$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/D41A1814442211EBBF7D9D65C4F9AE02.roa File: D41A1814442211EBBF7D9D65C4F9AE02.roa (raw, json) Hash identifier: wrLVWTfBY7EfCeqWtjAJjv+pu46Ld+Ri9uPM3Fhe0T0= Subject key identifier: B0:1E:4D:B9:C3:89:23:3B:F1:DA:59:56:95:E7:B7:AC:1B:59:6E:4B Certificate issuer: /CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Certificate serial: 0692 Authority key identifier: 1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/D41A1814442211EBBF7D9D65C4F9AE02.roa Signing time: Thu 10 Oct 2024 22:31:19 +0000 ROA not before: Thu 10 Oct 2024 22:31:19 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141216 IP address blocks: 103.156.154.0/24 maxlen: 24 103.156.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Validity Not Before: Oct 10 22:31:19 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=670855b7-ed34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:fe:12:cb:93:f4:37:b2:b4:d8:89:3d:5b:de: d8:82:25:b7:57:12:c4:09:8a:9e:04:65:65:19:44: b7:c5:cf:09:d9:49:7e:bc:2f:a3:1b:cd:f9:3c:af: 55:65:38:74:ee:7f:51:60:10:0c:54:cd:6b:c4:2b: b2:69:14:f5:51:49:a1:50:de:e3:d1:b0:58:f7:e0: f1:85:f1:ea:1b:a5:0b:b1:55:5b:3c:0c:07:27:d3: e4:bc:64:76:d8:e3:8b:0c:96:48:4c:9b:a2:a8:47: c4:1d:7b:30:9c:cb:ec:d3:bd:41:80:33:74:3d:af: ba:22:bb:e5:e7:8b:ec:76:ea:a7:c2:aa:16:d3:1b: 5b:49:59:e8:2e:ad:f1:cf:35:04:31:42:ff:15:53: 2d:76:54:e9:59:36:db:7d:69:23:a3:b0:30:ad:2a: d2:02:08:84:19:3d:10:30:53:a8:ac:66:b8:5a:e6: 70:cc:1e:7f:5e:b5:a9:1a:30:07:b6:04:02:8d:19: a2:bf:42:e0:94:fc:3e:3d:6f:33:b0:c6:b1:c9:07: d8:ac:38:dc:6e:12:1e:87:5c:1d:a0:72:ad:79:4a: a7:25:2f:c2:db:71:17:c5:01:f9:d5:88:23:e4:49: b1:e4:9c:d4:0d:31:3d:89:22:ea:16:73:31:5e:46: 55:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:1E:4D:B9:C3:89:23:3B:F1:DA:59:56:95:E7:B7:AC:1B:59:6E:4B X509v3 Authority Key Identifier: keyid:1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/D41A1814442211EBBF7D9D65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.154.0/23 Signature Algorithm: sha256WithRSAEncryption 86:c8:1e:3e:d4:55:cd:e9:49:5b:2c:fa:9e:7a:15:d3:21:1f: ea:46:52:09:b0:95:31:41:ed:ae:cd:3c:6d:b2:ec:f3:a9:e0: ea:8b:e4:bd:dd:60:f4:fc:97:2e:45:f9:98:55:6f:04:eb:ed: 48:8e:d8:a7:96:3b:6a:43:f5:8f:fd:cc:d7:f6:ad:3d:20:91: d4:89:3e:33:e5:41:49:00:64:75:e7:18:b2:71:db:51:f4:77: 36:00:62:52:68:65:9e:fb:d2:f0:d6:4f:11:1a:13:c4:b3:b7: 00:ff:ed:8b:0f:bd:ee:51:15:98:fb:6a:d7:34:61:96:32:2a: 7c:2b:68:e8:84:ed:da:a0:76:00:04:df:e1:22:a1:46:7e:b5: 5f:17:26:70:9d:98:56:da:dc:84:8a:da:50:db:7d:e0:6e:9b: ce:36:29:d1:37:06:6b:5b:90:c8:28:3c:f2:5e:3d:b6:97:be: c1:f7:c2:ca:07:e4:c4:2e:d5:3e:5a:09:7d:77:42:53:07:ac: 1a:25:48:e3:09:79:9d:3c:61:51:ee:e3:f5:ff:d5:87:4f:40: 9f:c1:a5:bc:1c:51:ff:b3:1c:34:2a:fa:af:3f:5e:5e:3b:d1: 92:d3:2f:4b:b1:03:39:15:1a:35:e4:5f:d9:c6:25:86:d2:73: ec:ca:18:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyNTcxMTAvBgNVBAUTKDFFRDc4MkJFNjJENzEwMTc2NjhCMjhBMzI2ODlFNDcw RURBMjAxRjgwHhcNMjQxMDEwMjIzMTE5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4NTViNy1lZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+v4Sy5P0N7K02Ik9W97YgiW3VxLECYqeBGVlGUS3xc8J2Ul+vC+jG835PK9V ZTh07n9RYBAMVM1rxCuyaRT1UUmhUN7j0bBY9+DxhfHqG6ULsVVbPAwHJ9PkvGR2 2OOLDJZITJuiqEfEHXswnMvs071BgDN0Pa+6Irvl54vsduqnwqoW0xtbSVnoLq3x zzUEMUL/FVMtdlTpWTbbfWkjo7AwrSrSAgiEGT0QMFOorGa4WuZwzB5/XrWpGjAH tgQCjRmiv0LglPw+PW8zsMaxyQfYrDjcbhIeh1wdoHKteUqnJS/C23EXxQH51Ygj 5Emx5JzUDTE9iSLqFnMxXkZVtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLAeTbnD iSM78dpZVpXnt6wbWW5LMB8GA1UdIwQYMBaAFB7Xgr5i1xAXZosooyaJ5HDtogH4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTI1Ny9BOTBGMUVFNjQ0 MjAxMUVCODU2Q0QxNjJDNEY5QUUwMi9IdGVDdm1MWEVCZG1peWlqSm9ua2NPMmlB ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZUN2bUxYRUJkbWl5aWpKb25rY08yaUFmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTEyNTcvQTkwRjFFRTY0NDIwMTFFQjg1NkNEMTYyQzRGOUFFMDIvRDQxQTE4MTQ0 NDIyMTFFQkJGN0Q5RDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnJowDQYJKoZIhvcNAQELBQADggEBAIbIHj7UVc3pSVss +p56FdMhH+pGUgmwlTFB7a7NPG2y7POp4OqL5L3dYPT8ly5F+ZhVbwTr7UiO2KeW O2pD9Y/9zNf2rT0gkdSJPjPlQUkAZHXnGLJx21H0dzYAYlJoZZ770vDWTxEaE8Sz twD/7YsPve5RFZj7atc0YZYyKnwraOiE7dqgdgAE3+EioUZ+tV8XJnCdmFba3ISK 2lDbfeBum842KdE3BmtbkMgoPPJePbaXvsH3wsoH5MQu1T5aCX13QlMHrBolSOMJ eZ08YVHu4/X/1YdPQJ/BpbwcUf+zHDQq+q8/Xl470ZLTL0uxAzkVGjXkX9nGJYbS c+zKGF4= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:52 2024 by rpki-client on console-ams.rpki-client.org