$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa File: D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa (raw, json) Hash identifier: l0l7N2oeU6miB+wmaaP2nYxuLtMs+PGnzOc6Ikq4rno= Subject key identifier: 4F:B7:E4:59:C4:8C:8B:C9:79:B9:25:5D:D8:20:6D:4D:B1:53:84:48 Certificate issuer: /CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Certificate serial: 09EE Authority key identifier: AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa Signing time: Wed 14 Feb 2024 20:38:22 +0000 ROA not before: Wed 14 Feb 2024 20:38:22 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140087 IP address blocks: 103.148.82.0/23 maxlen: 24 2001:df2:c580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2542 (0x9ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Validity Not Before: Feb 14 20:38:22 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65cd24be-9616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1a:60:86:cd:9f:8a:3e:30:b2:5d:c7:61:a9: e5:49:1b:e8:98:4e:ee:08:f6:58:16:ea:73:09:d4: 84:66:93:ff:6c:ca:cd:a2:b6:86:ed:98:c6:9b:61: 21:3e:59:9f:bd:dd:54:37:83:6f:fd:cd:7b:0e:87: be:80:8f:dd:2f:f1:61:00:27:d2:3a:25:9e:7a:21: 77:b1:0a:21:80:23:07:e8:23:2a:ec:dd:f8:94:b7: 2c:7a:c4:d0:37:e0:69:1f:de:1c:b0:0e:f3:6e:4e: 44:5f:c7:57:46:b1:ee:c6:22:96:62:bf:c0:f6:02: 62:30:72:bb:3d:d4:b9:92:8c:55:bf:f2:d9:db:03: 22:24:4e:fa:58:ff:27:78:f2:d3:47:ed:7f:6c:fa: a8:34:c9:7e:ab:ab:2f:10:d5:38:f8:9a:15:ba:d7: 57:bc:2f:12:e9:af:99:ad:08:ca:59:cd:3e:9f:bf: f2:4b:69:dd:a7:e6:68:7f:a4:cb:c3:e0:d4:3a:16: ef:1f:46:b1:68:9b:bc:32:3e:99:e7:42:3f:a6:b8: 49:61:97:f1:e0:bb:c2:8e:e4:c3:10:c5:bb:d4:ae: 0b:d3:e7:88:1f:b3:a7:04:f4:a7:93:c0:32:7b:32: 0e:63:16:1d:9f:fb:a7:fd:ab:0a:6c:0a:5a:fc:9f: 82:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B7:E4:59:C4:8C:8B:C9:79:B9:25:5D:D8:20:6D:4D:B1:53:84:48 X509v3 Authority Key Identifier: keyid:AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.82.0/23 IPv6: 2001:df2:c580::/48 Signature Algorithm: sha256WithRSAEncryption a1:65:a4:5e:0c:96:57:57:b3:a3:9f:e6:35:ed:22:81:cb:f9: 96:c7:a5:c5:97:7d:c5:00:a1:1c:c5:1a:fb:a1:50:09:16:48: 29:c6:eb:14:aa:33:d5:73:d8:fd:4e:0b:db:49:27:1f:25:da: 20:18:6d:f7:56:9a:ab:ff:96:f6:62:09:01:d7:56:a4:b0:d0: 7d:a7:33:dd:23:65:89:1f:b3:ad:43:0f:7d:54:2a:bd:d6:b2: dc:3f:fa:47:88:1b:a4:ec:c5:42:f2:91:58:0f:e3:94:e1:e2: f8:09:ea:64:c4:d6:32:28:b9:95:ae:ce:74:4f:d8:f1:c4:82: 20:f0:36:3a:cf:af:ee:9b:8c:6e:ac:62:69:33:4e:0a:b9:5b: 32:73:a2:68:30:1d:54:c3:c2:7f:55:3b:f8:6c:53:8a:51:9f: 6a:12:71:d3:01:eb:00:6f:4c:37:c9:bb:8a:47:1c:81:35:9b: fd:87:31:44:f9:64:bf:b5:35:36:0c:c9:f5:1f:a5:11:7e:61: d8:f9:d4:5c:92:08:18:c2:93:15:c9:76:0e:e5:92:e1:6c:f0: f7:46:c9:87:67:69:47:3d:7d:ed:31:97:da:22:c6:a2:ec:d6: 7a:26:01:1b:fb:dc:f2:e5:0d:cb:56:16:93:fe:a0:34:70:53: 50:ce:1a:43 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBMEYxMTAvBgNVBAUTKEFEMTZBOTE5QjMyREVCOTQ1MEQyRUE2M0M3OUQ1MDMx NUQ5MTgxNTUwHhcNMjQwMjE0MjAzODIyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNkMjRiZS05NjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRpghs2fij4wsl3HYanlSRvomE7uCPZYFupzCdSEZpP/bMrNoraG7ZjGm2Eh Plmfvd1UN4Nv/c17Doe+gI/dL/FhACfSOiWeeiF3sQohgCMH6CMq7N34lLcsesTQ N+BpH94csA7zbk5EX8dXRrHuxiKWYr/A9gJiMHK7PdS5koxVv/LZ2wMiJE76WP8n ePLTR+1/bPqoNMl+q6svENU4+JoVutdXvC8S6a+ZrQjKWc0+n7/yS2ndp+Zof6TL w+DUOhbvH0axaJu8Mj6Z50I/prhJYZfx4LvCjuTDEMW71K4L0+eIH7OnBPSnk8Ay ezIOYxYdn/un/asKbApa/J+CcwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFE+35FnE jIvJebklXdggbU2xU4RIMB8GA1UdIwQYMBaAFK0WqRmzLeuUUNLqY8edUDFdkYFV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkEwRi9EOTAwNjdGRTRD RDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1UlEwdXBqeDUxUU1WMlJn VlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JSYXBHYk10NjVSUTB1cGp4NTFRTVYyUmdWVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJBMEYvRDkwMDY3RkU0Q0Q3MTFFQUI0NTU1ODQ1QzRGOUFFMDIvRDU0QzhFNkM0 REJEMTFFQUFGNDI3RjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlFIwDwQCAAIwCQMHACABDfLFgDANBgkqhkiG9w0BAQsF AAOCAQEAoWWkXgyWV1ezo5/mNe0igcv5lselxZd9xQChHMUa+6FQCRZIKcbrFKoz 1XPY/U4L20knHyXaIBht91aaq/+W9mIJAddWpLDQfacz3SNliR+zrUMPfVQqvday 3D/6R4gbpOzFQvKRWA/jlOHi+AnqZMTWMii5la7OdE/Y8cSCIPA2Os+v7puMbqxi aTNOCrlbMnOiaDAdVMPCf1U7+GxTilGfahJx0wHrAG9MN8m7ikccgTWb/YcxRPlk v7U1NgzJ9R+lEX5h2PnUXJIIGMKTFcl2DuWS4Wzw90bJh2dpRz197TGX2iLGouzW eiYBG/vc8uUNy1YWk/6gNHBTUM4aQw== -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org