$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFAFF/D0611F04CC4411ED9A71E10CC4F9AE02/7D215B2CC3C111EE8F83CE1AC4F9AE02.roa File: 7D215B2CC3C111EE8F83CE1AC4F9AE02.roa (raw, json) Hash identifier: jv0ztBTnlZsqV45YVYJrgW/5qqSO9mo5Ej2R2VXacuw= Subject key identifier: 31:A1:B2:4D:D5:D4:E2:54:5B:6E:D0:F0:7C:E2:30:FD:78:80:47:A6 Certificate issuer: /CN=A91EFAFF/serialNumber=51D531AEF7A087C18E301E0E6A2C6371B264C3E8 Certificate serial: F3 Authority key identifier: 51:D5:31:AE:F7:A0:87:C1:8E:30:1E:0E:6A:2C:63:71:B2:64:C3:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdUxrvegh8GOMB4OaixjcbJkw-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFAFF/D0611F04CC4411ED9A71E10CC4F9AE02/7D215B2CC3C111EE8F83CE1AC4F9AE02.roa Signing time: Wed 01 May 2024 06:39:48 +0000 ROA not before: Wed 01 May 2024 06:39:48 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139351 IP address blocks: 103.121.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFAFF/D0611F04CC4411ED9A71E10CC4F9AE02/UdUxrvegh8GOMB4OaixjcbJkw-g.crl rsync://rpki.apnic.net/member_repository/A91EFAFF/D0611F04CC4411ED9A71E10CC4F9AE02/UdUxrvegh8GOMB4OaixjcbJkw-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdUxrvegh8GOMB4OaixjcbJkw-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 04:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFAFF/serialNumber=51D531AEF7A087C18E301E0E6A2C6371B264C3E8 Validity Not Before: May 1 06:39:48 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6631e3b4-e268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b6:4a:ac:b2:1f:8f:3f:eb:03:00:af:f9:42: 55:58:91:ca:83:68:63:07:0e:3f:50:61:9c:bd:3c: c3:e9:08:ea:d3:cd:35:c7:f9:f2:c3:01:54:ee:43: 2e:b8:94:d5:44:3b:d2:5f:98:d0:c4:02:c5:1e:e9: be:23:7d:66:17:c8:16:96:3d:54:3e:b4:d9:f6:d7: dd:04:61:f2:ab:7d:93:87:89:07:1f:50:0e:6f:62: 9a:f9:0f:6a:b6:8e:e9:59:76:6b:c2:be:d7:ea:37: bb:32:95:f9:4b:4f:c7:bf:a0:66:a6:17:6a:54:85: 34:b6:77:da:7e:73:c3:73:b5:89:96:d3:7a:02:ea: 7e:bf:a4:b3:27:5e:93:b1:a3:15:44:66:7a:ac:02: 4e:d1:74:06:cb:1c:a6:e1:da:0e:0d:5b:4a:fe:99: 16:3d:ef:98:3a:14:52:0a:ce:1a:cc:d6:91:e3:a8: a7:f4:d5:6e:01:11:62:4e:ca:1f:e3:0b:64:4f:6a: 13:98:54:dd:29:ca:5b:24:4c:b8:fe:f6:e1:18:c7: 3d:cf:88:eb:94:46:8e:36:ee:fe:21:38:2d:ae:51: 90:bb:d2:fa:bf:ae:3e:44:70:18:41:9a:52:81:20: aa:ec:d8:0d:89:b8:ba:c7:48:83:3d:da:d3:0e:c3: 4f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:A1:B2:4D:D5:D4:E2:54:5B:6E:D0:F0:7C:E2:30:FD:78:80:47:A6 X509v3 Authority Key Identifier: keyid:51:D5:31:AE:F7:A0:87:C1:8E:30:1E:0E:6A:2C:63:71:B2:64:C3:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFAFF/D0611F04CC4411ED9A71E10CC4F9AE02/UdUxrvegh8GOMB4OaixjcbJkw-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdUxrvegh8GOMB4OaixjcbJkw-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFAFF/D0611F04CC4411ED9A71E10CC4F9AE02/7D215B2CC3C111EE8F83CE1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.7.