$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/47EB76428ABA11EB8A85C01BC4F9AE02.roa File: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (raw, json) Hash identifier: SpmHHByflJabB6mdPnxEp0JfBy+lpq83eP4W9sBlxuE= Subject key identifier: 2F:3A:F2:D3:EF:EE:6C:FC:D5:AA:A8:BD:FB:57:83:1E:B9:7A:F4:DE Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 0502 Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/47EB76428ABA11EB8A85C01BC4F9AE02.roa Signing time: Fri 18 Aug 2023 23:41:06 +0000 ROA not before: Fri 18 Aug 2023 23:41:06 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136805 IP address blocks: 103.96.141.0/24 maxlen: 24 103.109.123.0/24 maxlen: 24 103.109.132.0/23 maxlen: 23 2001:df1:df00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1282 (0x502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: Aug 18 23:41:06 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e00191-9ff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:51:81:2d:f6:52:08:05:4c:53:97:40:fc:01: 52:59:30:f4:d3:ee:16:41:0e:d8:65:fa:75:86:2f: b6:3a:98:02:00:ce:70:6a:6d:a4:80:d5:14:06:a6: ca:8c:70:99:da:de:85:c1:a3:c2:fc:8f:7d:40:d6: 57:58:14:84:d3:46:b4:b8:82:4d:96:26:b5:11:7e: 32:3c:b2:8e:4e:54:d5:26:b7:dd:12:af:f6:42:cb: 69:3a:a9:ae:f5:7b:42:be:fd:4f:a8:21:e9:02:7d: 18:f3:d6:6d:4b:8e:31:a3:6e:fb:7f:27:22:3c:92: c7:e4:31:71:a5:8a:a6:5f:3d:d1:d8:4c:7e:b9:a1: ac:74:ac:0e:1b:38:ac:1e:6b:76:22:e0:82:60:dc: 52:8a:aa:83:5d:74:b5:be:39:ae:d5:a5:80:07:de: 3a:23:68:01:8e:1e:71:af:45:db:bd:81:81:16:2f: 9b:69:71:85:77:a7:fb:67:53:82:8d:2f:03:9f:14: b2:55:cc:a8:bd:b5:11:53:d4:04:06:38:15:e5:99: ad:11:88:46:21:11:32:c2:a3:b9:a5:3e:de:fd:d8: 67:2d:e3:d5:a8:d1:71:04:92:0f:15:2a:4f:dc:82: a6:d7:95:e1:6c:a3:d4:49:26:34:39:6f:47:7e:d1: e8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:3A:F2:D3:EF:EE:6C:FC:D5:AA:A8:BD:FB:57:83:1E:B9:7A:F4:DE X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/47EB76428ABA11EB8A85C01BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.141.0/24 103.109.123.0/24 103.109.132.0/23 IPv6: 2001:df1:df00::/48 Signature Algorithm: sha256WithRSAEncryption 43:66:99:be:d2:b9:ef:cf:5a:df:56:6d:11:2a:bb:a5:4a:94: f9:1a:ee:87:9c:3c:94:b2:bc:e2:02:c7:b9:ff:60:df:e0:e0: 38:02:d0:56:01:37:88:63:0b:73:6e:df:64:5e:8d:61:23:23: 64:71:a1:e6:30:b0:de:68:4c:1b:e2:62:45:34:04:20:c9:76: e5:c3:34:54:26:0c:07:c1:84:22:8f:6a:a0:7a:53:ae:45:a3: 44:25:f1:47:49:40:1e:5f:b0:74:34:e7:9d:19:87:85:d8:d6: 6d:d1:af:2b:e1:42:e4:f0:ee:12:0b:c2:e1:3c:d9:ec:ba:55: 79:08:31:cb:3d:93:0f:4f:ac:99:4c:d2:02:83:cd:b0:e0:cd: 7b:7b:43:58:ab:04:bb:7a:cf:85:0a:13:15:ec:89:8f:0d:f9: d2:97:e6:34:7d:a7:96:31:9e:70:2d:46:1b:c4:ef:97:e6:ad: 77:5a:82:cb:98:58:be:a8:1a:1e:00:16:8f:b5:fa:65:55:67: 41:01:81:74:64:2b:5e:1a:b4:5c:cc:19:cd:55:aa:dc:d3:c0: af:82:4b:6e:5c:c3:0c:fd:01:c9:4d:55:8b:e0:23:4f:12:43: f6:a2:89:ef:96:51:73:e8:b8:fd:5f:0d:ec:49:e7:5a:20:3b: ab:55:65:34 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICBQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjMwODE4MjM0MTA2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGUwMDE5MS05ZmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVGBLfZSCAVMU5dA/AFSWTD00+4WQQ7YZfp1hi+2OpgCAM5wam2kgNUUBqbK jHCZ2t6FwaPC/I99QNZXWBSE00a0uIJNlia1EX4yPLKOTlTVJrfdEq/2QstpOqmu 9XtCvv1PqCHpAn0Y89ZtS44xo277fyciPJLH5DFxpYqmXz3R2Ex+uaGsdKwOGzis Hmt2IuCCYNxSiqqDXXS1vjmu1aWAB946I2gBjh5xr0XbvYGBFi+baXGFd6f7Z1OC jS8DnxSyVcyovbURU9QEBjgV5ZmtEYhGIREywqO5pT7e/dhnLePVqNFxBJIPFSpP 3IKm15XhbKPUSSY0OW9HftHoAQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFC868tPv 7mz81aqovftXgx65evTeMB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkzNUQvRjUwMEY3Mjg4QUI4MTFFQjg3MDdFMTFBQzRGOUFFMDIvNDdFQjc2NDI4 QUJBMTFFQjhBODVDMDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBABnYI0DBABnbXsDBAFnbYQwDwQCAAIwCQMHACABDfHfADAN BgkqhkiG9w0BAQsFAAOCAQEAQ2aZvtK5789a31ZtESq7pUqU+Rruh5w8lLK84gLH uf9g3+DgOALQVgE3iGMLc27fZF6NYSMjZHGh5jCw3mhMG+JiRTQEIMl25cM0VCYM B8GEIo9qoHpTrkWjRCXxR0lAHl+wdDTnnRmHhdjWbdGvK+FC5PDuEgvC4TzZ7LpV eQgxyz2TD0+smUzSAoPNsODNe3tDWKsEu3rPhQoTFeyJjw350pfmNH2nljGecC1G G8Tvl+atd1qCy5hYvqgaHgAWj7X6ZVVnQQGBdGQrXhq0XMwZzVWq3NPAr4JLblzD DP0ByU1Vi+AjTxJD9qKJ75ZRc+i4/V8N7EnnWiA7q1VlNA== -----END CERTIFICATE-----Generated at Tue May 21 01:47:03 2024 by rpki-client on console-fra.rpki-client.org