$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDA2A/147711B2F3BE11ED9A9AC64FC4F9AE02/05C6C85CF3C211ED8B9B1450C4F9AE02.roa File: 05C6C85CF3C211ED8B9B1450C4F9AE02.roa (raw, json) Hash identifier: keDaG46Zj8mvjRu28KTISnMDAXfWlsNKgwtpoicmVQc= Subject key identifier: BE:1E:CD:ED:8D:A9:CF:4E:EF:68:0E:68:37:BC:FE:9A:8B:F2:04:A6 Certificate issuer: /CN=A91BDA2A/serialNumber=FAE21414D113DB78D54FEABA1B606F854A240BD1 Certificate serial: 07 Authority key identifier: FA:E2:14:14:D1:13:DB:78:D5:4F:EA:BA:1B:60:6F:85:4A:24:0B:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uIUFNET23jVT-q6G2BvhUokC9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDA2A/147711B2F3BE11ED9A9AC64FC4F9AE02/05C6C85CF3C211ED8B9B1450C4F9AE02.roa Signing time: Sun 21 May 2023 14:28:09 +0000 ROA not before: Sun 21 May 2023 14:28:09 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151327 IP address blocks: 103.137.46.0/23 maxlen: 23 103.137.46.0/24 maxlen: 24 103.137.47.0/24 maxlen: 24 2001:df2:6640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDA2A/147711B2F3BE11ED9A9AC64FC4F9AE02/-uIUFNET23jVT-q6G2BvhUokC9E.crl rsync://rpki.apnic.net/member_repository/A91BDA2A/147711B2F3BE11ED9A9AC64FC4F9AE02/-uIUFNET23jVT-q6G2BvhUokC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uIUFNET23jVT-q6G2BvhUokC9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDA2A/serialNumber=FAE21414D113DB78D54FEABA1B606F854A240BD1 Validity Not Before: May 21 14:28:09 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=646a2a78-a6f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f3:39:ec:0f:0e:8d:f9:e0:4c:17:b5:e3:88: 4c:0b:74:9c:fb:43:5e:e8:25:93:64:2b:9c:1b:6f: 4f:76:d8:1c:7a:c0:3d:ff:73:98:04:07:f5:dd:1b: 21:20:6a:2b:bd:c3:13:ff:61:ad:73:1e:9e:12:a1: 4e:d9:12:49:79:17:92:2e:51:6d:ef:10:f7:69:e6: a5:16:2a:3a:01:68:53:39:2e:3c:89:0b:3a:46:fd: 80:29:0f:0d:0f:28:b8:0d:54:18:8c:2c:5a:dd:e7: 66:23:86:f3:6d:b2:44:36:23:12:c5:70:bd:61:0d: 02:51:98:68:33:ec:37:3d:89:e5:18:2c:1c:c6:03: 65:9c:4b:87:ad:4f:fb:04:e3:c7:06:74:60:d8:82: df:1f:fd:f5:cf:be:d2:fc:69:3c:94:f5:5f:d1:5b: f0:99:6e:8c:08:fc:a7:2e:5c:ef:25:3f:cd:7e:20: b4:50:e5:f7:6d:d2:71:ce:33:6b:dd:da:b8:b4:b2: 96:6a:ca:50:e7:4c:4f:37:70:3c:a6:35:e9:3d:f2: aa:78:da:92:6a:0e:ca:a2:59:fa:f9:7f:7d:c4:64: fb:e7:d1:9b:28:7c:9b:85:d6:a3:20:b7:65:0f:e6: 46:10:4d:89:19:94:db:e3:06:85:61:31:ee:9a:5a: a7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:1E:CD:ED:8D:A9:CF:4E:EF:68:0E:68:37:BC:FE:9A:8B:F2:04:A6 X509v3 Authority Key Identifier: keyid:FA:E2:14:14:D1:13:DB:78:D5:4F:EA:BA:1B:60:6F:85:4A:24:0B:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDA2A/147711B2F3BE11ED9A9AC64FC4F9AE02/-uIUFNET23jVT-q6G2BvhUokC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uIUFNET23jVT-q6G2BvhUokC9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDA2A/147711B2F3BE11ED9A9AC64FC4F9AE02/05C6C85CF3C211ED8B9B1450C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.46.0/23 