$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/D9470BFE7DC811ECB84BD174C4F9AE02.roa File: D9470BFE7DC811ECB84BD174C4F9AE02.roa (raw, json) Hash identifier: XBZp03p3CBLFAovdVwUeRZcGzU+Bm8gzcdv/m/ApSBQ= Subject key identifier: AC:09:ED:25:DE:51:BD:3C:19:80:F1:DD:3B:AD:F8:D7:A0:8D:38:7E Certificate issuer: /CN=A91B8265/serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Certificate serial: 030C Authority key identifier: 8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/D9470BFE7DC811ECB84BD174C4F9AE02.roa Signing time: Sun 03 Mar 2024 02:54:41 +0000 ROA not before: Sun 03 Mar 2024 02:54:41 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137040 IP address blocks: 103.102.221.0/24 maxlen: 24 103.133.75.0/24 maxlen: 24 103.133.82.0/23 maxlen: 23 103.133.82.0/24 maxlen: 24 103.133.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8265/serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Validity Not Before: Mar 3 02:54:41 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65e3e670-fc0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:90:f4:7f:04:4e:20:c5:1e:22:57:77:0b:9c: b9:4a:74:e1:76:63:dc:2c:aa:6b:60:77:9d:90:00: d5:ee:28:3e:68:21:c5:81:c3:99:65:dc:b9:c3:68: d5:49:18:94:c3:b9:f4:73:f2:35:b3:3b:aa:a2:3d: 85:68:e2:cb:90:02:96:d0:18:38:2e:a9:4b:d0:20: 0b:63:27:4f:02:0f:43:c3:5a:ee:a4:fe:2d:21:7e: 34:99:4a:fc:d8:88:8e:07:0c:49:63:3a:01:32:ed: ef:17:37:8b:a7:65:01:52:f9:a5:88:c8:17:df:02: 77:0c:e6:a9:62:86:25:2c:78:59:c2:3f:38:9e:ce: b0:21:34:24:40:c8:57:de:cc:f6:13:d4:03:b4:66: 23:a0:ef:23:7f:ab:f1:46:75:02:d6:a2:0e:d4:1e: 00:63:a0:3b:87:b4:73:8c:c2:c4:98:02:9f:51:07: 70:8c:28:52:9c:1e:48:01:c7:0a:fd:84:db:70:15: 1d:0f:22:09:f8:54:ac:69:43:ef:7e:81:28:f6:01: 49:f4:29:53:cf:a8:af:aa:99:01:0c:b7:1d:b4:6b: bf:cc:d1:d2:f1:79:5e:30:63:a1:ae:27:d8:92:ed: db:82:74:34:53:ee:d4:b7:68:8a:11:f1:19:32:dd: 14:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:09:ED:25:DE:51:BD:3C:19:80:F1:DD:3B:AD:F8:D7:A0:8D:38:7E X509v3 Authority Key Identifier: keyid:8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/D9470BFE7DC811ECB84BD174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.221.0/24 103.133.75.0/24 103.133.82.0/23 Signature Algorithm: sha256WithRSAEncryption 74:03:90:5e:52:29:6d:8f:a0:9d:fe:eb:61:52:af:92:da:96: 7b:c8:83:41:0c:77:ef:42:a7:1c:88:90:05:10:68:27:95:b8: fa:a0:c9:59:50:7d:5a:ad:6b:58:a6:44:79:53:2f:0d:ff:69: b1:23:8f:8d:56:3f:a3:d8:84:9c:49:19:cf:b1:38:57:9d:a4: 7c:d6:d5:1c:1f:4c:77:d7:6b:36:e1:07:69:2c:cc:45:cb:0e: 3e:01:75:2e:7d:35:63:3d:27:75:d2:48:ef:fd:ac:18:50:90: 7b:74:7c:40:a1:3a:65:51:67:2a:76:75:a9:88:38:58:ce:9c: 79:a9:6b:1b:47:d4:34:05:12:bf:a2:10:e9:dd:6d:ed:d4:01: 41:4c:7f:e3:9e:9b:53:20:02:6d:d2:c9:bc:04:49:74:8f:59: 73:cf:9a:d5:1a:c4:4c:4c:a4:34:d3:f1:f4:20:f3:fb:cc:e0: 0a:1c:95:77:d0:02:4a:bd:53:fa:99:e9:a2:7d:3d:bb:fa:7c: a4:ca:9b:55:2b:9d:bd:e5:25:ed:d5:78:3d:fa:0f:62:07:1b: b5:0f:c2:d2:a4:05:b4:04:06:ad:11:c4:a2:24:e1:d4:6e:48: bf:bb:01:a6:6d:9d:9c:32:ee:6f:4f:ec:d3:3a:c9:3b:16:5c: 8b:bf:9f:6c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyNjUxMTAvBgNVBAUTKDhGMTFDNDdFMkZFQTE5OUMyNzI3Qzg2QjQ5OTBGM0JG QUU4MjAxNjIwHhcNMjQwMzAzMDI1NDQxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzZTY3MC1mYzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/JD0fwROIMUeIld3C5y5SnThdmPcLKprYHedkADV7ig+aCHFgcOZZdy5w2jV SRiUw7n0c/I1szuqoj2FaOLLkAKW0Bg4LqlL0CALYydPAg9Dw1rupP4tIX40mUr8 2IiOBwxJYzoBMu3vFzeLp2UBUvmliMgX3wJ3DOapYoYlLHhZwj84ns6wITQkQMhX 3sz2E9QDtGYjoO8jf6vxRnUC1qIO1B4AY6A7h7RzjMLEmAKfUQdwjChSnB5IAccK /YTbcBUdDyIJ+FSsaUPvfoEo9gFJ9ClTz6ivqpkBDLcdtGu/zNHS8XleMGOhrifY ku3bgnQ0U+7Ut2iKEfEZMt0U6QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKwJ7SXe Ub08GYDx3Tut+NegjTh+MB8GA1UdIwQYMBaAFI8RxH4v6hmcJyfIa0mQ87+uggFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI2NS80Q0Q1RkUwRTdE QzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUdad25KOGhyU1pEenY2NkNB V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p4SEVmaV9xR1p3bko4aHJTWkR6djY2Q0FXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgyNjUvNENENUZFMEU3REM0MTFFQ0E5QzQ0MzFEQzRGOUFFMDIvRDk0NzBCRkU3 REM4MTFFQ0I4NEJEMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnZt0DBABnhUsDBAFnhVIwDQYJKoZIhvcNAQELBQADggEB AHQDkF5SKW2PoJ3+62FSr5LalnvIg0EMd+9CpxyIkAUQaCeVuPqgyVlQfVqta1im RHlTLw3/abEjj41WP6PYhJxJGc+xOFedpHzW1RwfTHfXazbhB2kszEXLDj4BdS59 NWM9J3XSSO/9rBhQkHt0fEChOmVRZyp2damIOFjOnHmpaxtH1DQFEr+iEOndbe3U AUFMf+Oem1MgAm3SybwESXSPWXPPmtUaxExMpDTT8fQg8/vM4AoclXfQAkq9U/qZ 6aJ9Pbv6fKTKm1Urnb3lJe3VeD36D2IHG7UPwtKkBbQEBq0RxKIk4dRuSL+7AaZt nZwy7m9P7NM6yTsWXIu/n2w= -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org