$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa File: 5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa (raw, json) Hash identifier: mYP163XzHdEMNgiwcSiPfRwS00U9oTzAfnu92cu9hyU= Subject key identifier: A4:87:6C:DC:72:57:88:D5:F8:AD:D9:6D:26:19:8D:ED:8C:C0:5C:A3 Certificate issuer: /CN=A91F4EDE/serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F Certificate serial: 04C5 Authority key identifier: AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa Signing time: Sun 17 Dec 2023 00:52:47 +0000 ROA not before: Sun 17 Dec 2023 00:52:47 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 42960 IP address blocks: 103.158.190.0/23 maxlen: 23 103.158.190.0/24 maxlen: 24 103.158.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4EDE/serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F Validity Not Before: Dec 17 00:52:47 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657e465e-610e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4d:a8:1d:03:2c:83:49:30:6c:b7:71:cb:49: c2:e4:a9:1d:47:8b:ec:c1:18:0e:92:49:71:91:cb: b0:9f:7f:8b:d9:dc:17:19:6b:bc:4b:37:d0:50:c4: df:f9:57:00:b2:c5:04:c5:3c:42:3d:6e:b3:1a:2e: ab:e1:07:ca:86:03:2c:7a:d8:be:2c:d2:83:be:8d: 3f:d5:af:1f:d1:33:26:de:c3:81:7d:22:a9:3f:ec: 59:87:37:d4:a8:40:b4:92:65:01:20:73:39:ab:75: 19:45:c5:7d:e1:69:56:94:39:fd:f1:c9:48:53:25: 38:e7:ec:91:37:4d:12:5e:2a:52:2b:07:25:1c:8e: 22:ab:25:2a:c2:ec:d9:7a:7f:f7:85:5d:69:7b:b5: f2:0d:88:9f:42:17:f6:88:b4:1b:4f:be:59:ac:fb: cc:df:9a:a9:a9:ab:6c:b1:1c:71:1e:ad:39:f7:d5: 79:fb:af:4d:f8:07:ac:8c:85:dd:ed:76:8a:1e:00: f4:f8:7e:d6:95:c1:26:70:de:35:65:55:73:25:a1: bf:01:3c:c0:b6:5a:3b:ae:31:8d:e6:49:e8:35:15: 43:0a:97:a2:99:8f:1c:49:f7:c2:05:47:7b:a1:dc: 99:f8:d4:f1:91:7c:57:62:ad:22:5a:b0:c4:32:c6: 19:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:87:6C:DC:72:57:88:D5:F8:AD:D9:6D:26:19:8D:ED:8C:C0:5C:A3 X509v3 Authority Key Identifier: keyid:AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.190.0/23 Signature Algorithm: sha256WithRSAEncryption 49:42:e6:f7:ae:45:ad:ec:3a:30:bb:0d:85:cd:3f:3d:4f:f6: 0c:cc:6c:ff:07:0e:da:5f:a9:9e:e5:b4:7a:b9:4b:b9:ca:49: 4e:1f:4a:e3:f7:56:0c:77:89:d3:3f:fe:e0:06:d3:74:d1:79: e3:8f:b7:06:22:ee:26:03:c9:37:d3:4e:a1:5a:41:a3:9e:d1: b4:81:0a:7c:13:f1:6a:d0:ed:56:02:4f:aa:4a:a7:80:0c:c2: 0b:30:17:c5:f5:02:17:52:3b:35:57:29:02:63:a5:b5:ec:96: db:16:11:d4:d3:2c:25:f8:56:4b:a6:2f:67:3f:9d:b9:fc:86: 80:b5:f4:08:d0:34:43:27:8a:8b:aa:37:ca:88:99:ee:8d:d8: 75:ee:04:40:42:11:f9:7b:28:89:4b:d4:f1:ef:aa:91:29:4a: 29:ac:70:a3:2a:a3:b9:80:cb:ad:e0:f7:0d:1e:f8:a3:86:41: d9:cd:40:81:93:23:89:f1:a0:87:57:12:27:f6:e7:6a:66:88: 8b:3b:84:2b:4a:2e:fb:4c:b8:e6:c9:3b:a2:72:42:fd:74:a7: b6:64:92:0c:94:c5:1f:f9:ad:8b:11:f0:ea:27:46:63:29:e5: 69:9a:ea:4a:b4:73:89:ca:01:48:a3:98:3f:a3:a0:c4:aa:0f: a9:7c:0e:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFREUxMTAvBgNVBAUTKEFBQjg4MUI4MjE0N0MzMDM2QjgwRkM2NzU5MzREQzJF NDZDRTBGN0YwHhcNMjMxMjE3MDA1MjQ3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdlNDY1ZS02MTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqk2oHQMsg0kwbLdxy0nC5KkdR4vswRgOkklxkcuwn3+L2dwXGWu8SzfQUMTf +VcAssUExTxCPW6zGi6r4QfKhgMseti+LNKDvo0/1a8f0TMm3sOBfSKpP+xZhzfU qEC0kmUBIHM5q3UZRcV94WlWlDn98clIUyU45+yRN00SXipSKwclHI4iqyUqwuzZ en/3hV1pe7XyDYifQhf2iLQbT75ZrPvM35qpqatssRxxHq0599V5+69N+AesjIXd 7XaKHgD0+H7WlcEmcN41ZVVzJaG/ATzAtlo7rjGN5knoNRVDCpeimY8cSffCBUd7 odyZ+NTxkXxXYq0iWrDEMsYZRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKSHbNxy V4jV+K3ZbSYZje2MwFyjMB8GA1UdIwQYMBaAFKq4gbghR8MDa4D8Z1k03C5Gzg9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEVERS8yQ0IwMzI1OEJF NzkxMUVCOTUxMThCMTlDNEY5QUUwMi9xcmlCdUNGSHd3TnJnUHhuV1RUY0xrYk9E MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyaUJ1Q0ZId3dOcmdQeG5XVFRjTGtiT0QzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRFREUvMkNCMDMyNThCRTc5MTFFQjk1MTE4QjE5QzRGOUFFMDIvNUE5QkZDM0FC RTdDMTFFQjhCQzI1QzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnr4wDQYJKoZIhvcNAQELBQADggEBAElC5veuRa3sOjC7 DYXNPz1P9gzMbP8HDtpfqZ7ltHq5S7nKSU4fSuP3Vgx3idM//uAG03TReeOPtwYi 7iYDyTfTTqFaQaOe0bSBCnwT8WrQ7VYCT6pKp4AMwgswF8X1AhdSOzVXKQJjpbXs ltsWEdTTLCX4VkumL2c/nbn8hoC19AjQNEMniouqN8qIme6N2HXuBEBCEfl7KIlL 1PHvqpEpSimscKMqo7mAy63g9w0e+KOGQdnNQIGTI4nxoIdXEif252pmiIs7hCtK LvtMuObJO6JyQv10p7ZkkgyUxR/5rYsR8OonRmMp5Wma6kq0c4nKAUijmD+joMSq D6l8Du4= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:53 2024 by rpki-client on console-ams.rpki-client.org