$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/6153EE40A64911EEA2F9C24AC4F9AE02.roa File: 6153EE40A64911EEA2F9C24AC4F9AE02.roa (raw, json) Hash identifier: cQ5gxOJln3e7MyTD1Pa9yBZSLtdhttdpqLQ+iR+Fz8o= Subject key identifier: 47:56:45:F2:A0:56:30:81:F8:DC:35:2A:BC:25:07:76:B5:3C:3D:E5 Certificate issuer: /CN=A91FFE9F/serialNumber=0B095236234E6935BAA341E3235A3DB473ACC67F Certificate serial: 0EC5 Authority key identifier: 0B:09:52:36:23:4E:69:35:BA:A3:41:E3:23:5A:3D:B4:73:AC:C6:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/6153EE40A64911EEA2F9C24AC4F9AE02.roa Signing time: Tue 12 Nov 2024 17:35:50 +0000 ROA not before: Tue 12 Nov 2024 17:35:50 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 140039 IP address blocks: 103.130.156.0/24 maxlen: 24 103.130.157.0/24 maxlen: 24 103.130.158.0/24 maxlen: 24 103.130.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.crl rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3781 (0xec5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE9F/serialNumber=0B095236234E6935BAA341E3235A3DB473ACC67F Validity Not Before: Nov 12 17:35:50 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673391f6-0fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2c:af:98:19:35:90:f8:3d:f9:42:9f:36:8f: 0b:3b:a7:3f:7a:b7:d3:92:c5:c9:b5:de:e9:18:14: 65:3c:62:3d:47:3d:72:75:93:f0:c1:19:d9:cf:2e: 59:20:19:2a:40:e3:6b:52:2d:9e:40:6c:ae:6b:ab: 96:88:f9:9e:00:ac:02:2f:af:b8:0d:b5:2d:ad:af: 94:a7:48:1c:df:f8:12:c8:e1:eb:02:0e:20:b0:88: 52:10:0c:2a:1e:44:94:19:fe:bf:b6:62:3f:47:a9: 6d:ff:df:89:52:da:16:c4:7e:b4:21:16:85:13:ce: 10:4a:b7:9b:a9:42:eb:ff:a4:3d:0a:b8:c0:2c:90: 85:17:46:08:73:9e:87:1f:d1:36:e0:e0:16:c8:34: 6e:79:3b:76:50:7c:30:11:26:3b:3d:b4:68:a2:da: b1:52:c3:0f:bf:d1:f9:cb:2e:44:f6:fa:e4:6f:b0: 03:fe:0a:52:dd:45:52:9a:32:73:5e:6e:5a:b2:3f: 4d:47:e9:69:b1:d5:82:b2:90:63:db:35:a5:44:e8: f5:d0:ca:47:f8:a5:81:d2:dd:15:86:e8:12:6e:c2: 32:98:ef:70:1d:07:46:ee:99:01:51:88:30:a1:9a: 92:15:30:a0:06:61:42:ba:4d:ff:50:aa:5f:7b:ce: a2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:56:45:F2:A0:56:30:81:F8:DC:35:2A:BC:25:07:76:B5:3C:3D:E5 X509v3 Authority Key Identifier: keyid:0B:09:52:36:23:4E:69:35:BA:A3:41:E3:23:5A:3D:B4:73:AC:C6:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/6153EE40A64911EEA2F9C24AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.156.0/22 Signature Algorithm: sha256WithRSAEncryption ba:4a:f6:5f:77:76:82:8c:80:22:22:1a:f7:00:54:da:a4:90: 23:92:d5:3b:0a:c7:72:db:43:b2:35:3e:f8:c0:76:b4:96:97: 20:e3:7b:ab:34:a4:a5:84:35:1c:ee:d7:7d:cb:7a:86:01:dc: 2f:1b:73:79:48:e5:e9:2b:18:53:68:2d:af:9f:a1:38:04:2b: 62:3a:32:dc:89:6b:b6:72:ed:a5:7b:51:cb:b3:1e:ae:d3:b8: 17:85:5f:51:93:18:da:51:5d:cc:88:e5:fe:c2:e6:5d:f3:1b: a4:dd:a9:61:44:e1:06:56:a1:90:59:48:0a:d0:c7:90:f6:6d: 58:5f:30:85:27:de:5a:4b:cb:54:70:10:bd:0d:8c:ab:6c:ce: 8f:6e:4c:30:f9:34:f9:33:1d:a9:02:2c:96:16:62:ae:fe:8e: b8:fd:f9:96:23:ff:46:4f:ef:20:45:94:83:ac:bb:9e:6c:ee: bb:6c:5d:3e:44:09:70:8c:11:15:bb:82:d6:0e:00:0c:a5:51: 9e:eb:66:a1:9f:8d:c5:a2:0c:91:61:f6:78:b6:8e:95:50:b8: bc:33:d4:91:64:1c:50:95:26:52:2e:d1:d2:5b:d7:b3:aa:92: 7c:d8:d2:df:25:44:bd:4a:47:b2:ce:7a:2e:3e:de:fb:04:98: 0e:2f:11:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFOUYxMTAvBgNVBAUTKDBCMDk1MjM2MjM0RTY5MzVCQUEzNDFFMzIzNUEzREI0 NzNBQ0M2N0YwHhcNMjQxMTEyMTczNTUwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzOTFmNi0wZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CyvmBk1kPg9+UKfNo8LO6c/erfTksXJtd7pGBRlPGI9Rz1ydZPwwRnZzy5Z IBkqQONrUi2eQGyua6uWiPmeAKwCL6+4DbUtra+Up0gc3/gSyOHrAg4gsIhSEAwq HkSUGf6/tmI/R6lt/9+JUtoWxH60IRaFE84QSrebqULr/6Q9CrjALJCFF0YIc56H H9E24OAWyDRueTt2UHwwESY7PbRootqxUsMPv9H5yy5E9vrkb7AD/gpS3UVSmjJz Xm5asj9NR+lpsdWCspBj2zWlROj10MpH+KWB0t0VhugSbsIymO9wHQdG7pkBUYgw oZqSFTCgBmFCuk3/UKpfe86iMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEdWRfKg VjCB+Nw1KrwlB3a1PD3lMB8GA1UdIwQYMBaAFAsJUjYjTmk1uqNB4yNaPbRzrMZ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkU5Ri84QkUwNjNFMDdC MTYxMUU5OTk0OUFDNTFDNEY5QUUwMi9Dd2xTTmlOT2FUVzZvMEhqSTFvOXRIT3N4 bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N3bFNOaU5PYVRXNm8wSGpJMW85dEhPc3huOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZFOUYvOEJFMDYzRTA3QjE2MTFFOTk5NDlBQzUxQzRGOUFFMDIvNjE1M0VFNDBB NjQ5MTFFRUEyRjlDMjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngpwwDQYJKoZIhvcNAQELBQADggEBALpK9l93doKMgCIi GvcAVNqkkCOS1TsKx3LbQ7I1PvjAdrSWlyDje6s0pKWENRzu133LeoYB3C8bc3lI 5ekrGFNoLa+foTgEK2I6MtyJa7Zy7aV7UcuzHq7TuBeFX1GTGNpRXcyI5f7C5l3z G6TdqWFE4QZWoZBZSArQx5D2bVhfMIUn3lpLy1RwEL0NjKtszo9uTDD5NPkzHakC LJYWYq7+jrj9+ZYj/0ZP7yBFlIOsu55s7rtsXT5ECXCMERW7gtYOAAylUZ7rZqGf jcWiDJFh9ni2jpVQuLwz1JFkHFCVJlIu0dJb17OqknzY0t8lRL1KR7LOei4+3vsE mA4vEZc= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org