$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/33A8447E3D0111EA9B37B256C4F9AE02.roa File: 33A8447E3D0111EA9B37B256C4F9AE02.roa (raw, json) Hash identifier: cOUG9AZv4ens5bJXYGgDSu06OlyCFYAg055PsMNTDCk= Subject key identifier: 33:E7:56:23:C5:9A:43:3E:77:10:3A:BE:43:30:7D:89:A4:03:2F:B6 Certificate issuer: /CN=A91E1A60/serialNumber=2E823D59496CFAC7378FA82BF84DDF684D932B9D Certificate serial: 09C1 Authority key identifier: 2E:82:3D:59:49:6C:FA:C7:37:8F:A8:2B:F8:4D:DF:68:4D:93:2B:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/33A8447E3D0111EA9B37B256C4F9AE02.roa Signing time: Tue 04 Jul 2023 20:07:02 +0000 ROA not before: Tue 04 Jul 2023 20:07:02 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 139227 IP address blocks: 103.140.24.0/23 maxlen: 24 2404:f640::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.crl rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2497 (0x9c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1A60/serialNumber=2E823D59496CFAC7378FA82BF84DDF684D932B9D Validity Not Before: Jul 4 20:07:02 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a47be6-8161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:45:b5:0a:85:23:19:e1:0d:35:f7:1f:f6:fb: 58:53:92:b0:20:75:12:38:05:57:2c:6a:99:de:c2: c3:82:d9:59:b7:75:84:e0:b3:04:bb:8a:66:1f:65: 43:7b:5f:f2:97:f9:a1:b1:d0:6a:84:14:1c:94:39: 06:c3:bf:43:a8:bf:70:ad:f1:bf:32:c6:45:e3:63: b1:b7:09:b1:d2:8d:9c:0b:62:a3:55:5e:8e:24:a1: 54:99:93:4c:89:53:07:4b:a0:1b:e1:34:a5:4e:2e: 20:e0:8d:f1:6d:48:0d:3d:24:59:80:e6:13:c2:0b: 7f:de:d2:a5:81:4e:96:95:7d:b8:f5:56:4a:bd:31: ff:31:de:53:07:cf:2d:83:cd:9f:4c:44:48:ec:8d: f1:04:fc:4d:0b:ce:5b:b8:23:10:99:77:a4:9a:57: d0:9a:23:1c:d7:b2:ca:de:1e:a1:c6:67:e4:9f:5f: e4:57:b0:86:5b:14:38:56:a3:75:a8:1e:c8:ab:03: 60:cd:81:53:11:27:44:12:ae:25:dc:a5:91:71:0b: 45:d0:15:23:b3:87:38:b5:e2:ac:74:9f:0f:f8:fb: a6:63:b3:55:26:2f:0a:b9:57:9b:cd:1e:e8:22:6d: cc:2c:99:73:04:65:1f:18:ce:e5:f8:e3:7c:40:17: d3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E7:56:23:C5:9A:43:3E:77:10:3A:BE:43:30:7D:89:A4:03:2F:B6 X509v3 Authority Key Identifier: keyid:2E:82:3D:59:49:6C:FA:C7:37:8F:A8:2B:F8:4D:DF:68:4D:93:2B:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/33A8447E3D0111EA9B37B256C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.24.0/23 IPv6: 2404:f640::/32 Signature Algorithm: sha256WithRSAEncryption 2c:e7:e1:f0:05:08:84:bb:3a:a2:2d:8e:f8:18:00:af:73:35: 