjMX6Pj9BJsXNs9JnER01czC4/EquZb4lCUvEZ6hdpFe8tb1HoCwrI oQ72TeY= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:46 2024 by rpki-client on console-fra.rpki-client.org