$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/7B47F39C821711E993240872C4F9AE02.roa File: 7B47F39C821711E993240872C4F9AE02.roa (raw, json) Hash identifier: I+5KUq1fHfRw+MJXuSM8aDH+psg9AF5u7a7ZiO2LdKQ= Subject key identifier: E2:37:95:52:F2:DC:9F:83:B5:C9:0F:24:A6:94:AD:6D:76:58:0C:00 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 276F Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/7B47F39C821711E993240872C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:23 +0000 ROA not before: Tue 30 Jul 2024 16:04:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38001 IP address blocks: 103.196.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10095 (0x276f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:04:23 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90f06-dee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:e9:29:dc:61:4c:5c:cd:65:73:e5:8c:c6: 7f:34:d2:0c:db:72:91:11:99:d0:d3:dc:8e:ff:e2: 97:4a:01:83:74:14:53:59:cd:ab:9a:79:79:12:9f: 32:69:2b:a5:05:3f:e6:9d:5c:03:68:0c:0f:9a:62: 02:40:45:ee:cc:11:51:55:63:5d:e0:b3:e0:34:9b: 6a:9a:b7:b2:37:94:6a:4e:f8:12:b9:fa:16:0b:df: 03:85:31:18:33:9d:00:ac:8d:ad:cd:0a:b8:2e:98: 3c:ef:9a:57:98:02:b0:5b:d3:84:27:0e:d6:ac:11: 34:90:63:1f:43:72:6d:98:e3:1a:84:39:72:5b:11: 19:3d:2d:cc:81:e9:41:f2:e4:ec:17:22:89:3d:1c: 06:38:5e:fa:2f:ba:7c:0d:25:44:38:80:f8:d8:87: 10:dd:d4:9e:a4:aa:e4:0d:99:33:1a:7d:7a:7c:76: a5:5f:f1:00:91:fa:33:6a:37:bb:5d:6d:ad:71:d6: 34:78:e0:73:43:85:5b:ac:6c:b3:f0:17:5d:0f:35: a1:a5:fe:72:21:c4:95:94:e4:54:e2:56:9b:41:da: 30:76:08:3e:99:58:79:c7:9d:bd:4d:82:8a:95:80: 53:09:58:76:57:08:5e:40:89:b2:06:ab:d6:ac:0f: ac:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:37:95:52:F2:DC:9F:83:B5:C9:0F:24:A6:94:AD:6D:76:58:0C:00 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/7B47F39C821711E993240872C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.23.0/24 Signature Algorithm: sha256WithRSAEncryption 04:9d:f6:89:77:d6:3f:af:05:9f:1b:f0:b3:90:e5:bd:71:59: 8f:14:a4:18:a6:61:4e:21:ed:b3:fd:a6:b0:57:7b:e5:f3:b9: 89:bd:aa:11:a1:fb:70:25:6c:52:ef:c9:69:cd:b3:30:44:52: 90:be:04:37:61:ec:4e:3b:c7:5e:79:0a:8e:db:f8:b6:dc:94: 8e:64:26:5a:dc:20:b8:24:90:b3:54:20:18:b6:c0:2f:01:95: 85:82:7d:8a:16:82:3d:0b:f5:eb:ef:4c:6e:8b:ce:5c:41:7c: 0d:c4:46:cb:4b:bf:78:d8:bb:11:8b:ee:82:9d:4c:86:df:57: 97:f6:00:b5:a0:a5:59:58:7b:b2:f8:3d:02:68:58:ff:f3:74: bc:2d:e6:3a:f1:86:ab:2c:e3:b8:d3:1e:5b:85:d0:60:15:17: 90:2f:40:75:5c:61:49:56:0e:69:89:4a:ca:02:4a:93:aa:74: fb:02:da:60:3a:27:be:5f:8b:2d:54:ad:83:ed:5d:4e:d9:4b: 56:5b:d3:c6:3a:39:43:ab:91:8c:60:32:4a:ef:43:0f:99:25: 34:b8:2a:dc:43:5e:0b:18:89:fc:1a:bd:75:fa:ea:f0:c9:fd: 58:c7:20:36:b5:aa:61:04:44:e5:0a:c4:ea:c0:b0:38:e3:f4: 49:cb:87:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDIzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGYwNi1kZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEfpKdxhTFzNZXPljMZ/NNIM23KREZnQ09yO/+KXSgGDdBRTWc2rmnl5Ep8y aSulBT/mnVwDaAwPmmICQEXuzBFRVWNd4LPgNJtqmreyN5RqTvgSufoWC98DhTEY M50ArI2tzQq4Lpg875pXmAKwW9OEJw7WrBE0kGMfQ3JtmOMahDlyWxEZPS3MgelB 8uTsFyKJPRwGOF76L7p8DSVEOID42IcQ3dSepKrkDZkzGn16fHalX/EAkfozaje7 XW2tcdY0eOBzQ4VbrGyz8BddDzWhpf5yIcSVlORU4labQdowdgg+mVh5x529TYKK lYBTCVh2VwheQImyBqvWrA+s1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOI3lVLy 3J+DtckPJKaUrW12WAwAMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvN0I0N0YzOUM4 MjE3MTFFOTkzMjQwODcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxBcwDQYJKoZIhvcNAQELBQADggEBAASd9ol31j+vBZ8b 8LOQ5b1xWY8UpBimYU4h7bP9prBXe+XzuYm9qhGh+3AlbFLvyWnNszBEUpC+BDdh 7E47x155Co7b+LbclI5kJlrcILgkkLNUIBi2wC8BlYWCfYoWgj0L9evvTG6LzlxB fA3ERstLv3jYuxGL7oKdTIbfV5f2ALWgpVlYe7L4PQJoWP/zdLwt5jrxhqss47jT HluF0GAVF5AvQHVcYUlWDmmJSsoCSpOqdPsC2mA6J75fiy1UrYPtXU7ZS1Zb08Y6 OUOrkYxgMkrvQw+ZJTS4KtxDXgsYifwavXX66vDJ/VjHIDa1qmEEROUKxOrAsDjj 9EnLh2o= -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:46 2024 by rpki-client on console-fra.rpki-client.org