$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/61B47D886B5211EDB97A2834C4F9AE02.roa File: 61B47D886B5211EDB97A2834C4F9AE02.roa (raw, json) Hash identifier: SkncgeBbiv/lu2mdnjdJvGjNCM0sgqD2W+tqKeNRWjQ= Subject key identifier: EA:0E:32:92:0F:97:A9:08:73:47:CF:70:32:3B:71:A5:AD:4E:B5:A5 Certificate issuer: /CN=A91DFA83/serialNumber=B53450382E45F8A3D7D62910F379C789D147FFB0 Certificate serial: F3 Authority key identifier: B5:34:50:38:2E:45:F8:A3:D7:D6:29:10:F3:79:C7:89:D1:47:FF:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTRQOC5F-KPX1ikQ83nHidFH_7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/61B47D886B5211EDB97A2834C4F9AE02.roa Signing time: Tue 13 Feb 2024 04:55:56 +0000 ROA not before: Tue 13 Feb 2024 04:55:56 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 132022 IP address blocks: 103.246.204.0/24 maxlen: 24 103.246.205.0/24 maxlen: 24 103.246.206.0/24 maxlen: 24 103.246.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/tTRQOC5F-KPX1ikQ83nHidFH_7A.crl rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/tTRQOC5F-KPX1ikQ83nHidFH_7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTRQOC5F-KPX1ikQ83nHidFH_7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFA83/serialNumber=B53450382E45F8A3D7D62910F379C789D147FFB0 Validity Not Before: Feb 13 04:55:56 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65caf65c-0bcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bc:17:32:dd:20:fa:e8:d5:0d:39:e7:5f:8c: 62:8d:21:06:dd:c2:3e:e8:46:88:e7:c7:4d:73:b0: 6e:13:f0:14:6c:9d:f9:52:2f:4d:b6:24:fd:84:f7: 0e:9c:cd:b0:66:aa:0d:cc:e7:2a:a4:4b:d3:f1:77: a6:10:ee:db:e3:c6:64:93:27:5b:bd:06:3b:e7:aa: 0d:44:37:aa:12:63:dc:72:74:1d:8c:98:d7:45:1f: bc:dd:f1:50:49:00:3c:c8:8f:24:70:e2:66:55:fc: 2c:7a:2c:b7:68:48:44:2b:8c:18:1e:10:d7:ec:75: dd:03:44:f3:c3:77:b0:c0:ac:95:63:45:4d:8b:a8: 06:08:d6:4d:ef:45:cc:37:2f:14:68:6f:da:6b:a9: 59:ed:07:a1:db:88:0c:34:60:87:d3:5e:71:fd:19: 29:2b:b3:90:de:68:f6:e0:4b:e1:d2:68:0f:b4:cd: 92:b7:22:13:bc:c7:4b:9a:33:c5:73:2f:c9:33:ee: fd:2c:a5:ad:91:ea:9b:e1:48:87:4a:04:37:6c:0e: 89:2a:83:24:73:55:31:c5:67:5b:b7:f5:fb:51:46: f9:9f:96:d9:af:fc:1f:1f:48:cb:fb:b5:de:4c:7f: 07:6d:86:69:fa:52:d3:b5:7b:f1:35:f7:b6:b7:12: 74:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:0E:32:92:0F:97:A9:08:73:47:CF:70:32:3B:71:A5:AD:4E:B5:A5 X509v3 Authority Key Identifier: keyid:B5:34:50:38:2E:45:F8:A3:D7:D6:29:10:F3:79:C7:89:D1:47:FF:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/tTRQOC5F-KPX1ikQ83nHidFH_7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTRQOC5F-KPX1ikQ83nHidFH_7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/61B47D886B5211EDB97A2834C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.204.0/22 