$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa File: 7043D43679BB11ECB6D72266C4F9AE02.roa (raw, json) Hash identifier: xOxXMfOXHt2qRd+Rnz4yuRb/4BHfIz/GTJSc2sQzyVo= Subject key identifier: 0D:F9:87:25:9A:64:63:8B:33:65:8B:19:5E:51:58:E1:B2:7D:67:1B Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0C95 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa Signing time: Fri 22 Sep 2023 18:36:06 +0000 ROA not before: Fri 22 Sep 2023 18:36:06 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133929 IP address blocks: 103.141.236.0/23 maxlen: 23 103.141.236.0/24 maxlen: 24 103.141.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Sep 22 18:36:06 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650dde96-6479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e5:01:a1:a3:2c:39:be:7e:8d:ad:b8:85:d5: 22:c8:6d:03:af:27:35:bc:08:7e:ae:06:26:fa:9d: 34:98:15:ba:ee:43:0b:ea:2b:52:52:f6:1e:e5:99: 50:4e:fd:38:82:d5:2f:0d:b4:1c:e4:52:a5:38:15: c3:ba:33:24:95:68:50:5f:1e:0f:8d:73:ec:33:06: fc:37:01:ad:26:41:fd:af:67:65:28:10:b3:8e:27: ee:10:b1:cd:77:da:c7:50:b7:ff:49:06:e8:26:76: 4f:df:a9:48:8a:2b:02:8b:dd:87:40:e6:8a:62:3f: 60:77:0b:52:f0:99:48:ab:9b:e3:b7:20:9a:32:72: a3:4d:d0:26:a2:9a:cc:4b:28:22:87:13:c2:5a:43: 2c:14:1f:88:0d:9d:fc:05:6f:3e:42:a3:05:a5:81: f5:3a:b2:bb:4f:35:1f:ec:8b:06:59:f5:dd:4e:3d: 25:74:2f:72:1d:2f:e3:4d:6d:61:18:79:ea:18:96: fb:57:e9:34:de:99:83:86:00:04:26:90:44:43:61: 73:e2:2e:e4:a1:29:42:04:fe:46:8a:78:4f:aa:c8: e6:6f:99:0c:2f:85:d5:ab:cd:2a:55:06:05:f4:06: fd:b9:85:14:fb:0b:52:f6:c0:d5:89:21:83:97:aa: 77:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F9:87:25:9A:64:63:8B:33:65:8B:19:5E:51:58:E1:B2:7D:67:1B X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.236.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:68:fb:58:fe:06:0f:d8:e5:88:92:bc:86:ca:9f:7e:05:5e: 2a:36:7e:40:03:ae:55:a6:4f:db:04:27:cc:44:b2:05:eb:fb: 2a:84:d8:e1:f4:5d:24:fc:5b:d0:42:44:8a:47:b5:21:48:55: ab:b6:44:12:79:05:2a:11:b0:6e:7d:fd:5a:1c:79:ad:23:47: 64:f9:f9:d4:4c:75:e5:be:c2:05:7d:18:7a:d5:2a:0e:49:3d: 08:82:68:d2:45:31:96:9f:11:e0:42:f6:10:43:e6:fa:1c:48: fd:9e:a5:c3:55:b2:3e:b7:2f:4c:21:8c:fe:da:fe:dd:a5:9f: 56:46:13:3f:ec:8b:bf:13:ee:d1:6a:db:6d:50:cb:e0:ec:9b: ca:83:88:7d:97:5f:71:8c:d1:ef:8c:eb:3d:8c:39:79:0f:c5: ba:d7:a3:63:39:54:0d:ad:db:37:64:a4:23:e8:65:8b:35:c0: 17:41:f8:bd:6c:98:02:20:32:be:71:84:c9:6d:59:b6:33:3f: 60:f7:03:55:6c:5c:94:24:b2:ce:e6:bd:ed:96:3d:73:ed:7b: a2:2f:59:78:f5:fb:e1:c7:6f:59:5f:6d:9e:48:47:dd:b6:b4: cf:01:5c:a6:a4:82:5b:a9:d3:14:57:7d:d5:03:e6:56:14:27: aa:e4:cd:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjMwOTIyMTgzNjA2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBkZGU5Ni02NDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOUBoaMsOb5+ja24hdUiyG0Dryc1vAh+rgYm+p00mBW67kML6itSUvYe5ZlQ Tv04gtUvDbQc5FKlOBXDujMklWhQXx4PjXPsMwb8NwGtJkH9r2dlKBCzjifuELHN d9rHULf/SQboJnZP36lIiisCi92HQOaKYj9gdwtS8JlIq5vjtyCaMnKjTdAmoprM SygihxPCWkMsFB+IDZ38BW8+QqMFpYH1OrK7TzUf7IsGWfXdTj0ldC9yHS/jTW1h GHnqGJb7V+k03pmDhgAEJpBEQ2Fz4i7koSlCBP5GinhPqsjmb5kML4XVq80qVQYF 9Ab9uYUU+wtS9sDViSGDl6p32QIDAQABo4IClTCCApEwHQYDVR0OBBYEFA35hyWa ZGOLM2WLGV5RWOGyfWcbMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYwNzYvQTQwOEY1ODJCOTA0MTFFOUIxRDUwQjQxQzRGOUFFMDIvNzA0M0Q0MzY3 OUJCMTFFQ0I2RDcyMjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjewwDQYJKoZIhvcNAQELBQADggEBAH9o+1j+Bg/Y5YiS vIbKn34FXio2fkADrlWmT9sEJ8xEsgXr+yqE2OH0XST8W9BCRIpHtSFIVau2RBJ5 BSoRsG59/Vocea0jR2T5+dRMdeW+wgV9GHrVKg5JPQiCaNJFMZafEeBC9hBD5voc SP2epcNVsj63L0whjP7a/t2ln1ZGEz/si78T7tFq221Qy+Dsm8qDiH2XX3GM0e+M 6z2MOXkPxbrXo2M5VA2t2zdkpCPoZYs1wBdB+L1smAIgMr5xhMltWbYzP2D3A1Vs XJQkss7mve2WPXPte6IvWXj1++HHb1lfbZ5IR922tM8BXKakglup0xRXfdUD5lYU J6rkze0= -----END CERTIFICATE-----Generated at Wed May 8 21:04:04 2024 by rpki-client on console-fra.rpki-client.org