$ rpki-client -vvf rpki.apnic.net/member_repository/A91284F0/46E67B30718D11EAAF92815BC4F9AE02/426DB414718E11EA9F6FA85CC4F9AE02.roa File: 426DB414718E11EA9F6FA85CC4F9AE02.roa (raw, json) Hash identifier: RT83I+TolxDRcxk82UOgWwbGfqpuT2NK5r8nhl6YOnM= Subject key identifier: 49:88:F5:88:D4:C0:F6:2D:4D:9A:A2:4E:D3:14:7C:E2:04:91:B6:98 Certificate issuer: /CN=A91284F0/serialNumber=47192642FA933866D1779E5E38FABF56C731FBA7 Certificate serial: 0921 Authority key identifier: 47:19:26:42:FA:93:38:66:D1:77:9E:5E:38:FA:BF:56:C7:31:FB:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxkmQvqTOGbRd55eOPq_Vscx-6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91284F0/46E67B30718D11EAAF92815BC4F9AE02/426DB414718E11EA9F6FA85CC4F9AE02.roa Signing time: Wed 24 Jan 2024 20:58:35 +0000 ROA not before: Wed 24 Jan 2024 20:58:35 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140073 IP address blocks: 103.147.168.0/24 maxlen: 24 103.147.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91284F0/46E67B30718D11EAAF92815BC4F9AE02/RxkmQvqTOGbRd55eOPq_Vscx-6c.crl rsync://rpki.apnic.net/member_repository/A91284F0/46E67B30718D11EAAF92815BC4F9AE02/RxkmQvqTOGbRd55eOPq_Vscx-6c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxkmQvqTOGbRd55eOPq_Vscx-6c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2337 (0x921) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91284F0/serialNumber=47192642FA933866D1779E5E38FABF56C731FBA7 Validity Not Before: Jan 24 20:58:35 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b179fb-e658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:34:d3:42:0c:60:a8:13:50:a1:c1:4e:f8:10: 51:6d:de:2b:c2:30:da:17:3b:1b:77:ec:b1:6f:08: 48:a1:37:18:fb:04:65:4d:f8:eb:23:5f:53:80:4e: 6d:88:c2:c2:47:53:6c:ab:7e:a1:94:4c:5c:cd:37: b1:bf:18:d6:03:5b:0e:38:bb:32:ff:52:1e:10:83: 49:23:12:b4:9e:1e:ca:43:a9:d4:ed:d1:89:57:d9: 6f:b1:bf:26:75:c0:83:d7:91:d6:77:40:3f:bf:e4: 22:d0:c7:b8:40:3d:ad:6d:ee:e4:00:88:fb:c8:89: 33:0a:c8:37:60:28:96:23:14:80:76:cf:98:27:9d: 5d:32:f8:79:fe:97:7c:48:97:4b:22:9e:28:39:27: 50:9c:ee:85:0a:63:a8:a0:b5:2c:9b:38:bf:5a:a2: ed:d8:68:24:16:55:da:b4:f6:4c:94:db:42:d3:93: f6:ce:45:2f:9b:38:28:26:07:4e:d2:6a:b8:bf:d5: 16:b5:91:4e:5a:78:d7:ea:08:5e:5e:9c:07:f1:8b: 65:b9:43:94:a4:a2:5f:ae:a5:01:51:55:f1:97:63: a2:55:b2:83:8b:95:16:79:1a:d2:b1:7a:43:6e:21: f0:47:66:cc:85:b0:a5:a1:4c:70:01:61:42:c6:a9: a1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:88:F5:88:D4:C0:F6:2D:4D:9A:A2:4E:D3:14:7C:E2:04:91:B6:98 X509v3 Authority Key Identifier: