$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/3E42D72470C211EF8E1C1A53C4F9AE02.roa File: 3E42D72470C211EF8E1C1A53C4F9AE02.roa (raw, json) Hash identifier: r2jQWbLR0w5DwwYuRKtZMoZhI+H3o0efOqmfSGoH/9I= Subject key identifier: BF:CB:B4:B4:3E:07:64:F1:9D:26:81:B1:DC:D8:1E:C4:A5:D9:58:1E Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 0223 Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/3E42D72470C211EF8E1C1A53C4F9AE02.roa Signing time: Thu 12 Sep 2024 04:48:24 +0000 ROA not before: Thu 12 Sep 2024 04:48:24 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135068 IP address blocks: 103.67.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Sep 12 04:48:24 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66e27298-d516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:11:42:42:a7:a8:6f:cf:fc:6c:e5:6a:01:cf: f2:f6:00:1b:02:b2:ff:36:fd:55:68:19:14:61:0d: 0e:29:df:27:28:a1:ed:92:4a:2e:16:5d:54:51:fa: e0:82:9d:a4:11:3a:dc:67:f2:c5:7a:31:ac:79:f3: 0a:d4:2f:9b:92:c7:78:73:31:92:6f:a8:fa:6f:0d: b1:40:89:f3:78:0b:56:31:28:ca:cf:02:11:02:90: 2a:2b:b1:e4:4a:d1:e4:80:e5:b2:05:01:3f:96:00: b2:e3:29:e9:60:70:c2:1c:71:60:0a:6b:e2:53:34: 60:6f:cc:86:78:1d:7d:0e:0e:91:cb:54:f4:8f:bc: 3b:08:d0:f5:f7:7a:f1:06:51:d5:60:7b:8e:9f:9b: a9:fe:ea:bf:fa:b8:3c:2f:35:fd:b7:1b:64:34:b8: 07:dd:ec:12:f7:52:d0:c8:65:e3:ea:7b:95:43:56: 35:90:f8:bb:9b:a4:46:5d:d0:48:a2:38:86:85:14: 0a:d9:17:e4:17:80:20:7f:90:9a:d9:07:53:c2:b5: 13:2b:05:31:7d:f0:24:f8:fe:7e:91:d7:1d:3c:3a: e3:5c:4e:be:d6:5e:f7:ca:b0:4e:66:ea:a2:86:92: 31:b7:08:3d:de:16:5b:a3:a4:94:ce:c5:3f:ec:6e: c1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:CB:B4:B4:3E:07:64:F1:9D:26:81:B1:DC:D8:1E:C4:A5:D9:58:1E X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/3E42D72470C211EF8E1C1A53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.247.0/24 Signature Algorithm: sha256WithRSAEncryption 36:ab:32:57:fb:68:dc:e9:c6:7d:d0:7f:73:62:03:58:02:35: 7e:42:72:68:ad:39:9e:84:4d:ab:9e:7e:0f:b5:86:c5:77:10: 60:40:23:bd:d2:39:e4:d6:d5:15:b8:66:f7:23:be:05:6b:f8: fe:c5:c9:82:50:f4:90:ab:8e:b7:d3:0d:2e:f7:56:cf:0c:bf: 87:83:21:71:c3:9c:59:9d:9e:ee:b3:c4:e3:4c:bc:2d:ed:0d: 86:3b:bd:0b:15:53:c5:60:54:d5:22:b8:ea:55:c1:14:8d:08: 01:b4:b9:cc:76:71:97:33:c8:e6:bc:0f:1e:9c:6b:e2:6e:8b: 65:33:df:3a:b6:67:af:10:f8:55:ef:e7:fe:04:ec:0d:ae:77: df:a9:ad:ae:dc:68:4b:98:b9:04:29:3f:d5:b4:cf:bd:e4:12: 7d:69:b7:eb:4b:0e:da:55:41:95:f0:e5:77:bf:aa:30:ed:7a: a8:b5:ee:a2:4c:8e:7e:d6:33:56:17:41:05:7c:cc:67:a1:73: c4:72:31:ad:1e:95:bb:27:8c:05:1e:5c:27:01:d1:3e:54:9b: 64:62:3e:52:75:5b:12:4f:b3:17:ba:cc:80:d8:8b:d3:b1:c2: c4:dd:7a:9e:c9:25:59:bd:84:e1:d1:a9:01:16:67:5b:69:d2: ad:c0:78:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjQwOTEyMDQ0ODI0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUyNzI5OC1kNTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xFCQqeob8/8bOVqAc/y9gAbArL/Nv1VaBkUYQ0OKd8nKKHtkkouFl1UUfrg gp2kETrcZ/LFejGsefMK1C+bksd4czGSb6j6bw2xQInzeAtWMSjKzwIRApAqK7Hk StHkgOWyBQE/lgCy4ynpYHDCHHFgCmviUzRgb8yGeB19Dg6Ry1T0j7w7CND193rx BlHVYHuOn5up/uq/+rg8LzX9txtkNLgH3ewS91LQyGXj6nuVQ1Y1kPi7m6RGXdBI ojiGhRQK2RfkF4Agf5Ca2QdTwrUTKwUxffAk+P5+kdcdPDrjXE6+1l73yrBOZuqi hpIxtwg93hZbo6SUzsU/7G7BzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL/LtLQ+ B2TxnSaBsdzYHsSl2VgeMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0N0MvN0UwRjU4NzIwMUU5MTFFREFGOEJERTMwQzRGOUFFMDIvM0U0MkQ3MjQ3 MEMyMTFFRjhFMUMxQTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQ/cwDQYJKoZIhvcNAQELBQADggEBADarMlf7aNzpxn3Q f3NiA1gCNX5CcmitOZ6ETauefg+1hsV3EGBAI73SOeTW1RW4ZvcjvgVr+P7FyYJQ 9JCrjrfTDS73Vs8Mv4eDIXHDnFmdnu6zxONMvC3tDYY7vQsVU8VgVNUiuOpVwRSN CAG0ucx2cZczyOa8Dx6ca+Jui2Uz3zq2Z68Q+FXv5/4E7A2ud9+pra7caEuYuQQp P9W0z73kEn1pt+tLDtpVQZXw5Xe/qjDteqi17qJMjn7WM1YXQQV8zGehc8RyMa0e lbsnjAUeXCcB0T5Um2RiPlJ1WxJPsxe6zIDYi9OxwsTdep7JJVm9hOHRqQEWZ1tp 0q3AeCE= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:08 2024 by rpki-client on console-fra.rpki-client.org