$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/F3210638F06D11ED9055A212C4F9AE02.roa File: F3210638F06D11ED9055A212C4F9AE02.roa (raw, json) Hash identifier: 2X5jx6X75tKEOxFsKjMVap1yMnHeZJOzPkaHa0il1ag= Subject key identifier: 86:BB:DD:7A:72:6E:BB:BC:5A:4A:CE:64:EB:E1:BA:04:77:F4:85:16 Certificate issuer: /CN=A91F8ADF/serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9 Certificate serial: 91 Authority key identifier: E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/F3210638F06D11ED9055A212C4F9AE02.roa Signing time: Fri 09 Feb 2024 05:47:32 +0000 ROA not before: Fri 09 Feb 2024 05:47:32 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 140046 IP address blocks: 103.147.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8ADF/serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9 Validity Not Before: Feb 9 05:47:32 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c5bc74-fbd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:49:aa:92:ee:0a:9b:51:f7:1c:b6:52:33:84: 73:fc:69:16:0b:f0:3a:13:6d:56:fb:7d:44:4e:08: 9f:cc:d5:a3:d2:a2:00:1b:e5:5b:7f:38:4e:71:f8: d7:21:45:54:4a:ec:3b:26:ac:0b:de:6c:56:e5:57: aa:13:f2:53:ee:11:f3:a1:22:f2:18:9c:d3:bd:a5: c6:da:67:60:7a:d3:a3:6d:53:2c:f2:6b:d4:39:88: e1:95:7f:61:32:3c:8c:27:f7:19:34:4f:da:f1:fd: aa:b4:ab:a9:d5:75:fe:46:1d:f2:da:69:96:77:71: de:4c:43:1f:aa:2c:37:05:c4:d5:1b:5c:7e:5f:94: 8a:d4:e2:87:8b:c7:8d:ad:42:cc:b1:e1:ca:6d:92: 6b:54:f3:c1:72:07:dd:b8:ae:f3:cb:f2:8a:dc:f3: d8:6a:25:42:cb:9d:63:a0:f3:d8:cf:a1:88:e5:6c: 6c:65:2b:ae:6b:85:ae:2c:dd:1e:c9:21:01:80:77: 05:c6:e7:8b:b5:60:d5:3b:0e:2f:82:32:c6:a0:60: 2c:03:54:58:01:19:98:bc:90:da:85:4e:88:37:b8: 60:96:8e:78:07:44:c7:39:c4:91:10:a5:6e:1d:d8: 39:83:96:c7:53:ee:60:49:a4:ce:65:32:1b:d3:32: 73:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:BB:DD:7A:72:6E:BB:BC:5A:4A:CE:64:EB:E1:BA:04:77:F4:85:16 X509v3 Authority Key Identifier: keyid:E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/F3210638F06D11ED9055A212C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.195.0/24 Signature Algorithm: sha256WithRSAEncryption db:2b:3f:c7:93:47:a3:f8:20:a3:c9:ec:02:ae:d2:d8:8b:ef: f5:03:d2:50:49:7b:17:06:30:4e:45:c9:a7:ac:71:b4:38:78: 94:44:c3:ed:8e:d7:90:4a:5e:0e:cc:11:28:90:ab:d9:55:f0: 8d:78:70:43:6d:da:c4:c2:9f:0d:fb:e9:2a:e9:fd:08:4c:2e: 55:5f:8c:7f:e8:5b:c7:be:8d:b7:4e:8c:77:df:80:df:06:08: 32:9e:ed:53:d1:9c:76:52:d1:5b:ff:0f:ea:d2:f5:26:c8:f2: ec:76:9e:52:7a:74:40:e0:60:33:f8:8c:e0:8d:15:bb:01:86: 0c:0e:e4:75:2a:2f:b7:2a:b1:de:1e:37:3d:92:2b:a6:76:c8: 3b:3a:69:a3:73:e1:67:b5:33:a2:48:6d:43:9d:6a:43:6a:e7: 1d:6c:b5:14:45:af:ae:ef:dd:33:17:8f:50:d2:61:c6:65:c2: 65:43:5a:91:9d:eb:6a:9f:e2:88:0e:37:f3:20:32:5f:a8:fd: 1d:a5:7e:3e:27:da:2b:05:46:5c:47:30:86:a5:ba:25:2e:9a: 41:fc:88:bc:83:f9:69:b6:93:6c:9d:60:fd:fd:71:82:c1:26: 93:90:ae:b9:65:a5:c1:57:9d:fb:f1:12:9c:6d:bb:25:22:31: 55:02:21:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBREYxMTAvBgNVBAUTKEU3NzA1MDg5MUJGODkyNzQzMjY1MEI3MDZGMkJGRURE OTJBMTExQzkwHhcNMjQwMjA5MDU0NzMyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1YmM3NC1mYmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Umqku4Km1H3HLZSM4Rz/GkWC/A6E21W+31ETgifzNWj0qIAG+VbfzhOcfjX IUVUSuw7JqwL3mxW5VeqE/JT7hHzoSLyGJzTvaXG2mdgetOjbVMs8mvUOYjhlX9h MjyMJ/cZNE/a8f2qtKup1XX+Rh3y2mmWd3HeTEMfqiw3BcTVG1x+X5SK1OKHi8eN rULMseHKbZJrVPPBcgfduK7zy/KK3PPYaiVCy51joPPYz6GI5WxsZSuua4WuLN0e ySEBgHcFxueLtWDVOw4vgjLGoGAsA1RYARmYvJDahU6IN7hglo54B0THOcSREKVu Hdg5g5bHU+5gSaTOZTIb0zJzEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIa73Xpy bru8WkrOZOvhugR39IUWMB8GA1UdIwQYMBaAFOdwUIkb+JJ0MmULcG8r/t2SoRHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFERi9DREY0MDVDMkYw NjgxMUVEQkI5NzhFMkRDNEY5QUUwMi81M0JRaVJ2NGtuUXlaUXR3Ynl2LTNaS2hF Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUzQlFpUnY0a25ReVpRdHdieXYtM1pLaEVjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhBREYvQ0RGNDA1QzJGMDY4MTFFREJCOTc4RTJEQzRGOUFFMDIvRjMyMTA2MzhG MDZEMTFFRDkwNTVBMjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnk8MwDQYJKoZIhvcNAQELBQADggEBANsrP8eTR6P4IKPJ 7AKu0tiL7/UD0lBJexcGME5FyaescbQ4eJREw+2O15BKXg7MESiQq9lV8I14cENt 2sTCnw376Srp/QhMLlVfjH/oW8e+jbdOjHffgN8GCDKe7VPRnHZS0Vv/D+rS9SbI 8ux2nlJ6dEDgYDP4jOCNFbsBhgwO5HUqL7cqsd4eNz2SK6Z2yDs6aaNz4We1M6JI bUOdakNq5x1stRRFr67v3TMXj1DSYcZlwmVDWpGd62qf4ogON/MgMl+o/R2lfj4n 2isFRlxHMIaluiUumkH8iLyD+Wm2k2ydYP39cYLBJpOQrrllpcFXnfvxEpxtuyUi MVUCIWY= -----END CERTIFICATE-----Generated at Fri May 17 08:52:57 2024 by rpki-client on console-ams.rpki-client.org