$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B46C8BFA89AD11ED93CAB75FC4F9AE02.roa File: B46C8BFA89AD11ED93CAB75FC4F9AE02.roa (raw, json) Hash identifier: bQGRo+BKv1VXRi3jWhiN4sfYJGpMkN3hIT4uTMt1AFA= Subject key identifier: 09:9D:37:AA:94:4B:4A:BF:59:13:80:AD:83:B0:47:99:92:71:AF:5E Certificate issuer: /CN=A91DE570/serialNumber=71C127D1C06AFC7C454DD1093EB2CB7E12D787C0 Certificate serial: C9 Authority key identifier: 71:C1:27:D1:C0:6A:FC:7C:45:4D:D1:09:3E:B2:CB:7E:12:D7:87:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B46C8BFA89AD11ED93CAB75FC4F9AE02.roa Signing time: Sun 03 Dec 2023 04:54:43 +0000 ROA not before: Sun 03 Dec 2023 04:54:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141209 IP address blocks: 103.143.242.0/23 maxlen: 23 103.143.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.crl rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE570/serialNumber=71C127D1C06AFC7C454DD1093EB2CB7E12D787C0 Validity Not Before: Dec 3 04:54:43 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656c0a13-492d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:41:b6:6e:4b:67:b3:81:00:55:63:09:a8:e4: 63:a2:3c:68:e0:91:e6:50:9e:a3:9c:9f:59:db:2c: ae:22:5f:bc:35:68:c7:1c:4d:a6:70:67:55:d8:af: 16:ec:d2:ee:15:1e:8b:7e:9b:de:9d:7d:98:6a:cf: d0:76:c0:56:e0:87:7b:bc:9b:d8:46:0e:f6:26:f5: 19:00:8c:c7:f4:cd:6a:16:67:9c:2e:36:e4:b9:cd: 94:52:90:33:f3:46:7a:88:33:24:5f:b3:41:06:06: c0:db:3f:37:c6:64:63:a3:3f:98:b5:d9:5e:af:f2: b1:39:92:43:0f:8e:bd:d3:bf:df:49:d7:0b:3b:92: 68:08:f6:6f:f9:4d:8b:ce:e0:c6:ab:c5:d6:05:02: 47:82:6e:56:ee:55:20:20:a9:36:ec:69:0a:58:f6: 48:9b:0f:1f:c8:5b:2b:70:18:41:51:b4:d5:94:cb: a7:9e:7d:49:47:10:1f:fb:0b:ff:d9:7f:90:d8:94: a7:b5:c1:36:4a:53:b3:bd:93:99:1a:87:f5:84:00: 7d:77:f8:42:de:1f:94:c7:0a:26:bc:0c:36:d6:97: b5:1e:14:57:d7:65:a8:03:32:2a:3c:29:49:5f:61: e7:6a:22:10:98:24:ad:27:e0:b1:fc:16:0d:20:17: b3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9D:37:AA:94:4B:4A:BF:59:13:80:AD:83:B0:47:99:92:71:AF:5E X509v3 Authority Key Identifier: keyid:71:C1:27:D1:C0:6A:FC:7C:45:4D:D1:09:3E:B2:CB:7E:12:D7:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B46C8BFA89AD11ED93CAB75FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.242.0/23 Signature Algorithm: sha256WithRSAEncryption bb:51:f1:1e:e8:15:8d:3a:98:13:05:f1:3c:8a:e1:8e:28:c3: