$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/71E30CDCC4ED11EAA1C5766AC4F9AE02.roa File: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (raw, json) Hash identifier: PndwU/bKorz9FPxSOlH7Na5k3+/rUrTNarEjKEZdBqc= Subject key identifier: 76:F7:8A:DC:C4:E4:F1:8A:17:D6:0A:6B:A9:7F:B8:A2:44:6B:2C:8C Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0A8A Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/71E30CDCC4ED11EAA1C5766AC4F9AE02.roa Signing time: Mon 22 Jan 2024 20:18:33 +0000 ROA not before: Mon 22 Jan 2024 20:18:33 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133495 IP address blocks: 103.147.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Jan 22 20:18:33 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65aecd98-59af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:96:18:d6:7b:05:b5:b5:a1:b9:ee:1d:98:80: 6e:ea:d1:d2:f5:f5:02:4f:94:a9:ce:cb:50:e5:66: 61:81:41:59:64:74:93:6f:ea:69:a7:33:a5:70:59: cf:c7:93:fd:6c:18:40:72:5e:d4:ba:0f:1f:e6:21: 09:4a:5a:97:42:eb:7d:92:e2:d3:73:aa:a1:7c:bd: 74:9b:ee:b0:87:41:fa:4b:07:07:81:49:3b:f4:f0: 92:3f:f1:b6:65:11:19:62:5d:1a:5d:b5:fb:13:7a: e2:3d:84:a7:7d:1c:f3:08:f3:3d:cf:2c:dc:69:97: a0:82:40:56:c2:71:e2:3a:2f:b3:58:9b:58:9c:39: ca:b7:7e:59:1e:cb:f3:97:fd:43:24:ae:8f:2a:bb: 06:02:72:6b:7c:57:aa:5c:a5:56:a4:2d:08:73:d5: 30:bc:85:ac:10:19:98:c2:96:e4:34:4e:75:87:4c: 30:d2:d3:df:45:27:74:7c:17:5a:c4:fa:26:a3:74: 0c:05:be:81:a1:56:ec:05:b4:b8:6b:bb:69:0c:ee: 79:f7:47:2b:8b:40:bd:95:77:21:f2:a2:d2:e1:1a: 19:39:12:da:c9:df:d0:25:8a:5d:da:02:5e:3c:56: 14:b9:28:5a:ef:57:7a:99:55:af:df:03:c0:38:64: b8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F7:8A:DC:C4:E4:F1:8A:17:D6:0A:6B:A9:7F:B8:A2:44:6B:2C:8C X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/71E30CDCC4ED11EAA1C5766AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.42.0/23 Signature Algorithm: sha256WithRSAEncryption b7:02:f9:ab:6e:9f:39:5f:ae:0b:a7:7b:2d:e2:5f:f3:c5:53: 07:0c:39:f5:09:ab:2a:fd:0f:f4:0c:af:dc:a5:a5:51:8f:4a: 2a:0b:44:9e:83:5f:86:de:32:fd:20:1c:65:3b:39:bd:92:06: 36:3f:ee:23:77:fb:e5:c4:f2:09:6d:7a:50:21:e8:f2:06:48: b8:9c:5e:ef:98:34:9f:fa:45:ad:df:ae:71:f9:6d:bb:f4:fd: 95:29:db:0e:6a:65:36:51:54:24:1a:ff:c8:9f:33:35:12:5d: 91:2c:05:5e:4f:cd:6f:fe:37:fa:06:8e:63:84:a1:d3:93:07: 52:bd:99:3c:79:80:83:bb:11:08:32:fb:dc:80:15:4a:cd:e3: b1:2b:ff:58:bb:c5:bc:ec:08:a5:a5:26:6b:5e:09:6b:64:62: 06:e4:73:36:db:32:ba:0f:dd:99:f7:77:32:2d:4c:a9:2c:a1: 78:5f:3a:d1:45:e1:f5:2e:1e:5a:9e:d3:ad:65:46:37:3f:51: cb:66:ea:de:38:32:a6:a2:67:2c:a7:c6:8b:51:91:a3:93:d7: 61:af:ae:23:b6:3a:3a:45:e6:35:aa:8e:17:18:92:de:a3:99: 15:dd:7f:db:d2:40:7d:73:97:0b:a3:a1:d2:76:ad:8b:c4:95: 26:76:21:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjQwMTIyMjAxODMzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFlY2Q5OC01OWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pYY1nsFtbWhue4dmIBu6tHS9fUCT5SpzstQ5WZhgUFZZHSTb+pppzOlcFnP x5P9bBhAcl7Uug8f5iEJSlqXQut9kuLTc6qhfL10m+6wh0H6SwcHgUk79PCSP/G2 ZREZYl0aXbX7E3riPYSnfRzzCPM9zyzcaZeggkBWwnHiOi+zWJtYnDnKt35ZHsvz l/1DJK6PKrsGAnJrfFeqXKVWpC0Ic9UwvIWsEBmYwpbkNE51h0ww0tPfRSd0fBda xPomo3QMBb6BoVbsBbS4a7tpDO5590cri0C9lXch8qLS4RoZORLayd/QJYpd2gJe PFYUuSha71d6mVWv3wPAOGS44wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHb3itzE 5PGKF9YKa6l/uKJEayyMMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDMEIvNDQ1OTQ0OEMyQzZBMTFFQTlDRUNCRjRBQzRGOUFFMDIvNzFFMzBDREND NEVEMTFFQUExQzU3NjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkyowDQYJKoZIhvcNAQELBQADggEBALcC+atunzlfrgun ey3iX/PFUwcMOfUJqyr9D/QMr9ylpVGPSioLRJ6DX4beMv0gHGU7Ob2SBjY/7iN3 ++XE8gltelAh6PIGSLicXu+YNJ/6Ra3frnH5bbv0/ZUp2w5qZTZRVCQa/8ifMzUS XZEsBV5PzW/+N/oGjmOEodOTB1K9mTx5gIO7EQgy+9yAFUrN47Er/1i7xbzsCKWl JmteCWtkYgbkczbbMroP3Zn3dzItTKksoXhfOtFF4fUuHlqe061lRjc/Uctm6t44 MqaiZyynxotRkaOT12GvriO2OjpF5jWqjhcYkt6jmRXdf9vSQH1zlwujodJ2rYvE lSZ2Ie8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org