$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/47C07DB84F9C11ED8B9E4333C4F9AE02.roa File: 47C07DB84F9C11ED8B9E4333C4F9AE02.roa (raw, json) Hash identifier: 1SJS3OgAo09/8vAdWL5x4wUO1lH3CwJnSkHXsZPYMuE= Subject key identifier: DD:DE:BF:24:6E:F4:4C:28:B9:75:3F:A3:78:02:04:81:EF:BC:F7:64 Certificate issuer: /CN=A91B9A77/serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Certificate serial: 0121 Authority key identifier: 25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/47C07DB84F9C11ED8B9E4333C4F9AE02.roa Signing time: Fri 23 Jun 2023 05:02:32 +0000 ROA not before: Fri 23 Jun 2023 05:02:32 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 23966 IP address blocks: 103.189.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77/serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Validity Not Before: Jun 23 05:02:32 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64952768-35e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c4:5d:ce:46:bc:53:25:cf:a4:7b:4f:50:73: be:c5:51:e5:b8:c6:4a:68:fd:54:3a:f9:23:fd:f4: ca:2a:f2:df:e6:41:f8:ac:46:df:2f:5e:9b:8b:1e: 76:ba:e0:5e:43:e3:ca:15:16:9e:ef:1d:58:8e:a3: eb:98:76:e4:ec:47:b9:f8:68:84:47:f8:3d:53:9b: 4d:96:88:58:f6:aa:da:7e:e0:08:b5:55:d2:63:e1: 7f:16:2e:53:94:86:d0:a6:32:e2:33:e2:82:e7:8f: 77:02:91:6c:e0:bd:c0:e1:bc:34:a6:a0:af:5f:bf: 72:40:21:11:76:36:8d:20:33:10:c2:9a:02:84:b4: 1d:fa:72:b7:66:bc:d0:4f:b6:90:c0:9f:37:6f:31: cc:37:82:e4:c7:d9:15:96:49:2e:44:bc:42:32:c4: 17:8c:ff:73:ff:62:5d:8c:8e:b2:04:a4:ae:2f:44: 32:b5:3e:cd:35:8f:8f:d7:2f:c6:fa:ec:d3:09:55: ba:e1:d6:6c:b6:b7:64:ab:ab:1a:2b:1b:85:84:7e: 62:a2:89:00:5f:c6:3f:a3:bf:46:e5:c9:6d:95:dd: f9:33:b9:12:51:13:73:d8:73:ae:52:b6:cb:d3:fc: 15:19:53:cd:8b:c3:6e:b2:a5:14:82:a1:38:a3:42: e2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DE:BF:24:6E:F4:4C:28:B9:75:3F:A3:78:02:04:81:EF:BC:F7:64 X509v3 Authority Key Identifier: keyid:25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/47C07DB84F9C11ED8B9E4333C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.2.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:81:07:94:15:66:cb:6a:4e:99:cf:d6:a2:85:a3:1a:14:d4: e8:fa:b5:23:fe:91:f5:84:26:7c:32:24:3a:1e:63:6e:77:68: 47:c7:61:5e:de:e5:7f:26:3e:b4:9d:23:5b:54:6c:36:2f:b6: ee:83:6d:3a:ee:0b:49:84:ac:3d:fa:cc:c4:26:3c:99:c9:71: d0:6f:8a:84:5b:af:5d:e7:ba:dc:4e:6d:c5:c4:d8:08:f5:dc: b4:2a:30:9e:45:cb:ec:8f:e4:61:b8:e6:9a:f9:6a:d4:2d:6a: 12:f4:95:c6:44:ce:47:a6:ec:b9:a2:9c:55:11:ae:c8:8e:5b: 74:be:14:22:4f:21:e1:f5:70:b6:7c:4d:e3:f2:6c:ea:f6:f2: 25:8b:c9:8c:0b:67:2c:a8:53:a3:e5:e0:f2:9b:cf:8d:d9:21: eb:75:05:34:7c:4c:85:4c:4d:93:55:40:62:10:50:55:33:0f: ad:61:b5:7e:40:c1:1f:92:ff:5b:a4:5c:71:92:c2:30:b6:e8: c1:74:b1:6a:b9:6d:36:6e:ab:13:7b:dc:7a:88:4a:0e:1f:78: c1:b1:2a:88:9f:79:6f:5b:1c:31:76:25:72:28:94:36:04:26: d7:fc:56:7c:8d:c0:2b:b3:95:d5:0c:5b:4f:28:c3:af:08:78: cd:d5:26:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKDI1MjkzQjBBNzAzNkM4MTNBOUNEMDIwMDZERkMyOTBB QUYyNTMyNzQwHhcNMjMwNjIzMDUwMjMyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk1Mjc2OC0zNWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4sRdzka8UyXPpHtPUHO+xVHluMZKaP1UOvkj/fTKKvLf5kH4rEbfL16bix52 uuBeQ+PKFRae7x1YjqPrmHbk7Ee5+GiER/g9U5tNlohY9qrafuAItVXSY+F/Fi5T lIbQpjLiM+KC5493ApFs4L3A4bw0pqCvX79yQCERdjaNIDMQwpoChLQd+nK3ZrzQ T7aQwJ83bzHMN4Lkx9kVlkkuRLxCMsQXjP9z/2JdjI6yBKSuL0QytT7NNY+P1y/G +uzTCVW64dZstrdkq6saKxuFhH5iookAX8Y/o79G5cltld35M7kSURNz2HOuUrbL 0/wVGVPNi8NusqUUgqE4o0LilQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN3evyRu 9EwouXU/o3gCBIHvvPdkMB8GA1UdIwQYMBaAFCUpOwpwNsgTqc0CAG38KQqvJTJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9EM0FEMDdFMjA4 RDkxMUVEQkU5MkM5NTRDNEY5QUUwMi9KU2s3Q25BMnlCT3B6UUlBYmZ3cENxOGxN blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTazdDbkEyeUJPcHpRSUFiZndwQ3E4bE1uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlBNzcvRDNBRDA3RTIwOEQ5MTFFREJFOTJDOTU0QzRGOUFFMDIvNDdDMDdEQjg0 RjlDMTFFRDhCOUU0MzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvQIwDQYJKoZIhvcNAQELBQADggEBAHuBB5QVZstqTpnP 1qKFoxoU1Oj6tSP+kfWEJnwyJDoeY253aEfHYV7e5X8mPrSdI1tUbDYvtu6DbTru C0mErD36zMQmPJnJcdBvioRbr13nutxObcXE2Aj13LQqMJ5Fy+yP5GG45pr5atQt ahL0lcZEzkem7LminFURrsiOW3S+FCJPIeH1cLZ8TePybOr28iWLyYwLZyyoU6Pl 4PKbz43ZIet1BTR8TIVMTZNVQGIQUFUzD61htX5AwR+S/1ukXHGSwjC26MF0sWq5 bTZuqxN73HqISg4feMGxKoifeW9bHDF2JXIolDYEJtf8VnyNwCuzldUMW08ow68I eM3VJp4= -----END CERTIFICATE-----Generated at Fri May 17 06:46:27 2024 by rpki-client on console-ams.rpki-client.org