keyid:47:19:26:42:FA:93:38:66:D1:77:9E:5E:38:FA:BF:56:C7:31:FB:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91284F0/46E67B30718D11EAAF92815BC4F9AE02/RxkmQvqTOGbRd55eOPq_Vscx-6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxkmQvqTOGbRd55eOPq_Vscx-6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91284F0/46E67B30718D11EAAF92815BC4F9AE02/426DB414718E11EA9F6FA85CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.168.0/23 Signature Algorithm: sha256WithRSAEncryption b7:41:86:a2:5f:e1:b1:14:84:dd:fb:5c:4a:34:d9:31:c8:87: 7b:26:ec:75:68:42:7a:4c:8b:1b:12:bd:d1:f5:bc:eb:56:63: 3b:6a:09:bb:8f:46:5b:f1:d1:aa:73:c2:dc:ac:df:a1:d1:90: 6d:30:1c:d4:d5:3a:c2:f8:c3:06:75:52:a5:ec:20:7f:16:33: 18:48:e7:de:18:15:3a:30:1e:70:31:21:74:a1:fa:2d:8a:78: 2d:4d:6d:b3:44:1c:49:6e:a8:bc:ef:53:e2:3f:77:c6:64:c3: b0:a4:f5:77:01:d8:70:96:2a:5a:bb:9e:27:e5:9f:08:08:6c: 57:4c:ec:67:ee:fc:dc:d4:f9:12:65:34:21:5f:0a:27:6b:45: 34:3b:4f:9c:88:22:2a:ca:bc:33:1f:fc:fc:39:f8:98:7c:a5: b4:50:5d:61:02:b5:34:17:0c:6c:f2:82:3f:ed:ba:f2:aa:e1: a3:5a:66:3c:a2:46:47:3c:f0:1b:d7:3b:75:c4:75:85:f2:90: ca:ec:25:11:e5:5c:88:68:26:05:44:be:cc:ee:95:15:6a:89: 96:87:cb:1a:ce:32:ac:46:d0:a8:4a:8f:8e:e5:cd:02:26:cc: 98:10:32:2c:a1:79:95:53:7b:5b:2e:03:81:a1:8d:37:cf:b3: c7:62:71:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg0RjAxMTAvBgNVBAUTKDQ3MTkyNjQyRkE5MzM4NjZEMTc3OUU1RTM4RkFCRjU2 QzczMUZCQTcwHhcNMjQwMTI0MjA1ODM1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIxNzlmYi1lNjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DTTQgxgqBNQocFO+BBRbd4rwjDaFzsbd+yxbwhIoTcY+wRlTfjrI19TgE5t iMLCR1Nsq36hlExczTexvxjWA1sOOLsy/1IeEINJIxK0nh7KQ6nU7dGJV9lvsb8m dcCD15HWd0A/v+Qi0Me4QD2tbe7kAIj7yIkzCsg3YCiWIxSAds+YJ51dMvh5/pd8 SJdLIp4oOSdQnO6FCmOooLUsmzi/WqLt2GgkFlXatPZMlNtC05P2zkUvmzgoJgdO 0mq4v9UWtZFOWnjX6gheXpwH8YtluUOUpKJfrqUBUVXxl2OiVbKDi5UWeRrSsXpD biHwR2bMhbCloUxwAWFCxqmh4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEmI9YjU wPYtTZqiTtMUfOIEkbaYMB8GA1UdIwQYMBaAFEcZJkL6kzhm0XeeXjj6v1bHMfun MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODRGMC80NkU2N0IzMDcx OEQxMUVBQUY5MjgxNUJDNEY5QUUwMi9SeGttUXZxVE9HYlJkNTVlT1BxX1ZzY3gt NmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J4a21RdnFUT0diUmQ1NWVPUHFfVnNjeC02Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg0RjAvNDZFNjdCMzA3MThEMTFFQUFGOTI4MTVCQzRGOUFFMDIvNDI2REI0MTQ3 MThFMTFFQTlGNkZBODVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnk6gwDQYJKoZIhvcNAQELBQADggEBALdBhqJf4bEUhN37 XEo02THIh3sm7HVoQnpMixsSvdH1vOtWYztqCbuPRlvx0apzwtys36HRkG0wHNTV OsL4wwZ1UqXsIH8WMxhI594YFTowHnAxIXSh+i2KeC1NbbNEHEluqLzvU+I/d8Zk w7Ck9XcB2HCWKlq7niflnwgIbFdM7Gfu/NzU+RJlNCFfCidrRTQ7T5yIIirKvDMf /Pw5+Jh8pbRQXWECtTQXDGzygj/tuvKq4aNaZjyiRkc88BvXO3XEdYXykMrsJRHl XIhoJgVEvszulRVqiZaHyxrOMqxG0KhKj47lzQImzJgQMiyheZVTe1suA4GhjTfP s8dicVY= -----END CERTIFICATE-----Generated at Fri May 31 22:13:02 2024 by rpki-client on console-fra.rpki-client.org