$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9C7048DC621711E9B8C69E15C4F9AE02.roa File: 9C7048DC621711E9B8C69E15C4F9AE02.roa (raw, json) Hash identifier: neFrRdXondY1UocQ1N6J4fJgOamyQktDZJKHpIdzFAI= Subject key identifier: 9B:2F:0C:B6:FE:84:B5:D8:51:42:07:82:B5:D0:B2:03:50:85:32:E9 Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 10A5 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9C7048DC621711E9B8C69E15C4F9AE02.roa Signing time: Sat 28 Oct 2023 17:45:18 +0000 ROA not before: Sat 28 Oct 2023 17:45:18 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132892 IP address blocks: 103.21.246.0/24 maxlen: 24 103.21.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4261 (0x10a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Oct 28 17:45:18 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653d48ae-924b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9c:33:aa:00:a6:a4:48:93:5d:a3:5b:1b:7a: 55:65:f0:5d:e9:f3:4b:12:73:35:fb:29:93:c7:ef: 86:1d:dd:87:1c:e2:ee:15:ef:5d:0d:07:cd:32:df: b2:fb:3a:65:dd:31:38:10:98:c1:b1:6a:e7:17:31: db:15:14:59:71:58:9a:17:ab:a9:69:29:5c:16:22: 38:ff:09:a5:f4:d5:3a:a2:0a:47:52:1c:d6:a0:f6: e4:78:b4:7d:5d:31:ef:b9:e3:2d:b2:d7:8e:af:80: 29:8d:02:d7:92:bb:5d:59:ef:dd:3e:d8:36:01:c8: a3:34:f7:fa:83:3a:9e:15:f7:0f:8e:a7:9f:e7:50: 68:d7:cc:c4:22:09:09:5d:f2:a8:07:a7:d7:2f:4d: 55:80:1a:ee:cd:9c:36:d1:78:05:3f:a3:fb:12:bb: 69:80:82:76:21:7f:3b:81:53:bb:d3:cc:eb:f6:12: c6:b3:41:68:9c:1e:50:5a:fa:5e:a5:ec:08:67:e3: 2b:34:56:5b:03:e8:b7:9d:7e:ee:d4:95:c1:ca:51: f1:55:33:f1:05:12:01:fb:75:77:64:7d:ed:de:7c: 4e:f6:9d:9a:40:fe:d9:a3:47:81:8f:ac:de:28:cc: 7d:14:ee:05:fb:cc:ca:ec:c0:92:21:9a:fb:e1:1d: 6a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2F:0C:B6:FE:84:B5:D8:51:42:07:82:B5:D0:B2:03:50:85:32:E9 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9C7048DC621711E9B8C69E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.246.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:bd:b8:26:e9:67:2b:63:58:c6:14:fe:bc:5c:dc:f2:e5:0f: 1e:59:33:a4:55:b4:7e:b3:e2:b8:70:8e:18:58:d1:a5:d1:1e: 78:6b:59:3a:f5:c0:33:be:0e:b8:18:b3:91:6d:35:a4:2e:7c: 3d:59:ac:9d:22:d5:b8:21:cf:73:ce:c1:17:34:41:b0:0a:50: ce:36:d6:9f:7b:72:73:1e:cd:c8:4a:2d:49:72:5d:fa:ba:a1: 0a:47:0d:19:2c:fa:35:7b:5f:4a:ca:b2:ba:45:c1:51:ca:67: a2:8a:a3:b7:7e:e7:0a:72:c1:bd:92:c5:64:62:20:4a:15:1c: 39:6e:73:51:c2:4d:7f:ea:90:8f:b3:58:81:e8:59:e5:f8:a1: 35:05:b5:6d:b0:dc:73:52:19:3b:42:b4:ab:05:24:8f:1d:4f: a0:9e:76:77:10:64:89:c9:63:26:c9:78:18:e7:5b:bd:e6:be: aa:57:b2:0f:a5:9a:56:6a:bf:95:84:7d:85:ca:22:08:37:cb: 31:c1:74:17:9d:4c:33:3b:11:ee:f4:91:c9:c9:4c:5d:be:3f: 6a:cc:99:e4:de:47:b1:1a:cd:fb:a0:47:df:04:7b:f2:86:03: d6:d3:ce:19:be:87:3b:57:20:5d:ad:a0:9d:8f:f5:be:5f:d6: 89:0a:09:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjMxMDI4MTc0NTE4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkNDhhZS05MjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05wzqgCmpEiTXaNbG3pVZfBd6fNLEnM1+ymTx++GHd2HHOLuFe9dDQfNMt+y +zpl3TE4EJjBsWrnFzHbFRRZcViaF6upaSlcFiI4/wml9NU6ogpHUhzWoPbkeLR9 XTHvueMtsteOr4ApjQLXkrtdWe/dPtg2AcijNPf6gzqeFfcPjqef51Bo18zEIgkJ XfKoB6fXL01VgBruzZw20XgFP6P7ErtpgIJ2IX87gVO708zr9hLGs0FonB5QWvpe pewIZ+MrNFZbA+i3nX7u1JXBylHxVTPxBRIB+3V3ZH3t3nxO9p2aQP7Zo0eBj6ze KMx9FO4F+8zK7MCSIZr74R1qtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJsvDLb+ hLXYUUIHgrXQsgNQhTLpMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvOUM3MDQ4REM2 MjE3MTFFOUI4QzY5RTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnFfYwDQYJKoZIhvcNAQELBQADggEBAF69uCbpZytjWMYU /rxc3PLlDx5ZM6RVtH6z4rhwjhhY0aXRHnhrWTr1wDO+DrgYs5FtNaQufD1ZrJ0i 1bghz3POwRc0QbAKUM421p97cnMezchKLUlyXfq6oQpHDRks+jV7X0rKsrpFwVHK Z6KKo7d+5wpywb2SxWRiIEoVHDluc1HCTX/qkI+zWIHoWeX4oTUFtW2w3HNSGTtC tKsFJI8dT6CedncQZInJYybJeBjnW73mvqpXsg+lmlZqv5WEfYXKIgg3yzHBdBed TDM7Ee70kcnJTF2+P2rMmeTeR7EazfugR98Ee/KGA9bTzhm+hztXIF2toJ2P9b5f 1okKCb4= -----END CERTIFICATE-----Generated at Thu May 16 19:10:57 2024 by rpki-client on console-fra.rpki-client.org