$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/47E67066B82A11E9843DEE0AC4F9AE02.roa File: 47E67066B82A11E9843DEE0AC4F9AE02.roa (raw, json) Hash identifier: WGc4CxUWep/OHQ5k+v4j8jGsf4m8CrQpQhz7+cVtEd4= Subject key identifier: FA:99:F0:DB:86:75:A6:FC:2B:B0:87:83:2E:5C:80:F1:E2:38:6A:F3 Certificate issuer: /CN=A911B5B4/serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Certificate serial: 0CA0 Authority key identifier: 9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/47E67066B82A11E9843DEE0AC4F9AE02.roa Signing time: Thu 24 Aug 2023 18:35:56 +0000 ROA not before: Thu 24 Aug 2023 18:35:56 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 23864 IP address blocks: 103.5.240.0/24 maxlen: 24 2401:c7c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 18:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B4/serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Validity Not Before: Aug 24 18:35:56 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e7a30c-4bf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f8:be:9a:6a:df:58:59:ba:73:f2:bd:db:01: b5:b4:7c:85:35:b1:43:60:8b:13:83:84:34:1f:28: f9:48:fa:3f:a7:2f:2b:b0:e0:ad:ad:a8:6a:38:41: f1:5e:eb:2c:73:c7:1c:f5:f7:05:72:06:0d:5e:05: e7:b0:44:b7:db:f8:7a:15:8b:56:c4:f9:54:54:19: 5a:c5:64:2f:27:0c:cd:3b:14:4a:b9:5b:50:c1:92: 6f:44:9d:3b:68:41:4a:71:42:28:24:0c:eb:1a:16: 29:8c:db:74:50:8b:c9:ca:7a:68:c9:49:76:22:88: 5b:a2:21:bf:9b:7f:32:ce:fc:43:61:dc:8d:0d:56: 79:d1:ca:ee:c8:73:af:e1:65:8a:ea:c8:38:38:4b: 0a:be:f9:36:27:93:aa:3e:0e:36:2e:34:26:55:8f: 73:3b:7a:57:f4:73:7a:87:c9:87:78:67:a7:bc:db: 29:46:72:c3:31:ce:9c:40:34:a6:82:4b:ee:e6:27: e7:74:0f:55:31:a4:26:a4:b7:ee:d8:0c:1d:ad:ea: 04:b5:65:b1:af:91:c3:d1:de:b9:6e:1b:fc:46:c8: 05:aa:c2:86:2d:56:dc:d0:8e:cb:db:2b:a0:3d:80: 2a:22:e3:ef:4a:75:96:25:31:73:18:2b:da:69:7f: ce:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:99:F0:DB:86:75:A6:FC:2B:B0:87:83:2E:5C:80:F1:E2:38:6A:F3 X509v3 Authority Key Identifier: keyid:9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/47E67066B82A11E9843DEE0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.240.0/24 IPv6: 2401:c7c0:2::/48 Signature Algorithm: sha256WithRSAEncryption a5:11:a7:5c:42:fc:58:5b:7b:13:d3:89:d0:35:e8:36:75:63: 3e:94:14:d9:2e:3c:31:f1:29:5b:9e:73:03:00:bc:77:c4:40: d1:83:50:ec:9e:7a:9f:74:c8:0e:7a:60:79:b9:fa:73:3b:ad: ff:c4:2a:90:f0:34:57:bb:a7:47:f0:a5:1d:b5:8f:6e:5e:36: 6c:1f:bb:1f:0f:fd:46:ef:52:cf:0a:c9:e7:14:3f:e7:5f:3c: 0a:27:f8:79:93:fd:82:2c:62:b2:5a:7c:57:c7:f0:d0:46:99: 36:99:31:dc:0b:03:c7:20:60:8c:a3:dc:29:37:21:42:df:d7: c6:d3:07:ba:41:e1:53:d1:86:e5:97:4d:68:b5:77:62:25:cf: 8d:b5:f3:63:cb:ae:f3:6f:11:e5:30:d9:e0:9a:40:5e:6c:1a: 79:66:c4:5e:8b:35:7e:ba:ec:bc:7b:52:ce:79:38:05:11:45: c1:61:1a:f1:64:4b:37:a1:48:5a:e5:7b:b0:19:2f:f2:32:a4: d4:91:ab:9a:5f:49:95:c1:f9:ff:e4:b8:23:33:8f:e8:b2:c8: 98:85:53:e1:3e:77:5a:d4:d3:6b:09:4a:11:1a:39:f8:dc:50: 62:63:a2:c0:c5:3b:3c:a3:ef:dd:96:3d:7f:f5:1c:20:b1:c6: 0f:7f:44:02 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjQxMTAvBgNVBAUTKDlERjk0QzMzRDNGNjQ3QUUzRDkxMzYxRTFGMTcyQzIw Njg2RjU5ODkwHhcNMjMwODI0MTgzNTU2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU3YTMwYy00YmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/i+mmrfWFm6c/K92wG1tHyFNbFDYIsTg4Q0Hyj5SPo/py8rsOCtrahqOEHx Xussc8cc9fcFcgYNXgXnsES32/h6FYtWxPlUVBlaxWQvJwzNOxRKuVtQwZJvRJ07 aEFKcUIoJAzrGhYpjNt0UIvJynpoyUl2IohboiG/m38yzvxDYdyNDVZ50cruyHOv 4WWK6sg4OEsKvvk2J5OqPg42LjQmVY9zO3pX9HN6h8mHeGenvNspRnLDMc6cQDSm gkvu5ifndA9VMaQmpLfu2AwdreoEtWWxr5HD0d65bhv8RsgFqsKGLVbc0I7L2yug PYAqIuPvSnWWJTFzGCvaaX/OKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPqZ8NuG dab8K7CHgy5cgPHiOGrzMB8GA1UdIwQYMBaAFJ35TDPT9keuPZE2Hh8XLCBob1mJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCNC83MDlGN0EyNkI4 MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2NDlrVFllSHhjc0lHaHZX WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25mbE1NOVAyUjY0OWtUWWVIeGNzSUdodldZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI1QjQvNzA5RjdBMjZCODI5MTFFOTkzNzM4QTA5QzRGOUFFMDIvNDdFNjcwNjZC ODJBMTFFOTg0M0RFRTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnBfAwDwQCAAIwCQMHACQBx8AAAjANBgkqhkiG9w0BAQsF AAOCAQEApRGnXEL8WFt7E9OJ0DXoNnVjPpQU2S48MfEpW55zAwC8d8RA0YNQ7J56 n3TIDnpgebn6czut/8QqkPA0V7unR/ClHbWPbl42bB+7Hw/9Ru9SzwrJ5xQ/5188 Cif4eZP9gixislp8V8fw0EaZNpkx3AsDxyBgjKPcKTchQt/XxtMHukHhU9GG5ZdN aLV3YiXPjbXzY8uu828R5TDZ4JpAXmwaeWbEXos1frrsvHtSznk4BRFFwWEa8WRL N6FIWuV7sBkv8jKk1JGrml9JlcH5/+S4IzOP6LLImIVT4T53WtTTawlKERo5+NxQ YmOiwMU7PKPv3ZY9f/UcILHGD39EAg== -----END CERTIFICATE-----Generated at Mon May 20 19:20:03 2024 by rpki-client on console-fra.rpki-client.org