$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/E75FB4F0CE4A11EE95C15E20C4F9AE02.roa File: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (raw, json) Hash identifier: Vhc0oBsN9e1AmTssIF1IG416RW4yliZF1kVCc1MWbp8= Subject key identifier: 03:6A:7B:F2:89:F9:D4:2E:5A:A6:67:20:DD:3B:DA:D2:5D:71:C8:57 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 06 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/E75FB4F0CE4A11EE95C15E20C4F9AE02.roa Signing time: Mon 19 Feb 2024 07:49:34 +0000 ROA not before: Mon 19 Feb 2024 07:49:34 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 30402 IP address blocks: 103.147.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Feb 19 07:49:34 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d3080d-070a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0c:b3:bd:27:67:1b:1e:fb:45:e8:cb:9a:93: fb:b6:71:33:63:fa:d3:b1:63:43:d8:c1:7e:0b:bd: 94:4f:0a:37:68:c7:9c:58:07:94:34:84:41:38:5d: b8:a4:6f:47:fb:28:ad:21:e7:97:78:10:0e:2d:3f: 74:87:43:db:79:2d:7b:24:83:22:d5:7f:b4:5a:9c: 7f:7f:40:4a:c8:7e:84:69:06:1a:35:78:87:7a:de: e3:d7:7e:11:b0:bc:7c:ef:ed:b2:51:16:ba:5a:33: d5:50:50:3c:c0:0b:b5:c3:f2:34:52:c6:7a:f4:a6: ef:96:f5:1e:0f:27:e6:38:91:a9:b2:0b:d0:6d:f0: 8b:b2:e5:04:9f:1d:46:1a:d4:29:6b:a8:11:fe:15: 4a:a8:81:d4:42:c3:85:67:06:6a:c5:af:22:e7:01: 12:0e:23:15:b1:b1:cd:af:58:c6:75:5c:71:ed:9a: 19:df:65:dd:8f:d0:7b:26:95:83:fa:1a:47:3b:b7: 33:35:ba:5c:e7:7b:9c:f7:24:45:8a:36:0c:d4:c8: cb:2c:d8:5c:bb:ab:c5:5a:bc:8d:45:e9:ff:da:1d: cc:f5:80:cc:ff:f5:bd:31:13:c6:bb:f1:60:d3:80: a3:1d:3d:db:5c:24:80:48:c6:19:cd:e8:ae:c3:07: de:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:6A:7B:F2:89:F9:D4:2E:5A:A6:67:20:DD:3B:DA:D2:5D:71:C8:57 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/E75FB4F0CE4A11EE95C15E20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.45.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:5b:53:69:33:7d:f8:71:c7:e2:a0:36:81:c0:62:1a:42:ef: ca:f5:89:83:2b:63:c7:ef:57:7a:f1:3a:b2:ac:d4:81:93:90: 12:c3:43:a0:5e:e6:f9:54:11:2a:d8:68:e9:1c:10:a0:b5:83: a0:c0:f3:ea:fd:e8:f2:e8:f8:3d:72:a1:37:0b:6a:0d:1c:99: c5:23:68:df:09:c6:8a:a0:26:b6:20:6e:e4:83:74:62:27:67: e1:a3:dc:8d:68:2a:02:51:bb:61:c6:4b:d8:5b:f0:b8:b0:85: 3d:24:a2:bd:98:ad:95:cf:fd:80:7b:fa:85:25:67:91:92:65: 69:aa:70:16:62:e8:d5:39:c5:60:dc:d6:63:5b:50:0a:01:d5: 15:2c:8c:a6:80:d3:2d:2a:15:9c:f6:82:05:82:74:c0:8f:bb: 3f:07:58:c7:df:c2:1c:92:4d:3d:ba:93:6a:45:10:75:bd:78: 3f:ea:40:d7:92:d7:ce:1f:b0:dc:52:b8:70:46:0b:b0:85:48: 22:a9:dd:4b:60:fe:c3:38:e6:a8:51:ae:18:6d:a0:a0:d7:3d: 9b:d8:a4:49:59:88:3e:7d:56:78:4f:29:8a:11:e5:fd:37:08: 5e:4a:62:ff:7d:70:ff:e5:6b:53:da:81:18:de:ef:b3:c4:1d: 0f:44:93:f9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUNBQTExMC8GA1UEBRMoNjE3RjA1NEUzQ0U0NTFFMEMzRTdGNDQ2REQwOUY3ODY0 NjUyQjY1NjAeFw0yNDAyMTkwNzQ5MzRaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDMwODBkLTA3MGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvDLO9J2cbHvtF6Muak/u2cTNj+tOxY0PYwX4LvZRPCjdox5xYB5Q0hEE4Xbik b0f7KK0h55d4EA4tP3SHQ9t5LXskgyLVf7RanH9/QErIfoRpBho1eId63uPXfhGw vHzv7bJRFrpaM9VQUDzAC7XD8jRSxnr0pu+W9R4PJ+Y4kamyC9Bt8Iuy5QSfHUYa 1ClrqBH+FUqogdRCw4VnBmrFryLnARIOIxWxsc2vWMZ1XHHtmhnfZd2P0HsmlYP6 Gkc7tzM1ulzne5z3JEWKNgzUyMss2Fy7q8VavI1F6f/aHcz1gMz/9b0xE8a78WDT gKMdPdtcJIBIxhnN6K7DB95NAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUA2p78on5 1C5apmcg3Tva0l1xyFcwHwYDVR0jBBgwFoAUYX8FTjzkUeDD5/RG3Qn3hkZStlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExQ0FBLzhFMjc1QTFFQ0U0 QTExRUU4REU5RTUxRkM0RjlBRTAyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3Rs WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVg4RlRqemtVZURENV9SRzNRbjNoa1pTdGxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9FNzVGQjRGMENF NEExMUVFOTVDMTVFMjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeTLTANBgkqhkiG9w0BAQsFAAOCAQEAfFtTaTN9+HHH4qA2 gcBiGkLvyvWJgytjx+9XevE6sqzUgZOQEsNDoF7m+VQRKtho6RwQoLWDoMDz6v3o 8uj4PXKhNwtqDRyZxSNo3wnGiqAmtiBu5IN0Yidn4aPcjWgqAlG7YcZL2FvwuLCF PSSivZitlc/9gHv6hSVnkZJlaapwFmLo1TnFYNzWY1tQCgHVFSyMpoDTLSoVnPaC BYJ0wI+7PwdYx9/CHJJNPbqTakUQdb14P+pA15LXzh+w3FK4cEYLsIVIIqndS2D+ wzjmqFGuGG2goNc9m9ikSVmIPn1WeE8pihHl/TcIXkpi/31w/+VrU9qBGN7vs8Qd D0ST+Q== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:30 2024 by rpki-client on console-fra.rpki-client.org