$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/A30B17FAA81911EF862F3A56C4F9AE02.roa File: A30B17FAA81911EF862F3A56C4F9AE02.roa (raw, json) Hash identifier: 5t/9vRDX7bOXj/AudhNlmGxZtmB+Rx0Lf8bwk6wLjkQ= Subject key identifier: 24:52:40:FA:E7:7C:42:92:39:25:F9:AC:0F:47:E4:29:D2:73:ED:1B Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 02 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/A30B17FAA81911EF862F3A56C4F9AE02.roa Signing time: Thu 21 Nov 2024 15:02:34 +0000 ROA not before: Thu 21 Nov 2024 15:02:34 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151358 IP address blocks: 103.151.210.0/24 maxlen: 24 2001:df5:a900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Nov 21 15:02:34 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=673f4b89-522c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:69:05:10:4d:0c:b2:f7:18:ea:98:9d:41:ad: 62:7f:8a:99:fc:52:98:08:e2:12:81:1f:19:b4:73: 75:38:99:06:77:31:00:5c:99:5d:a8:25:f0:ac:93: 22:d7:eb:f6:19:36:10:da:8e:11:81:6a:f2:83:7a: bf:6f:b5:23:b3:72:5b:44:b5:37:de:02:18:24:69: 78:08:51:81:86:39:38:ce:2d:69:3d:43:2b:5b:de: 72:45:c7:30:7c:c2:79:db:55:c3:7f:00:14:7d:1e: a3:50:70:d3:42:a5:0a:38:f7:fe:b0:ea:00:62:ce: a2:52:94:bc:db:95:3e:f9:d4:45:c3:1e:18:93:7c: e1:86:58:60:5d:b0:1b:7f:92:e0:d7:c0:5d:ab:34: 6b:9d:da:2e:05:53:0e:8d:de:12:b5:22:7a:dd:79: ea:08:7d:66:a9:fc:58:30:10:23:8a:99:71:fc:13: 88:b4:28:8e:9f:f2:ac:3d:1c:ac:79:6f:25:0a:a5: 78:b5:d3:f7:b4:5c:bd:f0:73:81:5d:f9:21:cc:09: cd:db:49:94:d2:24:5c:73:45:0d:90:a2:22:92:ef: af:ba:ba:37:24:30:31:a3:90:bb:83:c6:21:a2:fd: a4:15:ca:89:08:e9:59:17:6e:ad:95:54:84:71:ed: ae:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:52:40:FA:E7:7C:42:92:39:25:F9:AC:0F:47:E4:29:D2:73:ED:1B X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/A30B17FAA81911EF862F3A56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.210.0/24 IPv6: 2001:df5:a900::/48 Signature Algorithm: sha256WithRSAEncryption 15:4a:6f:6c:58:d9:c5:f3:32:0c:b3:6d:26:dd:eb:c3:a6:32: 56:51:24:88:25:83:ce:8a:1c:5e:d4:11:01:40:2d:12:95:c2: 2d:84:ee:91:28:3e:a9:7d:1f:f4:e5:b5:da:79:07:66:45:d1: a6:5b:fe:38:67:ff:08:1a:f2:c3:38:b1:7f:63:bb:d8:61:72: 58:aa:b8:ec:1d:e0:04:f3:54:da:e5:87:60:a0:6e:93:55:52: 2e:f4:5c:80:2e:7f:61:84:3a:0a:7c:d7:d4:1c:56:7e:d4:37: ad:27:a8:55:8f:92:a6:56:cc:6c:aa:b7:53:35:48:aa:55:70: a7:19:bf:97:48:62:70:fc:a2:8a:79:67:f4:3e:07:bb:61:9b: 03:ad:f8:65:af:06:29:48:e1:0f:35:c8:fe:3d:f0:b0:fd:3f: 5f:f4:9d:f6:07:79:86:d3:b4:1d:d0:cd:05:4d:0d:0a:16:46: 33:47:29:ee:da:66:94:3d:49:0d:06:bc:26:ff:b5:e9:74:00: a3:54:eb:ba:9f:af:5d:04:8c:25:32:c1:bc:16:00:18:02:93: 0b:23:9b:81:5e:a6:e2:96:c9:a2:3d:1f:f0:ab:16:cc:d2:3a: f2:9d:0a:61:07:a7:52:da:5f:87:c2:3c:42:bd:aa:77:74:df: 04:eb:06:ac -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTIwRjExMC8GA1UEBRMoQjFCRDREQjAyMUY1NEM3MjYzRjNDMzUzNUY4ODM2ODQ5 QkEyRTYwRTAeFw0yNDExMjExNTAyMzRaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3M2Y0Yjg5LTUyMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuaQUQTQyy9xjqmJ1BrWJ/ipn8UpgI4hKBHxm0c3U4mQZ3MQBcmV2oJfCskyLX 6/YZNhDajhGBavKDer9vtSOzcltEtTfeAhgkaXgIUYGGOTjOLWk9Qytb3nJFxzB8 wnnbVcN/ABR9HqNQcNNCpQo49/6w6gBizqJSlLzblT751EXDHhiTfOGGWGBdsBt/ kuDXwF2rNGud2i4FUw6N3hK1InrdeeoIfWap/FgwECOKmXH8E4i0KI6f8qw9HKx5 byUKpXi10/e0XL3wc4Fd+SHMCc3bSZTSJFxzRQ2QoiKS76+6ujckMDGjkLuDxiGi /aQVyokI6VkXbq2VVIRx7a53AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUJFJA+ud8 QpI5JfmsD0fkKdJz7RswHwYDVR0jBBgwFoAUsb1NsCH1THJj88NTX4g2hJui5g4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1MjBGLzQxQ0NCQzZFQTgx OTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVn NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2IxTnNDSDFUSEpqODhOVFg0ZzJoSnVpNWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9BMzBCMTdGQUE4 MTkxMUVGODYyRjNBNTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeX0jAPBAIAAjAJAwcAIAEN9akAMA0GCSqGSIb3DQEBCwUA A4IBAQAVSm9sWNnF8zIMs20m3evDpjJWUSSIJYPOihxe1BEBQC0SlcIthO6RKD6p fR/05bXaeQdmRdGmW/44Z/8IGvLDOLF/Y7vYYXJYqrjsHeAE81Ta5YdgoG6TVVIu 9FyALn9hhDoKfNfUHFZ+1DetJ6hVj5KmVsxsqrdTNUiqVXCnGb+XSGJw/KKKeWf0 Pge7YZsDrfhlrwYpSOEPNcj+PfCw/T9f9J32B3mG07Qd0M0FTQ0KFkYzRynu2maU PUkNBrwm/7XpdACjVOu6n69dBIwlMsG8FgAYApMLI5uBXqbilsmiPR/wqxbM0jry nQphB6dS2l+HwjxCvap3dN8E6was -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:32 2024 by rpki-client on console-fra.rpki-client.org