$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/3A5B01A0CA8F11EAA35BF958C4F9AE02.roa File: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (raw, json) Hash identifier: rarNamT8etGmrzl2oBorgmdNrF9oOnpcrAlb12sZ65o= Subject key identifier: E9:5B:6C:A3:B3:A9:5D:2D:70:A3:62:03:B5:C5:C6:24:C0:33:8B:8A Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 07C0 Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/3A5B01A0CA8F11EAA35BF958C4F9AE02.roa Signing time: Thu 22 Aug 2024 21:19:38 +0000 ROA not before: Thu 22 Aug 2024 21:19:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140923 IP address blocks: 103.153.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1984 (0x7c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: Aug 22 21:19:38 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c7ab69-2673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:61:ac:83:b5:44:ec:c1:a4:b5:6a:7d:d4:9c: 61:55:48:00:86:cf:f7:4e:3d:f9:23:af:6a:1a:09: 65:d6:89:d5:69:72:fe:6b:e8:70:fd:c1:ae:f6:05: e5:df:9f:ea:d3:ba:e7:00:59:12:3f:95:25:1c:85: c9:32:ab:94:8c:fa:81:d3:61:c5:1a:68:75:1d:8a: f9:0d:49:de:6a:30:7f:de:07:51:be:a4:78:60:e8: ab:33:b5:89:5c:6d:41:d3:f9:59:bf:4f:d1:88:80: b5:6a:9c:92:89:2f:e0:f3:20:d1:bf:d5:30:2f:3e: 3d:9b:01:5f:e7:eb:57:cc:e0:27:56:00:07:85:5d: 3e:53:35:58:c8:01:75:8e:c7:ef:57:64:ad:81:82: 74:db:66:4b:e1:aa:4a:64:6d:f8:08:92:3d:7b:82: 22:0d:57:08:70:98:da:9e:7a:e2:39:f3:48:87:43: 62:68:a4:8f:7f:27:76:f7:7e:1f:58:c1:ff:a2:4e: 95:6f:2b:bc:76:95:32:33:33:4b:e1:b1:e2:cb:67: 3f:ec:e7:0d:29:e0:ce:87:08:87:0b:1e:d0:a0:8a: eb:08:4f:5c:f6:68:7e:03:33:51:b7:82:57:77:31: 41:e8:17:89:c2:cc:45:9d:ac:b5:63:78:5c:70:df: 07:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:5B:6C:A3:B3:A9:5D:2D:70:A3:62:03:B5:C5:C6:24:C0:33:8B:8A X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/3A5B01A0CA8F11EAA35BF958C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.130.0/24 Signature Algorithm: sha256WithRSAEncryption 27:94:08:48:81:6d:20:a8:9b:66:10:55:74:42:59:53:90:02: e7:74:9d:ed:50:a0:09:ee:7f:bb:ab:64:36:82:76:27:65:fd: 09:8f:0f:7f:52:f3:4c:01:df:c3:9f:e4:c7:3e:19:28:2a:9b: 7c:6c:f8:a3:a6:cd:8d:f0:e5:3a:f5:d5:e5:c9:45:9b:3f:fc: ca:ca:48:60:73:22:1c:e7:5c:fb:d0:8f:6d:f8:1d:7e:ab:96: 25:c1:0f:e0:c7:b7:05:b6:3b:62:e1:ea:f5:50:5b:87:a3:4d: 26:c7:1b:ef:ac:93:53:4e:d6:48:d2:d8:5f:02:11:83:97:a8: 64:40:0b:9f:3d:72:d7:bf:71:53:56:47:bb:30:6f:1c:60:d8: 90:d6:4c:74:bd:74:74:3b:de:12:08:a0:e2:9d:74:c8:af:c8: 37:32:27:7a:51:b0:0f:b2:c0:0c:36:e0:25:57:55:c1:9a:b1: 8e:39:49:09:58:70:6b:f2:c9:87:00:be:a4:08:bf:87:f8:dc: a8:a4:16:da:49:83:d2:99:a3:23:20:b2:33:22:c0:b7:e4:bc: 3d:cc:48:63:14:91:41:d4:32:8f:bf:c7:fe:df:93:eb:6b:10: fd:54:ec:00:06:0c:e4:6a:4e:ad:41:97:1c:5e:46:cb:d8:0e: 6f:45:d1:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjQwODIyMjExOTM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3YWI2OS0yNjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mGsg7VE7MGktWp91JxhVUgAhs/3Tj35I69qGgll1onVaXL+a+hw/cGu9gXl 35/q07rnAFkSP5UlHIXJMquUjPqB02HFGmh1HYr5DUneajB/3gdRvqR4YOirM7WJ XG1B0/lZv0/RiIC1apySiS/g8yDRv9UwLz49mwFf5+tXzOAnVgAHhV0+UzVYyAF1 jsfvV2StgYJ022ZL4apKZG34CJI9e4IiDVcIcJjannriOfNIh0NiaKSPfyd2934f WMH/ok6Vbyu8dpUyMzNL4bHiy2c/7OcNKeDOhwiHCx7QoIrrCE9c9mh+AzNRt4JX dzFB6BeJwsxFnay1Y3hccN8HpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOlbbKOz qV0tcKNiA7XFxiTAM4uKMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNDOUEvQTFENjFEM0FDQThEMTFFQUJFNUJCNjU2QzRGOUFFMDIvM0E1QjAxQTBD QThGMTFFQUEzNUJGOTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmYIwDQYJKoZIhvcNAQELBQADggEBACeUCEiBbSCom2YQ VXRCWVOQAud0ne1QoAnuf7urZDaCdidl/QmPD39S80wB38Of5Mc+GSgqm3xs+KOm zY3w5Tr11eXJRZs//MrKSGBzIhznXPvQj234HX6rliXBD+DHtwW2O2Lh6vVQW4ej TSbHG++sk1NO1kjS2F8CEYOXqGRAC589cte/cVNWR7swbxxg2JDWTHS9dHQ73hII oOKddMivyDcyJ3pRsA+ywAw24CVXVcGasY45SQlYcGvyyYcAvqQIv4f43KikFtpJ g9KZoyMgsjMiwLfkvD3MSGMUkUHUMo+/x/7fk+trEP1U7AAGDORqTq1BlxxeRsvY Dm9F0S0= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org