$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/851A7AD6FF7F11EDA505D70EC4F9AE02.roa File: 851A7AD6FF7F11EDA505D70EC4F9AE02.roa (raw, json) Hash identifier: 8jnHar0/NAHwDbGrkxQO7RGVg5lEfs0Dc5aRFxVX8Fo= Subject key identifier: 7E:BD:5D:77:57:ED:62:1D:06:12:29:EA:B6:9D:49:B1:3C:45:53:E1 Certificate issuer: /CN=A91CCDF3/serialNumber=C915FD3BD45B8218B95F573749D3AA498016AAA9 Certificate serial: 82 Authority key identifier: C9:15:FD:3B:D4:5B:82:18:B9:5F:57:37:49:D3:AA:49:80:16:AA:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRX9O9Rbghi5X1c3SdOqSYAWqqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/851A7AD6FF7F11EDA505D70EC4F9AE02.roa Signing time: Sat 03 Feb 2024 05:57:48 +0000 ROA not before: Sat 03 Feb 2024 05:57:48 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58604 IP address blocks: 103.247.38.0/23 maxlen: 23 103.247.38.0/24 maxlen: 24 103.247.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/yRX9O9Rbghi5X1c3SdOqSYAWqqk.crl rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/yRX9O9Rbghi5X1c3SdOqSYAWqqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRX9O9Rbghi5X1c3SdOqSYAWqqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCDF3/serialNumber=C915FD3BD45B8218B95F573749D3AA498016AAA9 Validity Not Before: Feb 3 05:57:48 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bdd5dc-322b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:9e:9a:55:2e:0c:0f:95:3d:5d:6e:a1:ab: bd:3b:dc:4e:43:90:d2:da:fa:73:66:9c:c4:e1:c7: bc:66:b2:e0:e3:8d:6b:28:47:07:45:1a:27:09:5d: 74:40:44:87:d4:db:b2:87:ab:0e:12:c0:d8:49:5f: ea:ef:eb:02:50:94:2f:53:8f:59:51:9e:12:96:58: 03:a4:88:37:9d:b0:99:6f:0e:1d:9d:7f:60:ff:f0: 4b:ab:62:1c:e2:c7:14:ea:e6:e6:9d:a5:5e:78:00: 83:6a:b2:cc:3d:1b:b1:a4:ae:a3:09:26:18:f8:06: 0a:06:d4:12:6b:f6:bd:c9:89:72:34:10:b0:03:01: ae:7c:89:21:a1:4f:7b:9a:12:56:5a:c8:85:ef:e8: 7f:80:da:cb:ef:25:c3:cd:f4:29:0e:2a:a8:10:92: 44:34:b4:98:22:ea:91:18:c0:5c:9b:4f:0e:91:c8: f3:6b:67:b6:2b:c4:dc:7e:5a:a8:03:5c:bf:0a:56: 34:18:fd:ec:73:d6:ce:04:06:9a:75:c9:8b:83:49: ee:6b:f0:ad:f4:fa:c5:33:69:bb:6d:8e:87:41:80: cc:48:64:b7:43:b2:8f:7f:ea:bb:09:e1:a8:08:b3: 10:ac:cb:fb:f0:07:fe:b1:4f:62:c5:39:b7:15:c4: dd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:BD:5D:77:57:ED:62:1D:06:12:29:EA:B6:9D:49:B1:3C:45:53:E1 X509v3 Authority Key Identifier: keyid:C9:15:FD:3B:D4:5B:82:18:B9:5F:57:37:49:D3:AA:49:80:16:AA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/yRX9O9Rbghi5X1c3SdOqSYAWqqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRX9O9Rbghi5X1c3SdOqSYAWqqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/851A7AD6FF7F11EDA505D70EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.38.