$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/5FD6BBF27CEB11EDA3D10364C4F9AE02.roa File: 5FD6BBF27CEB11EDA3D10364C4F9AE02.roa (raw, json) Hash identifier: FeTKcL37y87AiZQuqO53nGkPmfENZeWjr7lrGLOMLWk= Subject key identifier: 4E:C0:7C:77:5A:4B:AF:8D:9C:40:BE:A5:48:DA:67:4F:CE:0E:06:FF Certificate issuer: /CN=A91C0C0C/serialNumber=B9DCE7A98BCE7C0E28328B13CBEAB5431D0F66BD Certificate serial: 02B7 Authority key identifier: B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/5FD6BBF27CEB11EDA3D10364C4F9AE02.roa Signing time: Fri 01 Mar 2024 03:35:38 +0000 ROA not before: Fri 01 Mar 2024 03:35:38 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136970 IP address blocks: 103.146.140.0/23 maxlen: 23 103.146.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0C/serialNumber=B9DCE7A98BCE7C0E28328B13CBEAB5431D0F66BD Validity Not Before: Mar 1 03:35:38 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65e14d09-c389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:98:39:a1:6c:0d:ad:04:31:ab:00:e4:14:ef: fe:81:8b:f4:6b:ae:f6:5b:bd:45:cb:61:a8:cc:26: 38:87:08:e8:b8:a7:bd:9e:46:5d:73:81:ad:db:f2: a7:b0:f7:93:5d:9b:18:04:e4:90:eb:f3:a2:8d:95: 23:36:f6:53:ae:a0:18:60:f6:72:19:7a:d9:fa:7a: 30:7e:10:a2:b8:ff:c5:02:54:39:3e:ef:97:17:86: 61:31:59:9a:c1:51:3f:1a:c6:37:a9:d0:08:99:bd: 28:84:fe:f0:47:ee:1b:36:e9:2a:d2:f9:2a:e6:6d: 58:fe:a1:0e:a4:07:56:4b:30:52:af:b7:58:f2:0a: 44:9d:ca:4a:e1:af:2c:5c:71:f9:7c:2b:24:f5:fc: bb:d0:1c:f4:f9:b9:ac:ac:63:3b:56:8d:31:e8:d1: b1:7c:37:50:03:15:ba:a6:04:d4:22:5c:f7:42:1f: 6c:11:8e:01:3a:7b:53:b0:5a:b2:8d:c0:a1:70:7b: be:74:2e:1d:79:e5:12:b8:13:47:32:45:92:54:9b: 86:e4:10:50:8a:40:70:46:8a:7f:b4:f5:20:c7:33: 94:34:8c:cf:2f:65:24:d2:c5:da:d7:ba:e2:65:e4: 14:fc:04:1b:db:0a:05:80:91:ce:e6:ae:ea:91:9a: 00:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C0:7C:77:5A:4B:AF:8D:9C:40:BE:A5:48:DA:67:4F:CE:0E:06:FF X509v3 Authority Key Identifier: keyid:B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/5FD6BBF27CEB11EDA3D10364C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.140.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:18:e2:6d:35:e2:af:60:89:21:a9:79:c7:14:bb:26:13:e3: 0c:61:b9:66:2e:f2:ca:6a:ea:a6:57:f5:fd:a9:97:b7:67:dd: 27:6e:b5:e2:bc:94:3c:8a:5d:54:0d:17:ed:c0:c0:f6:4a:5e: 98:9d:54:45:e8:ad:ca:39:eb:16:8d:36:1a:41:79:d7:5c:53: 13:27:c4:0f:54:5e:53:41:f0:82:24:dd:78:c8:b2:a4:16:94: 7f:b9:36:64:a2:a3:45:81:7a:e1:2f:23:6f:09:32:34:9b:47: 88:f9:bd:ff:81:a2:b6:4b:57:e8:92:ac:8f:25:cd:bc:1f:b1: b2:cb:97:d1:cc:9c:79:0a:6c:25:cf:a4:0e:40:8c:12:9c:16: 62:b2:21:0c:ad:d0:aa:8d:26:93:31:9b:c1:94:09:4c:1a:49: 42:9c:92:d8:11:5a:5a:cc:02:f1:92:cc:0a:cd:21:95:9c:30: a4:69:fe:22:e7:6c:6b:b5:ef:12:fa:77:ca:ed:32:a9:e0:a5: f6:a1:a2:1e:1c:bd:d2:1e:26:83:6b:86:bf:c8:51:58:6e:12: 84:18:76:15:4c:f1:b5:63:80:79:08:48:64:46:83:1e:eb:d7: ca:bf:ce:9b:c9:e8:29:a9:bc:7e:22:7f:1e:77:28:25:56:36: 8d:2f:4c:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEMxMTAvBgNVBAUTKEI5RENFN0E5OEJDRTdDMEUyODMyOEIxM0NCRUFCNTQz MUQwRjY2QkQwHhcNMjQwMzAxMDMzNTM4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxNGQwOS1jMzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Zg5oWwNrQQxqwDkFO/+gYv0a672W71Fy2GozCY4hwjouKe9nkZdc4Gt2/Kn sPeTXZsYBOSQ6/OijZUjNvZTrqAYYPZyGXrZ+nowfhCiuP/FAlQ5Pu+XF4ZhMVma wVE/GsY3qdAImb0ohP7wR+4bNukq0vkq5m1Y/qEOpAdWSzBSr7dY8gpEncpK4a8s XHH5fCsk9fy70Bz0+bmsrGM7Vo0x6NGxfDdQAxW6pgTUIlz3Qh9sEY4BOntTsFqy jcChcHu+dC4deeUSuBNHMkWSVJuG5BBQikBwRop/tPUgxzOUNIzPL2Uk0sXa17ri ZeQU/AQb2woFgJHO5q7qkZoAswIDAQABo4IClTCCApEwHQYDVR0OBBYEFE7AfHda S6+NnEC+pUjaZ0/ODgb/MB8GA1UdIwQYMBaAFLnc56mLznwOKDKLE8vqtUMdD2a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQy8zNTlCOEQzRTlE RkYxMUVDQTRBNTg4NDhDNEY5QUUwMi91ZHpucVl2T2ZBNG9Nb3NUeS1xMVF4MFBa cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vkem5xWXZPZkE0b01vc1R5LXExUXgwUFpyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDMEMvMzU5QjhEM0U5REZGMTFFQ0E0QTU4ODQ4QzRGOUFFMDIvNUZENkJCRjI3 Q0VCMTFFREEzRDEwMzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkowwDQYJKoZIhvcNAQELBQADggEBAE0Y4m014q9giSGp eccUuyYT4wxhuWYu8spq6qZX9f2pl7dn3SduteK8lDyKXVQNF+3AwPZKXpidVEXo rco56xaNNhpBeddcUxMnxA9UXlNB8IIk3XjIsqQWlH+5NmSio0WBeuEvI28JMjSb R4j5vf+BorZLV+iSrI8lzbwfsbLLl9HMnHkKbCXPpA5AjBKcFmKyIQyt0KqNJpMx m8GUCUwaSUKcktgRWlrMAvGSzArNIZWcMKRp/iLnbGu17xL6d8rtMqngpfahoh4c vdIeJoNrhr/IUVhuEoQYdhVM8bVjgHkISGRGgx7r18q/zpvJ6CmpvH4ifx53KCVW No0vTE8= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:57 2024 by rpki-client on console-fra.rpki-client.org