$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/494B4070419C11EAAE836772C4F9AE02.roa File: 494B4070419C11EAAE836772C4F9AE02.roa (raw, json) Hash identifier: Tlot9sCT0dKzDi+iGMaa7IKkM12iDzM+MG45fS4fB3o= Subject key identifier: 05:0B:E0:C9:B5:BA:B4:01:2A:1E:29:D9:A4:33:2F:A4:16:55:CB:EC Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Certificate serial: 0A1B Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/494B4070419C11EAAE836772C4F9AE02.roa Signing time: Fri 02 Feb 2024 20:18:29 +0000 ROA not before: Fri 02 Feb 2024 20:18:29 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 17408 IP address blocks: 103.247.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2587 (0xa1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Validity Not Before: Feb 2 20:18:29 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bd4e15-ee55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:be:f8:21:08:ae:68:0e:19:fd:3d:76:1d:8c: 4d:c4:96:c3:d0:54:9d:ef:55:36:6f:69:8f:ee:9e: 4c:c0:84:06:23:72:55:2c:ed:dc:2a:5f:5e:84:a3: ac:c2:17:6f:42:dd:fd:bc:6e:30:48:ea:93:02:05: bb:4b:c0:36:47:4c:a1:86:97:26:a4:07:47:5b:c0: 2f:78:9a:e8:8f:86:a5:45:ca:83:8d:40:29:2b:40: 19:0b:63:9a:b5:dc:fd:e1:42:a4:4f:aa:2a:60:25: 01:6c:42:35:b2:7a:89:d1:23:ab:c0:d5:18:12:85: d0:6f:d1:48:5e:02:31:f9:1b:22:31:27:04:56:4f: fb:08:6b:a2:04:fa:66:94:00:eb:3b:4f:53:88:aa: 74:16:ac:c2:6a:64:62:63:68:8d:7b:56:d5:1f:25: ca:dc:5b:c9:8d:5d:fd:7d:3e:45:5f:f0:50:bd:46: bf:4e:b8:06:81:0f:0d:45:85:df:03:18:67:51:c8: be:c3:e2:bb:51:0b:ad:e5:50:fa:f6:e7:6e:57:51: 63:fc:f0:4a:1f:31:d5:52:d1:da:df:29:60:b5:f2: 90:21:c6:c6:cf:ce:70:5a:34:f1:4b:75:28:f4:f0: e6:0d:fa:ff:65:a6:c0:53:b1:5d:b3:a5:9d:b0:ca: 40:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:0B:E0:C9:B5:BA:B4:01:2A:1E:29:D9:A4:33:2F:A4:16:55:CB:EC X509v3 Authority Key Identifier: keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/494B4070419C11EAAE836772C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.68.0/22 Signature Algorithm: sha256WithRSAEncryption 12:7a:e3:04:d3:72:16:31:30:81:be:94:35:1a:77:3f:b8:63: 63:75:ba:a2:d2:ec:a1:8c:1d:fb:45:25:a5:ef:da:71:39:8d: 2e:41:c0:5f:08:2d:fc:e8:d7:88:a9:e6:0f:99:bc:d3:7d:ea: 9b:12:a9:9f:b6:56:66:f3:96:3e:b4:ce:fe:e4:20:31:88:f5: 9e:c9:21:4b:fb:02:44:cf:03:72:df:d3:ae:4e:a1:e2:84:ed: 14:fe:23:71:25:e6:26:70:b6:d3:9e:40:21:d6:66:17:47:a2: 09:0c:32:95:7d:ab:dd:4c:29:b7:c1:a1:32:17:47:d9:e3:a9: 9d:2b:4b:97:59:2d:c8:2c:6a:3f:4a:f9:f0:e7:ca:7a:29:2f: 73:b0:28:97:74:cf:15:43:93:96:64:37:77:79:c4:ab:ad:87: ec:2c:9b:04:8f:9c:26:d9:84:9a:f0:12:e5:f9:9d:ab:a2:bd: 77:b9:5d:4e:36:bb:34:87:19:cb:57:97:c3:c6:b1:e2:47:9a: 08:2d:9f:0a:35:c5:0d:98:66:11:df:62:05:a9:10:01:7c:3d: 59:b5:5c:db:96:1c:b7:10:3d:51:d0:c3:b1:aa:d8:d8:65:0a: 4b:35:c1:28:0b:61:a9:46:73:60:64:cb:0e:d4:e9:24:27:3e: 87:3a:0c:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICChswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQyNUExMTAvBgNVBAUTKDA0OEFBOThGM0VDNTRBOTA2MEU1QkMzMDA1OUQ1QzQy MjBEN0MyRjcwHhcNMjQwMjAyMjAxODI5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkNGUxNS1lZTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvr74IQiuaA4Z/T12HYxNxJbD0FSd71U2b2mP7p5MwIQGI3JVLO3cKl9ehKOs whdvQt39vG4wSOqTAgW7S8A2R0yhhpcmpAdHW8AveJroj4alRcqDjUApK0AZC2Oa tdz94UKkT6oqYCUBbEI1snqJ0SOrwNUYEoXQb9FIXgIx+RsiMScEVk/7CGuiBPpm lADrO09TiKp0FqzCamRiY2iNe1bVHyXK3FvJjV39fT5FX/BQvUa/TrgGgQ8NRYXf AxhnUci+w+K7UQut5VD69uduV1Fj/PBKHzHVUtHa3ylgtfKQIcbGz85wWjTxS3Uo 9PDmDfr/ZabAU7Fds6WdsMpAqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAUL4Mm1 urQBKh4p2aQzL6QWVcvsMB8GA1UdIwQYMBaAFASKqY8+xUqQYOW8MAWdXEIg18L3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDI1QS8wMjRDMjRGODQx NkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNwQmc1Ynd3QloxY1FpRFh3 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJcXBqejdGU3BCZzVid3dCWjFjUWlEWHd2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQyNUEvMDI0QzI0Rjg0MTZDMTFFQTgzQzNFRjVBQzRGOUFFMDIvNDk0QjQwNzA0 MTlDMTFFQUFFODM2NzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn90QwDQYJKoZIhvcNAQELBQADggEBABJ64wTTchYxMIG+ lDUadz+4Y2N1uqLS7KGMHftFJaXv2nE5jS5BwF8ILfzo14ip5g+ZvNN96psSqZ+2 Vmbzlj60zv7kIDGI9Z7JIUv7AkTPA3Lf065OoeKE7RT+I3El5iZwttOeQCHWZhdH ogkMMpV9q91MKbfBoTIXR9njqZ0rS5dZLcgsaj9K+fDnynopL3OwKJd0zxVDk5Zk N3d5xKuth+wsmwSPnCbZhJrwEuX5nauivXe5XU42uzSHGctXl8PGseJHmggtnwo1 xQ2YZhHfYgWpEAF8PVm1XNuWHLcQPVHQw7Gq2NhlCks1wSgLYalGc2Bkyw7U6SQn Poc6DLo= -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:57 2024 by rpki-client on console-ams.rpki-client.org