$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/BFF7726E6EF711E69FBC340BC4F9AE02.roa File: BFF7726E6EF711E69FBC340BC4F9AE02.roa (raw, json) Hash identifier: u2Rf8c+IxPJNEWPNhKjGUTuQHDebI9AcCob8gvsUIFg= Subject key identifier: DA:60:20:18:34:73:83:18:33:9D:7E:51:9D:43:EA:F4:FB:A6:81:48 Certificate issuer: /CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Certificate serial: 1DA6 Authority key identifier: 39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/BFF7726E6EF711E69FBC340BC4F9AE02.roa Signing time: Fri 02 Feb 2024 16:33:56 +0000 ROA not before: Fri 02 Feb 2024 16:33:56 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 64076 IP address blocks: 103.38.220.0/24 maxlen: 24 103.205.38.0/24 maxlen: 24 2001:df2:4bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7590 (0x1da6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Validity Not Before: Feb 2 16:33:56 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bd1974-2659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:42:57:bb:1e:5a:e9:a4:70:47:58:d1:61:ae: e2:e8:04:68:0a:66:83:d8:89:ec:55:02:6d:86:63: b7:b8:30:5d:99:51:4d:95:5f:16:2d:67:bb:22:02: 1f:0d:1b:48:89:e6:a0:07:5c:09:39:22:f6:48:a1: 28:4f:04:89:6c:7e:8a:fc:63:07:ed:98:1c:d5:a7: 8a:bc:0c:a1:d9:9b:1c:f1:b0:79:d0:ec:22:20:e5: 81:60:fb:88:46:4b:41:67:36:c7:3f:d1:34:33:ec: c2:e9:5a:c2:5a:4f:f8:c3:8b:72:06:90:ff:82:af: ea:77:4a:33:37:87:8c:e4:35:6b:3b:46:27:81:f8: 83:41:8c:99:8e:7e:0b:f7:0a:b5:b3:b4:60:8f:cc: 9b:42:b6:e4:f9:f0:94:bb:c2:b8:8a:bd:41:ff:21: 60:f2:f8:5f:c3:37:e6:9f:42:81:b2:b2:7e:e2:bf: 4b:b3:f5:88:85:51:0d:aa:a7:4a:f2:ca:e2:ac:3a: 21:40:42:fa:9f:c6:ff:bd:30:13:87:36:a3:7c:1b: 20:96:bd:31:c8:e7:06:b7:6f:78:90:dc:8a:13:26: aa:51:63:36:48:7e:44:7b:e0:aa:df:a4:9b:d6:28: f0:83:c4:f2:61:13:92:09:37:d9:cb:6e:c0:91:d8: da:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:60:20:18:34:73:83:18:33:9D:7E:51:9D:43:EA:F4:FB:A6:81:48 X509v3 Authority Key Identifier: keyid:39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/BFF7726E6EF711E69FBC340BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.220.0/24 103.205.38.0/24 IPv6: 2001:df2:4bc0::/48 Signature Algorithm: sha256WithRSAEncryption 01:86:30:46:ef:7d:1c:4a:81:b3:99:77:88:fc:5f:53:c6:2e: a7:05:5b:b0:60:e9:6e:a6:7a:78:bd:79:48:9d:a1:dc:3f:25: 0e:13:9b:ae:94:da:1e:4e:87:24:be:1b:4c:50:2e:78:14:74: 09:23:21:79:85:bd:db:08:e2:e2:81:e5:88:2b:69:d9:84:d0: 3c:7c:aa:c0:5f:d5:7a:4f:4c:05:e3:d8:b8:76:93:05:88:43: 28:8b:f4:88:a1:20:f9:0a:04:d4:ec:12:68:70:35:bf:c2:aa: ca:db:74:8b:cf:1f:3b:06:8b:67:e7:43:24:50:70:c4:1d:f4: b5:b8:a7:97:df:c4:a6:4e:25:c7:53:87:6e:a5:ca:89:a9:4b: 4d:ef:33:44:84:e4:cf:df:c8:5d:a4:7f:d9:d9:72:89:a5:a8: b7:34:9d:c2:0e:84:1d:7c:b9:79:2a:fa:71:59:56:11:ed:30: ab:eb:e7:fc:3b:fc:21:53:be:d0:86:bc:57:75:eb:f7:ff:f0: d4:f6:56:4f:74:ba:bf:c7:9d:f1:af:5c:0e:51:93:dc:58:2d: 5d:04:44:a3:27:77:b9:c6:f7:38:3f:db:70:ac:a1:36:4e:88: 17:e3:c6:60:74:50:1e:9a:af:c8:4a:f2:8e:4a:be:3b:1d:d4: b2:96:e1:c9 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICHaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDN0MxMTAvBgNVBAUTKDM5RDFENTk1NTQxODkxMzUzMDk0NTgzNjE4RDZDQzA3 OUM4MzBDRTEwHhcNMjQwMjAyMTYzMzU2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkMTk3NC0yNjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUJXux5a6aRwR1jRYa7i6ARoCmaD2InsVQJthmO3uDBdmVFNlV8WLWe7IgIf DRtIieagB1wJOSL2SKEoTwSJbH6K/GMH7Zgc1aeKvAyh2Zsc8bB50OwiIOWBYPuI RktBZzbHP9E0M+zC6VrCWk/4w4tyBpD/gq/qd0ozN4eM5DVrO0YngfiDQYyZjn4L 9wq1s7Rgj8ybQrbk+fCUu8K4ir1B/yFg8vhfwzfmn0KBsrJ+4r9Ls/WIhVENqqdK 8srirDohQEL6n8b/vTAThzajfBsglr0xyOcGt294kNyKEyaqUWM2SH5Ee+Cq36Sb 1ijwg8TyYROSCTfZy27AkdjaCwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNpgIBg0 c4MYM51+UZ1D6vT7poFIMB8GA1UdIwQYMBaAFDnR1ZVUGJE1MJRYNhjWzAecgwzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM3Qy8yOUY3QTA0MDZF RjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtUVXdsRmcyR05iTUI1eURE T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kSFZsVlFZa1RVd2xGZzJHTmJNQjV5RERPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBDN0MvMjlGN0EwNDA2RUY3MTFFNjlFMzI2NzBBQzRGOUFFMDIvQkZGNzcyNkU2 RUY3MTFFNjlGQkMzNDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnJtwDBABnzSYwDwQCAAIwCQMHACABDfJLwDANBgkqhkiG 9w0BAQsFAAOCAQEAAYYwRu99HEqBs5l3iPxfU8YupwVbsGDpbqZ6eL15SJ2h3D8l DhObrpTaHk6HJL4bTFAueBR0CSMheYW92wji4oHliCtp2YTQPHyqwF/Vek9MBePY uHaTBYhDKIv0iKEg+QoE1OwSaHA1v8Kqytt0i88fOwaLZ+dDJFBwxB30tbinl9/E pk4lx1OHbqXKialLTe8zRITkz9/IXaR/2dlyiaWotzSdwg6EHXy5eSr6cVlWEe0w q+vn/Dv8IVO+0Ia8V3Xr9//w1PZWT3S6v8ed8a9cDlGT3FgtXQREoyd3ucb3OD/b cKyhNk6IF+PGYHRQHpqvyEryjkq+Ox3UspbhyQ== -----END CERTIFICATE-----Generated at Sun May 26 19:10:21 2024 by rpki-client on console-ams.rpki-client.org