$ rpki-client -vvf rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/BFA10A96FA8911EB8122C53FC4F9AE02.roa File: BFA10A96FA8911EB8122C53FC4F9AE02.roa (raw, json) Hash identifier: GCOYhXOIiDh7tK27bYOwMZTbPpznjaDInwGEyTr4OB8= Subject key identifier: D8:CA:68:0E:79:4B:6E:1F:48:63:E8:6B:D0:0C:65:49:06:22:45:37 Certificate issuer: /CN=A91222FA/serialNumber=C740DD4924C082341737E219E15AE68F7017DCB8 Certificate serial: 03F7 Authority key identifier: C7:40:DD:49:24:C0:82:34:17:37:E2:19:E1:5A:E6:8F:70:17:DC:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/BFA10A96FA8911EB8122C53FC4F9AE02.roa Signing time: Wed 27 Sep 2023 01:01:47 +0000 ROA not before: Wed 27 Sep 2023 01:01:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 142627 IP address blocks: 103.171.68.0/23 maxlen: 23 103.171.68.0/24 maxlen: 24 103.171.69.0/24 maxlen: 24 2001:df7:3b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.crl rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91222FA/serialNumber=C740DD4924C082341737E219E15AE68F7017DCB8 Validity Not Before: Sep 27 01:01:47 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65137efb-961f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8e:e5:39:0c:18:c4:8e:30:6a:8d:6a:9f:18: 5a:0f:06:33:72:2d:76:3f:cf:de:f2:a3:2d:41:b7: 69:f1:77:2e:3a:c2:89:2c:ef:e9:fd:31:cb:be:98: 81:40:ea:52:55:b3:88:41:c0:49:1b:c7:8d:c9:5f: b0:c3:ee:e3:4e:3b:b2:e5:26:ef:47:be:54:9c:c1: ff:72:9b:c4:56:6c:9b:d3:73:66:d6:85:c5:32:2d: 13:dc:37:85:65:4f:45:fc:64:f6:ae:7c:4e:3c:92: 31:2a:7c:9c:95:2c:f4:73:9c:a6:af:12:8b:b1:51: 5b:b6:4b:45:6b:5a:56:41:6e:fc:c7:dd:5e:f7:1d: 3f:d3:b6:27:db:ae:4e:69:f9:1e:72:e0:5b:4e:0f: 55:06:71:a6:b5:f7:be:57:43:87:c8:dc:de:ae:cf: 53:55:09:98:b3:36:de:4b:2e:24:22:ad:64:ff:4d: a9:7e:0b:94:ca:10:6a:9c:ae:19:44:b6:4d:f3:b1: 35:d2:75:70:38:29:2a:4b:ed:fb:81:e3:88:e9:2c: 55:f0:51:0c:d7:d7:53:54:95:4f:38:c9:bf:c8:e9: 7b:2d:5e:0b:83:1b:29:52:be:45:0b:59:01:82:ec: 38:89:53:7c:fb:f1:05:b1:34:57:59:df:a3:ad:18: 5d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:CA:68:0E:79:4B:6E:1F:48:63:E8:6B:D0:0C:65:49:06:22:45:37 X509v3 Authority Key Identifier: keyid:C7:40:DD:49:24:C0:82:34:17:37:E2:19:E1:5A:E6:8F:70:17:DC:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/BFA10A96FA8911EB8122C53FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.68.0/23 IPv6: 2001:df7:3b80::/48 Signature Algorithm: sha256WithRSAEncryption 43:01:35:43:9e:6e:b2:9b:6c:ac:21:2e:b5:13:47:7f:8c:13: f4:73:d7:ac:8f:b8:e2:31:24:96:f0:85:c3:16:44:cf:f7:70: 40:f7:82:2c:db:66:5b:9c:ff:8f:12:17:ae:0c:e7:bd:b2:4d: b4:c6:5e:1b:e7:e4:4a:8c:b0:02:95:96:c6:2d:48:29:a9:a4: 3f:92:cc:41:c7:a9:2c:d8:8d:63:c9:78:ab:76:f1:a3:a7:77: a8:2c:4c:41:86:f7:d6:7a:5b:57:ec:72:42:a3:fb:9d:97:36: 37:81:c7:9b:da:9e:3d:c7:c5:b4:27:8a:77:77:9d:d1:57:bd: 72:82:53:b6:07:64:25:78:0e:32:09:a1:75:32:f3:77:c0:35: 6e:c7:9a:7e:7c:11:c1:6a:cd:82:7a:e3:de:53:32:f0:4a:7d: dd:33:2c:20:85:73:f2:30:8d:4a:4d:41:9e:28:f1:74:99:da: 83:77:63:7b:b5:6b:3d:ec:99:89:4b:b4:ff:5f:2b:ce:62:07: 2a:c3:05:80:92:d7:de:05:27:93:03:3d:0b:b5:ec:18:da:6d: 58:a8:10:24:60:88:6a:b1:23:e4:db:5f:4a:a2:1d:96:31:d6: 73:26:d6:98:7a:3c:44:b9:92:ca:2e:87:39:f8:36:0d:0c:ba: 90:50:ad:3f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyRkExMTAvBgNVBAUTKEM3NDBERDQ5MjRDMDgyMzQxNzM3RTIxOUUxNUFFNjhG NzAxN0RDQjgwHhcNMjMwOTI3MDEwMTQ3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzN2VmYi05NjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAso7lOQwYxI4wao1qnxhaDwYzci12P8/e8qMtQbdp8XcuOsKJLO/p/THLvpiB QOpSVbOIQcBJG8eNyV+ww+7jTjuy5SbvR75UnMH/cpvEVmyb03Nm1oXFMi0T3DeF ZU9F/GT2rnxOPJIxKnyclSz0c5ymrxKLsVFbtktFa1pWQW78x91e9x0/07Yn265O afkecuBbTg9VBnGmtfe+V0OHyNzers9TVQmYszbeSy4kIq1k/02pfguUyhBqnK4Z RLZN87E10nVwOCkqS+37geOI6SxV8FEM19dTVJVPOMm/yOl7LV4LgxspUr5FC1kB guw4iVN8+/EFsTRXWd+jrRhdTwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNjKaA55 S24fSGPoa9AMZUkGIkU3MB8GA1UdIwQYMBaAFMdA3UkkwII0FzfiGeFa5o9wF9y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjJGQS9FODBEQUEyRUZB ODUxMUVCQjY2ODJGMzdDNEY5QUUwMi94MERkU1NUQWdqUVhOLUlaNFZybWozQVgz TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gwRGRTU1RBZ2pRWE4tSVo0VnJtajNBWDNMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjIyRkEvRTgwREFBMkVGQTg1MTFFQkI2NjgyRjM3QzRGOUFFMDIvQkZBMTBBOTZG QTg5MTFFQjgxMjJDNTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnq0QwDwQCAAIwCQMHACABDfc7gDANBgkqhkiG9w0BAQsF AAOCAQEAQwE1Q55usptsrCEutRNHf4wT9HPXrI+44jEklvCFwxZEz/dwQPeCLNtm W5z/jxIXrgznvbJNtMZeG+fkSoywApWWxi1IKamkP5LMQcepLNiNY8l4q3bxo6d3 qCxMQYb31npbV+xyQqP7nZc2N4HHm9qePcfFtCeKd3ed0Ve9coJTtgdkJXgOMgmh dTLzd8A1bseafnwRwWrNgnrj3lMy8Ep93TMsIIVz8jCNSk1BnijxdJnag3dje7Vr PeyZiUu0/18rzmIHKsMFgJLX3gUnkwM9C7XsGNptWKgQJGCIarEj5NtfSqIdljHW cybWmHo8RLmSyi6HOfg2DQy6kFCtPw== -----END CERTIFICATE-----Generated at Sun May 19 02:39:35 2024 by rpki-client on console-fra.rpki-client.org