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:f2:b3:fc:45:a3:72:f4:4b:67:40:01:30:f4:a6:cc:d4:b7: 79:2b:b4:7a:d6:41:cc:86:6f:42:e2:1d:51:0f:7e:76:eb:62: 6f:04:dc:ba:19:b5:44:91:0b:ea:6e:cd:49:6a:e3:52:cf:d7: 83:59:62:4a:9a:b6:2e:3c:6c:ac:28:d3:aa:f6:ae:df:b2:57: e6:a1:07:3d:44:7c:3f:51:35:f6:05:d9:da:d1:ca:9f:6b:03: 80:74:3e:2f:4e:7e:a2:35:d0:db:c0:28:c6:e9:91:f7:18:ec: 4e:1b:60:44:35:63:a9:9f:d6:78:d9:e7:25:bf:32:02:f4:72: 1f:72:d7:dd:53:df:4f:90:ca:43:0c:27:56:4b:89:b0:74:6e: 85:5a:69:5c:0a:45:1b:69:2c:db:17:f6:15:63:21:e2:b4:40: 11:0a:00:f6:d6:91:f0:45:0c:00:d9:bd:f2:5c:9b:05:54:f1: 65:dd:a3:45:c0:4d:86:d1:5b:98:08:e7:12:59:d4:60:98:c0: 9e:dc:a9:5e:e3:c6:0b:9d:68:85:4e:a2:b1:93:4a:6d:5e:32: e3:67:09:e1:d0:33:cd:87:12:9d:5a:ec:62:9d:90:da:8c:f7: f3:3f:cd:bf:cd:25:c8:b3:70:b8:81:d5:ff:c6:eb:92:67:1c: 60:01:1c:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZBRkYxMTAvBgNVBAUTKDUxRDUzMUFFRjdBMDg3QzE4RTMwMUUwRTZBMkM2Mzcx QjI2NEMzRTgwHhcNMjQwNTAxMDYzOTQ4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxZTNiNC1lMjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07ZKrLIfjz/rAwCv+UJVWJHKg2hjBw4/UGGcvTzD6Qjq0801x/nywwFU7kMu uJTVRDvSX5jQxALFHum+I31mF8gWlj1UPrTZ9tfdBGHyq32Th4kHH1AOb2Ka+Q9q to7pWXZrwr7X6je7MpX5S0/Hv6BmphdqVIU0tnfafnPDc7WJltN6Aup+v6SzJ16T saMVRGZ6rAJO0XQGyxym4doODVtK/pkWPe+YOhRSCs4azNaR46in9NVuARFiTsof 4wtkT2oTmFTdKcpbJEy4/vbhGMc9z4jrlEaONu7+ITgtrlGQu9L6v64+RHAYQZpS gSCq7NgNibi6x0iDPdrTDsNPvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDGhsk3V 1OJUW27Q8HziMP14gEemMB8GA1UdIwQYMBaAFFHVMa73oIfBjjAeDmosY3GyZMPo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkFGRi9EMDYxMUYwNEND NDQxMUVEOUE3MUUxMENDNEY5QUUwMi9VZFV4cnZlZ2g4R09NQjRPYWl4amNiSmt3 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VkVXhydmVnaDhHT01CNE9haXhqY2JKa3ctZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZBRkYvRDA2MTFGMDRDQzQ0MTFFRDlBNzFFMTBDQzRGOUFFMDIvN0QyMTVCMkND M0MxMTFFRThGODNDRTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneQcwDQYJKoZIhvcNAQELBQADggEBABrys/xFo3L0S2dA ATD0pszUt3krtHrWQcyGb0LiHVEPfnbrYm8E3LoZtUSRC+puzUlq41LP14NZYkqa ti48bKwo06r2rt+yV+ahBz1EfD9RNfYF2drRyp9rA4B0Pi9OfqI10NvAKMbpkfcY 7E4bYEQ1Y6mf1njZ5yW/MgL0ch9y191T30+QykMMJ1ZLibB0boVaaVwKRRtpLNsX 9hVjIeK0QBEKAPbWkfBFDADZvfJcmwVU8WXdo0XATYbRW5gI5xJZ1GCYwJ7cqV7j xgudaIVOorGTSm1eMuNnCeHQM82HEp1a7GKdkNqM9/M/zb/NJcizcLiB1f/G65Jn HGABHG4= -----END CERTIFICATE-----Generated at Tue Jun 25 06:05:24 2024 by rpki-client on console-fra.rpki-client.org