$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/F3F7D2B0CE9711ECA2477C19C4F9AE02.roa File: F3F7D2B0CE9711ECA2477C19C4F9AE02.roa (raw, json) Hash identifier: mllrLJI4sD60gVAc3BzUHHr/oywpfwJcK/DoJPXA7Oo= Subject key identifier: AB:95:D6:10:D6:C5:80:CE:A4:95:38:3A:E9:5C:91:EA:3D:EF:42:E0 Certificate issuer: /CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Certificate serial: 0A0B Authority key identifier: 50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/F3F7D2B0CE9711ECA2477C19C4F9AE02.roa Signing time: Wed 31 Jan 2024 20:48:28 +0000 ROA not before: Wed 31 Jan 2024 20:48:28 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58715 IP address blocks: 103.147.182.0/24 maxlen: 24 103.147.183.0/24 maxlen: 24 103.204.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2571 (0xa0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Validity Not Before: Jan 31 20:48:28 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bab21c-2089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d8:b3:1c:58:88:70:16:0d:4a:66:27:3c:7b: 06:79:cb:d7:e9:f0:e3:a0:19:f4:7d:9f:9f:c2:f0: e5:83:90:92:30:2e:e7:e2:82:52:73:9b:02:95:43: 6a:90:e6:de:f8:81:6f:1f:85:f0:aa:b6:e0:95:94: 9d:e1:22:09:ea:82:74:f6:5d:93:29:6e:5b:da:15: 3d:7d:b9:c6:82:40:00:3a:ab:47:27:51:18:8a:06: e3:ef:4e:dd:0c:a1:67:81:57:2c:ad:a1:42:ed:e1: 47:01:f1:9a:68:f7:d5:c6:94:33:9f:97:d5:8a:ec: 69:14:a5:6b:3c:63:5a:09:18:2e:f5:62:cb:e3:e8: 25:e6:1f:b1:bc:66:41:05:f6:11:7b:b1:e3:5b:25: a7:4d:bc:e5:f7:c7:39:19:1b:0c:9a:b9:1a:97:06: d0:52:e2:ca:eb:bc:08:30:f1:32:aa:02:b7:2a:e8: 82:b6:20:dd:b9:f5:0b:30:8e:a8:99:3a:8f:b9:b4: e9:a9:6b:6f:77:2f:72:a9:eb:30:7b:ba:f8:c6:8e: 50:35:d8:89:81:c9:90:95:b4:d4:a9:12:3c:1c:46: f5:2b:dc:c6:a3:58:c3:3d:64:f6:7d:f6:bd:d4:40: a3:a3:45:96:1e:19:94:ce:42:04:ca:79:49:60:72: 6c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:95:D6:10:D6:C5:80:CE:A4:95:38:3A:E9:5C:91:EA:3D:EF:42:E0 X509v3 Authority Key Identifier: keyid:50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/F3F7D2B0CE9711ECA2477C19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.182.0/23 103.204.80.0/23 Signature Algorithm: sha256WithRSAEncryption 10:ca:8b:f0:65:b7:4f:e6:cf:a2:87:ca:26:68:bc:bd:67:2c: e6:6f:d9:4e:5a:cd:91:e8:98:7a:09:73:31:5a:f8:cd:b6:96: 0e:12:99:26:cb:0e:4a:74:a9:19:92:be:36:11:44:0f:90:0a: 90:d1:4c:04:fe:db:af:2a:03:e2:77:c8:6a:24:39:cb:f9:c2: 13:cb:90:9d:e2:86:8c:0b:32:e0:45:0c:75:ff:32:7b:f6:08: 02:e7:59:46:dc:1a:d3:f3:03:79:64:d1:d9:4d:cd:f7:71:56: b0:42:54:24:37:51:68:2f:1a:26:83:2f:84:2b:59:2c:63:a1: 55:96:ca:43:4f:15:74:61:08:79:fa:36:91:3d:81:86:42:07: fc:28:28:e0:8c:1b:d8:59:dd:29:81:6d:ef:13:85:7d:17:c9: 32:5e:ba:1f:4c:de:52:41:68:a3:70:43:11:be:c9:5b:b6:1a: d1:35:2a:ba:54:42:df:fb:f1:c3:66:e0:cc:ca:97:50:a5:5d: 5f:a8:e6:a3:b9:62:13:d5:6a:9f:8a:a1:90:4f:93:b6:85:ef: 72:a8:1c:ab:1c:68:36:56:26:5d:b0:49:81:67:42:10:1d:b7: d3:a4:cb:e4:99:88:e6:ba:63:c2:ef:a3:3e:bd:78:56:67:f8: f0:33:3a:a3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwNzgxMTAvBgNVBAUTKDUwMjdGMzE5MkVCREQ1NDk1MEEzOUMzRDEzMDk0QTcx RjFEMzMyNjYwHhcNMjQwMTMxMjA0ODI4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhYjIxYy0yMDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtizHFiIcBYNSmYnPHsGecvX6fDjoBn0fZ+fwvDlg5CSMC7n4oJSc5sClUNq kObe+IFvH4XwqrbglZSd4SIJ6oJ09l2TKW5b2hU9fbnGgkAAOqtHJ1EYigbj707d DKFngVcsraFC7eFHAfGaaPfVxpQzn5fViuxpFKVrPGNaCRgu9WLL4+gl5h+xvGZB BfYRe7HjWyWnTbzl98c5GRsMmrkalwbQUuLK67wIMPEyqgK3KuiCtiDdufULMI6o mTqPubTpqWtvdy9yqeswe7r4xo5QNdiJgcmQlbTUqRI8HEb1K9zGo1jDPWT2ffa9 1ECjo0WWHhmUzkIEynlJYHJs1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKuV1hDW xYDOpJU4Oulckeo970LgMB8GA1UdIwQYMBaAFFAn8xkuvdVJUKOcPRMJSnHx0zJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA3OC84NjMwQjFDODRD OEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFVbFFvNXc5RXdsS2NmSFRN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VDZnpHUzY5MVVsUW81dzlFd2xLY2ZIVE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTMwNzgvODYzMEIxQzg0QzhDMTFFQUI5RTI3MDU3QzRGOUFFMDIvRjNGN0QyQjBD RTk3MTFFQ0EyNDc3QzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnk7YDBAFnzFAwDQYJKoZIhvcNAQELBQADggEBABDKi/Bl t0/mz6KHyiZovL1nLOZv2U5azZHomHoJczFa+M22lg4SmSbLDkp0qRmSvjYRRA+Q CpDRTAT+268qA+J3yGokOcv5whPLkJ3ihowLMuBFDHX/Mnv2CALnWUbcGtPzA3lk 0dlNzfdxVrBCVCQ3UWgvGiaDL4QrWSxjoVWWykNPFXRhCHn6NpE9gYZCB/woKOCM G9hZ3SmBbe8ThX0XyTJeuh9M3lJBaKNwQxG+yVu2GtE1KrpUQt/78cNm4MzKl1Cl XV+o5qO5YhPVap+KoZBPk7aF73KoHKscaDZWJl2wSYFnQhAdt9Oky+SZiOa6Y8Lv oz69eFZn+PAzOqM= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:25 2024 by rpki-client on console-ams.rpki-client.org