$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa File: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (raw, json) Hash identifier: xJh5HRbn741snUCbMX+RHgdNum29ocH1QT8bD3kB9Uw= Subject key identifier: C5:A8:14:AC:B9:2B:61:E3:5D:E2:D7:F2:71:91:12:F6:AE:3F:4D:DE Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0DE5 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa Signing time: Mon 30 Sep 2024 19:19:06 +0000 ROA not before: Mon 30 Sep 2024 19:19:06 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139300 IP address blocks: 103.141.2.0/23 maxlen: 23 103.141.2.0/24 maxlen: 24 103.141.3.0/24 maxlen: 24 2001:df0:e280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3557 (0xde5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Sep 30 19:19:06 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66faf9a9-ac98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:60:13:ff:5b:76:26:07:bb:f4:fe:e9:bd: 8c:ab:8f:92:8f:d5:59:58:0d:65:fb:1e:d9:2c:ce: 44:60:e8:48:e0:bd:d6:8a:98:bc:d5:56:27:db:5e: dc:ff:d3:d6:86:70:9d:79:b0:22:cc:c9:ed:92:91: 42:42:3a:50:e1:ac:cf:0f:90:a0:c1:ac:21:a0:7a: ae:da:61:be:c1:e5:ca:90:13:37:d6:7c:73:a9:1b: 24:36:a7:72:16:95:ef:b7:90:db:f3:36:aa:7f:3e: 12:89:52:ae:66:8b:50:4b:1b:20:5b:4f:46:3c:a2: 79:d9:1d:57:ab:a9:40:13:71:59:ed:bc:e3:a3:8a: f4:02:17:93:53:64:a4:13:27:17:ca:dc:1f:d8:a3: b6:26:f7:85:44:49:4d:48:d4:50:5e:a9:22:b2:4a: ca:76:04:32:3f:d4:14:31:4f:ce:34:30:b0:c8:0d: 9f:2a:06:2d:b4:e8:05:37:cf:7a:39:15:e1:98:4f: b6:a1:af:eb:d4:df:f6:30:7c:fe:af:56:69:82:8e: 36:b1:ed:33:1c:87:e6:a9:b3:a9:35:30:51:61:0a: 49:df:43:a6:e5:52:6d:22:6a:bd:c3:37:71:d6:e9: 15:79:fd:45:6c:b3:3e:22:c0:21:c1:ee:dd:ae:95: c4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A8:14:AC:B9:2B:61:E3:5D:E2:D7:F2:71:91:12:F6:AE:3F:4D:DE X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.2.0/23 IPv6: 2001:df0:e280::/48 Signature Algorithm: sha256WithRSAEncryption 01:5f:7c:8e:9d:7a:f8:4a:68:79:f7:25:cb:d9:b9:84:63:9c: 67:e2:32:93:0d:f9:21:9a:ca:e9:b5:5a:e1:36:4d:40:d5:0a: ff:5b:69:db:1a:cb:cc:3e:93:75:38:5e:1f:e7:41:df:0c:99: da:fe:72:2e:f1:cd:25:20:6f:12:3c:22:af:8a:96:87:43:f6: 32:81:5c:71:8b:12:66:6c:f4:fb:29:52:f8:98:cc:b1:1f:24: 97:e5:a2:0e:c8:17:29:82:04:2c:13:9f:43:83:53:f2:c9:53: 35:4d:db:0f:40:6b:1f:9c:c1:4f:69:e1:6b:cc:8f:68:8a:68: 85:43:0a:13:45:4a:6a:fe:14:bb:1d:cf:61:52:5b:ae:e5:08: a8:43:b9:d4:70:a1:cd:c8:bd:b3:ca:8a:57:cd:5c:3c:0b:7d: 2b:69:2d:8f:5c:ee:06:48:e1:c4:d2:cf:4d:f8:b6:f3:60:77: 63:44:81:7d:7a:9d:6a:1c:ea:61:e3:33:dc:d9:2d:bb:1c:a0: c1:25:59:22:dd:e3:85:85:f1:7f:60:18:05:1b:0e:af:34:7f: 75:ba:8c:1e:6a:d3:9f:69:af:a8:44:ab:5b:16:e2:ef:cb:99: e8:d1:12:b3:9d:4f:47:4a:c5:0d:dd:a7:69:f1:cd:67:00:94: ed:6e:7b:b8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjQwOTMwMTkxOTA2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhZjlhOS1hYzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8tgE/9bdiYHu/T+6b2Mq4+Sj9VZWA1l+x7ZLM5EYOhI4L3Wipi81VYn217c /9PWhnCdebAizMntkpFCQjpQ4azPD5CgwawhoHqu2mG+weXKkBM31nxzqRskNqdy FpXvt5Db8zaqfz4SiVKuZotQSxsgW09GPKJ52R1Xq6lAE3FZ7bzjo4r0AheTU2Sk EycXytwf2KO2JveFRElNSNRQXqkiskrKdgQyP9QUMU/ONDCwyA2fKgYttOgFN896 ORXhmE+2oa/r1N/2MHz+r1Zpgo42se0zHIfmqbOpNTBRYQpJ30Om5VJtImq9wzdx 1ukVef1FbLM+IsAhwe7drpXEhwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMWoFKy5 K2HjXeLX8nGREvauP03eMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc3NzMvQUQzMjIzN0NBMkU4MTFFOUJBRTc4RDQ3QzRGOUFFMDIvQTQ3RDJFQzg0 QzFFMTFFRUJBOENEQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjQIwDwQCAAIwCQMHACABDfDigDANBgkqhkiG9w0BAQsF AAOCAQEAAV98jp16+Epoefcly9m5hGOcZ+Iykw35IZrK6bVa4TZNQNUK/1tp2xrL zD6TdTheH+dB3wyZ2v5yLvHNJSBvEjwir4qWh0P2MoFccYsSZmz0+ylS+JjMsR8k l+WiDsgXKYIELBOfQ4NT8slTNU3bD0BrH5zBT2nha8yPaIpohUMKE0VKav4Uux3P YVJbruUIqEO51HChzci9s8qKV81cPAt9K2ktj1zuBkjhxNLPTfi282B3Y0SBfXqd ahzqYeMz3NktuxygwSVZIt3jhYXxf2AYBRsOrzR/dbqMHmrTn2mvqESrWxbi78uZ 6NESs51PR0rFDd2nafHNZwCU7W57uA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org