$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/7355FB264B5711EEB497B483C4F9AE02.roa File: 7355FB264B5711EEB497B483C4F9AE02.roa (raw, json) Hash identifier: rZq+xLPK5h8mQHWRbVwLhTkaK/L8MU72uPJQBJKsmJI= Subject key identifier: 02:04:86:57:F0:A6:C2:4A:99:8A:7C:8C:2B:82:CD:67:4D:43:2C:8A Certificate issuer: /CN=A91D5230/serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Certificate serial: 0780 Authority key identifier: 64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/7355FB264B5711EEB497B483C4F9AE02.roa Signing time: Sun 08 Sep 2024 22:50:04 +0000 ROA not before: Sun 08 Sep 2024 22:50:04 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140962 IP address blocks: 103.156.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5230/serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Validity Not Before: Sep 8 22:50:04 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66de2a1c-e71f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2b:c8:99:18:aa:3d:fd:76:2f:a7:7f:78:44: 9a:02:28:7d:a5:4b:1e:2c:3a:55:86:b7:50:a1:99: 7c:8e:90:3a:f8:75:c1:54:d8:8d:f7:8e:ca:ec:fe: 63:8b:0c:08:52:2b:78:50:ea:01:a3:22:a4:fb:48: d7:36:42:ac:71:56:69:7e:23:d1:fc:70:48:66:76: 6e:60:53:a8:ba:8f:1d:d5:47:d8:9e:6f:69:68:84: b9:15:46:a1:14:ed:ac:e6:b4:5b:62:72:96:e6:1f: f2:5a:b1:27:83:9b:3c:a4:9e:8f:f5:73:fd:c5:fc: 5c:32:fc:23:14:55:9a:13:03:22:8a:86:de:f9:4a: 4c:4e:fb:0d:13:4d:f6:75:9a:cc:d2:15:24:2a:cf: f2:a7:67:0d:1e:1c:4d:05:99:b4:69:42:95:75:f5: 76:d8:31:5d:c1:03:11:94:31:06:59:4e:a2:12:82: b8:e5:1a:37:a2:ef:a6:2d:cd:1c:fb:83:b0:51:6d: 42:bb:3b:ed:2b:b9:c2:64:f5:90:b0:c9:76:d1:7e: e8:a9:18:91:14:62:c4:32:45:5b:a9:65:cc:92:e9: 36:07:90:f4:d0:c2:02:8e:bb:0e:ab:42:e9:89:ed: ac:2a:8b:6c:ef:95:84:ad:ef:46:d3:82:c2:c7:93: 1d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:04:86:57:F0:A6:C2:4A:99:8A:7C:8C:2B:82:CD:67:4D:43:2C:8A X509v3 Authority Key Identifier: keyid:64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/7355FB264B5711EEB497B483C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.189.0/24 Signature Algorithm: sha256WithRSAEncryption c3:23:e4:5f:5f:dc:e1:58:46:32:58:8a:93:25:dc:7b:a6:dc: af:17:a0:82:11:a3:e5:76:b6:ce:e9:9f:ed:36:e1:0d:1e:5a: 61:f4:9c:0b:c1:8d:0a:1c:04:c3:0b:93:d5:4f:d9:32:d3:42: 02:07:12:cd:c9:0b:d7:d0:54:38:91:64:61:f7:44:0b:a4:6c: 41:2c:6c:72:70:3b:64:c3:53:2f:c3:1b:3b:d8:d2:cb:ae:16: 32:29:36:1a:7b:af:21:f2:ea:1a:64:fe:44:6f:e9:c5:c9:53: 38:5e:e0:d2:8c:e9:2f:43:b0:60:d3:39:05:70:6d:c1:01:43: 82:09:c4:7a:b9:a6:82:6a:03:bf:0d:0b:d7:8c:97:cd:91:ad: 62:ad:bd:97:0e:62:ca:45:07:2d:8f:2c:bb:3e:8d:71:c1:9a: 48:9f:d8:12:01:0e:75:e7:f3:9a:c9:98:69:e6:d7:04:94:9b: 04:7b:c4:26:69:67:03:17:26:60:db:a6:32:dc:59:f3:2f:17: ef:b4:9d:89:81:46:ea:0f:cd:37:af:e4:60:28:0d:7d:77:7d: 66:8b:fb:7c:27:9a:96:ef:62:a9:bb:13:2e:92:ce:ca:4c:89: 9c:bc:89:2e:2f:06:f6:69:30:bb:d0:51:d7:5b:b8:71:78:e6: 9d:29:a3:9a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyMzAxMTAvBgNVBAUTKDY0RjhBRjgxRUFCOTA4OTk2MjE0RDQzOUY3MTE3MDBF OUY0OEI0Q0IwHhcNMjQwOTA4MjI1MDA0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRlMmExYy1lNzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyvImRiqPf12L6d/eESaAih9pUseLDpVhrdQoZl8jpA6+HXBVNiN947K7P5j iwwIUit4UOoBoyKk+0jXNkKscVZpfiPR/HBIZnZuYFOouo8d1UfYnm9paIS5FUah FO2s5rRbYnKW5h/yWrEng5s8pJ6P9XP9xfxcMvwjFFWaEwMiiobe+UpMTvsNE032 dZrM0hUkKs/yp2cNHhxNBZm0aUKVdfV22DFdwQMRlDEGWU6iEoK45Ro3ou+mLc0c +4OwUW1CuzvtK7nCZPWQsMl20X7oqRiRFGLEMkVbqWXMkuk2B5D00MICjrsOq0Lp ie2sKots75WEre9G04LCx5MdFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAIEhlfw psJKmYp8jCuCzWdNQyyKMB8GA1UdIwQYMBaAFGT4r4HquQiZYhTUOfcRcA6fSLTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTIzMC9DNTAwNzREQUU4 NTIxMUVBQUM1MEI1NTFDNEY5QUUwMi9aUGl2Z2VxNUNKbGlGTlE1OXhGd0RwOUl0 TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pQaXZnZXE1Q0psaUZOUTU5eEZ3RHA5SXRNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUyMzAvQzUwMDc0REFFODUyMTFFQUFDNTBCNTUxQzRGOUFFMDIvNzM1NUZCMjY0 QjU3MTFFRUI0OTdCNDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnL0wDQYJKoZIhvcNAQELBQADggEBAMMj5F9f3OFYRjJY ipMl3Hum3K8XoIIRo+V2ts7pn+024Q0eWmH0nAvBjQocBMMLk9VP2TLTQgIHEs3J C9fQVDiRZGH3RAukbEEsbHJwO2TDUy/DGzvY0suuFjIpNhp7ryHy6hpk/kRv6cXJ Uzhe4NKM6S9DsGDTOQVwbcEBQ4IJxHq5poJqA78NC9eMl82RrWKtvZcOYspFBy2P LLs+jXHBmkif2BIBDnXn85rJmGnm1wSUmwR7xCZpZwMXJmDbpjLcWfMvF++0nYmB RuoPzTev5GAoDX13fWaL+3wnmpbvYqm7Ey6SzspMiZy8iS4vBvZpMLvQUddbuHF4 5p0po5o= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org