$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/0294E1EADB0D11EE88489759C4F9AE02.roa File: 0294E1EADB0D11EE88489759C4F9AE02.roa (raw, json) Hash identifier: hDxnlutqT9/pJfzJ08YZAIv8bDDIJuJIHzivB3I12dU= Subject key identifier: 82:69:25:90:18:65:5E:19:99:7A:4B:04:CE:22:04:6B:F2:94:82:47 Certificate issuer: /CN=A91EEE06/serialNumber=5073951E5C1582693A87072EE548C65485B05A2C Certificate serial: 03F2 Authority key identifier: 50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/0294E1EADB0D11EE88489759C4F9AE02.roa Signing time: Tue 17 Sep 2024 00:33:32 +0000 ROA not before: Tue 17 Sep 2024 00:33:32 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152151 IP address blocks: 103.152.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1010 (0x3f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE06/serialNumber=5073951E5C1582693A87072EE548C65485B05A2C Validity Not Before: Sep 17 00:33:32 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66e8ce5c-c23a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c0:06:f7:09:ee:46:10:f1:af:b6:82:b9:e7: aa:ab:1a:f7:4e:8c:98:74:85:be:da:f9:e1:54:e8: f6:f5:a5:a3:b5:0a:b0:20:57:d8:d8:d3:52:25:71: 0a:1b:e7:78:2a:a8:36:75:ec:79:bc:0e:ea:b7:1c: 88:58:b5:ec:fb:17:68:9f:4c:08:62:74:5e:54:51: fa:92:59:3e:49:f3:69:a7:52:56:9d:5f:cb:67:e1: 61:71:0f:91:b7:5f:cd:ee:3f:10:74:5b:43:1d:fa: 68:76:4b:e8:3a:55:c6:ca:70:fe:e0:6b:05:ad:4b: 5f:e4:25:5a:44:e5:22:78:36:36:60:66:0a:7f:ec: bf:87:7d:b6:9d:f3:fa:1f:3b:21:c6:fa:f0:45:99: d5:a9:39:e9:90:11:27:d3:56:f9:27:ba:bd:4c:d8: 81:23:e4:02:46:b1:9c:af:6b:50:44:5e:4b:ab:46: bf:46:64:fd:b9:b0:84:80:99:0c:2a:c1:86:60:f2: 87:c9:4f:3a:ec:69:75:a2:1c:87:c8:7f:66:ba:ed: 38:2c:36:72:03:cc:08:51:90:d7:64:8e:cf:8c:61: 18:08:3c:25:02:64:6e:11:3a:fd:99:37:46:ec:70: d3:3c:63:62:5d:1e:e2:47:2c:b3:9d:7c:5c:64:11: cc:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:69:25:90:18:65:5E:19:99:7A:4B:04:CE:22:04:6B:F2:94:82:47 X509v3 Authority Key Identifier: keyid:50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/0294E1EADB0D11EE88489759C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.117.0/24 Signature Algorithm: sha256WithRSAEncryption 86:3e:c2:2d:d1:ab:b7:82:b0:2a:7e:95:a6:94:27:82:21:9f: e6:14:84:98:fa:1d:c7:4d:14:1d:b2:82:4f:94:91:20:37:30: 3f:86:63:5a:db:4d:d0:c2:ea:4e:b7:60:0c:8b:21:8b:55:13: 58:b1:b3:55:1b:79:ee:3d:12:6b:02:b0:e8:00:c6:55:18:4a: 96:d3:4a:3b:fb:59:c7:12:8d:1e:f2:a4:64:8d:14:a7:44:21: c9:db:ff:6b:48:5c:ba:cc:bc:19:da:68:2a:81:0a:32:64:94: 96:34:49:d4:15:d1:27:20:27:e5:37:3f:33:20:37:58:54:ba: e3:a2:84:7e:db:7e:66:bf:16:92:23:f4:11:14:df:8e:f8:32: 0e:77:58:07:be:58:69:57:83:40:89:a0:ad:c5:da:39:36:8e: ad:69:b2:23:26:db:8c:07:68:1d:53:00:de:f9:60:44:ac:6f: a2:2d:ca:1e:d0:57:db:8d:6f:3b:a5:c5:23:71:bb:f1:4d:03: d9:7a:ee:9e:77:7c:cd:d8:c1:8e:53:10:e7:29:d4:c4:30:9c: 33:62:8b:6d:ce:5b:03:07:53:58:74:fe:00:5b:cb:39:ef:0b: 5b:99:31:25:20:ac:98:09:89:e8:df:62:da:c6:62:2f:4f:db: f6:8a:84:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFMDYxMTAvBgNVBAUTKDUwNzM5NTFFNUMxNTgyNjkzQTg3MDcyRUU1NDhDNjU0 ODVCMDVBMkMwHhcNMjQwOTE3MDAzMzMyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4Y2U1Yy1jMjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsAG9wnuRhDxr7aCueeqqxr3ToyYdIW+2vnhVOj29aWjtQqwIFfY2NNSJXEK G+d4Kqg2dex5vA7qtxyIWLXs+xdon0wIYnReVFH6klk+SfNpp1JWnV/LZ+FhcQ+R t1/N7j8QdFtDHfpodkvoOlXGynD+4GsFrUtf5CVaROUieDY2YGYKf+y/h322nfP6 HzshxvrwRZnVqTnpkBEn01b5J7q9TNiBI+QCRrGcr2tQRF5Lq0a/RmT9ubCEgJkM KsGGYPKHyU867Gl1ohyHyH9muu04LDZyA8wIUZDXZI7PjGEYCDwlAmRuETr9mTdG 7HDTPGNiXR7iRyyznXxcZBHMRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIJpJZAY ZV4ZmXpLBM4iBGvylIJHMB8GA1UdIwQYMBaAFFBzlR5cFYJpOocHLuVIxlSFsFos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUUwNi8wNTU5RUVBRTVD QkUxMUVDQjI3M0RDN0NDNEY5QUUwMi9VSE9WSGx3VmdtazZod2N1NVVqR1ZJV3dX aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VIT1ZIbHdWZ21rNmh3Y3U1VWpHVklXd1dpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVFMDYvMDU1OUVFQUU1Q0JFMTFFQ0IyNzNEQzdDQzRGOUFFMDIvMDI5NEUxRUFE QjBEMTFFRTg4NDg5NzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmHUwDQYJKoZIhvcNAQELBQADggEBAIY+wi3Rq7eCsCp+ laaUJ4Ihn+YUhJj6HcdNFB2ygk+UkSA3MD+GY1rbTdDC6k63YAyLIYtVE1ixs1Ub ee49EmsCsOgAxlUYSpbTSjv7WccSjR7ypGSNFKdEIcnb/2tIXLrMvBnaaCqBCjJk lJY0SdQV0ScgJ+U3PzMgN1hUuuOihH7bfma/FpIj9BEU3474Mg53WAe+WGlXg0CJ oK3F2jk2jq1psiMm24wHaB1TAN75YESsb6Ityh7QV9uNbzulxSNxu/FNA9l67p53 fM3YwY5TEOcp1MQwnDNii23OWwMHU1h0/gBbyznvC1uZMSUgrJgJiejfYtrGYi9P 2/aKhBc= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org