Signature Algorithm: sha256WithRSAEncryption 82:97:ce:fb:1f:3b:b8:31:c0:5f:6c:e2:24:ed:a4:56:7d:fd: 03:02:14:96:10:2d:e8:e1:70:6b:c2:c9:bc:44:68:7c:3e:54: 52:d7:d8:6d:09:84:2b:f0:bb:68:f4:d7:1c:97:14:0c:31:49: 4d:c0:f0:f2:2d:cb:6d:81:d4:ad:2c:b0:b4:4b:62:e2:73:f8: f6:9c:dc:c5:77:17:bd:87:e5:e5:a5:78:d7:b7:b1:f0:5b:45: 9c:87:a4:06:d4:82:68:2f:79:25:a6:c3:14:6c:83:0b:ce:e6: 16:64:41:5d:2f:76:15:dc:57:b8:b9:41:20:fc:5e:43:c6:b3: 01:5a:cb:41:83:4f:ed:5c:dd:f7:9a:b7:df:2a:8a:e0:e9:17: 32:34:e7:85:6b:34:21:07:3c:4f:2a:2b:6b:2e:1a:9e:9c:99: 2e:52:72:b4:b2:3a:06:c0:f3:c1:c0:33:e2:b3:3f:a6:fe:34: 04:3f:47:f9:84:16:8f:66:a0:42:d7:c8:8a:e0:ab:5c:8e:a4: af:40:c3:f7:ea:bc:3b:70:dc:a7:f8:c2:b9:36:b7:bf:73:15: 2a:75:03:52:30:fb:02:96:e9:6b:a2:fc:da:00:10:3b:99:f9: 1e:7e:44:57:15:df:6d:8e:60:c3:e1:5f:ef:cd:c2:c2:4f:98: 2a:19:8e:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZBODMxMTAvBgNVBAUTKEI1MzQ1MDM4MkU0NUY4QTNEN0Q2MjkxMEYzNzlDNzg5 RDE0N0ZGQjAwHhcNMjQwMjEzMDQ1NTU2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNhZjY1Yy0wYmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7wXMt0g+ujVDTnnX4xijSEG3cI+6EaI58dNc7BuE/AUbJ35Ui9NtiT9hPcO nM2wZqoNzOcqpEvT8XemEO7b48ZkkydbvQY756oNRDeqEmPccnQdjJjXRR+83fFQ SQA8yI8kcOJmVfwseiy3aEhEK4wYHhDX7HXdA0Tzw3ewwKyVY0VNi6gGCNZN70XM Ny8UaG/aa6lZ7Qeh24gMNGCH015x/RkpK7OQ3mj24Evh0mgPtM2StyITvMdLmjPF cy/JM+79LKWtkeqb4UiHSgQ3bA6JKoMkc1UxxWdbt/X7UUb5n5bZr/wfH0jL+7Xe TH8HbYZp+lLTtXvxNfe2txJ0hwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOoOMpIP l6kIc0fPcDI7caWtTrWlMB8GA1UdIwQYMBaAFLU0UDguRfij19YpEPN5x4nRR/+w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkE4My82NEFGODAwMjZC MzIxMUVEQjRFQ0I3NjhDNEY5QUUwMi90VFJRT0M1Ri1LUFgxaWtRODNuSGlkRkhf N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RUUlFPQzVGLUtQWDFpa1E4M25IaWRGSF83QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZBODMvNjRBRjgwMDI2QjMyMTFFREI0RUNCNzY4QzRGOUFFMDIvNjFCNDdEODg2 QjUyMTFFREI5N0EyODM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn9swwDQYJKoZIhvcNAQELBQADggEBAIKXzvsfO7gxwF9s 4iTtpFZ9/QMCFJYQLejhcGvCybxEaHw+VFLX2G0JhCvwu2j01xyXFAwxSU3A8PIt y22B1K0ssLRLYuJz+Pac3MV3F72H5eWleNe3sfBbRZyHpAbUgmgveSWmwxRsgwvO 5hZkQV0vdhXcV7i5QSD8XkPGswFay0GDT+1c3feat98qiuDpFzI054VrNCEHPE8q K2suGp6cmS5ScrSyOgbA88HAM+KzP6b+NAQ/R/mEFo9moELXyIrgq1yOpK9Aw/fq vDtw3Kf4wrk2t79zFSp1A1Iw+wKW6Wui/NoAEDuZ+R5+RFcV322OYMPhX+/NwsJP mCoZjs0= -----END CERTIFICATE-----Generated at Sat May 25 06:26:54 2024 by rpki-client on console-fra.rpki-client.org