$ rpki-client -vvf rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/471FC532E6FC11EE84213C0FC4F9AE02.roa File: 471FC532E6FC11EE84213C0FC4F9AE02.roa (raw, json) Hash identifier: p0ZRqCls46vcW3YHYDrCLWMr4Nof2+lhx0Tc3fYVI4Y= Subject key identifier: DC:8D:9B:BB:1D:0F:D1:4F:1C:3E:BE:EA:EF:32:2C:07:C4:2D:F4:F9 Certificate issuer: /CN=A918E2AC/serialNumber=F47D0FBB6E8B64ECD991168D8F730F7891E4F44E Certificate serial: 0CAB Authority key identifier: F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/471FC532E6FC11EE84213C0FC4F9AE02.roa Signing time: Wed 20 Mar 2024 20:56:09 +0000 ROA not before: Wed 20 Mar 2024 20:56:09 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152479 IP address blocks: 103.133.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 19:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3243 (0xcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E2AC/serialNumber=F47D0FBB6E8B64ECD991168D8F730F7891E4F44E Validity Not Before: Mar 20 20:56:09 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65fb4d69-cdc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:7c:42:2d:07:d1:94:7e:7e:e7:15:da:3b:25: 92:1e:94:96:5d:75:b8:7d:26:14:1b:9f:48:59:04: 39:1c:47:43:cf:2c:78:cd:4d:0d:b2:ea:1f:d5:d4: 21:94:6d:0c:03:ec:83:1b:27:22:8a:39:97:00:88: f5:5e:da:fc:6a:da:95:62:98:84:29:95:31:de:cf: 3a:42:ae:1b:c3:76:1c:26:c9:11:51:6c:fb:4c:a3: 24:e5:15:ad:3f:be:10:ec:94:0f:c2:e9:54:32:49: 6f:f4:a4:66:d4:6f:28:7a:a4:7e:5f:e5:0f:96:91: ca:66:93:92:85:5e:f4:17:8b:81:32:fb:5e:95:88: 9a:0e:b6:39:3c:ce:da:4b:8a:ad:4a:64:38:d6:ce: c2:10:5c:63:6f:62:d5:69:cb:e7:3a:60:e8:7b:22: 4a:55:04:f1:f8:23:49:c5:d1:d7:fd:bc:f9:7f:36: 53:a0:cb:e0:8f:15:4d:ff:b2:cf:5e:ef:a6:13:e0: 00:c8:35:63:5c:ee:0c:34:23:47:0a:e8:07:7b:98: 74:b1:ca:e4:2b:28:65:2f:15:79:81:04:cd:86:6d: 54:24:78:ba:ed:a3:d4:aa:6a:f5:24:e7:bb:cc:62: c3:2b:c9:95:52:60:b8:32:14:12:43:8b:ee:b6:03: a6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:8D:9B:BB:1D:0F:D1:4F:1C:3E:BE:EA:EF:32:2C:07:C4:2D:F4:F9 X509v3 Authority Key Identifier: keyid:F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/471FC532E6FC11EE84213C0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.207.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:25:50:a1:95:25:08:69:0e:5a:88:4c:15:25:72:0d:a9:7a: 91:92:a4:5e:6a:0c:7b:e3:c4:58:38:9a:aa:84:00:86:35:1d: 77:4d:3b:a5:e8:6a:bd:6a:2e:c0:ef:24:17:ba:34:65:db:c7: da:fc:46:0a:c4:60:2a:75:08:09:d3:ba:4a:b1:7f:ce:57:76: a6:3f:eb:c0:05:c7:a7:b8:54:0c:5b:cc:6f:a2:c3:1a:16:63: 75:bb:76:ff:da:98:79:7f:17:c9:c0:f0:29:5a:02:50:4e:e7: f0:7f:2b:e5:31:b0:ea:2e:c7:af:72:98:8f:7d:62:45:4c:42: 6c:1a:83:d2:a4:fc:46:cc:dd:bb:42:26:45:52:fc:41:f7:9a: 63:2d:4b:fd:73:eb:58:9c:b1:4e:c9:e9:f9:fd:ce:91:5a:ad: 31:b9:6f:76:e3:51:95:de:4e:16:1a:47:c4:9e:bc:9c:3a:70: 2a:ce:1c:f7:36:9d:b8:7e:ce:96:fa:d1:65:67:0b:f0:e7:75: 4c:82:46:da:46:b4:4b:c9:90:8f:a8:fd:10:c5:05:fb:5c:3f: fe:4e:c3:65:61:48:9d:b0:23:28:d6:be:3e:97:d3:8c:3e:b7: 70:69:91:d0:0d:40:77:58:00:ef:f4:30:73:b2:0e:1c:ab:1a: 10:42:6c:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyQUMxMTAvBgNVBAUTKEY0N0QwRkJCNkU4QjY0RUNEOTkxMTY4RDhGNzMwRjc4 OTFFNEY0NEUwHhcNMjQwMzIwMjA1NjA5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiNGQ2OS1jZGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5nxCLQfRlH5+5xXaOyWSHpSWXXW4fSYUG59IWQQ5HEdDzyx4zU0Nsuof1dQh lG0MA+yDGyciijmXAIj1Xtr8atqVYpiEKZUx3s86Qq4bw3YcJskRUWz7TKMk5RWt P74Q7JQPwulUMklv9KRm1G8oeqR+X+UPlpHKZpOShV70F4uBMvtelYiaDrY5PM7a S4qtSmQ41s7CEFxjb2LVacvnOmDoeyJKVQTx+CNJxdHX/bz5fzZToMvgjxVN/7LP Xu+mE+AAyDVjXO4MNCNHCugHe5h0scrkKyhlLxV5gQTNhm1UJHi67aPUqmr1JOe7 zGLDK8mVUmC4MhQSQ4vutgOmKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNyNm7sd D9FPHD6+6u8yLAfELfT5MB8GA1UdIwQYMBaAFPR9D7tui2Ts2ZEWjY9zD3iR5PRO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTJBQy82NDE3MTMxNkNB MzIxMUU5OEJGQ0QzNTJDNEY5QUUwMi85SDBQdTI2TFpPelprUmFOajNNUGVKSGs5 RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlIMFB1MjZMWk96WmtSYU5qM01QZUpIazlFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyQUMvNjQxNzEzMTZDQTMyMTFFOThCRkNEMzUyQzRGOUFFMDIvNDcxRkM1MzJF NkZDMTFFRTg0MjEzQzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhc8wDQYJKoZIhvcNAQELBQADggEBAA4lUKGVJQhpDlqI TBUlcg2pepGSpF5qDHvjxFg4mqqEAIY1HXdNO6Xoar1qLsDvJBe6NGXbx9r8RgrE YCp1CAnTukqxf85XdqY/68AFx6e4VAxbzG+iwxoWY3W7dv/amHl/F8nA8ClaAlBO 5/B/K+UxsOoux69ymI99YkVMQmwag9Kk/EbM3btCJkVS/EH3mmMtS/1z61icsU7J 6fn9zpFarTG5b3bjUZXeThYaR8SevJw6cCrOHPc2nbh+zpb60WVnC/DndUyCRtpG tEvJkI+o/RDFBftcP/5Ow2VhSJ2wIyjWvj6X04w+t3BpkdANQHdYAO/0MHOyDhyr GhBCbOQ= -----END CERTIFICATE-----Generated at Thu Jun 6 21:10:50 2024 by rpki-client on console-ams.rpki-client.org