$ rpki-client -vvf rpki.apnic.net/member_repository/A91463ED/B76E06601D7A11EEAD9F8E0CC4F9AE02/DB617778C58B11EEBD4E144DC4F9AE02.roa File: DB617778C58B11EEBD4E144DC4F9AE02.roa (raw, json) Hash identifier: VdSR6Z2Wqy4AZ8bo0b/MEDIzSHWpvVsZQSFbxuz/eqA= Subject key identifier: DB:D9:DF:2A:E0:4A:D7:33:14:1F:65:8D:84:F8:05:2C:63:2D:79:07 Certificate issuer: /CN=A91463ED/serialNumber=3A7A37FBBA49C469ADAB5266456C9A45F2CFC188 Certificate serial: 05 Authority key identifier: 3A:7A:37:FB:BA:49:C4:69:AD:AB:52:66:45:6C:9A:45:F2:CF:C1:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ono3-7pJxGmtq1JmRWyaRfLPwYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91463ED/B76E06601D7A11EEAD9F8E0CC4F9AE02/DB617778C58B11EEBD4E144DC4F9AE02.roa Signing time: Fri 09 Feb 2024 06:08:16 +0000 ROA not before: Fri 09 Feb 2024 06:08:16 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 151484 IP address blocks: 103.230.244.0/24 maxlen: 24 103.230.245.0/24 maxlen: 24 2001:df2:a340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91463ED/B76E06601D7A11EEAD9F8E0CC4F9AE02/Ono3-7pJxGmtq1JmRWyaRfLPwYg.crl rsync://rpki.apnic.net/member_repository/A91463ED/B76E06601D7A11EEAD9F8E0CC4F9AE02/Ono3-7pJxGmtq1JmRWyaRfLPwYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ono3-7pJxGmtq1JmRWyaRfLPwYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91463ED/serialNumber=3A7A37FBBA49C469ADAB5266456C9A45F2CFC188 Validity Not Before: Feb 9 06:08:16 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c5c150-b8ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4e:75:ec:1b:b3:0c:10:28:85:ba:f4:b0:3a: 51:5f:45:34:4e:e0:c5:9f:27:7d:f9:ba:53:e3:ca: 4a:c8:64:3a:11:42:64:55:49:9f:06:00:48:e4:0b: 37:91:b8:a3:18:09:5c:c1:3a:6f:43:23:ab:56:10: dc:a3:d0:c2:93:40:00:57:7d:d9:13:d1:62:e4:16: d0:bb:41:91:c6:e8:64:b5:45:57:44:cc:eb:b0:71: d4:1e:54:90:e7:ae:49:05:05:d4:42:a9:34:d2:b0: c5:e0:5b:99:13:e0:83:a9:53:f4:1e:c0:fc:79:15: 6e:df:be:9c:b3:c4:cd:f8:ba:0c:0a:d5:fb:2a:f1: 3a:3b:51:02:18:74:38:b4:45:47:b6:be:b2:c0:9e: eb:d9:e9:d4:36:07:9b:48:9e:08:37:17:a5:4d:76: bc:aa:9a:15:0f:11:e8:bf:00:2f:49:e6:ab:63:d0: 33:d6:70:60:9f:ed:b6:e9:db:a0:c2:54:c4:2d:fa: ce:ee:7a:b8:77:ef:dc:dd:9e:a7:bb:ed:bd:89:71: b3:44:13:60:d6:7f:33:15:d1:12:b5:d7:58:ad:62: c7:5c:c3:b5:06:5b:df:3a:48:a1:a4:7d:ec:f9:c1: 33:bb:7d:9c:44:53:dc:b0:aa:35:0b:ff:ad:80:e3: bf:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D9:DF:2A:E0:4A:D7:33:14:1F:65:8D:84:F8:05:2C:63:2D:79:07 X509v3 Authority Key Identifier: keyid:3A:7A:37:FB:BA:49:C4:69:AD:AB:52:66:45:6C:9A:45:F2:CF:C1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91463ED/B76E06601D7A11EEAD9F8E0CC4F9AE02/Ono3-7pJxGmtq1JmRWyaRfLPwYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ono3-7pJxGmtq1JmRWyaRfLPwYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91463ED/B76E06601D7A11EEAD9F8E0CC4F9AE02/DB617778C58B11EEBD4E144DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.244.0/23 