$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa File: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (raw, json) Hash identifier: T7IBSrfCyp29EdA+pBMAlhjWNwITSpBbT33uwuVc7Co= Subject key identifier: 02:DD:0E:AF:9D:66:43:4B:7C:46:28:D2:15:2C:26:18:CF:3A:94:10 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0D05 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa Signing time: Tue 05 Sep 2023 19:01:39 +0000 ROA not before: Tue 05 Sep 2023 19:01:39 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139300 IP address blocks: 103.141.2.0/23 maxlen: 23 2001:df0:e280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 18:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3333 (0xd05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Sep 5 19:01:39 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64f77b12-b3f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:ea:76:98:66:7d:9c:24:23:57:63:e5:1d: fd:8b:a1:89:28:bf:1b:86:13:60:1f:fc:bf:4e:9c: 01:bb:75:14:0c:62:4b:d0:55:7b:dc:d0:0e:56:d5: 69:5f:fd:5b:ed:ee:b4:e9:32:b6:4d:77:86:6b:76: 89:f3:6c:11:48:55:ac:eb:15:6d:84:53:4c:78:78: 34:c1:d4:9c:a4:8e:84:0c:75:f1:8e:70:09:b7:50: ea:3e:bb:df:f6:a7:c4:56:f8:7c:1f:c5:61:00:7d: 48:0c:39:c7:ae:81:2c:97:c4:a2:12:a8:56:d3:2d: b6:5b:f3:b4:19:1d:8a:a0:a7:e7:aa:e5:ab:6d:d8: 71:bf:a4:f6:e5:f4:77:28:86:b5:b1:bf:7a:48:3f: ab:19:4d:ef:88:aa:fb:91:26:79:be:ec:de:c2:54: 86:9e:5d:4b:30:e1:5a:52:00:77:2c:18:7e:db:65: a7:82:4f:ee:31:b2:ac:88:ec:03:95:28:08:8d:3e: c9:53:a9:bc:15:c4:57:57:6a:1d:15:31:d0:b9:d1: 70:4f:24:95:e1:ef:88:3b:76:a3:43:9d:be:48:99: f6:0d:ce:22:71:92:c1:d9:c2:4d:e0:31:fd:57:f8: 78:5e:89:99:b9:ea:4d:34:12:39:bd:07:3c:16:c2: f4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:DD:0E:AF:9D:66:43:4B:7C:46:28:D2:15:2C:26:18:CF:3A:94:10 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.2.0/23 IPv6: 2001:df0:e280::/48 Signature Algorithm: sha256WithRSAEncryption 4c:e5:c6:87:6c:c0:f1:e5:41:cf:0c:af:b4:f9:4a:9f:e4:ae: 65:26:b3:89:e5:ba:6a:a0:25:99:37:2d:53:06:73:0c:37:33: c7:2d:16:e5:56:29:46:5e:ab:a5:f8:94:e6:32:76:1d:87:41: cf:f2:8e:43:2a:2c:7f:e8:99:25:25:13:24:ab:0d:a2:bc:32: 71:bc:81:27:67:e0:69:c2:92:5a:54:62:ca:01:fd:a7:7c:bf: d6:06:91:ba:4d:20:20:03:00:29:1c:dc:a3:85:05:78:61:4d: fc:c3:e1:c0:1a:94:d9:bb:b3:09:da:e6:e6:b0:05:bf:8c:42: 67:44:13:83:7f:ce:9f:b2:21:97:f2:f8:d7:9b:02:b3:81:ce: 38:dc:a3:4f:cc:f2:af:54:6d:8d:c2:32:0e:95:25:06:58:6b: b3:e0:f2:f7:df:01:9a:54:cf:f8:cf:86:0b:ea:da:75:bf:2e: 53:b2:a3:31:e9:65:70:99:23:8b:8a:dd:f6:27:45:14:e8:b5: 10:d0:94:3c:1a:b5:4b:ac:1e:2c:9b:f2:f9:fe:3e:eb:8c:41: 1d:cc:01:71:7a:92:7d:0e:ba:a4:91:7a:e4:1c:ea:36:ee:d1: e0:9e:83:f6:94:ef:85:2c:01:91:4a:56:04:2b:2d:fa:04:f4: 8e:f7:ee:60 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjMwOTA1MTkwMTM5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY3N2IxMi1iM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq3qdphmfZwkI1dj5R39i6GJKL8bhhNgH/y/TpwBu3UUDGJL0FV73NAOVtVp X/1b7e606TK2TXeGa3aJ82wRSFWs6xVthFNMeHg0wdScpI6EDHXxjnAJt1DqPrvf 9qfEVvh8H8VhAH1IDDnHroEsl8SiEqhW0y22W/O0GR2KoKfnquWrbdhxv6T25fR3 KIa1sb96SD+rGU3viKr7kSZ5vuzewlSGnl1LMOFaUgB3LBh+22Wngk/uMbKsiOwD lSgIjT7JU6m8FcRXV2odFTHQudFwTySV4e+IO3ajQ52+SJn2Dc4icZLB2cJN4DH9 V/h4XomZuepNNBI5vQc8FsL07wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFALdDq+d ZkNLfEYo0hUsJhjPOpQQMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc3NzMvQUQzMjIzN0NBMkU4MTFFOUJBRTc4RDQ3QzRGOUFFMDIvQTQ3RDJFQzg0 QzFFMTFFRUJBOENEQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjQIwDwQCAAIwCQMHACABDfDigDANBgkqhkiG9w0BAQsF AAOCAQEATOXGh2zA8eVBzwyvtPlKn+SuZSazieW6aqAlmTctUwZzDDczxy0W5VYp Rl6rpfiU5jJ2HYdBz/KOQyosf+iZJSUTJKsNorwycbyBJ2fgacKSWlRiygH9p3y/ 1gaRuk0gIAMAKRzco4UFeGFN/MPhwBqU2buzCdrm5rAFv4xCZ0QTg3/On7Ihl/L4 15sCs4HOONyjT8zyr1RtjcIyDpUlBlhrs+Dy998BmlTP+M+GC+radb8uU7KjMell cJkji4rd9idFFOi1ENCUPBq1S6weLJvy+f4+64xBHcwBcXqSfQ66pJF65BzqNu7R 4J6D9pTvhSwBkUpWBCst+gT0jvfuYA== -----END CERTIFICATE-----Generated at Wed May 22 20:09:06 2024 by rpki-client on console-ams.rpki-client.org