$ rpki-client -vvf rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/7BD5A1FCCA0B11ED8B414F75C4F9AE02.roa File: 7BD5A1FCCA0B11ED8B414F75C4F9AE02.roa (raw, json) Hash identifier: uQdj5jTz7pEFdjbztLf6kBlbDqXIgK1CUMCX5/deqpQ= Subject key identifier: 77:2E:37:C6:10:E8:B6:F7:8A:72:4F:9D:1E:CA:C1:1C:7A:4A:D8:9D Certificate issuer: /CN=A91E81A5/serialNumber=3034DEF04D9A03EE22898924E31264C01DE00303 Certificate serial: 47 Authority key identifier: 30:34:DE:F0:4D:9A:03:EE:22:89:89:24:E3:12:64:C0:1D:E0:03:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDTe8E2aA-4iiYkk4xJkwB3gAwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/7BD5A1FCCA0B11ED8B414F75C4F9AE02.roa Signing time: Thu 03 Aug 2023 05:04:39 +0000 ROA not before: Thu 03 Aug 2023 05:04:39 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 133616 IP address blocks: 103.238.195.0/24 maxlen: 24 2001:df3:4300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/MDTe8E2aA-4iiYkk4xJkwB3gAwM.crl rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/MDTe8E2aA-4iiYkk4xJkwB3gAwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDTe8E2aA-4iiYkk4xJkwB3gAwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E81A5/serialNumber=3034DEF04D9A03EE22898924E31264C01DE00303 Validity Not Before: Aug 3 05:04:39 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cb3567-2cb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:76:0a:46:75:86:9f:f6:60:2e:76:0f:64:a0: 7c:b3:c0:de:c4:60:15:0c:09:42:00:f4:07:4b:e5: 5b:3b:64:89:05:69:5c:84:8c:6d:0a:3a:ee:ec:1a: f9:5e:0a:82:36:87:ae:11:4d:6b:25:d0:04:79:c5: 2a:d0:a5:9d:8a:00:55:3a:30:ad:d4:16:19:6d:63: 12:66:a2:6b:8e:3f:5f:b2:1f:47:f3:b8:57:56:2e: 8a:0e:5a:de:48:a2:0c:d0:2f:ba:21:ba:81:40:e2: 6e:17:d2:b2:60:83:d2:44:8a:11:8a:66:4b:37:79: 52:2f:bb:fd:8a:25:17:39:89:9b:17:89:64:dd:44: 07:38:bd:ea:53:32:85:4b:39:ba:de:47:0a:00:d7: 25:47:d3:47:a5:a8:e5:5d:2f:45:df:58:ae:25:87: ea:17:69:88:5f:3c:c5:2d:a4:63:34:eb:47:cd:90: 76:72:4c:de:4a:a5:3e:34:dd:bc:74:9c:dd:ab:24: 7c:9b:1d:0c:04:7e:09:b2:0a:dc:18:93:f0:76:f4: f0:68:de:af:64:5e:e4:c2:69:4f:21:88:6f:57:c5: 47:af:57:3a:02:37:77:5a:60:1a:8b:8d:de:85:98: 94:33:62:29:bb:34:6c:52:2a:57:a4:e5:9e:3a:3a: 70:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2E:37:C6:10:E8:B6:F7:8A:72:4F:9D:1E:CA:C1:1C:7A:4A:D8:9D X509v3 Authority Key Identifier: keyid:30:34:DE:F0:4D:9A:03:EE:22:89:89:24:E3:12:64:C0:1D:E0:03:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/MDTe8E2aA-4iiYkk4xJkwB3gAwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDTe8E2aA-4iiYkk4xJkwB3gAwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/7BD5A1FCCA0B11ED8B414F75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.238.195.0/24 