$ rpki-client -vvf rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/47249F9E7D7D11EBA5FADA5FC4F9AE02.roa File: 47249F9E7D7D11EBA5FADA5FC4F9AE02.roa (raw, json) Hash identifier: KcSLME++BOQMBTRQC+XSqkvXAXvHcehRuDs7Bz3m1H8= Subject key identifier: 38:42:7F:1E:27:9C:E3:95:15:53:21:AB:96:16:6E:F8:86:63:14:99 Certificate issuer: /CN=A91878B2/serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Certificate serial: 054A Authority key identifier: AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/47249F9E7D7D11EBA5FADA5FC4F9AE02.roa Signing time: Sat 28 Oct 2023 23:51:31 +0000 ROA not before: Sat 28 Oct 2023 23:51:31 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 138977 IP address blocks: 103.137.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1354 (0x54a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91878B2/serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Validity Not Before: Oct 28 23:51:31 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653d9e83-1de9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:56:3b:6c:7b:20:72:57:dd:ad:67:ff:07:40: be:6c:14:4a:58:38:98:06:8e:2e:3d:9d:26:9d:65: 49:a3:4e:39:3b:d7:23:ac:d5:8c:af:e4:73:dd:7d: c7:ac:dc:c0:d1:ff:0a:fc:e9:0a:f7:6c:80:5d:e6: 67:87:65:94:f0:c3:74:bb:3c:02:44:81:f6:cc:fb: 75:12:dc:7a:24:3b:44:d2:1c:1b:96:63:0c:94:e9: 0d:37:1f:7f:4e:ff:d4:cf:42:98:8a:75:48:cb:8a: 76:b0:fb:5b:3b:48:7f:0e:e0:c5:e2:16:ed:46:f6: 74:9e:a0:84:6d:f7:f0:a5:76:22:3c:45:0f:69:96: 7f:96:d0:b7:94:84:2e:a4:40:ce:da:c6:56:6e:1d: d9:68:14:06:d7:bb:b7:72:92:1c:c9:ac:53:a2:4f: 14:87:be:05:fb:cf:59:49:98:7a:bb:63:01:fe:07: 34:d7:e1:2c:e2:57:a6:68:ba:65:65:12:98:a2:d4: 23:96:37:d1:17:ec:00:cc:c6:35:cd:49:cb:e9:60: d9:b9:4a:c3:b4:81:32:d3:a1:b7:cc:c5:e1:9f:89: 66:24:fa:88:43:d0:9f:bb:d1:9f:26:f5:2c:71:6b: 82:bb:26:9c:09:3b:08:f5:0d:ff:1d:80:63:ac:9c: c2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:42:7F:1E:27:9C:E3:95:15:53:21:AB:96:16:6E:F8:86:63:14:99 X509v3 Authority Key Identifier: keyid:AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/47249F9E7D7D11EBA5FADA5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.252.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:09:5d:13:a7:33:cd:b2:fa:d8:fa:73:4c:e7:27:fa:e0:8c: 71:93:4b:df:be:53:2a:a5:17:3e:69:77:21:d2:e0:0f:02:5b: c0:0e:ca:e6:bf:98:eb:4f:ac:65:75:3c:06:68:99:c4:f1:ca: ca:e4:b3:2e:45:02:a1:0f:b7:3a:37:85:0e:e4:fa:69:3b:81: 73:c5:a8:bd:cd:c8:44:e8:c9:ec:30:50:fd:3a:0d:b8:d6:c2: 0a:a2:dd:bf:71:83:06:f7:47:9a:3e:bb:db:1c:4c:80:5e:7b: f3:30:61:02:5f:4f:29:91:df:5f:2e:24:d1:44:4d:a4:51:90: 94:9b:be:96:c6:fc:9c:86:29:41:29:30:3e:92:9f:76:53:76: 23:3b:ae:62:8f:ff:20:18:51:db:2a:02:6e:5f:cf:ef:63:dd: ee:1e:54:5a:77:27:d9:61:ed:20:d6:e2:c2:63:dc:83:c9:4b: 48:1a:54:75:62:f1:90:20:0c:75:80:28:33:0d:9d:88:5b:3c: 48:32:e6:17:15:8d:12:25:11:90:71:90:1a:76:f7:15:7d:d4: 07:87:29:66:02:d2:b4:eb:9a:21:9a:f8:19:ee:48:ad:4b:ce: 46:40:50:91:59:0a:3e:c1:84:de:fc:81:06:c0:87:bb:00:c6: 8b:85:3f:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc4QjIxMTAvBgNVBAUTKEFEREVFOTA5QTMxNjc2MjE1NTNGRDQ0RTAyMjREMzhB MDY3ODc5ODcwHhcNMjMxMDI4MjM1MTMxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkOWU4My0xZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VY7bHsgclfdrWf/B0C+bBRKWDiYBo4uPZ0mnWVJo045O9cjrNWMr+Rz3X3H rNzA0f8K/OkK92yAXeZnh2WU8MN0uzwCRIH2zPt1Etx6JDtE0hwblmMMlOkNNx9/ Tv/Uz0KYinVIy4p2sPtbO0h/DuDF4hbtRvZ0nqCEbffwpXYiPEUPaZZ/ltC3lIQu pEDO2sZWbh3ZaBQG17u3cpIcyaxTok8Uh74F+89ZSZh6u2MB/gc01+Es4lemaLpl ZRKYotQjljfRF+wAzMY1zUnL6WDZuUrDtIEy06G3zMXhn4lmJPqIQ9Cfu9GfJvUs cWuCuyacCTsI9Q3/HYBjrJzCowIDAQABo4IClTCCApEwHQYDVR0OBBYEFDhCfx4n nOOVFVMhq5YWbviGYxSZMB8GA1UdIwQYMBaAFK3e6QmjFnYhVT/UTgIk04oGeHmH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzhCMi83MzlCQkE1QTdE N0IxMUVCQTYyMjI3NUJDNEY5QUUwMi9yZDdwQ2FNV2RpRlZQOVJPQWlUVGlnWjRl WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkN3BDYU1XZGlGVlA5Uk9BaVRUaWdaNGVZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc4QjIvNzM5QkJBNUE3RDdCMTFFQkE2MjIyNzVCQzRGOUFFMDIvNDcyNDlGOUU3 RDdEMTFFQkE1RkFEQTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnifwwDQYJKoZIhvcNAQELBQADggEBAEoJXROnM82y+tj6 c0znJ/rgjHGTS9++UyqlFz5pdyHS4A8CW8AOyua/mOtPrGV1PAZomcTxysrksy5F AqEPtzo3hQ7k+mk7gXPFqL3NyEToyewwUP06DbjWwgqi3b9xgwb3R5o+u9scTIBe e/MwYQJfTymR318uJNFETaRRkJSbvpbG/JyGKUEpMD6Sn3ZTdiM7rmKP/yAYUdsq Am5fz+9j3e4eVFp3J9lh7SDW4sJj3IPJS0gaVHVi8ZAgDHWAKDMNnYhbPEgy5hcV jRIlEZBxkBp29xV91AeHKWYC0rTrmiGa+BnuSK1LzkZAUJFZCj7BhN78gQbAh7sA xouFP/M= -----END CERTIFICATE-----Generated at Fri May 17 01:06:59 2024 by rpki-client on console-fra.rpki-client.org