$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/CFC647301F7911EE9D65A148C4F9AE02.roa File: CFC647301F7911EE9D65A148C4F9AE02.roa (raw, json) Hash identifier: PNU6q/yz3U49CD+oZKbosRy5yu3vFlbV9oWCZ23Wmzw= Subject key identifier: F1:39:48:B0:48:27:D6:1E:B7:DF:60:A1:A0:1D:F8:36:E7:F0:D6:67 Certificate issuer: /CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Certificate serial: 339D Authority key identifier: 63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/CFC647301F7911EE9D65A148C4F9AE02.roa Signing time: Fri 10 Nov 2023 15:41:02 +0000 ROA not before: Fri 10 Nov 2023 15:41:02 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 61317 IP address blocks: 103.21.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13213 (0x339d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Validity Not Before: Nov 10 15:41:02 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654e4f0e-57db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d4:52:77:8a:58:b5:87:23:2b:7f:1b:e8:f1: b1:56:95:c9:8f:3e:42:ad:4b:f3:85:c8:6d:54:03: 2a:6c:4e:66:bf:6b:ae:c6:95:4e:7c:e9:d6:ea:24: 84:6d:39:d9:f6:11:c9:fe:02:c8:7d:ee:9d:93:17: 10:04:c3:aa:f4:78:34:6d:54:33:44:6d:b5:dc:8c: 9f:c4:ac:6a:67:07:0a:a0:36:c5:42:d4:a5:f3:7b: 7c:21:dd:23:4e:86:39:aa:ae:17:34:3d:e8:4b:eb: 68:18:cb:77:8d:35:7e:da:01:a7:3d:b1:d1:f3:97: 8a:96:8d:03:21:d9:31:10:29:f0:be:4b:64:57:f2: 20:ad:8b:9e:8d:96:4c:80:11:2e:96:94:89:95:66: e0:bf:72:8e:43:b3:f9:43:8e:01:86:2c:97:63:ab: 80:cd:30:3b:bf:27:fd:25:49:7a:6e:5b:27:64:d2: ce:c2:9c:d4:ea:a6:8c:bd:6d:64:b4:4c:2c:1e:09: b9:3c:bf:a8:a4:05:fc:d2:74:d9:13:94:c2:97:d2: 34:13:9f:d3:5d:ab:6e:41:44:7c:fb:82:8c:b0:f4: b3:bd:31:e8:1d:50:47:c3:06:d3:bf:71:cd:b2:e2: b3:c9:02:7e:b4:6d:fd:b0:4a:bd:b1:f5:74:d2:95: d1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:39:48:B0:48:27:D6:1E:B7:DF:60:A1:A0:1D:F8:36:E7:F0:D6:67 X509v3 Authority Key Identifier: keyid:63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/CFC647301F7911EE9D65A148C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.139.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:ee:7d:fc:cd:ed:9e:05:51:46:50:05:e7:2e:a0:9a:b4:6f: e8:fb:30:08:ff:0b:d9:fa:0a:5c:66:ec:31:68:71:77:bd:b9: 4c:8c:19:82:37:61:01:c9:d1:f2:cb:46:ba:d3:3c:8c:e9:3a: 93:4b:37:3d:c1:11:fb:cf:1e:b0:de:af:68:49:4f:c8:ff:fb: ae:e7:f1:8a:22:4e:09:6b:3c:0c:ad:24:40:af:be:9c:1e:c8: e7:e6:70:d9:51:0d:b3:62:d2:a6:cd:f2:36:21:25:43:a7:59: f6:5e:a2:10:bd:a0:0f:ef:75:d9:c2:15:01:e8:04:39:fa:5e: 0a:78:07:d9:13:62:3a:ae:8c:24:f9:e5:3e:4f:4e:a5:1f:90: fb:29:5f:f9:10:02:5e:c8:b1:12:3a:99:08:e0:df:73:49:62: 3a:0e:bc:7b:9a:1f:a4:91:9f:eb:49:65:58:8d:ad:ff:b1:20: d1:5c:f1:be:2e:0b:04:42:31:e1:7e:39:70:88:70:ef:14:2f: 9a:d1:d9:bb:5d:1a:66:ee:41:40:16:42:be:1c:49:1f:e8:cd: a5:ec:c8:64:91:8a:f6:e4:ee:91:8c:f1:71:ea:64:7b:ad:c6: aa:17:9c:87:18:bf:38:66:d7:1d:54:77:d6:35:93:be:1f:3c: ab:b4:86:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGNzYxMTAvBgNVBAUTKDYzRUM0RTYzODBGQUFFQTUxMTA3RTlDNDBDMkYxMDU4 RTA4Rjg1NkUwHhcNMjMxMTEwMTU0MTAyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRlNGYwZS01N2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9RSd4pYtYcjK38b6PGxVpXJjz5CrUvzhchtVAMqbE5mv2uuxpVOfOnW6iSE bTnZ9hHJ/gLIfe6dkxcQBMOq9Hg0bVQzRG213IyfxKxqZwcKoDbFQtSl83t8Id0j ToY5qq4XND3oS+toGMt3jTV+2gGnPbHR85eKlo0DIdkxECnwvktkV/IgrYuejZZM gBEulpSJlWbgv3KOQ7P5Q44BhiyXY6uAzTA7vyf9JUl6blsnZNLOwpzU6qaMvW1k tEwsHgm5PL+opAX80nTZE5TCl9I0E5/TXatuQUR8+4KMsPSzvTHoHVBHwwbTv3HN suKzyQJ+tG39sEq9sfV00pXRAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPE5SLBI J9Yet99goaAd+Dbn8NZnMB8GA1UdIwQYMBaAFGPsTmOA+q6lEQfpxAwvEFjgj4Vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkY3Ni85NDRFMzg5MjFE QUIxMUUyQkIzMENBQTkwOEIwMkNEMi9ZLXhPWTRENnJxVVJCLW5FREM4UVdPQ1Bo VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kteE9ZNEQ2cnFVUkItbkVEQzhRV09DUGhXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJGNzYvOTQ0RTM4OTIxREFCMTFFMkJCMzBDQUE5MDhCMDJDRDIvQ0ZDNjQ3MzAx Rjc5MTFFRTlENjVBMTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFYswDQYJKoZIhvcNAQELBQADggEBAJzuffzN7Z4FUUZQ BecuoJq0b+j7MAj/C9n6Clxm7DFocXe9uUyMGYI3YQHJ0fLLRrrTPIzpOpNLNz3B EfvPHrDer2hJT8j/+67n8YoiTglrPAytJECvvpweyOfmcNlRDbNi0qbN8jYhJUOn WfZeohC9oA/vddnCFQHoBDn6Xgp4B9kTYjqujCT55T5PTqUfkPspX/kQAl7IsRI6 mQjg33NJYjoOvHuaH6SRn+tJZViNrf+xINFc8b4uCwRCMeF+OXCIcO8UL5rR2btd GmbuQUAWQr4cSR/ozaXsyGSRivbk7pGM8XHqZHutxqoXnIcYvzhm1x1Ud9Y1k74f PKu0hvo= -----END CERTIFICATE-----Generated at Thu May 2 17:43:08 2024 by rpki-client on console-fra.rpki-client.org