IPv6: 2001:df3:4300::/48 Signature Algorithm: sha256WithRSAEncryption 42:6e:68:18:db:9a:f8:83:8d:6b:f8:c0:17:f4:3a:da:27:4a: 66:73:85:3e:11:61:f6:45:ad:b4:a5:6d:44:be:69:ec:8d:5f: 20:dd:fb:8a:8b:2c:ba:24:3d:59:cb:a0:82:a1:80:07:ae:db: c6:20:f0:f8:e4:0b:84:fe:97:e1:fb:86:fb:61:95:2f:5a:7c: 67:fa:09:ac:4b:0d:f2:32:eb:5b:9c:cb:a7:19:d0:e7:d1:cf: 8d:45:c0:36:fc:43:55:f4:4f:27:9b:18:89:8c:47:a3:f5:88: 9a:ae:1e:94:1e:2a:f7:4e:23:d5:57:a0:7d:48:7f:73:d3:e5: 4f:92:67:97:d7:8b:f3:54:d1:9c:ad:27:cf:1f:33:44:a1:2c: 2d:da:13:e9:cd:7e:d9:ab:ce:94:bc:3a:63:68:fe:24:e7:2a: 37:48:50:d5:23:2f:5d:df:05:80:f0:1a:20:fa:9d:55:52:72: dc:46:4b:41:54:51:58:53:6a:b2:1b:e8:de:a0:fc:15:fb:8a: 4c:5e:21:53:88:a6:0c:45:84:a2:5b:2d:ad:34:3c:47:eb:39: ac:ac:d9:97:94:40:f0:b2:5a:c1:e3:3e:4a:38:c4:e8:b3:4c: b6:4b:8a:1b:7c:8d:22:28:c7:38:3b:a2:35:c9:4e:92:b6:cf: b3:58:0f:92 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODFBNTExMC8GA1UEBRMoMzAzNERFRjA0RDlBMDNFRTIyODk4OTI0RTMxMjY0QzAx REUwMDMwMzAeFw0yMzA4MDMwNTA0MzlaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0Y2IzNTY3LTJjYjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOdgpGdYaf9mAudg9koHyzwN7EYBUMCUIA9AdL5Vs7ZIkFaVyEjG0KOu7sGvle CoI2h64RTWsl0AR5xSrQpZ2KAFU6MK3UFhltYxJmomuOP1+yH0fzuFdWLooOWt5I ogzQL7ohuoFA4m4X0rJgg9JEihGKZks3eVIvu/2KJRc5iZsXiWTdRAc4vepTMoVL ObreRwoA1yVH00elqOVdL0XfWK4lh+oXaYhfPMUtpGM060fNkHZyTN5KpT403bx0 nN2rJHybHQwEfgmyCtwYk/B29PBo3q9kXuTCaU8hiG9XxUevVzoCN3daYBqLjd6F mJQzYim7NGxSKlek5Z46OnCjAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUdy43xhDo tveKck+dHsrBHHpK2J0wHwYDVR0jBBgwFoAUMDTe8E2aA+4iiYkk4xJkwB3gAwMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4MUE1L0MxNTg0M0I0Q0Ew NzExRUQ4RjlFMkE3MEM0RjlBRTAyL01EVGU4RTJhQS00aWlZa2s0eEprd0IzZ0F3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTURUZThFMmFBLTRpaVlrazR4Smt3QjNnQXdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODFBNS9DMTU4NDNCNENBMDcxMUVEOEY5RTJBNzBDNEY5QUUwMi83QkQ1QTFGQ0NB MEIxMUVEOEI0MTRGNzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGfuwzAPBAIAAjAJAwcAIAEN80MAMA0GCSqGSIb3DQEBCwUA A4IBAQBCbmgY25r4g41r+MAX9DraJ0pmc4U+EWH2Ra20pW1EvmnsjV8g3fuKiyy6 JD1Zy6CCoYAHrtvGIPD45AuE/pfh+4b7YZUvWnxn+gmsSw3yMutbnMunGdDn0c+N RcA2/ENV9E8nmxiJjEej9Yiarh6UHir3TiPVV6B9SH9z0+VPkmeX14vzVNGcrSfP HzNEoSwt2hPpzX7Zq86UvDpjaP4k5yo3SFDVIy9d3wWA8Bog+p1VUnLcRktBVFFY U2qyG+jeoPwV+4pMXiFTiKYMRYSiWy2tNDxH6zmsrNmXlEDwslrB4z5KOMTos0y2 S4obfI0iKMc4O6I1yU6Sts+zWA+S -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:38 2024 by rpki-client on console-fra.rpki-client.org