$ rpki-client -vvf rpki.apnic.net/member_repository/A91801A5/84B5D61C7D6D11EBA6A4A817C4F9AE02/3F7FBFC421E711EEB0E0DE3DC4F9AE02.roa File: 3F7FBFC421E711EEB0E0DE3DC4F9AE02.roa (raw, json) Hash identifier: mWAcXggam87UKmbA78ylLeLwaGYiQ0rRlm2rlIbMXmg= Subject key identifier: 47:AA:B8:88:83:74:F1:95:B0:13:FA:DE:F8:EA:49:DF:AC:4D:48:CA Certificate issuer: /CN=A91801A5/serialNumber=E5E1CFCAE1F9E6F121CA13551B40F698984B9D9D Certificate serial: 0514 Authority key identifier: E5:E1:CF:CA:E1:F9:E6:F1:21:CA:13:55:1B:40:F6:98:98:4B:9D:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5eHPyuH55vEhyhNVG0D2mJhLnZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91801A5/84B5D61C7D6D11EBA6A4A817C4F9AE02/3F7FBFC421E711EEB0E0DE3DC4F9AE02.roa Signing time: Fri 14 Jul 2023 01:39:18 +0000 ROA not before: Fri 14 Jul 2023 01:39:18 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 134486 IP address blocks: 103.139.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91801A5/84B5D61C7D6D11EBA6A4A817C4F9AE02/5eHPyuH55vEhyhNVG0D2mJhLnZ0.crl rsync://rpki.apnic.net/member_repository/A91801A5/84B5D61C7D6D11EBA6A4A817C4F9AE02/5eHPyuH55vEhyhNVG0D2mJhLnZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5eHPyuH55vEhyhNVG0D2mJhLnZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91801A5/serialNumber=E5E1CFCAE1F9E6F121CA13551B40F698984B9D9D Validity Not Before: Jul 14 01:39:18 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b0a746-90e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0c:40:0f:2f:a3:da:4f:05:88:94:57:13:fa: dc:c0:7a:26:eb:ed:b9:9e:29:a6:0a:a0:97:ad:85: f5:59:33:61:ea:6c:8f:9b:a1:f0:1c:95:f9:2e:8d: c0:1d:fb:31:54:62:0f:0f:51:8e:7e:43:71:18:61: 29:be:77:20:2c:be:8b:db:b9:63:97:c9:0a:0c:21: 5b:10:45:f5:66:33:69:14:3d:94:65:d1:b3:bb:0b: 73:4e:25:97:e6:11:be:b0:0a:47:83:d9:0b:ff:54: 0e:a0:d1:29:cd:4a:29:4a:fb:74:90:c9:5e:30:b2: d2:73:9f:c5:51:6c:d4:20:ed:30:0d:49:74:c0:96: a5:ad:54:01:32:35:7d:f6:31:41:96:53:61:e7:d4: 1f:3c:01:a9:19:6c:c4:6f:fb:f3:60:ae:f0:f3:7f: 5b:7e:95:bf:77:ec:83:87:ca:70:09:33:6b:99:9f: ab:65:a8:55:5a:c0:a8:2f:3c:7b:6d:3e:19:f0:28: 36:c7:02:77:5a:ea:b0:71:d1:9f:cf:a9:60:72:26: 78:78:0c:b2:11:17:cb:15:f6:5e:20:22:51:14:ad: 38:ac:00:26:df:0a:8b:51:e7:47:4f:fc:59:1e:18: f0:aa:79:06:2e:e4:9d:71:c2:34:95:14:5d:a0:93: 1c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:AA:B8:88:83:74:F1:95:B0:13:FA:DE:F8:EA:49:DF:AC:4D:48:CA X509v3 Authority Key Identifier: keyid:E5:E1:CF:CA:E1:F9:E6:F1:21:CA:13:55:1B:40:F6:98:98:4B:9D:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91801A5/84B5D61C7D6D11EBA6A4A817C4F9AE02/5eHPyuH55vEhyhNVG0D2mJhLnZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5eHPyuH55vEhyhNVG0D2mJhLnZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91801A5/84B5D61C7D6D11EBA6A4A817C4F9AE02/3F7FBFC421E711EEB0E0DE3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.218.