$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/47A21580B6CC11EC98672826C4F9AE02.roa File: 47A21580B6CC11EC98672826C4F9AE02.roa (raw, json) Hash identifier: qjc1TRQ4aj3UWDrfE4OMe7D9VpKX+4bRXdtLVlC/TX8= Subject key identifier: 95:74:1C:B4:6D:FE:F1:97:B2:26:6D:D5:A6:B8:FC:D9:F4:7B:87:20 Certificate issuer: /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Certificate serial: 2F4C Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/47A21580B6CC11EC98672826C4F9AE02.roa Signing time: Sat 10 Aug 2024 15:42:06 +0000 ROA not before: Sat 10 Aug 2024 15:42:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 133382 IP address blocks: 103.79.108.0/24 maxlen: 24 103.79.109.0/24 maxlen: 24 103.241.6.0/24 maxlen: 24 103.241.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12108 (0x2f4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Validity Not Before: Aug 10 15:42:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b78a4d-0bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:cf:c0:31:98:df:af:19:92:ea:05:bf:10:b1: 9d:e4:93:bf:47:7f:09:6a:9c:83:26:3e:76:6d:f7: b0:a1:a5:4c:32:e9:d4:3a:18:4a:aa:12:37:90:cb: 6e:66:21:e7:92:43:0d:78:65:0d:23:ce:33:0d:cb: c1:f6:a7:58:92:22:fe:74:87:a8:68:ac:55:e5:db: 44:5f:14:19:f1:0e:85:b3:19:a1:07:5e:95:c3:91: 28:2e:47:dd:0f:5b:f3:0b:c4:f4:92:76:a8:30:f7: 95:30:05:82:b6:38:80:bc:61:02:23:84:f1:13:c5: 80:78:28:47:34:9e:55:f4:fd:14:a5:b0:e1:70:d2: 6d:bb:35:cf:cc:f1:d5:c3:27:64:c2:62:0c:be:52: 3b:ad:d3:52:5c:ee:f3:ad:a0:c3:77:3f:b9:49:d9: 99:e8:2e:91:45:4d:ff:83:c4:7a:9e:b4:f3:dd:70: b3:99:82:1e:5f:d0:04:f1:d8:88:c3:f4:83:6b:05: 95:63:7e:c2:9b:44:8e:72:2a:d1:ad:a7:61:ef:16: 90:0d:5a:ce:22:4c:99:40:d7:68:91:7c:b4:11:48: 60:0d:37:1c:c1:f7:13:82:58:d1:b1:f6:f1:c3:e6: b8:98:6a:88:d0:44:a5:8f:4b:b3:94:36:bd:b1:5f: 14:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:74:1C:B4:6D:FE:F1:97:B2:26:6D:D5:A6:B8:FC:D9:F4:7B:87:20 X509v3 Authority Key Identifier: keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/47A21580B6CC11EC98672826C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.108.0/23 103.241.6.0/23 Signature Algorithm: sha256WithRSAEncryption 28:27:31:fd:91:0a:27:a6:c0:66:38:0c:b9:51:13:30:c7:d1: 8c:76:36:49:47:d8:33:1a:c6:e7:0d:69:ff:01:f4:0f:fd:97: df:0b:d5:8c:c6:bf:1f:e2:fb:23:55:d9:f0:9c:2c:ba:9e:68: b7:99:61:7f:47:c5:45:91:b9:d9:76:ec:05:40:f5:65:b1:33: c1:0c:07:96:93:ab:b6:48:16:a2:31:ae:5f:57:7d:77:74:f9: 2c:e7:6e:37:a8:d3:88:21:3e:b0:2e:60:c8:b5:5a:a9:71:59: b3:3a:be:bb:c3:f0:f0:84:65:f9:9f:94:cd:a8:37:7d:8a:01: a6:aa:50:01:cf:21:e6:98:b4:ba:ee:ad:b2:5a:60:3d:b8:31: cd:db:b1:93:da:11:c0:bc:af:b0:8b:cd:4a:db:bc:4a:fc:b7: e7:1b:c3:f0:b9:00:a5:05:55:09:22:91:67:26:61:5b:22:e4: 2a:54:b9:f5:2f:14:ac:9a:8b:46:f9:2f:9b:2e:b1:5a:de:8c: 96:83:40:c0:43:cb:39:2e:fc:38:bd:5f:c1:dc:9b:0a:40:b4: d3:c3:25:90:d7:08:8e:09:16:0b:fd:27:85:f6:34:3c:6b:14: b9:17:16:d1:8d:5a:aa:fc:e5:1a:7d:c4:d5:d1:60:0a:94:61: 4d:8d:36:06 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICL0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0NUMxMTAvBgNVBAUTKEMwRjdEOEQ2RDU0MTYzNzY1RkY2RjNFMkZCMzM3RkNG RTE1MDcyMTkwHhcNMjQwODEwMTU0MjA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI3OGE0ZC0wYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8c/AMZjfrxmS6gW/ELGd5JO/R38JapyDJj52bfewoaVMMunUOhhKqhI3kMtu ZiHnkkMNeGUNI84zDcvB9qdYkiL+dIeoaKxV5dtEXxQZ8Q6FsxmhB16Vw5EoLkfd D1vzC8T0knaoMPeVMAWCtjiAvGECI4TxE8WAeChHNJ5V9P0UpbDhcNJtuzXPzPHV wydkwmIMvlI7rdNSXO7zraDDdz+5SdmZ6C6RRU3/g8R6nrTz3XCzmYIeX9AE8diI w/SDawWVY37Cm0SOcirRradh7xaQDVrOIkyZQNdokXy0EUhgDTccwfcTgljRsfbx w+a4mGqI0ESlj0uzlDa9sV8UAQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJV0HLRt /vGXsiZt1aa4/Nn0e4cgMB8GA1UdIwQYMBaAFMD32NbVQWN2X/bz4vszf8/hUHIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ1Qy81QThBRDA4ODBC MTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkzWmY5dlBpLXpOX3otRlFj aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dQZlkxdFZCWTNaZjl2UGktek5fei1GUWNoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0NUMvNUE4QUQwODgwQjE4MTFFM0I2MzdDNjc5NTkxMUVBMzIvNDdBMjE1ODBC NkNDMTFFQzk4NjcyODI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnT2wDBAFn8QYwDQYJKoZIhvcNAQELBQADggEBACgnMf2R CiemwGY4DLlREzDH0Yx2NklH2DMaxucNaf8B9A/9l98L1YzGvx/i+yNV2fCcLLqe aLeZYX9HxUWRudl27AVA9WWxM8EMB5aTq7ZIFqIxrl9XfXd0+Sznbjeo04ghPrAu YMi1WqlxWbM6vrvD8PCEZfmflM2oN32KAaaqUAHPIeaYtLrurbJaYD24Mc3bsZPa EcC8r7CLzUrbvEr8t+cbw/C5AKUFVQkikWcmYVsi5CpUufUvFKyai0b5L5susVre jJaDQMBDyzku/Di9X8HcmwpAtNPDJZDXCI4JFgv9J4X2NDxrFLkXFtGNWqr85Rp9 xNXRYAqUYU2NNgY= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org