$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/0BCF58E2015A11EC94EA2C43C4F9AE02.roa File: 0BCF58E2015A11EC94EA2C43C4F9AE02.roa (raw, json) Hash identifier: Ad2dkpVpWsGxqATbvl0xMJkc/zspOSMKAdkhD/aSZtg= Subject key identifier: 8B:7A:2F:81:76:B7:9D:26:9D:06:9C:C7:B4:13:C6:FD:39:60:12:CB Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 070A Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/0BCF58E2015A11EC94EA2C43C4F9AE02.roa Signing time: Thu 14 Sep 2023 21:39:11 +0000 ROA not before: Thu 14 Sep 2023 21:39:11 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140933 IP address blocks: 103.153.152.0/23 maxlen: 24 2406:46c0::/32 maxlen: 32 2406:46c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1802 (0x70a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Sep 14 21:39:11 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65037d7e-b0b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:84:6f:5c:9f:c3:20:88:c9:2b:45:67:ae:12: 4d:2f:4f:7e:dd:a1:9f:d9:f9:be:c7:4f:a8:8a:97: c1:14:6f:3c:86:bd:a7:04:68:77:4b:11:b3:99:7f: 0a:21:d7:2d:2e:90:4a:dc:20:e8:a7:86:3f:63:73: 2d:1c:4f:f0:f7:13:40:07:f3:3b:97:de:6d:13:48: 1d:e8:c0:6c:44:c7:d1:58:34:e7:f8:82:9b:80:81: 25:8f:fa:bd:36:5c:3b:e3:57:48:c0:e3:77:a1:5e: 3e:bf:dc:3c:92:6f:3a:df:a8:c8:aa:df:2a:d6:10: 3a:eb:ce:26:52:26:8b:17:b8:de:6b:0e:98:f3:7d: 4f:0d:c2:08:92:02:da:91:ff:0c:b0:58:69:05:e8: 97:f3:c0:00:ac:a9:b4:b1:1b:17:fa:85:56:f9:24: 12:7c:a4:98:72:0a:bd:bc:48:fc:b9:ff:9a:28:ea: 7e:b5:56:ed:9e:43:a0:90:e3:d6:b9:92:68:2f:d5: 2f:13:06:e6:12:99:92:1f:a1:6e:2a:01:1b:8e:5b: 2d:3e:8b:9e:ab:19:ba:c9:25:64:83:91:4a:1c:82: 30:2e:ed:6e:24:4a:6a:2c:f8:40:55:8b:35:86:78: df:db:c7:dd:f5:e2:97:45:18:1c:4a:e2:a2:c2:a3: 2e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7A:2F:81:76:B7:9D:26:9D:06:9C:C7:B4:13:C6:FD:39:60:12:CB X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/0BCF58E2015A11EC94EA2C43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.152.0/23 IPv6: 2406:46c0::/32 Signature Algorithm: sha256WithRSAEncryption 79:f3:62:f4:36:8c:e9:d4:cd:d3:89:e4:6b:c1:3f:f1:65:4f: 6b:d0:bc:51:0a:67:c7:0d:72:0d:1f:2a:59:eb:81:14:fc:40: 2b:d0:32:28:16:02:01:98:96:c8:51:22:fb:dd:81:9c:ea:51: 51:66:1c:98:a4:fa:12:bb:d8:ff:23:51:d4:fc:82:79:dc:98: 61:e3:e0:51:38:87:c8:4d:bd:53:a4:27:dc:0f:6d:af:26:cb: 96:a0:48:5e:c7:2c:ad:ae:b0:70:5a:33:ae:1b:26:10:4f:26: ef:25:93:52:5c:7b:dc:c3:0c:cf:52:99:15:56:da:83:ff:12: db:6a:90:7f:3e:0f:02:f4:2c:17:24:8a:4e:e7:0d:a8:40:12: 61:9b:8f:bb:f1:8b:46:ce:8f:86:7f:19:63:79:18:95:1d:dc: 40:30:cb:8c:10:cf:8b:0a:62:d7:11:96:aa:37:6f:eb:60:ed: a7:e4:f8:f4:9f:14:bf:50:22:8b:24:79:c5:94:33:ff:da:3a: da:2f:87:32:d5:b9:56:a5:60:1d:8e:4c:16:be:f4:e6:74:c5: 63:a3:4c:3a:b6:be:14:3c:70:7b:f5:54:84:b4:61:72:94:b6: b5:6c:68:5a:92:7f:ab:d5:27:f8:d1:70:d3:0b:4e:fb:da:e1: 30:12:e0:75 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjMwOTE0MjEzOTExWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAzN2Q3ZS1iMGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4RvXJ/DIIjJK0VnrhJNL09+3aGf2fm+x0+oipfBFG88hr2nBGh3SxGzmX8K IdctLpBK3CDop4Y/Y3MtHE/w9xNAB/M7l95tE0gd6MBsRMfRWDTn+IKbgIElj/q9 Nlw741dIwON3oV4+v9w8km8636jIqt8q1hA6684mUiaLF7jeaw6Y831PDcIIkgLa kf8MsFhpBeiX88AArKm0sRsX+oVW+SQSfKSYcgq9vEj8uf+aKOp+tVbtnkOgkOPW uZJoL9UvEwbmEpmSH6FuKgEbjlstPoueqxm6ySVkg5FKHIIwLu1uJEpqLPhAVYs1 hnjf28fd9eKXRRgcSuKiwqMuNwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIt6L4F2 t50mnQacx7QTxv05YBLLMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNCQjMvOTVBRUE5RThDQkU0MTFFQTgwNkE0QTc1QzRGOUFFMDIvMEJDRjU4RTIw MTVBMTFFQzk0RUEyQzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnmZgwDQQCAAIwBwMFACQGRsAwDQYJKoZIhvcNAQELBQAD ggEBAHnzYvQ2jOnUzdOJ5GvBP/FlT2vQvFEKZ8cNcg0fKlnrgRT8QCvQMigWAgGY lshRIvvdgZzqUVFmHJik+hK72P8jUdT8gnncmGHj4FE4h8hNvVOkJ9wPba8my5ag SF7HLK2usHBaM64bJhBPJu8lk1Jce9zDDM9SmRVW2oP/EttqkH8+DwL0LBckik7n DahAEmGbj7vxi0bOj4Z/GWN5GJUd3EAwy4wQz4sKYtcRlqo3b+tg7afk+PSfFL9Q IoskecWUM//aOtovhzLVuValYB2OTBa+9OZ0xWOjTDq2vhQ8cHv1VIS0YXKUtrVs aFqSf6vVJ/jRcNMLTvva4TAS4HU= -----END CERTIFICATE-----Generated at Thu May 16 22:58:19 2024 by rpki-client on console-fra.rpki-client.org