5e:6c:f5:18:f4:af:65:16:84:36:10:84:35:71:5c:07:b7:40: 13:73:b4:8d:ed:77:ee:cc:b1:b3:9d:a5:2d:09:72:84:8d:aa: 04:42:11:f6:56:93:8e:57:95:eb:00:ad:b8:30:0d:41:ab:68: 4a:d8:fd:ec:c4:60:74:1e:b5:10:65:9b:af:f8:0b:5d:a4:33: cd:e6:de:b2:15:d0:c0:7d:63:6e:15:23:b3:d4:b8:f6:4c:3b: 1e:ef:ec:ac:c8:4e:d9:95:3f:82:2a:e2:44:34:87:be:30:0d: 86:b2:51:2a:f0:a2:94:0b:54:6e:c3:49:60:bf:0b:2e:04:6d: 0a:22:b1:1c:74:8a:69:ee:19:3d:c2:ed:4d:cd:e8:b1:17:21: 03:8c:58:ba:17:5f:04:6e:da:84:04:b8:05:62:a5:75:17:74: cf:bb:8e:9c:cb:53:57:3b:77:2a:36:2f:d0:02:96:27:8d:93: b0:99:84:47:75:c8:3d:9b:b1:34:a4:fe:3e:ba:92:a3:33:63: 3a:80:38:95:85:26:a4:eb:aa:57:24:f2:16:60:fb:12:49:ca: 0e:23:85:a2:c0:c5:7b:fe:d9:2b:06:98:f5:98:5f:e0:93:d6: 35:8a:e9:5f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFBNjAxMTAvBgNVBAUTKDJFODIzRDU5NDk2Q0ZBQzczNzhGQTgyQkY4NERERjY4 NEQ5MzJCOUQwHhcNMjMwNzA0MjAwNzAyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0N2JlNi04MTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0W1CoUjGeENNfcf9vtYU5KwIHUSOAVXLGqZ3sLDgtlZt3WE4LMEu4pmH2VD e1/yl/mhsdBqhBQclDkGw79DqL9wrfG/MsZF42Oxtwmx0o2cC2KjVV6OJKFUmZNM iVMHS6Ab4TSlTi4g4I3xbUgNPSRZgOYTwgt/3tKlgU6WlX249VZKvTH/Md5TB88t g82fTERI7I3xBPxNC85buCMQmXekmlfQmiMc17LK3h6hxmfkn1/kV7CGWxQ4VqN1 qB7IqwNgzYFTESdEEq4l3KWRcQtF0BUjs4c4teKsdJ8P+PumY7NVJi8KuVebzR7o Im3MLJlzBGUfGM7l+ON8QBfT5QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDPnViPF mkM+dxA6vkMwfYmkAy+2MB8GA1UdIwQYMBaAFC6CPVlJbPrHN4+oK/hN32hNkyud MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUE2MC84MDMxNEY4NjND RkYxMUVBODIxMDgyNTNDNEY5QUUwMi9Mb0k5V1Vscy1zYzNqNmdyLUUzZmFFMlRL NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xvSTlXVWxzLXNjM2o2Z3ItRTNmYUUyVEs1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFBNjAvODAzMTRGODYzQ0ZGMTFFQTgyMTA4MjUzQzRGOUFFMDIvMzNBODQ0N0Uz RDAxMTFFQTlCMzdCMjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjBgwDQQCAAIwBwMFACQE9kAwDQYJKoZIhvcNAQELBQAD ggEBACzn4fAFCIS7OqItjvgYAK9zNV5s9Rj0r2UWhDYQhDVxXAe3QBNztI3td+7M sbOdpS0JcoSNqgRCEfZWk45XlesArbgwDUGraErY/ezEYHQetRBlm6/4C12kM83m 3rIV0MB9Y24VI7PUuPZMOx7v7KzITtmVP4Iq4kQ0h74wDYayUSrwopQLVG7DSWC/ Cy4EbQoisRx0imnuGT3C7U3N6LEXIQOMWLoXXwRu2oQEuAVipXUXdM+7jpzLU1c7 dyo2L9AClieNk7CZhEd1yD2bsTSk/j66kqMzYzqAOJWFJqTrqlck8hZg+xJJyg4j haLAxXv+2SsGmPWYX+CT1jWK6V8= -----END CERTIFICATE-----Generated at Thu May 16 21:45:31 2024 by rpki-client on console-fra.rpki-client.org