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:6a:9e:d7:39:f9:52:35:d9:c6:73:e2:00:96:38:f1:37:bb: 34:71:4c:ea:7d:5d:b3:3c:e4:81:d8:64:38:e5:1e:f2:9d:ba: 15:6b:bc:f7:9b:76:91:54:f0:5e:4e:5d:79:42:ed:c3:0b:f2: 0a:0f:66:2d:3a:58:cf:a7:3d:7e:25:09:35:af:20:ac:e1:64: 0a:be:86:6f:fd:b3:64:77:1f:a6:a5:88:23:0e:9e:8b:81:7f: e4:76:59:20:a3:87:34:8a:d9:30:4e:3b:4e:06:0b:0f:10:f5: f4:f2:fe:d6:9d:90:66:de:ae:cd:5b:20:56:9b:ce:7b:c4:b2: 15:25:a5:d8:b9:4d:5b:5e:29:8d:91:28:7d:24:0e:b2:d2:b9: 82:0a:1a:db:79:89:b6:2c:f3:24:59:49:3a:2a:c7:ed:4f:7d: 6d:3a:1e:ac:49:23:ad:59:6f:16:f6:e3:3b:e8:84:75:eb:33: 78:8e:84:c3:27:a4:26:d5:90:97:d5:ee:7a:8e:79:fd:6a:3a: 0b:6a:f5:56:5d:3d:79:9d:33:fe:e7:05:38:5f:d7:be:ee:ab: f7:d8:89:5c:92:fb:43:8e:65:98:88:1d:ba:62:80:f0:23:00: 4e:02:6d:5f:52:87:c7:a4:13:9b:30:bb:02:88:c7:26:7e:3c: eb:ab:6c:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxQTUxMTAvBgNVBAUTKEU1RTFDRkNBRTFGOUU2RjEyMUNBMTM1NTFCNDBGNjk4 OTg0QjlEOUQwHhcNMjMwNzE0MDEzOTE4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIwYTc0Ni05MGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgxADy+j2k8FiJRXE/rcwHom6+25nimmCqCXrYX1WTNh6myPm6HwHJX5Lo3A HfsxVGIPD1GOfkNxGGEpvncgLL6L27ljl8kKDCFbEEX1ZjNpFD2UZdGzuwtzTiWX 5hG+sApHg9kL/1QOoNEpzUopSvt0kMleMLLSc5/FUWzUIO0wDUl0wJalrVQBMjV9 9jFBllNh59QfPAGpGWzEb/vzYK7w839bfpW/d+yDh8pwCTNrmZ+rZahVWsCoLzx7 bT4Z8Cg2xwJ3WuqwcdGfz6lgciZ4eAyyERfLFfZeICJRFK04rAAm3wqLUedHT/xZ HhjwqnkGLuSdccI0lRRdoJMcyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEequIiD dPGVsBP63vjqSd+sTUjKMB8GA1UdIwQYMBaAFOXhz8rh+ebxIcoTVRtA9piYS52d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDFBNS84NEI1RDYxQzdE NkQxMUVCQTZBNEE4MTdDNEY5QUUwMi81ZUhQeXVINTV2RWh5aE5WRzBEMm1KaExu WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlSFB5dUg1NXZFaHloTlZHMEQybUpoTG5aMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAxQTUvODRCNUQ2MUM3RDZEMTFFQkE2QTRBODE3QzRGOUFFMDIvM0Y3RkJGQzQy MUU3MTFFRUIwRTBERTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABni9owDQYJKoZIhvcNAQELBQADggEBAH5qntc5+VI12cZz 4gCWOPE3uzRxTOp9XbM85IHYZDjlHvKduhVrvPebdpFU8F5OXXlC7cML8goPZi06 WM+nPX4lCTWvIKzhZAq+hm/9s2R3H6aliCMOnouBf+R2WSCjhzSK2TBOO04GCw8Q 9fTy/tadkGbers1bIFabznvEshUlpdi5TVteKY2RKH0kDrLSuYIKGtt5ibYs8yRZ SToqx+1PfW06HqxJI61Zbxb24zvohHXrM3iOhMMnpCbVkJfV7nqOef1qOgtq9VZd PXmdM/7nBThf177uq/fYiVyS+0OOZZiIHbpigPAjAE4CbV9Sh8ekE5swuwKIxyZ+ POurbG0= -----END CERTIFICATE-----Generated at Sun May 19 01:47:14 2024 by rpki-client on console-ams.rpki-client.org