IPv6: 2001:df2:a340::/48 Signature Algorithm: sha256WithRSAEncryption 06:c5:c3:0d:8d:48:f4:dd:fa:40:15:1b:c2:05:c6:7c:11:42: 10:6c:44:f5:4f:06:b7:9c:ae:a2:83:de:3c:68:39:72:91:4f: 3b:d6:46:fd:92:75:42:6c:7f:ef:b0:c0:7c:46:eb:ea:12:27: 30:63:43:2c:0e:6c:e5:6d:1e:b4:67:d7:38:07:c8:d9:85:75: 77:49:ac:3b:68:4a:33:ad:e4:39:d8:8d:4f:11:a2:33:cc:56: f6:c3:33:c0:46:0e:32:2f:6a:72:25:2d:3b:d5:1f:ed:1d:4c: 92:d6:e6:14:40:7e:6a:19:c4:c6:31:27:dc:0f:38:c7:05:49: d0:e6:97:24:ce:05:72:b6:07:34:f7:6c:75:27:3b:de:78:56: 24:5e:b4:62:3d:b5:c2:c6:d2:7b:e9:41:a5:c5:76:11:d3:8d: 42:57:d3:e5:85:b7:09:97:66:da:00:05:56:e7:0e:cc:ab:8e: 65:40:22:c7:8a:e3:a2:95:4d:2a:4c:dc:a6:07:56:81:bf:b2: 67:4c:9c:0b:82:97:b8:68:a8:84:3a:74:15:e1:37:19:d7:77: ed:d7:f6:22:e7:d9:06:d8:ba:80:d5:da:18:50:06:1e:a4:83: 44:eb:37:86:5f:8a:de:ba:be:e8:05:8a:62:86:d6:ab:99:bf: 60:e6:05:80 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjNFRDExMC8GA1UEBRMoM0E3QTM3RkJCQTQ5QzQ2OUFEQUI1MjY2NDU2QzlBNDVG MkNGQzE4ODAeFw0yNDAyMDkwNjA4MTZaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzVjMTUwLWI4Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDTnXsG7MMECiFuvSwOlFfRTRO4MWfJ335ulPjykrIZDoRQmRVSZ8GAEjkCzeR uKMYCVzBOm9DI6tWENyj0MKTQABXfdkT0WLkFtC7QZHG6GS1RVdEzOuwcdQeVJDn rkkFBdRCqTTSsMXgW5kT4IOpU/QewPx5FW7fvpyzxM34ugwK1fsq8To7UQIYdDi0 RUe2vrLAnuvZ6dQ2B5tIngg3F6VNdryqmhUPEei/AC9J5qtj0DPWcGCf7bbp26DC VMQt+s7uerh379zdnqe77b2JcbNEE2DWfzMV0RK111itYsdcw7UGW986SKGkfez5 wTO7fZxEU9ywqjUL/62A47+5AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU29nfKuBK 1zMUH2WNhPgFLGMteQcwHwYDVR0jBBgwFoAUOno3+7pJxGmtq1JmRWyaRfLPwYgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2M0VEL0I3NkUwNjYwMUQ3 QTExRUVBRDlGOEUwQ0M0RjlBRTAyL09ubzMtN3BKeEdtdHExSm1SV3lhUmZMUHdZ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT25vMy03cEp4R210cTFKbVJXeWFSZkxQd1lnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjNFRC9CNzZFMDY2MDFEN0ExMUVFQUQ5RjhFMENDNEY5QUUwMi9EQjYxNzc3OEM1 OEIxMUVFQkQ0RTE0NERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfm9DAPBAIAAjAJAwcAIAEN8qNAMA0GCSqGSIb3DQEBCwUA A4IBAQAGxcMNjUj03fpAFRvCBcZ8EUIQbET1Twa3nK6ig948aDlykU871kb9knVC bH/vsMB8RuvqEicwY0MsDmzlbR60Z9c4B8jZhXV3Saw7aEozreQ52I1PEaIzzFb2 wzPARg4yL2pyJS071R/tHUyS1uYUQH5qGcTGMSfcDzjHBUnQ5pckzgVytgc092x1 JzveeFYkXrRiPbXCxtJ76UGlxXYR041CV9PlhbcJl2baAAVW5w7Mq45lQCLHiuOi lU0qTNymB1aBv7JnTJwLgpe4aKiEOnQV4TcZ13ft1/Yi59kG2LqA1doYUAYepINE 6zeGX4reur7oBYpihtarmb9g5gWA -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:11 2024 by rpki-client on console-ams.rpki-client.org