IPv6: 2001:df2:6640::/48 Signature Algorithm: sha256WithRSAEncryption 82:36:be:78:32:8b:b5:b8:cf:00:14:21:9e:44:ba:8d:86:9b: ab:92:43:27:ed:58:8a:f3:bd:d4:83:8c:98:33:43:94:a3:dc: 07:67:65:4f:7b:e1:ee:44:c3:af:95:f9:8e:c9:ca:13:32:aa: 12:13:dd:48:2c:6c:46:fd:52:67:61:b0:db:59:73:45:3f:93: 11:ac:11:b7:df:fe:c6:f5:af:12:c0:11:4b:fc:3d:40:a6:69: f8:44:7a:8b:75:77:a7:67:f0:d6:11:b0:62:85:1c:98:70:d1: 32:07:bf:53:de:33:0a:e8:7b:d3:a8:fd:ea:6b:91:f3:77:a4: 68:e4:e2:e4:55:6a:e7:93:6c:e1:1c:e8:47:f5:3d:06:2d:a3: 1b:f4:11:61:0d:c0:f8:f0:1a:d6:6c:29:20:ef:ce:5d:11:6d: 92:85:47:2b:4e:25:d6:92:02:6d:cd:3a:fe:84:d3:81:31:70: b4:72:bc:71:41:d8:cc:34:55:a6:b9:9e:90:c7:f9:43:73:1c: 35:5d:ee:6d:b1:31:dd:78:fa:1a:ca:cd:41:74:95:79:fd:77: 71:dd:f5:a7:39:71:e0:6f:da:a9:87:61:c3:5d:ac:90:5f:7d: b9:46:da:71:b6:13:b9:7b:9d:f2:16:f5:5f:c1:16:7d:cc:20: 95:01:0b:da -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REEyQTExMC8GA1UEBRMoRkFFMjE0MTREMTEzREI3OEQ1NEZFQUJBMUI2MDZGODU0 QTI0MEJEMTAeFw0yMzA1MjExNDI4MDlaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NmEyYTc4LWE2ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl8znsDw6N+eBMF7XjiEwLdJz7Q17oJZNkK5wbb0922Bx6wD3/c5gEB/XdGyEg aiu9wxP/Ya1zHp4SoU7ZEkl5F5IuUW3vEPdp5qUWKjoBaFM5LjyJCzpG/YApDw0P KLgNVBiMLFrd52YjhvNtskQ2IxLFcL1hDQJRmGgz7Dc9ieUYLBzGA2WcS4etT/sE 48cGdGDYgt8f/fXPvtL8aTyU9V/RW/CZbowI/KcuXO8lP81+ILRQ5fdt0nHOM2vd 2ri0spZqylDnTE83cDymNek98qp42pJqDsqiWfr5f33EZPvn0ZsofJuF1qMgt2UP 5kYQTYkZlNvjBoVhMe6aWqddAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUvh7N7Y2p z07vaA5oN7z+movyBKYwHwYDVR0jBBgwFoAU+uIUFNET23jVT+q6G2BvhUokC9Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJEQTJBLzE0NzcxMUIyRjNC RTExRUQ5QTlBQzY0RkM0RjlBRTAyLy11SVVGTkVUMjNqVlQtcTZHMkJ2aFVva0M5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLXVJVUZORVQyM2pWVC1xNkcyQnZoVW9rQzlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REEyQS8xNDc3MTFCMkYzQkUxMUVEOUE5QUM2NEZDNEY5QUUwMi8wNUM2Qzg1Q0Yz QzIxMUVEOEI5QjE0NTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeJLjAPBAIAAjAJAwcAIAEN8mZAMA0GCSqGSIb3DQEBCwUA A4IBAQCCNr54Mou1uM8AFCGeRLqNhpurkkMn7ViK873Ug4yYM0OUo9wHZ2VPe+Hu RMOvlfmOycoTMqoSE91ILGxG/VJnYbDbWXNFP5MRrBG33/7G9a8SwBFL/D1Apmn4 RHqLdXenZ/DWEbBihRyYcNEyB79T3jMK6HvTqP3qa5Hzd6Ro5OLkVWrnk2zhHOhH 9T0GLaMb9BFhDcD48BrWbCkg785dEW2ShUcrTiXWkgJtzTr+hNOBMXC0crxxQdjM NFWmuZ6Qx/lDcxw1Xe5tsTHdePoays1BdJV5/Xdx3fWnOXHgb9qph2HDXayQX325 RtpxthO5e53yFvVfwRZ9zCCVAQva -----END CERTIFICATE-----Generated at Sun May 19 07:40:44 2024 by rpki-client on console-fra.rpki-client.org