a6:48:1e:cd:5d:c2:2e:f0:81:79:84:a4:1c:0e:58:46:5a:a6: e3:f7:03:5a:61:30:e6:4a:d8:aa:30:a5:bb:87:1a:ae:85:ed: d2:36:b1:ab:55:9c:1f:1a:5f:da:51:d7:2a:f2:ea:81:ff:db: 1b:eb:82:b7:f7:13:e9:75:36:1c:35:3a:80:de:95:12:51:23: fe:5b:98:5f:c9:b6:db:fc:af:2e:b2:53:8b:3d:38:79:47:95: a8:72:b4:68:fb:c7:3c:f8:cb:42:f1:0e:9d:85:40:9e:7e:13: 3c:87:4d:6f:b8:b4:3c:0b:b3:a5:52:2b:57:a9:13:51:e0:86: b3:c7:23:21:d1:5a:dc:de:c9:12:23:a0:38:fc:e4:c9:15:c6: c1:cf:b5:40:11:20:e2:89:60:44:82:ae:d8:9f:0c:bf:ad:f4: 53:c3:14:05:ed:94:ea:8c:3d:80:b2:b5:6e:db:a6:cf:71:bf: 86:83:6f:73:f1:ff:99:99:99:71:f6:91:de:b9:64:36:a3:7b: 9b:01:f2:9e:14:a8:e8:08:99:73:d5:bf:44:48:41:7f:ce:60: 11:71:8e:62:fd:da:53:56:4a:60:75:1a:31:91:a1:dc:88:a2: 10:26:85:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1NzAxMTAvBgNVBAUTKDcxQzEyN0QxQzA2QUZDN0M0NTRERDEwOTNFQjJDQjdF MTJENzg3QzAwHhcNMjMxMjAzMDQ1NDQzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZjMGExMy00OTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0G2bktns4EAVWMJqORjojxo4JHmUJ6jnJ9Z2yyuIl+8NWjHHE2mcGdV2K8W 7NLuFR6LfpvenX2Yas/QdsBW4Id7vJvYRg72JvUZAIzH9M1qFmecLjbkuc2UUpAz 80Z6iDMkX7NBBgbA2z83xmRjoz+Ytdler/KxOZJDD46907/fSdcLO5JoCPZv+U2L zuDGq8XWBQJHgm5W7lUgIKk27GkKWPZImw8fyFsrcBhBUbTVlMunnn1JRxAf+wv/ 2X+Q2JSntcE2SlOzvZOZGof1hAB9d/hC3h+UxwomvAw21pe1HhRX12WoAzIqPClJ X2HnaiIQmCStJ+Cx/BYNIBezCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAmdN6qU S0q/WROArYOwR5mSca9eMB8GA1UdIwQYMBaAFHHBJ9HAavx8RU3RCT6yy34S14fA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTU3MC9DMkNCMTE5QzY1 ODMxMUVEOTYwMDJDMkNDNEY5QUUwMi9jY0VuMGNCcV9IeEZUZEVKUHJMTGZoTFho OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjRW4wY0JxX0h4RlRkRUpQckxMZmhMWGg4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU1NzAvQzJDQjExOUM2NTgzMTFFRDk2MDAyQzJDQzRGOUFFMDIvQjQ2QzhCRkE4 OUFEMTFFRDkzQ0FCNzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnj/IwDQYJKoZIhvcNAQELBQADggEBALtR8R7oFY06mBMF 8TyK4Y4ow6ZIHs1dwi7wgXmEpBwOWEZapuP3A1phMOZK2KowpbuHGq6F7dI2satV nB8aX9pR1yry6oH/2xvrgrf3E+l1Nhw1OoDelRJRI/5bmF/Jttv8ry6yU4s9OHlH lahytGj7xzz4y0LxDp2FQJ5+EzyHTW+4tDwLs6VSK1epE1HghrPHIyHRWtzeyRIj oDj85MkVxsHPtUARIOKJYESCrtifDL+t9FPDFAXtlOqMPYCytW7bps9xv4aDb3Px /5mZmXH2kd65ZDaje5sB8p4UqOgImXPVv0RIQX/OYBFxjmL92lNWSmB1GjGRodyI ohAmhVM= -----END CERTIFICATE-----Generated at Tue May 21 05:59:36 2024 by rpki-client on console-fra.rpki-client.org