$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/E85B23282DF211EAA63F5D60C4F9AE02.roa File: E85B23282DF211EAA63F5D60C4F9AE02.roa (raw, json) Hash identifier: NaKs9z3QJXb5Kn8e48Iigov3Z7TuQs5pMXoTUPl9zy0= Subject key identifier: 9C:67:C0:6E:AD:E4:5B:3B:08:2A:DB:87:F8:D1:FB:B9:B6:FB:0F:4F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0A8B Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/E85B23282DF211EAA63F5D60C4F9AE02.roa Signing time: Mon 22 Jan 2024 20:18:33 +0000 ROA not before: Mon 22 Jan 2024 20:18:33 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 139925 IP address blocks: 103.147.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2699 (0xa8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Jan 22 20:18:33 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65aecd99-9a7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:71:4c:c1:01:84:d1:37:2d:d1:0c:70:f2:f5: 9f:f8:2f:5f:69:de:17:2e:f1:ff:ed:a3:04:03:30: e2:21:79:d8:37:9f:d9:a3:94:4d:0a:d2:d9:e5:d7: 07:ec:92:4d:dc:b3:fa:16:a7:fb:8a:6f:bc:ab:2b: 51:cd:16:fa:16:f7:35:bd:48:32:c6:93:0f:c2:4a: 1d:62:9b:d1:47:a0:c6:29:b2:36:ab:02:47:33:2b: 7a:a2:c8:72:05:8e:5a:95:73:51:4a:9a:06:5b:92: a1:1f:fd:d1:e7:57:b8:23:e0:13:8f:fb:9b:c6:eb: 5c:47:c1:52:3e:46:4d:50:eb:1c:25:31:2f:db:59: e0:d2:9a:28:b5:8a:47:4a:c4:a6:0b:52:7e:3d:c9: 74:84:96:b4:80:04:4a:28:71:cc:5a:9a:7a:ac:55: 65:18:16:44:a1:32:b7:fe:d0:3a:00:05:af:05:d6: 52:af:7f:77:81:cb:60:80:fc:c0:ed:b9:e5:3f:89: 75:8e:49:79:bf:f6:8a:e3:de:25:90:66:49:07:3e: 1d:d5:e3:03:5a:71:d9:fe:9e:f0:8a:fd:7f:ff:f1: 81:2b:e4:5c:3d:64:6a:16:4e:6f:6e:9e:c7:b3:9a: ef:d4:4a:fe:be:72:9b:bc:78:cb:f1:0f:0c:94:28: 13:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:67:C0:6E:AD:E4:5B:3B:08:2A:DB:87:F8:D1:FB:B9:B6:FB:0F:4F X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/E85B23282DF211EAA63F5D60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.42.0/23 Signature Algorithm: sha256WithRSAEncryption 94:71:a0:c9:ca:ed:f1:fb:59:6b:14:69:01:08:7d:a2:df:82: 13:96:70:12:96:18:f5:28:7d:08:80:ea:89:1f:2a:c0:a2:6a: 7e:55:a0:55:52:6a:19:8b:03:51:3d:e4:57:e3:bb:15:6e:98: 52:0e:a5:35:16:7b:f6:8f:b4:ed:ba:e0:fb:57:69:21:f3:76: a1:73:f5:b9:02:a2:0b:c5:e7:45:80:ef:f0:d5:7e:60:70:d3: 33:86:a7:d6:b2:96:53:5b:73:5c:8a:f6:4c:78:d6:44:35:52: c0:10:3f:10:e6:5d:67:2b:b4:e4:20:44:e0:04:82:b4:78:2e: 67:24:79:4c:2d:d9:5a:b5:89:80:b9:be:d4:29:b1:3a:37:05: 2f:d1:b7:17:49:61:1c:a9:5d:5a:76:f5:4b:64:bb:59:30:7a: 28:31:b9:66:14:28:50:95:c1:10:e4:c9:25:d5:c3:8c:fd:e6: cf:f4:89:da:55:f4:8a:af:27:c4:a1:4b:73:bd:e3:76:87:a8: 96:6d:c7:e9:3c:48:1e:b7:58:cd:2a:16:59:21:dc:52:38:16: 09:93:47:94:d2:23:48:d7:31:d4:47:99:6d:a5:ab:2d:97:d6: bd:ad:c8:b9:a0:fa:ef:c1:3c:f5:53:bd:2f:bb:c9:79:bb:a9: c6:74:e9:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjQwMTIyMjAxODMzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFlY2Q5OS05YTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3FMwQGE0Tct0Qxw8vWf+C9fad4XLvH/7aMEAzDiIXnYN5/Zo5RNCtLZ5dcH 7JJN3LP6Fqf7im+8qytRzRb6Fvc1vUgyxpMPwkodYpvRR6DGKbI2qwJHMyt6oshy BY5alXNRSpoGW5KhH/3R51e4I+ATj/ubxutcR8FSPkZNUOscJTEv21ng0pootYpH SsSmC1J+Pcl0hJa0gARKKHHMWpp6rFVlGBZEoTK3/tA6AAWvBdZSr393gctggPzA 7bnlP4l1jkl5v/aK494lkGZJBz4d1eMDWnHZ/p7wiv1///GBK+RcPWRqFk5vbp7H s5rv1Er+vnKbvHjL8Q8MlCgTewIDAQABo4IClTCCApEwHQYDVR0OBBYEFJxnwG6t 5Fs7CCrbh/jR+7m2+w9PMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDMEIvNDQ1OTQ0OEMyQzZBMTFFQTlDRUNCRjRBQzRGOUFFMDIvRTg1QjIzMjgy REYyMTFFQUE2M0Y1RDYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkyowDQYJKoZIhvcNAQELBQADggEBAJRxoMnK7fH7WWsU aQEIfaLfghOWcBKWGPUofQiA6okfKsCian5VoFVSahmLA1E95FfjuxVumFIOpTUW e/aPtO264PtXaSHzdqFz9bkCogvF50WA7/DVfmBw0zOGp9ayllNbc1yK9kx41kQ1 UsAQPxDmXWcrtOQgROAEgrR4LmckeUwt2Vq1iYC5vtQpsTo3BS/RtxdJYRypXVp2 9Utku1kweigxuWYUKFCVwRDkySXVw4z95s/0idpV9IqvJ8ShS3O943aHqJZtx+k8 SB63WM0qFlkh3FI4FgmTR5TSI0jXMdRHmW2lqy2X1r2tyLmg+u/BPPVTvS+7yXm7 qcZ06Rw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:39 2024 by rpki-client on console-ams.rpki-client.org