$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BCA15B24925011EDBC31547AC4F9AE02.roa File: BCA15B24925011EDBC31547AC4F9AE02.roa (raw, json) Hash identifier: yIiZZ3KXsRP/O/MmobAylgGnFiYPMyRk+ebxk0ZxkDY= Subject key identifier: 03:F0:9F:0E:9E:51:7C:71:76:83:4E:2E:C0:E6:DF:0E:EC:3D:F5:5B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8DF2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BCA15B24925011EDBC31547AC4F9AE02.roa Signing time: Thu 30 May 2024 16:17:41 +0000 ROA not before: Thu 30 May 2024 16:17:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 142449 IP address blocks: 103.170.64.0/24 maxlen: 24 103.170.65.0/24 maxlen: 24 2001:df7:1080::/48 maxlen: 48 2406:ecc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36338 (0x8df2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:17:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a6a4-e652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:92:65:4f:15:d2:2b:0d:32:35:1d:24:a7:04: 9b:01:0a:3e:a2:e6:35:89:3e:3d:d3:af:a2:e9:0d: 63:b3:bc:6a:a1:42:b7:f6:17:61:b3:bc:6e:66:3d: 27:df:e0:ad:5a:66:38:62:41:4c:01:c8:f8:3d:31: a6:e0:76:98:3c:e9:59:eb:ec:98:9f:e6:1b:f4:b6: 13:c3:fc:0e:d1:39:d8:75:7c:c0:4d:90:7d:8b:8e: 28:28:3d:f7:f9:9d:b4:19:76:f1:80:c3:7d:13:e8: 45:28:d9:ec:7f:96:20:0b:de:40:6d:7a:a4:30:9f: f1:f2:55:ad:02:1c:25:e3:aa:25:99:6c:6f:e8:4e: e9:b2:ce:af:9a:84:c5:11:8a:b7:49:4a:a2:81:30: e0:78:0c:76:b3:ea:24:9f:6a:a0:8b:6c:cf:60:71: 7a:ac:6e:9d:93:45:11:2c:27:b4:de:a1:99:c3:78: 5b:f3:9c:f0:a5:f6:60:5f:4d:5e:f3:2e:3c:0c:aa: 36:ed:ff:ae:ca:47:0a:18:e8:75:f6:fb:e3:fd:25: 5a:c1:7b:b3:71:97:53:46:71:94:70:52:6c:45:10: 89:5e:62:60:d9:47:53:9d:99:de:bf:b1:da:09:e7: ed:ad:65:f1:bf:91:a3:46:2a:09:00:fe:83:bd:4c: 71:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F0:9F:0E:9E:51:7C:71:76:83:4E:2E:C0:E6:DF:0E:EC:3D:F5:5B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BCA15B24925011EDBC31547AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.64.0/23 IPv6: 2001:df7:1080::/48 2406:ecc0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:62:ed:4e:f7:c7:82:a0:87:d8:22:20:a9:69:12:dc:94:47: 9d:3f:90:9e:10:84:88:b6:1b:9c:11:9b:39:ef:e7:97:bc:4f: f2:bf:cf:a0:6e:68:dd:5d:9e:6e:3c:2d:21:b5:6a:29:2e:1e: 91:d2:49:44:2d:75:0c:9f:1b:0c:94:8e:eb:dc:dd:d2:5c:28: 10:01:da:ad:9f:57:cb:c2:8a:6d:46:ea:5d:60:f1:5d:c3:02: 99:cf:71:a1:a7:c0:0a:e0:65:3e:96:c7:3c:cd:06:9a:d3:32: 28:de:77:7c:60:ff:ab:bf:c4:68:e9:ba:10:c2:69:d2:20:16: 75:7b:fa:c6:43:67:75:31:99:95:7c:46:e6:36:c6:41:4d:2b: 26:5a:db:d6:89:43:22:4e:b2:7f:e2:73:55:02:55:ee:b4:4b: d7:5a:11:4f:4d:bb:5c:09:1a:44:ea:4c:fc:1e:96:ec:4c:b5: 44:ac:06:d4:e5:40:18:a3:78:52:9f:d7:54:d4:a0:5a:c6:4e: 8a:f5:0f:a6:38:4d:72:b1:9c:f3:64:20:53:aa:e7:58:1c:2e: ff:8a:3c:07:50:03:29:1e:c9:45:fd:56:0c:2c:9d:84:40:9e: 55:5f:1c:73:4f:f8:36:29:09:61:72:6c:f4:59:6c:4f:67:24: 05:24:9a:df -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIDAI3yMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MTc0MVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE2YTQtZTY1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKqSZU8V0isNMjUdJKcEmwEKPqLmNYk+PdOvoukNY7O8aqFCt/YXYbO8bmY9 J9/grVpmOGJBTAHI+D0xpuB2mDzpWevsmJ/mG/S2E8P8DtE52HV8wE2QfYuOKCg9 9/mdtBl28YDDfRPoRSjZ7H+WIAveQG16pDCf8fJVrQIcJeOqJZlsb+hO6bLOr5qE xRGKt0lKooEw4HgMdrPqJJ9qoItsz2BxeqxunZNFESwntN6hmcN4W/Oc8KX2YF9N XvMuPAyqNu3/rspHChjodfb74/0lWsF7s3GXU0ZxlHBSbEUQiV5iYNlHU52Z3r+x 2gnn7a1l8b+Ro0YqCQD+g71Mcb8CAwEAAaOCAq0wggKpMB0GA1UdDgQWBBQD8J8O nlF8cXaDTi7A5t8O7D31WzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0JDQTE1QjI0 OTI1MDExRURCQzMxNTQ3QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDcGCCsGAQUFBwEHAQH/ BCgwJjAMBAIAATAGAwQBZ6pAMBYEAgACMBADBwAgAQ33EIADBQAkBuzAMA0GCSqG SIb3DQEBCwUAA4IBAQBuYu1O98eCoIfYIiCpaRLclEedP5CeEISIthucEZs57+eX vE/yv8+gbmjdXZ5uPC0htWopLh6R0klELXUMnxsMlI7r3N3SXCgQAdqtn1fLwopt RupdYPFdwwKZz3Ghp8AK4GU+lsc8zQaa0zIo3nd8YP+rv8Ro6boQwmnSIBZ1e/rG Q2d1MZmVfEbmNsZBTSsmWtvWiUMiTrJ/4nNVAlXutEvXWhFPTbtcCRpE6kz8Hpbs TLVErAbU5UAYo3hSn9dU1KBaxk6K9Q+mOE1ysZzzZCBTqudYHC7/ijwHUAMpHslF /VYMLJ2EQJ5VXxxzT/g2KQlhcmz0WWxPZyQFJJrf -----END CERTIFICATE-----Generated at Fri Nov 22 11:17:50 2024 by rpki-client on console-fra.rpki-client.org