$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/5153E9DAC0B911ED99A12312C4F9AE02.roa File: 5153E9DAC0B911ED99A12312C4F9AE02.roa (raw, json) Hash identifier: pRhFi90u5iaLYPX6g3PP+55Ior11n+chfHkyJHcRUKE= Subject key identifier: C1:16:FD:45:46:1B:51:EC:C2:7D:5E:87:86:A6:DF:11:14:E1:9D:B6 Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 011D Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/5153E9DAC0B911ED99A12312C4F9AE02.roa Signing time: Mon 09 Sep 2024 06:37:19 +0000 ROA not before: Mon 09 Sep 2024 06:37:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135335 IP address blocks: 103.154.46.0/23 maxlen: 23 103.154.46.0/24 maxlen: 24 103.154.47.0/24 maxlen: 24 2001:df4:6780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:38:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Sep 9 06:37:19 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66de979f-9f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f6:b3:c3:46:b2:85:12:ed:57:ae:da:97:7f: 25:92:9b:93:a7:8e:80:d2:fa:1f:38:a2:65:b4:ef: 90:54:0b:28:c6:c8:80:81:61:eb:d6:1a:56:26:cd: 99:eb:20:cb:c8:79:88:77:0b:ca:6b:66:46:32:be: d2:74:53:1e:f0:15:27:3b:c1:5e:08:95:94:a6:b6: 52:20:45:36:84:25:fb:c7:ca:ff:2a:7b:76:93:b0: c8:92:ce:83:2f:6d:5c:3c:07:61:4a:fc:75:a6:da: b7:ac:e3:0a:a0:1a:c7:5e:39:43:88:7b:fb:85:05: da:6d:32:26:81:79:19:47:17:f2:75:ed:85:28:5a: c0:7e:b0:91:3a:39:3a:63:18:51:88:34:67:6a:13: 8b:df:f8:ac:f9:44:90:66:f0:fd:eb:df:42:1b:82: 4e:cb:40:02:e1:62:1e:73:24:2d:b5:c2:95:07:64: b8:6f:e5:a2:16:05:e3:27:97:25:4b:91:da:1b:82: f0:0a:38:7f:9b:2f:96:d6:6a:66:1b:3b:2f:42:fb: 72:c5:7d:4f:4f:24:36:1d:fd:c9:1e:a9:eb:85:e3: 94:a6:e7:d1:f7:5c:81:1a:ae:6c:f3:0f:0b:76:e7: 76:b2:48:f3:b8:fa:de:af:98:ae:d7:d4:a0:f9:8f: 2d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:16:FD:45:46:1B:51:EC:C2:7D:5E:87:86:A6:DF:11:14:E1:9D:B6 X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/5153E9DAC0B911ED99A12312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.46.0/23 IPv6: 2001:df4:6780::/48 Signature Algorithm: sha256WithRSAEncryption 9f:b8:e0:77:05:b6:ad:84:96:57:62:6b:4c:e6:0d:0d:6f:92: 56:91:c4:35:58:c3:45:ec:29:7c:15:22:18:13:57:60:0e:09: bd:43:0d:82:d9:26:b9:a8:20:1b:40:ee:7e:cf:c1:34:57:d1: 52:d9:d3:69:a0:53:a3:08:1d:63:72:06:e5:52:0d:29:a2:27: 87:b6:e4:2f:44:a0:02:d6:a7:bc:6b:b9:27:60:0a:87:8b:12: bb:ec:92:30:99:1f:4a:76:72:25:88:33:ed:dd:7e:54:82:8f: d2:c8:ef:3c:19:3b:56:75:58:e8:45:42:19:73:fd:2d:d8:21: ec:2a:46:d6:81:b2:4c:dc:e7:e2:7a:74:90:df:0c:8e:69:33: f3:f0:34:28:1d:0b:80:27:ea:71:e1:73:bd:34:82:ab:0f:91: c7:1b:e6:b9:a7:72:9c:d9:15:43:d1:05:89:b1:b8:7d:bc:66: 86:f4:cb:7f:17:5f:d1:0b:fc:cf:fd:b3:11:1b:da:31:bd:20: e2:b3:06:cc:54:0b:a7:53:61:69:11:7f:2a:25:0e:2d:bd:dd: 4f:e4:10:24:44:9e:ef:fe:a2:41:27:4e:90:0f:9f:46:22:e7: 05:d6:03:21:eb:cf:a1:d1:86:3b:cf:47:3a:4f:68:fc:f6:6c: 3a:96:f4:be -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjQwOTA5MDYzNzE5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRlOTc5Zi05ZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvazw0ayhRLtV67al38lkpuTp46A0vofOKJltO+QVAsoxsiAgWHr1hpWJs2Z 6yDLyHmIdwvKa2ZGMr7SdFMe8BUnO8FeCJWUprZSIEU2hCX7x8r/Knt2k7DIks6D L21cPAdhSvx1ptq3rOMKoBrHXjlDiHv7hQXabTImgXkZRxfyde2FKFrAfrCROjk6 YxhRiDRnahOL3/is+USQZvD9699CG4JOy0AC4WIecyQttcKVB2S4b+WiFgXjJ5cl S5HaG4LwCjh/my+W1mpmGzsvQvtyxX1PTyQ2Hf3JHqnrheOUpufR91yBGq5s8w8L dud2skjzuPrer5iu19Sg+Y8tbwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMEW/UVG G1Hswn1eh4am3xEU4Z22MB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVDM0MvRjYzMDgwOTRDMEI0MTFFREE3N0Y3MDBFQzRGOUFFMDIvNTE1M0U5REFD MEI5MTFFRDk5QTEyMzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmi4wDwQCAAIwCQMHACABDfRngDANBgkqhkiG9w0BAQsF AAOCAQEAn7jgdwW2rYSWV2JrTOYNDW+SVpHENVjDRewpfBUiGBNXYA4JvUMNgtkm uaggG0Dufs/BNFfRUtnTaaBTowgdY3IG5VINKaInh7bkL0SgAtanvGu5J2AKh4sS u+ySMJkfSnZyJYgz7d1+VIKP0sjvPBk7VnVY6EVCGXP9Ldgh7CpG1oGyTNzn4np0 kN8Mjmkz8/A0KB0LgCfqceFzvTSCqw+RxxvmuadynNkVQ9EFibG4fbxmhvTLfxdf 0Qv8z/2zERvaMb0g4rMGzFQLp1NhaRF/KiUOLb3dT+QQJESe7/6iQSdOkA+fRiLn BdYDIevPodGGO89HOk9o/PZsOpb0vg== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:53 2024 by rpki-client on console-ams.rpki-client.org