$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa File: 7043D43679BB11ECB6D72266C4F9AE02.roa (raw, json) Hash identifier: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE= Subject key identifier: 0F:7F:5E:97:1D:4D:66:2D:23:60:9A:DF:17:C3:11:F5:EA:EB:E2:15 Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0D49 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa Signing time: Mon 02 Sep 2024 18:56:28 +0000 ROA not before: Mon 02 Sep 2024 18:56:28 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133929 IP address blocks: 103.141.236.0/23 maxlen: 23 103.141.236.0/24 maxlen: 24 103.141.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3401 (0xd49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Sep 2 18:56:28 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d60a5b-f962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d5:8a:5c:32:1f:ab:8c:ac:c7:09:ab:c1:18: 06:92:99:fe:f4:a4:77:6e:fe:4b:51:a5:8f:f8:68: 80:ad:95:0b:5b:e6:ca:b2:0d:02:3f:82:c5:3d:d9: bf:56:e4:e5:64:08:a0:0b:d2:63:f5:01:5a:f1:2e: f8:4c:c0:19:e6:6a:40:0b:17:72:5c:57:72:5a:ce: 33:7c:ff:5d:4c:04:7b:e0:c5:05:3b:ad:1c:01:2c: ee:56:4d:d8:f9:40:fe:b0:85:df:04:17:2c:c4:53: 83:68:f1:e3:9e:b5:7f:97:b4:91:db:a4:f2:3a:04: fe:82:74:b2:2c:c6:5d:a5:71:ec:80:44:6a:c4:29: 24:52:16:65:d4:af:1c:3b:9e:fb:af:f9:5d:26:09: 14:23:f8:0c:ae:e6:c8:8e:d9:0a:04:a7:f7:5b:9b: 4b:fb:74:94:26:ba:1c:6c:71:61:6c:9f:a3:e7:45: 97:44:49:d7:78:b6:ac:83:5c:90:f6:93:66:10:f4: 7f:85:a3:71:62:c0:87:72:fa:11:f2:e7:d2:1e:d5: 3b:b8:70:79:5c:11:8a:9c:73:d8:5f:42:3d:3a:b6: 23:c9:a1:12:9c:ab:20:08:c0:e9:4d:25:50:8f:42: 51:af:9f:8d:66:72:b6:07:6a:86:df:05:5a:bf:a8: 1f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:7F:5E:97:1D:4D:66:2D:23:60:9A:DF:17:C3:11:F5:EA:EB:E2:15 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.236.0/23 Signature Algorithm: sha256WithRSAEncryption 45:ee:d1:40:ee:44:ed:d6:31:13:0e:e9:6b:c7:a5:c1:0b:8c: 96:be:b6:b1:c4:28:98:07:27:7b:72:83:6a:31:42:0f:23:66: 97:be:7c:0a:22:ba:cd:fd:21:4b:83:80:cd:59:82:5c:de:5e: 24:09:f8:cb:db:42:ae:24:4c:63:b6:fa:e9:49:ec:25:94:d2: 0e:a1:26:b0:5c:27:70:d0:67:c9:ae:21:dd:af:2e:5c:88:c6: 1b:2f:95:b8:82:48:37:07:29:10:d7:9f:40:50:d8:cf:51:57: 95:14:e9:c7:f0:72:f3:ee:da:62:63:a3:99:12:2f:d4:c8:7b: db:8c:21:0d:5a:2a:de:e2:f8:16:5f:fe:fc:79:ec:94:4c:86: 74:36:74:69:f8:8d:5d:22:4a:c3:7b:b7:5c:5a:66:5b:f4:21: 4b:0b:87:62:83:e0:e4:4f:e3:fc:c3:14:0f:09:ab:0d:04:b5: 9e:ee:fd:20:d6:51:e5:27:c7:2d:38:da:e5:09:4e:69:ca:c8: 04:14:5c:a1:46:fe:be:e0:1b:2b:3e:d9:46:ea:45:3e:21:5d: 2b:1a:41:7c:61:24:eb:f8:ad:22:f1:71:7f:ef:31:88:ba:ec: bd:be:16:9d:6c:02:ad:6c:5d:0c:6d:36:c1:22:00:8b:cf:78: 5b:02:a5:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjQwOTAyMTg1NjI4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2MGE1Yi1mOTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdWKXDIfq4ysxwmrwRgGkpn+9KR3bv5LUaWP+GiArZULW+bKsg0CP4LFPdm/ VuTlZAigC9Jj9QFa8S74TMAZ5mpACxdyXFdyWs4zfP9dTAR74MUFO60cASzuVk3Y +UD+sIXfBBcsxFODaPHjnrV/l7SR26TyOgT+gnSyLMZdpXHsgERqxCkkUhZl1K8c O577r/ldJgkUI/gMrubIjtkKBKf3W5tL+3SUJrocbHFhbJ+j50WXREnXeLasg1yQ 9pNmEPR/haNxYsCHcvoR8ufSHtU7uHB5XBGKnHPYX0I9OrYjyaESnKsgCMDpTSVQ j0JRr5+NZnK2B2qG3wVav6gfRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA9/Xpcd TWYtI2Ca3xfDEfXq6+IVMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYwNzYvQTQwOEY1ODJCOTA0MTFFOUIxRDUwQjQxQzRGOUFFMDIvNzA0M0Q0MzY3 OUJCMTFFQ0I2RDcyMjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjewwDQYJKoZIhvcNAQELBQADggEBAEXu0UDuRO3WMRMO 6WvHpcELjJa+trHEKJgHJ3tyg2oxQg8jZpe+fAoius39IUuDgM1ZglzeXiQJ+Mvb Qq4kTGO2+ulJ7CWU0g6hJrBcJ3DQZ8muId2vLlyIxhsvlbiCSDcHKRDXn0BQ2M9R V5UU6cfwcvPu2mJjo5kSL9TIe9uMIQ1aKt7i+BZf/vx57JRMhnQ2dGn4jV0iSsN7 t1xaZlv0IUsLh2KD4ORP4/zDFA8Jqw0EtZ7u/SDWUeUnxy042uUJTmnKyAQUXKFG /r7gGys+2UbqRT4hXSsaQXxhJOv4rSLxcX/vMYi67L2+Fp1sAq1sXQxtNsEiAIvP eFsCpX8= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:08 2024 by rpki-client on console-ams.rpki-client.org