$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/C7F8C83C217311EA93A29F82C4F9AE02.roa File: C7F8C83C217311EA93A29F82C4F9AE02.roa (raw, json) Hash identifier: mTSSoL8tObAjFiioAAe2ubxQyBHZ7fTNk/+PPebDd3A= Subject key identifier: CD:82:A7:E3:0E:77:C8:09:21:DD:7B:A6:C6:1C:28:6B:DC:EB:DD:88 Certificate issuer: /CN=A91F9C95/serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B Certificate serial: 0A93 Authority key identifier: 52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/C7F8C83C217311EA93A29F82C4F9AE02.roa Signing time: Thu 16 Nov 2023 19:57:22 +0000 ROA not before: Thu 16 Nov 2023 19:57:22 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139834 IP address blocks: 103.145.232.0/23 maxlen: 23 103.145.232.0/24 maxlen: 24 103.145.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 20:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2707 (0xa93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C95/serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B Validity Not Before: Nov 16 19:57:22 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65567421-7469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4e:f6:11:5a:6d:96:29:af:06:4d:3f:63:ed: 11:60:6a:f2:fc:f3:01:9e:11:2d:a4:ec:22:46:1a: 61:3f:75:51:ca:20:ca:be:ba:58:d7:e2:73:d6:a8: 2b:50:a7:e2:c3:a2:66:91:cd:fa:b6:d9:ba:d3:ba: a0:6b:90:8c:14:b8:fb:64:e3:63:c1:90:fc:62:70: 72:37:83:05:1b:5d:5c:31:93:30:c6:0b:94:9d:8f: ce:7d:b8:cc:56:ab:2d:3f:dd:0f:50:10:fb:e6:87: a8:72:29:f2:30:81:f0:3f:1b:98:f7:dc:7c:04:81: a0:90:70:79:28:22:bb:33:00:71:75:cd:c7:5e:de: 02:de:c1:11:21:37:db:95:0c:f5:03:42:31:76:f7: 03:7a:cc:d2:8f:70:19:73:f4:87:29:4e:ae:7b:a5: c7:69:28:3e:46:bf:c4:8e:db:e5:75:42:ab:c5:60: 88:45:8a:e1:e1:1e:ec:ba:9c:4f:a4:f3:ec:b9:b3: fd:ee:c6:d9:18:d6:fc:e5:7a:b4:85:da:4e:12:46: f0:6f:6f:3c:07:80:2b:af:e3:d6:f2:39:73:3f:d4: ec:cc:44:dd:22:26:7a:99:b3:74:cf:48:a7:8b:00: 4b:23:41:a7:88:a5:76:3b:19:df:33:1b:0f:46:9c: 7f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:82:A7:E3:0E:77:C8:09:21:DD:7B:A6:C6:1C:28:6B:DC:EB:DD:88 X509v3 Authority Key Identifier: keyid:52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/C7F8C83C217311EA93A29F82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.232.0/23 Signature Algorithm: sha256WithRSAEncryption 42:6f:99:48:83:7c:bb:10:a6:10:22:b5:a8:bb:85:87:0b:4e: f9:dd:26:41:f4:55:34:6f:ea:8d:04:fe:b3:47:ac:ec:f9:ee: 18:06:2f:c4:af:4d:90:25:06:ca:39:ec:55:1e:dd:dc:a3:8b: 0e:38:cc:bc:cc:bd:08:9d:ed:6c:5a:ff:e1:a5:06:56:cd:20: b0:7d:25:12:30:6f:54:df:6c:fe:af:1a:76:c9:ad:fb:ee:a2: fd:44:c7:d3:a1:17:bc:d1:6f:f1:2a:8b:df:75:61:cc:f8:dd: d3:41:c5:6f:00:30:b4:16:92:b4:39:6c:bb:6f:39:52:7e:72: fd:28:dc:d1:e2:0f:ad:4e:4b:19:ba:10:c3:8a:b1:9c:45:4a: f0:ba:f2:5e:97:37:ba:f5:01:e3:4d:da:1f:7c:f9:a0:43:c6: fa:c4:ed:86:2d:cd:c0:68:9d:24:d6:19:11:43:a4:a8:a4:ca: c6:dc:3f:c0:51:cc:ff:f4:ed:08:36:49:ba:9c:f2:16:56:df: d2:4d:4f:42:04:7e:f1:d8:57:b7:76:4a:6d:ce:b9:be:40:de: 6b:e4:37:8a:2f:c6:b0:88:7c:e9:7f:64:82:5c:e3:89:c8:a1: bb:38:3a:cc:ab:8e:eb:fd:7a:68:4a:7d:5e:0f:12:a9:2c:a4: f7:04:50:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDOTUxMTAvBgNVBAUTKDUyQkY2RjYyRUJDQTI2QjFEQzQyN0ZCRUFGRTcyMEZC QjA5N0MyMUIwHhcNMjMxMTE2MTk1NzIyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2NzQyMS03NDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsU72EVptlimvBk0/Y+0RYGry/PMBnhEtpOwiRhphP3VRyiDKvrpY1+Jz1qgr UKfiw6Jmkc36ttm607qga5CMFLj7ZONjwZD8YnByN4MFG11cMZMwxguUnY/OfbjM VqstP90PUBD75oeocinyMIHwPxuY99x8BIGgkHB5KCK7MwBxdc3HXt4C3sERITfb lQz1A0IxdvcDeszSj3AZc/SHKU6ue6XHaSg+Rr/EjtvldUKrxWCIRYrh4R7supxP pPPsubP97sbZGNb85Xq0hdpOEkbwb288B4Arr+PW8jlzP9TszETdIiZ6mbN0z0in iwBLI0GniKV2OxnfMxsPRpx/hQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM2Cp+MO d8gJId17psYcKGvc692IMB8GA1UdIwQYMBaAFFK/b2Lryiax3EJ/vq/nIPuwl8Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM5NS9CQTNFQzg2RTIx NzIxMUVBOEI3RUY4ODBDNEY5QUUwMi9Vcjl2WXV2S0pySGNRbi0tci1jZy03Q1h3 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VyOXZZdXZLSnJIY1FuLS1yLWNnLTdDWHdocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlDOTUvQkEzRUM4NkUyMTcyMTFFQThCN0VGODgwQzRGOUFFMDIvQzdGOEM4M0My MTczMTFFQTkzQTI5RjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkegwDQYJKoZIhvcNAQELBQADggEBAEJvmUiDfLsQphAi tai7hYcLTvndJkH0VTRv6o0E/rNHrOz57hgGL8SvTZAlBso57FUe3dyjiw44zLzM vQid7Wxa/+GlBlbNILB9JRIwb1TfbP6vGnbJrfvuov1Ex9OhF7zRb/Eqi991Ycz4 3dNBxW8AMLQWkrQ5bLtvOVJ+cv0o3NHiD61OSxm6EMOKsZxFSvC68l6XN7r1AeNN 2h98+aBDxvrE7YYtzcBonSTWGRFDpKikysbcP8BRzP/07Qg2Sbqc8hZW39JNT0IE fvHYV7d2Sm3Oub5A3mvkN4ovxrCIfOl/ZIJc44nIobs4Osyrjuv9emhKfV4PEqks pPcEUK8= -----END CERTIFICATE-----Generated at Sun May 26 23:05:46 2024 by rpki-client on console-ams.rpki-client.org