$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/397ED08A2F7911ED93B17C0FC4F9AE02.roa File: 397ED08A2F7911ED93B17C0FC4F9AE02.roa (raw, json) Hash identifier: E1mbrjatcBQGvzNE43uIvU6SHzDKCeDrxFEzCGlzOo4= Subject key identifier: 04:50:21:50:AF:FE:DF:A0:19:6C:53:43:6D:B8:E1:23:24:66:24:35 Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 04FF Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/397ED08A2F7911ED93B17C0FC4F9AE02.roa Signing time: Sat 03 Jun 2023 01:38:46 +0000 ROA not before: Sat 03 Jun 2023 01:38:46 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135361 IP address blocks: 103.215.64.0/22 maxlen: 22 103.215.64.0/23 maxlen: 24 103.215.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: Jun 3 01:38:46 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a99a5-0b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:6b:e6:da:4a:4c:de:4a:bc:91:e5:e9:77: 73:71:c8:3c:16:cf:5c:ce:5f:b8:60:72:31:11:3d: 01:88:7d:90:57:ed:38:31:1b:1e:16:cf:f9:ff:e2: 16:ec:d1:bf:a7:02:4f:60:4f:e9:6c:a5:60:25:ee: cd:af:7c:9e:dd:f3:3d:f6:7e:33:8f:85:8c:9f:48: e6:ef:45:89:8f:a5:3f:cb:e8:b7:e7:a6:c4:08:7d: 88:71:7d:8e:35:3e:59:db:9f:48:ba:17:0f:fa:28: 3a:f7:1b:00:9c:92:ca:6e:22:f6:9f:dd:27:70:d2: 8d:83:08:cc:15:54:85:03:61:5f:c3:52:10:ef:32: b8:e5:f8:f4:b8:a9:ff:d2:12:cb:c2:71:8f:47:e7: f0:72:a9:18:7c:cb:4f:95:00:a6:50:de:ae:0c:df: 93:c7:88:50:fa:c6:5e:c8:1c:2f:f6:d9:47:c7:f5: 6c:e2:71:0e:c5:b9:7e:60:77:06:b9:b0:8e:ab:24: 17:9b:57:17:77:7c:67:eb:e4:22:eb:a6:10:61:3c: 6a:0f:b3:34:b5:47:48:22:9c:5b:1f:be:63:6a:c3: d4:80:e0:31:07:e3:bc:9e:3b:19:e9:0e:da:e6:97: d1:3b:c7:8b:c6:a7:b2:ec:50:b4:2d:6d:74:8b:cd: 2d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:50:21:50:AF:FE:DF:A0:19:6C:53:43:6D:B8:E1:23:24:66:24:35 X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/397ED08A2F7911ED93B17C0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.64.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:dd:d8:33:c7:e4:76:61:ab:b6:74:82:42:dc:6f:24:34:65: 55:77:6a:d9:6e:5f:96:a5:71:17:f5:91:21:e1:60:ce:cd:a0: 1d:57:0d:ad:de:75:41:40:a3:0a:5a:af:90:40:1c:0c:a6:04: be:6b:70:2a:ab:38:64:fd:a8:1b:1c:9c:cc:6f:36:c0:5a:f9: ac:38:81:09:ed:e1:1e:90:d3:ad:85:94:0c:f5:cc:14:2e:d7: c5:ff:62:c3:a6:fc:37:64:0b:ce:ca:17:b7:a0:8d:9b:27:f6: 55:3e:54:07:e5:f8:6d:8e:63:14:5b:2d:bb:13:ce:1f:c4:99: 5c:d7:a4:fc:bc:55:5c:3a:1f:b7:2e:e0:4f:d2:5c:df:e3:ea: 18:cd:dc:e9:4c:09:a3:46:2a:eb:63:18:4d:d8:2a:c5:c0:93: d5:85:a1:8d:45:9b:c1:f6:bf:86:c6:59:08:4f:a7:9f:5f:dd: c9:d3:5f:e7:dd:e8:1f:d4:2c:f7:28:9b:43:dd:ac:3c:13:a6: e7:04:e4:b4:3e:63:7b:8e:2a:f0:16:29:37:7e:11:89:fd:29: 1d:f6:ad:e9:a4:71:46:6c:77:65:8e:12:f8:bb:89:f3:34:6a: 65:35:82:50:4b:3f:1d:27:db:fa:66:0e:6b:d7:d8:05:f1:f1: 4d:88:c1:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjMwNjAzMDEzODQ2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhOTlhNS0wYjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE5r5tpKTN5KvJHl6Xdzccg8Fs9czl+4YHIxET0BiH2QV+04MRseFs/5/+IW 7NG/pwJPYE/pbKVgJe7Nr3ye3fM99n4zj4WMn0jm70WJj6U/y+i356bECH2IcX2O NT5Z259IuhcP+ig69xsAnJLKbiL2n90ncNKNgwjMFVSFA2Ffw1IQ7zK45fj0uKn/ 0hLLwnGPR+fwcqkYfMtPlQCmUN6uDN+Tx4hQ+sZeyBwv9tlHx/Vs4nEOxbl+YHcG ubCOqyQXm1cXd3xn6+Qi66YQYTxqD7M0tUdIIpxbH75jasPUgOAxB+O8njsZ6Q7a 5pfRO8eLxqey7FC0LW10i80t1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFARQIVCv /t+gGWxTQ2244SMkZiQ1MB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYyRTEvM0Y2OUNDNjY3RjAzMTFFQkEwODFBMDJCQzRGOUFFMDIvMzk3RUQwOEEy Rjc5MTFFRDkzQjE3QzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn10AwDQYJKoZIhvcNAQELBQADggEBAI3d2DPH5HZhq7Z0 gkLcbyQ0ZVV3atluX5alcRf1kSHhYM7NoB1XDa3edUFAowpar5BAHAymBL5rcCqr OGT9qBscnMxvNsBa+aw4gQnt4R6Q062FlAz1zBQu18X/YsOm/DdkC87KF7egjZsn 9lU+VAfl+G2OYxRbLbsTzh/EmVzXpPy8VVw6H7cu4E/SXN/j6hjN3OlMCaNGKutj GE3YKsXAk9WFoY1Fm8H2v4bGWQhPp59f3cnTX+fd6B/ULPcom0PdrDwTpucE5LQ+ Y3uOKvAWKTd+EYn9KR32remkcUZsd2WOEvi7ifM0amU1glBLPx0n2/pmDmvX2AXx 8U2IwbE= -----END CERTIFICATE-----Generated at Tue May 21 01:47:05 2024 by rpki-client on console-fra.rpki-client.org