$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/149009E6EE8111EAABC5C05CC4F9AE02.roa File: 149009E6EE8111EAABC5C05CC4F9AE02.roa (raw, json) Hash identifier: AGcGZOH2g6bV+K3FrKli6KkriXvPqSvE3RitkoEmp4w= Subject key identifier: 22:D1:44:F3:F0:90:28:A0:A1:7E:F4:B5:0A:B1:95:B7:A5:2D:30:CE Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 0700 Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/149009E6EE8111EAABC5C05CC4F9AE02.roa Signing time: Wed 20 Mar 2024 22:31:17 +0000 ROA not before: Wed 20 Mar 2024 22:31:17 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 4764 IP address blocks: 103.108.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Mar 20 22:31:17 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65fb63b4-1a8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b0:95:af:1b:8d:c3:56:25:56:2d:65:ff:b0: 11:09:75:70:a9:cc:26:25:ef:9f:64:59:e6:ba:39: 6c:bf:81:c6:5f:88:63:f1:03:11:fa:42:74:b9:ba: 69:9d:81:4b:9f:ae:14:e1:a2:b2:20:72:c0:26:ef: ff:88:c0:01:dd:03:82:d6:77:f4:2f:96:8a:47:06: 3c:90:14:08:fc:d1:d1:65:e2:66:ee:d6:b2:be:c5: b3:d0:f0:01:b6:6e:db:de:68:a5:7a:0e:c5:6c:d9: 25:7c:03:cf:af:f8:74:5b:56:74:4f:fd:0f:10:18: ec:d8:16:22:68:33:64:2f:c7:70:82:50:a2:a0:95: 5d:25:6a:78:5e:75:88:c8:f9:73:17:7c:0c:e1:76: 0c:7b:df:6a:92:81:4c:d1:2f:94:d7:58:f3:86:74: 3d:6a:51:78:d0:0c:85:df:31:1e:57:cc:72:41:f2: 67:45:de:13:95:ce:f2:7a:f9:60:33:53:e7:6d:09: 0b:7b:1f:e1:07:78:fb:17:8e:ab:0b:45:db:f0:1c: c7:8d:9f:37:6b:99:43:9a:8e:e7:69:6d:a7:6a:72: cb:f7:dd:b2:e4:58:03:61:80:23:e5:86:79:21:3a: e4:3b:09:ab:44:ec:53:a0:be:fb:b4:b4:82:70:f5: 8b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D1:44:F3:F0:90:28:A0:A1:7E:F4:B5:0A:B1:95:B7:A5:2D:30:CE X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/149009E6EE8111EAABC5C05CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.202.0/23 Signature Algorithm: sha256WithRSAEncryption a3:ac:2e:f6:1d:80:66:84:04:75:c1:ea:60:e4:ed:38:a7:38: 2a:ac:9c:f4:39:c8:75:4e:70:a7:63:bb:5e:47:83:c3:cd:2f: 6c:ca:18:61:1b:bf:87:3d:fe:a1:b3:9e:90:f3:42:5e:11:a4: 58:3b:d5:03:a5:77:91:34:66:07:37:d3:70:52:64:2a:da:fb: 9d:ce:0d:72:a3:00:2b:51:14:c3:48:6a:7f:ab:66:3c:7e:e6: e5:40:31:8e:9b:5e:71:3c:7d:da:f9:4d:1b:2c:0d:17:b1:7b: d7:b6:9d:1a:9e:0e:e3:46:7d:dc:f0:c1:49:5c:79:a1:3c:9b: a4:dd:31:8b:f6:b3:b9:2f:e0:51:49:c4:a1:37:dc:2f:c7:49: ca:77:1d:e8:8b:b4:8d:1b:90:48:ba:c2:e2:31:bb:5e:ad:19: 94:09:18:5a:2b:9a:5d:44:aa:0d:22:3f:9c:d2:e3:dd:f2:24: 42:12:5b:e7:a6:32:7d:1c:04:aa:f0:57:c8:5f:ad:bd:cb:b7: 08:c6:63:63:ab:e1:6b:e4:83:09:07:36:63:84:20:7c:47:57: 86:47:6e:e9:9d:6c:b7:b0:e3:ec:06:60:6b:7c:cd:14:02:2e: 3b:dc:57:f6:aa:af:82:96:1b:43:a3:67:74:cd:d2:d7:29:dd: 55:c0:17:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjQwMzIwMjIzMTE3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiNjNiNC0xYThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bCVrxuNw1YlVi1l/7ARCXVwqcwmJe+fZFnmujlsv4HGX4hj8QMR+kJ0ubpp nYFLn64U4aKyIHLAJu//iMAB3QOC1nf0L5aKRwY8kBQI/NHRZeJm7tayvsWz0PAB tm7b3mileg7FbNklfAPPr/h0W1Z0T/0PEBjs2BYiaDNkL8dwglCioJVdJWp4XnWI yPlzF3wM4XYMe99qkoFM0S+U11jzhnQ9alF40AyF3zEeV8xyQfJnRd4Tlc7yevlg M1PnbQkLex/hB3j7F46rC0Xb8BzHjZ83a5lDmo7naW2nanLL992y5FgDYYAj5YZ5 ITrkOwmrROxToL77tLSCcPWLkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCLRRPPw kCigoX70tQqxlbelLTDOMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU4QjQvNEE2NUVBQzhFRTgwMTFFQUEwRjgyQzVDQzRGOUFFMDIvMTQ5MDA5RTZF RTgxMTFFQUFCQzVDMDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnbMowDQYJKoZIhvcNAQELBQADggEBAKOsLvYdgGaEBHXB 6mDk7TinOCqsnPQ5yHVOcKdju15Hg8PNL2zKGGEbv4c9/qGznpDzQl4RpFg71QOl d5E0Zgc303BSZCra+53ODXKjACtRFMNIan+rZjx+5uVAMY6bXnE8fdr5TRssDRex e9e2nRqeDuNGfdzwwUlceaE8m6TdMYv2s7kv4FFJxKE33C/HScp3HeiLtI0bkEi6 wuIxu16tGZQJGForml1Eqg0iP5zS493yJEISW+emMn0cBKrwV8hfrb3LtwjGY2Or 4WvkgwkHNmOEIHxHV4ZHbumdbLew4+wGYGt8zRQCLjvcV/aqr4KWG0OjZ3TN0tcp 3VXAF4Q= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:47 2024 by rpki-client on console-fra.rpki-client.org