$ rpki-client -vvf rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/BCEB8810754E11EFBCF30570C4F9AE02.roa File: BCEB8810754E11EFBCF30570C4F9AE02.roa (raw, json) Hash identifier: bJvnVzoz+XEcbuzuGkjH+wPbHIy8zSW3zq3ERSHQsJo= Subject key identifier: 63:A8:4E:15:F6:97:DB:92:45:18:48:6C:01:A7:50:7C:F5:F1:88:41 Certificate issuer: /CN=A912185F/serialNumber=D1F1DA97D8EDF99C65DFAF6ECA9F3B526C60AB41 Certificate serial: 07 Authority key identifier: D1:F1:DA:97:D8:ED:F9:9C:65:DF:AF:6E:CA:9F:3B:52:6C:60:AB:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/BCEB8810754E11EFBCF30570C4F9AE02.roa Signing time: Thu 19 Sep 2024 00:09:59 +0000 ROA not before: Thu 19 Sep 2024 00:09:59 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132906 IP address blocks: 103.148.240.0/24 maxlen: 24 103.164.7.0/24 maxlen: 24 2001:df2:fe80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.crl rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912185F/serialNumber=D1F1DA97D8EDF99C65DFAF6ECA9F3B526C60AB41 Validity Not Before: Sep 19 00:09:59 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66eb6bd7-52e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:58:61:b2:66:c8:67:b9:b5:83:64:bb:f7:cd: 69:4e:0b:f0:7b:b9:86:76:4e:61:a5:4d:07:79:f1: c0:78:8c:e3:09:29:12:85:d9:3d:8f:45:eb:d5:a2: 09:d8:96:17:e1:aa:d4:7c:a5:1f:01:ba:0f:dd:2a: ab:e1:0f:8d:87:c1:7c:02:d1:47:83:2a:c3:1f:13: 00:58:33:9b:43:eb:0c:14:31:a8:98:b7:3e:49:dd: 3f:f4:77:ac:89:14:ed:a8:a7:5b:dd:38:5d:ad:e6: 8d:82:da:8b:d9:51:02:e2:34:a0:5b:11:54:a3:ee: f2:46:f6:ff:96:1e:bd:06:6b:37:2b:86:4e:39:75: 03:64:dc:e3:bd:62:36:4c:3d:42:36:f2:27:4a:c8: 9c:c4:66:8b:3e:00:ad:1d:8b:94:6d:ed:6a:61:3c: 40:0b:2a:83:8c:db:8e:01:fe:bb:1a:b5:3e:4a:81: bb:51:cd:45:6d:b5:71:c0:98:9c:4b:a5:e7:4f:e5: 45:9b:bd:0e:94:7a:28:3f:17:13:2d:d5:8c:22:a6: bd:85:9f:9b:fa:9b:fa:14:42:05:c6:1f:09:16:e4: 13:b1:d4:46:54:b0:93:e1:3b:ff:42:69:28:24:ae: 37:0b:d6:d4:d7:0b:9f:85:37:0f:bc:67:03:7e:c8: 2d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A8:4E:15:F6:97:DB:92:45:18:48:6C:01:A7:50:7C:F5:F1:88:41 X509v3 Authority Key Identifier: keyid:D1:F1:DA:97:D8:ED:F9:9C:65:DF:AF:6E:CA:9F:3B:52:6C:60:AB:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/BCEB8810754E11EFBCF30570C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.240.0/24 103.164.7.0/24 IPv6: 2001:df2:fe80::/48 Signature Algorithm: sha256WithRSAEncryption 71:ea:ee:aa:9c:f7:48:b9:07:ad:c9:d3:60:7c:00:1e:95:bf: 