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:fb:49:f0:df:d8:d4:92:4f:9b:af:87:36:5d:82:e5:d8:c9: b5:c2:09:f8:90:5a:ef:92:78:58:9f:73:32:9d:7f:6e:6d:c6: 98:67:5b:99:29:2f:c3:0b:5b:07:78:df:3c:b7:1e:49:90:43: 91:2c:9c:de:de:25:7b:d0:ea:07:bb:22:d9:cc:72:78:c3:b4: 91:97:89:e6:68:cb:bb:b0:e0:f6:ed:96:19:2a:35:30:6e:0e: ee:62:50:9e:cd:79:3c:0c:cb:9a:a6:ae:59:c0:13:10:ac:4f: a2:47:db:d2:d2:93:e3:1c:39:3d:ad:db:5c:57:d2:7d:fa:e4: c6:d8:cc:a3:a7:08:fe:05:86:57:29:27:c4:81:d2:7d:ac:04: ec:c2:f0:85:02:05:be:63:e5:df:f9:33:2e:ae:72:c5:e2:6e: b5:3f:f5:38:84:c2:37:b6:fa:0f:e9:da:fb:69:82:01:3e:7c: 44:7a:65:8c:0f:1f:5a:2c:b6:7d:9e:37:5b:7b:be:3d:33:62: d5:cb:a6:63:9a:8e:14:00:0f:1c:92:6c:48:5d:0d:8d:e8:44: 34:6f:f2:fd:b3:85:3b:31:75:1a:a6:50:7f:7a:21:d6:d5:73: 7f:19:a4:b7:c6:05:5f:77:7a:c3:1d:0b:67:c7:a8:53:d7:3d: 19:96:73:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NERjMxMTAvBgNVBAUTKEM5MTVGRDNCRDQ1QjgyMThCOTVGNTczNzQ5RDNBQTQ5 ODAxNkFBQTkwHhcNMjQwMjAzMDU1NzQ4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkZDVkYy0zMjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqByemlUuDA+VPV1uoau9O9xOQ5DS2vpzZpzE4ce8ZrLg441rKEcHRRonCV10 QESH1Nuyh6sOEsDYSV/q7+sCUJQvU49ZUZ4SllgDpIg3nbCZbw4dnX9g//BLq2Ic 4scU6ubmnaVeeACDarLMPRuxpK6jCSYY+AYKBtQSa/a9yYlyNBCwAwGufIkhoU97 mhJWWsiF7+h/gNrL7yXDzfQpDiqoEJJENLSYIuqRGMBcm08Okcjza2e2K8Tcflqo A1y/ClY0GP3sc9bOBAaadcmLg0nua/Ct9PrFM2m7bY6HQYDMSGS3Q7KPf+q7CeGo CLMQrMv78Af+sU9ixTm3FcTdmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH69XXdX 7WIdBhIp6radSbE8RVPhMB8GA1UdIwQYMBaAFMkV/TvUW4IYuV9XN0nTqkmAFqqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0RGMy80MkRFNDgzNkZG NzYxMUVEQjg5ODE1NThDNEY5QUUwMi95Ulg5TzlSYmdoaTVYMWMzU2RPcVNZQVdx cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lSWDlPOVJiZ2hpNVgxYzNTZE9xU1lBV3Fxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NERjMvNDJERTQ4MzZGRjc2MTFFREI4OTgxNTU4QzRGOUFFMDIvODUxQTdBRDZG RjdGMTFFREE1MDVENzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn9yYwDQYJKoZIhvcNAQELBQADggEBAD77SfDf2NSST5uv hzZdguXYybXCCfiQWu+SeFifczKdf25txphnW5kpL8MLWwd43zy3HkmQQ5EsnN7e JXvQ6ge7ItnMcnjDtJGXieZoy7uw4PbtlhkqNTBuDu5iUJ7NeTwMy5qmrlnAExCs T6JH29LSk+McOT2t21xX0n365MbYzKOnCP4FhlcpJ8SB0n2sBOzC8IUCBb5j5d/5 My6ucsXibrU/9TiEwje2+g/p2vtpggE+fER6ZYwPH1ostn2eN1t7vj0zYtXLpmOa jhQADxySbEhdDY3oRDRv8v2zhTsxdRqmUH96IdbVc38ZpLfGBV93esMdC2fHqFPX PRmWc7w= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:51 2024 by rpki-client on console-ams.rpki-client.org