$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/C5058712A3B911EC9709462AC4F9AE02.roa File: C5058712A3B911EC9709462AC4F9AE02.roa (raw, json) Hash identifier: dk7hZcw60oBzYDsH/VfIiPOBe+wfd9KvvAO7IK7LLKc= Subject key identifier: 89:A3:23:9A:CD:55:E4:80:D3:0B:B6:27:37:53:AD:25:B5:B9:DA:37 Certificate issuer: /CN=A91F3260/serialNumber=5AC97C91299A2FA9C8CED8AAC670FFEFC7B69A1B Certificate serial: 05E8 Authority key identifier: 5A:C9:7C:91:29:9A:2F:A9:C8:CE:D8:AA:C6:70:FF:EF:C7:B6:9A:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wsl8kSmaL6nIztiqxnD_78e2mhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/C5058712A3B911EC9709462AC4F9AE02.roa Signing time: Mon 03 Jun 2024 01:04:25 +0000 ROA not before: Mon 03 Jun 2024 01:04:25 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136557 IP address blocks: 103.150.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/Wsl8kSmaL6nIztiqxnD_78e2mhs.crl rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/Wsl8kSmaL6nIztiqxnD_78e2mhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wsl8kSmaL6nIztiqxnD_78e2mhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3260/serialNumber=5AC97C91299A2FA9C8CED8AAC670FFEFC7B69A1B Validity Not Before: Jun 3 01:04:25 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d1698-2def Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f4:06:ca:c7:c5:8a:cf:19:a5:d5:8e:5d:dc: ce:0d:df:80:3b:94:26:09:6d:6f:53:46:cb:29:42: c3:ea:0e:52:80:3e:af:d1:cc:fe:1f:ae:23:9f:37: d6:5f:ee:70:9a:cf:59:3a:cb:27:be:4d:8c:4e:fc: bb:5e:7d:68:62:01:1d:60:90:a9:4c:02:31:ef:e5: c2:9a:1d:4a:e9:96:b2:ce:7f:e2:2c:dd:ee:50:7d: 5d:90:30:f6:8b:8e:e4:fa:8e:80:ab:63:49:54:42: f4:62:85:74:b8:24:e6:4f:29:cf:b5:cd:d0:70:18: 31:94:78:f9:80:46:99:9c:aa:6c:83:02:b2:44:86: 70:bb:c0:cc:78:d0:08:74:01:83:c5:79:f8:90:92: b1:8c:f4:19:73:6a:c4:0b:f9:82:cf:c2:ff:ba:b9: 67:b4:c2:1b:b8:4a:a0:9b:cb:53:a9:77:c5:6f:41: b5:66:0e:79:4f:75:71:95:f7:e2:c0:41:85:ce:22: 15:bb:e1:8b:69:6d:6d:f7:2f:02:b5:6f:a1:1e:88: 1d:cb:85:0f:c4:28:bc:b4:1b:90:c2:ea:b6:27:bf: be:09:a0:66:ca:f8:34:78:98:32:15:2b:41:29:5a: 72:6b:71:72:7c:ce:df:aa:8d:4c:d1:b0:d0:4c:19: 0d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A3:23:9A:CD:55:E4:80:D3:0B:B6:27:37:53:AD:25:B5:B9:DA:37 X509v3 Authority Key Identifier: keyid:5A:C9:7C:91:29:9A:2F:A9:C8:CE:D8:AA:C6:70:FF:EF:C7:B6:9A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/Wsl8kSmaL6nIztiqxnD_78e2mhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wsl8kSmaL6nIztiqxnD_78e2mhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/C5058712A3B911EC9709462AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.31.