89:45:da:92:80:7f:34:18:47:59:c2:01:b7:e9:83:e9:1a:f1: 6f:b0:1e:c0:63:39:61:9b:e7:80:54:19:15:a5:a6:02:fb:0c: 92:1e:77:8b:4a:15:c9:50:95:c6:3d:c1:fd:5d:7e:94:46:a3: 3b:8a:fb:0a:43:dc:68:49:b5:be:53:94:8d:b2:6d:2b:cc:27: 96:ae:49:d3:79:47:c4:f2:79:33:08:1a:23:c3:1c:1e:5c:33: 47:4b:d1:90:ee:fd:db:db:b2:38:ef:e2:f6:50:f4:14:2c:af: 67:81:aa:21:3f:04:36:1f:1c:97:aa:af:8a:06:ed:c5:6d:76: 02:a2:9f:74:20:2a:26:84:48:45:1f:8a:aa:ed:1c:65:ac:56: e2:c1:93:bc:b0:46:0e:a3:04:3a:86:06:e7:c0:88:8a:4d:7b: 50:f5:cc:70:a1:10:61:9b:8c:7b:8c:89:a2:95:5a:63:ce:ba: eb:05:7b:b1:ef:d1:95:6e:75:f0:53:c4:79:c3:21:d6:bd:37: 91:cc:ba:71:bb:59:9b:7f:b8:de:e3:6c:cc:86:3a:dc:34:81: 2f:3e:2d:99:f8:5d:1d:01:97:fe:21:c6:98:f0:1e:e3:dc:d4: b6:46:bf:25 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MTg1RjExMC8GA1UEBRMoRDFGMURBOTdEOEVERjk5QzY1REZBRjZFQ0E5RjNCNTI2 QzYwQUI0MTAeFw0yNDA5MTkwMDA5NTlaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZWI2YmQ3LTUyZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjWGGyZshnubWDZLv3zWlOC/B7uYZ2TmGlTQd58cB4jOMJKRKF2T2PRevVognY lhfhqtR8pR8Bug/dKqvhD42HwXwC0UeDKsMfEwBYM5tD6wwUMaiYtz5J3T/0d6yJ FO2op1vdOF2t5o2C2ovZUQLiNKBbEVSj7vJG9v+WHr0Gazcrhk45dQNk3OO9YjZM PUI28idKyJzEZos+AK0di5Rt7WphPEALKoOM244B/rsatT5KgbtRzUVttXHAmJxL pedP5UWbvQ6Ueig/FxMt1Ywipr2Fn5v6m/oUQgXGHwkW5BOx1EZUsJPhO/9CaSgk rjcL1tTXC5+FNw+8ZwN+yC2tAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUY6hOFfaX 25JFGEhsAadQfPXxiEEwHwYDVR0jBBgwFoAU0fHal9jt+Zxl369uyp87Umxgq0Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxODVGLzIwRkI2RDI2NzU0 RTExRUY5Qzc5QUY2RUM0RjlBRTAyLzBmSGFsOWp0LVp4bDM2OXV5cDg3VW14Z3Ew RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMGZIYWw5anQtWnhsMzY5dXlwODdVbXhncTBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTg1Ri8yMEZCNkQyNjc1NEUxMUVGOUM3OUFGNkVDNEY5QUUwMi9CQ0VCODgxMDc1 NEUxMUVGQkNGMzA1NzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAGeU8AMEAGekBzAPBAIAAjAJAwcAIAEN8v6AMA0GCSqGSIb3 DQEBCwUAA4IBAQBx6u6qnPdIuQetydNgfAAelb+JRdqSgH80GEdZwgG36YPpGvFv sB7AYzlhm+eAVBkVpaYC+wySHneLShXJUJXGPcH9XX6URqM7ivsKQ9xoSbW+U5SN sm0rzCeWrknTeUfE8nkzCBojwxweXDNHS9GQ7v3b27I47+L2UPQULK9ngaohPwQ2 HxyXqq+KBu3FbXYCop90IComhEhFH4qq7RxlrFbiwZO8sEYOowQ6hgbnwIiKTXtQ 9cxwoRBhm4x7jImilVpjzrrrBXux79GVbnXwU8R5wyHWvTeRzLpxu1mbf7je42zM hjrcNIEvPi2Z+F0dAZf+IcaY8B7j3NS2Rr8l -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:22 2024 by rpki-client on console-fra.rpki-client.org