$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/4B1E3E947EB411E994ED5B25C4F9AE02.roa File: 4B1E3E947EB411E994ED5B25C4F9AE02.roa (raw, json) Hash identifier: v5g7cjNReibtump5AZbTVG2Okqg2HIeG+osQENS8uAY= Subject key identifier: B3:DE:53:C8:D0:39:7E:91:77:14:0F:46:2D:6F:2B:B2:8E:51:22:2D Certificate issuer: /CN=A91E1155/serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Certificate serial: 0E9A Authority key identifier: 0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/4B1E3E947EB411E994ED5B25C4F9AE02.roa Signing time: Wed 06 Nov 2024 17:55:59 +0000 ROA not before: Wed 06 Nov 2024 17:55:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45780 IP address blocks: 103.100.149.0/24 maxlen: 24 2001:df2:7d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:41:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3738 (0xe9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1155/serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Validity Not Before: Nov 6 17:55:59 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672badae-1ed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:30:6f:14:75:3c:be:79:98:9d:05:a9:a8:a6: fa:11:a5:04:79:46:84:53:7b:c7:86:59:ab:80:42: f9:bf:c2:6b:0e:93:08:31:56:3f:65:e4:d9:16:18: 17:ac:c7:6d:4c:72:03:e8:3b:86:3d:50:c1:3a:4a: 20:1f:79:10:3a:c1:7a:f7:4e:d3:09:5d:fe:ac:8a: 6c:32:b6:0a:0b:a6:4e:3d:72:4d:bf:6e:1f:8a:df: b2:70:35:35:a8:2d:30:46:c4:2a:f4:04:ed:f4:6b: 46:76:e9:d4:48:6e:92:57:f6:32:51:17:72:35:ad: 21:2d:db:97:99:85:e2:f3:3b:0b:12:67:75:9b:da: 5a:3c:30:38:14:ae:b2:f3:2a:c3:9c:d4:47:76:d0: 57:3a:5b:7f:6b:b4:d5:96:07:1c:42:08:1e:07:f1: 7f:0c:3d:42:c2:22:c7:9b:eb:a9:65:20:b4:25:bf: e6:9b:c1:bf:63:65:fd:b3:8a:5e:4e:05:2c:6b:5a: 0d:a6:f0:49:96:65:c3:37:31:3e:36:92:42:8a:4d: 37:cf:b0:d3:24:0a:2c:17:11:35:f5:15:5c:c3:23: 82:ee:e9:6a:01:19:11:13:5a:69:b8:18:c6:0f:f8: d3:9c:6d:e6:4f:f3:f9:99:32:ed:51:a1:60:77:9c: cf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:DE:53:C8:D0:39:7E:91:77:14:0F:46:2D:6F:2B:B2:8E:51:22:2D X509v3 Authority Key Identifier: keyid:0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/4B1E3E947EB411E994ED5B25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.149.0/24 IPv6: 2001:df2:7d00::/48 Signature Algorithm: sha256WithRSAEncryption 0d:0d:11:44:ad:da:a1:2b:a9:56:17:3b:80:13:a5:01:cf:42: 27:ea:3e:a9:93:c8:6e:d0:f0:fe:33:bf:7a:9c:29:a8:aa:a7: 11:d9:31:6b:cd:e5:81:b4:73:18:4c:f6:ac:bf:90:72:f3:4c: 7a:23:61:6c:27:fe:33:03:fd:d3:91:20:5d:37:40:55:0d:52: 60:e2:fe:f0:b5:93:4f:af:54:87:56:fa:ef:87:f3:d8:bb:40: 88:bd:97:41:6e:2a:77:df:fb:5e:96:99:71:49:61:03:5f:5f: 8a:1e:95:cf:ae:0d:21:50:80:5c:0a:fe:55:b6:62:53:53:5f: 98:f9:fe:9d:e9:e5:90:0a:e5:f0:52:9b:df:72:6e:d1:1c:dd: a7:86:6c:27:d2:bc:a7:bf:6e:aa:75:ea:09:52:0c:d8:46:19: 62:af:01:85:f9:12:62:f7:8c:1d:c2:f0:0a:cf:cc:ed:8a:9c: 2e:19:d2:6f:ee:95:ed:6d:ab:ce:f1:7b:57:5e:4b:0c:37:2b: 19:c5:c8:93:f7:13:f0:96:e3:4f:65:c4:b9:9c:d7:a3:f2:8a: 00:9f:d0:d7:19:e6:07:9f:9d:44:f9:76:cc:cf:8a:91:8a:c4: 2a:5a:6e:86:a1:fe:c1:9a:26:f8:5f:d8:49:16:42:fd:b8:29: 63:1e:39:f4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNTUxMTAvBgNVBAUTKDBCMjU2MUM0QjU3REE4MUQ3MEYzOTcyNEIwREUyQzcx MDE3NDlGNUQwHhcNMjQxMTA2MTc1NTU5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYWRhZS0xZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDBvFHU8vnmYnQWpqKb6EaUEeUaEU3vHhlmrgEL5v8JrDpMIMVY/ZeTZFhgX rMdtTHID6DuGPVDBOkogH3kQOsF6907TCV3+rIpsMrYKC6ZOPXJNv24fit+ycDU1 qC0wRsQq9ATt9GtGdunUSG6SV/YyURdyNa0hLduXmYXi8zsLEmd1m9paPDA4FK6y 8yrDnNRHdtBXOlt/a7TVlgccQggeB/F/DD1CwiLHm+upZSC0Jb/mm8G/Y2X9s4pe TgUsa1oNpvBJlmXDNzE+NpJCik03z7DTJAosFxE19RVcwyOC7ulqARkRE1ppuBjG D/jTnG3mT/P5mTLtUaFgd5zPWwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLPeU8jQ OX6RdxQPRi1vK7KOUSItMB8GA1UdIwQYMBaAFAslYcS1fagdcPOXJLDeLHEBdJ9d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE1NS81Mzk5OEEzNDdF QjMxMUU5QUI5QzdCMjRDNEY5QUUwMi9DeVZoeExWOXFCMXc4NWNrc040c2NRRjBu MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N5Vmh4TFY5cUIxdzg1Y2tzTjRzY1FGMG4xMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTExNTUvNTM5OThBMzQ3RUIzMTFFOUFCOUM3QjI0QzRGOUFFMDIvNEIxRTNFOTQ3 RUI0MTFFOTk0RUQ1QjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnZJUwDwQCAAIwCQMHACABDfJ9ADANBgkqhkiG9w0BAQsF AAOCAQEADQ0RRK3aoSupVhc7gBOlAc9CJ+o+qZPIbtDw/jO/epwpqKqnEdkxa83l gbRzGEz2rL+QcvNMeiNhbCf+MwP905EgXTdAVQ1SYOL+8LWTT69Uh1b674fz2LtA iL2XQW4qd9/7XpaZcUlhA19fih6Vz64NIVCAXAr+VbZiU1NfmPn+nenlkArl8FKb 33Ju0Rzdp4ZsJ9K8p79uqnXqCVIM2EYZYq8BhfkSYveMHcLwCs/M7YqcLhnSb+6V 7W2rzvF7V15LDDcrGcXIk/cT8JbjT2XEuZzXo/KKAJ/Q1xnmB5+dRPl2zM+KkYrE KlpuhqH+wZom+F/YSRZC/bgpYx459A== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org