$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa File: B502B0AE799311EE87452E15C4F9AE02.roa (raw, json) Hash identifier: p6HAzJbDz2u6Sue7+MG3gPWj0R+LSPsYuFxQmz0j9kw= Subject key identifier: 95:DD:03:1B:3E:AF:79:91:68:2D:C5:D7:7D:10:4D:DE:28:2A:91:92 Certificate issuer: /CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Certificate serial: 01FF Authority key identifier: 8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa Signing time: Wed 25 Sep 2024 02:05:49 +0000 ROA not before: Wed 25 Sep 2024 02:05:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24499 IP address blocks: 103.154.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Validity Not Before: Sep 25 02:05:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66f36ffd-5f84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a8:84:63:c3:19:3b:bc:e1:82:df:bf:c5:03: 0b:ab:53:2e:ee:91:ed:80:69:c5:7b:08:a2:66:e7: 40:b6:a7:da:4d:15:1c:8c:e8:a3:ba:1a:97:a6:bc: 23:6a:42:85:2e:21:0b:c1:fc:55:98:cc:d2:8c:15: 53:71:20:51:b7:30:54:56:b1:f1:aa:2e:88:43:11: 83:ea:88:84:4c:99:d9:56:47:e0:6e:38:e6:36:a8: 8b:08:03:55:c7:3a:8b:90:0e:87:50:b6:a1:a8:90: 98:14:9d:3c:72:c2:18:02:2f:93:8f:77:a5:62:48: e9:54:8c:86:70:b4:ca:9f:9b:7f:8b:ea:de:6d:4c: 1f:ce:1d:b0:8d:88:ea:6a:25:7c:f5:a5:df:e7:26: 45:d4:04:3c:fc:8c:06:38:e6:12:5a:46:6d:d7:a4: d0:02:70:3a:82:8b:a7:4f:e2:e0:91:7e:70:55:b1: 87:94:af:4b:43:57:5c:ff:1d:d8:79:30:48:ea:dd: ff:21:9e:a9:21:d8:0c:86:ce:34:8c:f7:92:dc:a2: 74:fc:55:8d:93:5e:8e:58:7f:7f:d1:fc:ac:ae:17: 38:1a:e3:74:dc:17:b3:6f:f1:88:63:52:0b:d3:24: 6b:8b:4b:a9:17:93:08:e5:d1:2e:1a:58:db:21:81: 78:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:DD:03:1B:3E:AF:79:91:68:2D:C5:D7:7D:10:4D:DE:28:2A:91:92 X509v3 Authority Key Identifier: keyid:8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.64.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:4e:0c:1d:a4:65:80:ed:1a:7b:9a:b7:df:15:cb:d0:bf:7e: 09:c6:8b:a0:59:95:83:40:88:20:53:7c:fc:65:b2:df:5a:5e: 10:4a:10:92:81:4c:11:a3:c7:33:fd:26:55:d5:ce:1c:73:e4: 1d:6e:4a:c0:61:e2:69:ff:20:04:9e:02:03:5a:28:19:d6:88: dd:d0:0f:62:f4:83:d8:f6:7e:23:af:cc:57:14:0a:09:17:0c: 50:55:54:bb:49:39:91:8c:f3:ed:8a:9a:07:c5:06:e8:ab:8f: 5f:53:80:8d:52:a7:1e:22:dc:e6:3e:f7:48:9c:62:84:44:b9: 37:85:f8:f9:79:5b:1a:e5:03:7e:49:b0:1c:48:08:98:f9:79: 35:57:be:8b:98:a8:40:cd:8e:6c:11:72:2b:89:d5:42:d8:d0: 08:f0:f1:9d:47:d9:10:94:a5:37:20:cb:88:77:d9:f0:81:0a: f5:da:df:c3:54:74:b7:fa:e4:76:2f:ed:e8:3c:99:1c:c4:03: f4:5b:7c:5f:56:b4:69:68:93:a6:b4:ba:f5:17:7c:c5:4d:9e: 20:2a:3e:bf:b5:5b:13:c8:cb:d4:70:1a:19:74:28:ae:55:cd: 4c:3d:16:c5:48:6d:58:78:32:19:99:88:48:b5:2f:9f:e0:e5: 7d:00:e8:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE4RTgxMTAvBgNVBAUTKDhEQTE5RkNFMEVGQUUwMjJCQkE4RjhFMEMxMjM3QkVE QkVCRTNFRjMwHhcNMjQwOTI1MDIwNTQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzNmZmZC01Zjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKiEY8MZO7zhgt+/xQMLq1Mu7pHtgGnFewiiZudAtqfaTRUcjOijuhqXprwj akKFLiELwfxVmMzSjBVTcSBRtzBUVrHxqi6IQxGD6oiETJnZVkfgbjjmNqiLCANV xzqLkA6HULahqJCYFJ08csIYAi+Tj3elYkjpVIyGcLTKn5t/i+rebUwfzh2wjYjq aiV89aXf5yZF1AQ8/IwGOOYSWkZt16TQAnA6gounT+LgkX5wVbGHlK9LQ1dc/x3Y eTBI6t3/IZ6pIdgMhs40jPeS3KJ0/FWNk16OWH9/0fysrhc4GuN03Bezb/GIY1IL 0yRri0upF5MI5dEuGljbIYF4owIDAQABo4IClTCCApEwHQYDVR0OBBYEFJXdAxs+ r3mRaC3F130QTd4oKpGSMB8GA1UdIwQYMBaAFI2hn84O+uAiu6j44MEje+2+vj7z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQThFOC85MDM5NzgzMDEw RDkxMUVEODBCODBEMjlDNEY5QUUwMi9qYUdmemc3NjRDSzdxUGpnd1NONzdiNi1Q dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2phR2Z6Zzc2NENLN3FQamd3U043N2I2LVB2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE4RTgvOTAzOTc4MzAxMEQ5MTFFRDgwQjgwRDI5QzRGOUFFMDIvQjUwMkIwQUU3 OTkzMTFFRTg3NDUyRTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmkAwDQYJKoZIhvcNAQELBQADggEBAHxODB2kZYDtGnua t98Vy9C/fgnGi6BZlYNAiCBTfPxlst9aXhBKEJKBTBGjxzP9JlXVzhxz5B1uSsBh 4mn/IASeAgNaKBnWiN3QD2L0g9j2fiOvzFcUCgkXDFBVVLtJOZGM8+2KmgfFBuir j19TgI1Spx4i3OY+90icYoREuTeF+Pl5WxrlA35JsBxICJj5eTVXvouYqEDNjmwR ciuJ1ULY0Ajw8Z1H2RCUpTcgy4h32fCBCvXa38NUdLf65HYv7eg8mRzEA/RbfF9W tGlok6a0uvUXfMVNniAqPr+1WxPIy9RwGhl0KK5VzUw9FsVIbVh4MhmZiEi1L5/g 5X0A6PY= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:52 2024 by rpki-client on console-fra.rpki-client.org