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:2f:46:0f:fa:bb:d3:65:35:0d:b4:83:d7:33:22:57:b5:8a: 88:a8:27:21:b1:41:7c:70:60:22:49:4a:c8:31:9e:b2:df:03: c1:15:ea:3d:37:6c:2b:67:76:d2:59:f7:88:14:b1:fe:d6:08: 9d:6d:3e:61:a2:c4:90:42:02:2c:b8:85:a4:31:62:33:43:dd: 05:9a:e9:e7:90:c1:4c:5f:24:37:20:e8:7f:ac:30:f3:e3:6b: 66:3b:ca:e4:3d:df:3b:ab:ea:d0:e1:ca:9d:36:b3:6b:07:07: e1:7d:ff:19:07:55:ac:c6:00:45:55:0e:f0:0f:aa:b3:e2:12: a0:fe:fc:84:3d:1c:d7:70:5f:85:7b:e3:d1:10:b9:58:7c:31: c8:6e:4e:d6:2e:d3:c8:ea:e0:32:a8:81:78:7b:97:74:0e:13: 0e:df:f1:ca:b0:50:0c:12:37:54:6f:e6:39:5e:ba:c5:3f:23: e2:fb:18:33:0b:c5:8e:a8:27:ec:28:fb:92:0b:d2:4e:5f:e2: c1:39:38:4c:87:ce:c7:0a:f1:b3:18:8f:44:ff:2f:c4:2f:85: ed:be:58:9c:3d:aa:4d:4b:e6:bb:de:7e:0a:0d:b2:34:04:3a: c6:d0:22:ee:1f:12:33:3b:6d:eb:9e:dd:5e:80:1e:95:50:6c: 17:35:f2:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMyNjAxMTAvBgNVBAUTKDVBQzk3QzkxMjk5QTJGQTlDOENFRDhBQUM2NzBGRkVG QzdCNjlBMUIwHhcNMjQwNjAzMDEwNDI1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkMTY5OC0yZGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/QGysfFis8ZpdWOXdzODd+AO5QmCW1vU0bLKULD6g5SgD6v0cz+H64jnzfW X+5wms9ZOssnvk2MTvy7Xn1oYgEdYJCpTAIx7+XCmh1K6Zayzn/iLN3uUH1dkDD2 i47k+o6Aq2NJVEL0YoV0uCTmTynPtc3QcBgxlHj5gEaZnKpsgwKyRIZwu8DMeNAI dAGDxXn4kJKxjPQZc2rEC/mCz8L/urlntMIbuEqgm8tTqXfFb0G1Zg55T3Vxlffi wEGFziIVu+GLaW1t9y8CtW+hHogdy4UPxCi8tBuQwuq2J7++CaBmyvg0eJgyFStB KVpya3FyfM7fqo1M0bDQTBkN7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFImjI5rN VeSA0wu2JzdTrSW1udo3MB8GA1UdIwQYMBaAFFrJfJEpmi+pyM7YqsZw/+/Htpob MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzI2MC9ENzhEMkFBMjcx QTYxMUVCODc0NTA0NjZDNEY5QUUwMi9Xc2w4a1NtYUw2bkl6dGlxeG5EXzc4ZTJt aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dzbDhrU21hTDZuSXp0aXF4bkRfNzhlMm1ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMyNjAvRDc4RDJBQTI3MUE2MTFFQjg3NDUwNDY2QzRGOUFFMDIvQzUwNTg3MTJB M0I5MTFFQzk3MDk0NjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlh8wDQYJKoZIhvcNAQELBQADggEBAA8vRg/6u9NlNQ20 g9czIle1ioioJyGxQXxwYCJJSsgxnrLfA8EV6j03bCtndtJZ94gUsf7WCJ1tPmGi xJBCAiy4haQxYjND3QWa6eeQwUxfJDcg6H+sMPPja2Y7yuQ93zur6tDhyp02s2sH B+F9/xkHVazGAEVVDvAPqrPiEqD+/IQ9HNdwX4V749EQuVh8MchuTtYu08jq4DKo gXh7l3QOEw7f8cqwUAwSN1Rv5jleusU/I+L7GDMLxY6oJ+wo+5IL0k5f4sE5OEyH zscK8bMYj0T/L8Qvhe2+WJw9qk1L5rvefgoNsjQEOsbQIu4fEjM7beue3V6AHpVQ bBc18kc= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:50 2024 by rpki-client on console-fra.rpki-client.org