$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/397ED08A2F7911ED93B17C0FC4F9AE02.roa File: 397ED08A2F7911ED93B17C0FC4F9AE02.roa (raw, json) Hash identifier: zfaY1cNWt+kwCxFOi06ByxEpzX/DlmwX7UsrdOWHxWY= Subject key identifier: 31:67:62:E7:A0:CC:41:B6:01:21:B5:69:16:67:A2:1D:63:EF:CF:8C Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 05BD Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/397ED08A2F7911ED93B17C0FC4F9AE02.roa Signing time: Fri 31 May 2024 00:54:29 +0000 ROA not before: Fri 31 May 2024 00:54:29 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135361 IP address blocks: 103.215.64.0/22 maxlen: 22 103.215.64.0/23 maxlen: 24 103.215.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1469 (0x5bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: May 31 00:54:29 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66591fc5-4168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8a:b4:ae:ab:d6:16:49:38:76:58:df:31:2b: 4c:ac:b9:1c:df:9b:79:61:05:dd:d2:b8:6f:f7:97: e1:cf:2f:9f:9d:8e:c1:dc:7f:d2:6c:89:dd:75:b3: 57:c4:9c:bc:f6:fb:3e:4b:ff:2a:98:ba:f5:d9:ea: 05:3e:9a:a1:0e:e8:e7:5a:52:57:d0:41:91:c8:82: b0:2a:66:42:d1:2d:c7:25:fa:a4:00:b5:48:bc:ed: 74:85:e9:c6:f1:be:64:50:26:e4:4c:43:18:37:67: 07:61:ca:1e:fb:ed:cd:f1:7a:b8:1a:96:81:ed:1e: b3:d4:84:03:40:3f:99:d3:20:89:8a:93:28:b9:87: f9:88:92:49:3f:51:f9:d1:b7:60:8f:a6:c5:b7:5d: d5:c2:2e:4d:12:4c:9a:c6:6d:04:12:c6:29:92:42: 35:09:62:ef:f6:93:03:45:22:eb:c2:86:e7:1c:3a: e8:86:2d:37:cc:e4:06:e8:e3:c7:c2:28:24:70:c5: 5d:8b:98:b8:88:97:3a:c1:f3:1e:77:36:e3:67:19: 05:50:b9:75:dd:3b:8e:79:0d:d5:44:9d:98:94:1d: fe:50:54:50:96:a5:84:90:d8:94:ce:21:68:53:94: 9c:a1:7c:8c:8b:1f:88:b0:30:7e:8a:41:9a:70:31: c2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:67:62:E7:A0:CC:41:B6:01:21:B5:69:16:67:A2:1D:63:EF:CF:8C X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/397ED08A2F7911ED93B17C0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.64.0/22 Signature Algorithm: sha256WithRSAEncryption 22:b2:8c:96:60:a2:cf:69:37:20:70:38:b0:64:72:17:bc:8a: 8c:81:12:44:c0:ea:62:96:0c:c7:45:ff:80:78:87:b3:4c:36: 6d:bf:71:62:25:f9:67:5d:b0:6a:b1:98:32:26:6e:b3:ce:53: aa:28:ee:6e:d9:81:72:be:c8:55:cd:09:2f:2c:fe:15:8a:52: d5:79:ab:d3:49:09:54:1d:d4:ea:92:eb:be:e0:8d:4a:2c:a7: e4:e1:96:f5:22:9b:f2:ba:c8:dd:64:0e:91:f3:03:a2:c6:43: 80:74:9f:6f:a7:37:a4:7c:14:15:36:92:a3:13:8e:69:fe:51: d4:48:16:af:4f:f0:e2:c8:70:a1:8a:c8:8e:26:20:66:38:65: ed:ed:b5:32:11:37:e8:45:53:00:7e:dc:4e:8d:47:3b:72:b2: cd:4e:64:f1:63:73:9c:21:07:31:52:4e:6d:47:6d:8d:db:2c: d2:5f:a3:c6:30:83:e2:cb:61:73:54:90:e4:68:1f:ba:93:72: bf:95:a0:fa:8a:65:4e:fb:a2:f7:6c:4d:9c:70:79:98:a9:5c: a3:22:10:ef:75:d4:97:a0:1b:c6:9b:f5:fc:8b:76:24:1e:dc: f3:f6:45:09:ef:f2:d4:2d:18:cb:9d:e5:7b:90:1c:86:6f:16: 9b:0d:d6:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjQwNTMxMDA1NDI5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5MWZjNS00MTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4q0rqvWFkk4dljfMStMrLkc35t5YQXd0rhv95fhzy+fnY7B3H/SbInddbNX xJy89vs+S/8qmLr12eoFPpqhDujnWlJX0EGRyIKwKmZC0S3HJfqkALVIvO10henG 8b5kUCbkTEMYN2cHYcoe++3N8Xq4GpaB7R6z1IQDQD+Z0yCJipMouYf5iJJJP1H5 0bdgj6bFt13Vwi5NEkyaxm0EEsYpkkI1CWLv9pMDRSLrwobnHDrohi03zOQG6OPH wigkcMVdi5i4iJc6wfMedzbjZxkFULl13TuOeQ3VRJ2YlB3+UFRQlqWEkNiUziFo U5ScoXyMix+IsDB+ikGacDHCzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDFnYueg zEG2ASG1aRZnoh1j78+MMB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYyRTEvM0Y2OUNDNjY3RjAzMTFFQkEwODFBMDJCQzRGOUFFMDIvMzk3RUQwOEEy Rjc5MTFFRDkzQjE3QzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn10AwDQYJKoZIhvcNAQELBQADggEBACKyjJZgos9pNyBw OLBkche8ioyBEkTA6mKWDMdF/4B4h7NMNm2/cWIl+WddsGqxmDImbrPOU6oo7m7Z gXK+yFXNCS8s/hWKUtV5q9NJCVQd1OqS677gjUosp+ThlvUim/K6yN1kDpHzA6LG Q4B0n2+nN6R8FBU2kqMTjmn+UdRIFq9P8OLIcKGKyI4mIGY4Ze3ttTIRN+hFUwB+ 3E6NRztyss1OZPFjc5whBzFSTm1HbY3bLNJfo8Ywg+LLYXNUkORoH7qTcr+VoPqK ZU77ovdsTZxweZipXKMiEO911JegG8ab9fyLdiQe3PP2RQnv8tQtGMud5XuQHIZv FpsN1s0= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:37 2024 by rpki-client on console-fra.rpki-client.org