$ rpki-client -vvf rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/B2C8CBDE5EDA11EFBFA8A226C4F9AE02.roa File: B2C8CBDE5EDA11EFBFA8A226C4F9AE02.roa (raw, json) Hash identifier: 2aWXQNNMXtNMfUOin6lgFHg66dnKR9UhJDXK2a/H1WM= Subject key identifier: 06:2A:1C:8C:C1:F3:64:5D:4F:DC:FA:85:3F:EA:93:FE:1E:85:8E:B6 Certificate issuer: /CN=A91228BC/serialNumber=98B5C6147618FCB64C214DCCC0777413087E9770 Certificate serial: 0520 Authority key identifier: 98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/B2C8CBDE5EDA11EFBFA8A226C4F9AE02.roa Signing time: Wed 25 Sep 2024 10:25:52 +0000 ROA not before: Wed 25 Sep 2024 10:25:52 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142559 IP address blocks: 103.169.98.0/24 maxlen: 24 103.169.99.0/24 maxlen: 24 2001:df6:f580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.crl rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228BC/serialNumber=98B5C6147618FCB64C214DCCC0777413087E9770 Validity Not Before: Sep 25 10:25:52 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66f3e52f-bd5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:69:06:9e:c6:10:6f:c8:ad:f6:43:f3:5d:bc: ee:58:c1:bb:36:7b:be:96:1c:f8:4f:35:ad:65:fb: 96:8f:c5:f3:71:c8:6a:0a:bc:34:ae:a2:1e:bb:a2: 65:f6:fa:b4:9b:8f:17:46:71:38:e9:b1:b5:af:b6: 94:f4:fe:5b:22:2e:25:83:4a:9e:0f:23:ef:6f:e9: 04:b9:79:42:8e:24:e4:33:13:18:a5:3c:f2:43:bb: fc:13:14:0b:08:56:dc:61:36:2d:53:68:f6:3d:46: d3:b3:27:61:ce:97:86:1a:cc:d8:4f:fc:5f:bc:02: 2f:0e:38:13:4d:3e:45:2a:8d:69:95:be:62:77:09: af:d9:e8:fc:4b:81:07:c5:7a:3a:a2:51:9e:91:df: 0b:52:05:66:4a:1b:28:4b:78:ed:b9:96:09:d9:97: 92:3a:20:2d:34:3f:78:aa:58:34:86:cf:5e:10:ac: 24:db:26:cc:66:2f:e2:82:93:cb:b2:37:c7:77:5e: 80:a9:9f:70:84:2e:15:16:55:c1:d8:59:9a:f1:9c: d5:7c:41:10:86:18:8d:9f:9c:df:97:d0:b4:20:bd: 4c:2f:6d:81:97:39:83:b0:c4:73:c1:b4:39:7b:ca: 7f:19:85:31:7d:49:18:49:32:e2:e6:e6:57:c7:4e: 76:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:2A:1C:8C:C1:F3:64:5D:4F:DC:FA:85:3F:EA:93:FE:1E:85:8E:B6 X509v3 Authority Key Identifier: keyid:98:B5:C6:14:76:18:FC:B6:4C:21:4D:CC:C0:77:74:13:08:7E:97:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLXGFHYY_LZMIU3MwHd0Ewh-l3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228BC/0E7D64D6DF0D11EBB1130D81C4F9AE02/B2C8CBDE5EDA11EFBFA8A226C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.98.0/23 IPv6: 2001:df6:f580::/48 Signature Algorithm: sha256WithRSAEncryption 94:ed:d1:ce:c6:0b:83:b0:15:dd:f2:86:f5:84:d7:af:a0:7d: 07:74:91:28:b8:dd:7c:d8:46:f2:71:6e:95:89:89:50:68:95: ab:fa:69:2c:14:ec:f8:99:64:06:4f:90:0b:07:e5:79:aa:6c: a3:a1:0c:da:74:e4:f8:71:35:83:07:83:bd:b9:51:eb:03:8f: 1d:38:e3:e7:ac:bb:e4:b8:95:08:59:df:53:46:a2:61:37:e2: fe:c4:9d:9f:07:ff:62:b4:0e:38:d7:2f:c3:47:e4:61:f8:fe: a2:2f:ad:88:33:5a:bb:d0:3b:db:0e:4a:44:b4:fc:86:93:fe: 33:7c:d1:87:a6:dd:87:a2:d6:78:e4:60:41:1d:b0:8f:9a:c1: 98:71:7f:3e:b1:ae:57:b4:9d:ba:00:a1:ce:31:ae:02:53:08: 89:b3:69:9e:b9:a1:3e:97:ec:85:2f:08:7b:27:48:73:09:78: 1f:dc:e2:14:d9:f7:13:74:ec:26:44:91:82:4d:06:0a:12:aa: b8:36:86:da:1b:65:48:4a:48:90:32:7d:56:e4:28:8d:76:a1: b7:22:48:ae:41:17:01:f1:d4:0c:a0:1d:49:c4:3f:1c:86:4d: 52:df:21:d0:0e:7a:04:89:c8:c3:b2:32:30:30:7e:30:4d:38: 20:49:42:a5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4QkMxMTAvBgNVBAUTKDk4QjVDNjE0NzYxOEZDQjY0QzIxNERDQ0MwNzc3NDEz MDg3RTk3NzAwHhcNMjQwOTI1MTAyNTUyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzZTUyZi1iZDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02kGnsYQb8it9kPzXbzuWMG7Nnu+lhz4TzWtZfuWj8XzcchqCrw0rqIeu6Jl 9vq0m48XRnE46bG1r7aU9P5bIi4lg0qeDyPvb+kEuXlCjiTkMxMYpTzyQ7v8ExQL CFbcYTYtU2j2PUbTsydhzpeGGszYT/xfvAIvDjgTTT5FKo1plb5idwmv2ej8S4EH xXo6olGekd8LUgVmShsoS3jtuZYJ2ZeSOiAtND94qlg0hs9eEKwk2ybMZi/igpPL sjfHd16AqZ9whC4VFlXB2Fma8ZzVfEEQhhiNn5zfl9C0IL1ML22BlzmDsMRzwbQ5 e8p/GYUxfUkYSTLi5uZXx052cwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAYqHIzB 82RdT9z6hT/qk/4ehY62MB8GA1UdIwQYMBaAFJi1xhR2GPy2TCFNzMB3dBMIfpdw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhCQy8wRTdENjRENkRG MEQxMUVCQjExMzBEODFDNEY5QUUwMi9tTFhHRkhZWV9MWk1JVTNNd0hkMEV3aC1s M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21MWEdGSFlZX0xaTUlVM013SGQwRXdoLWwzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjI4QkMvMEU3RDY0RDZERjBEMTFFQkIxMTMwRDgxQzRGOUFFMDIvQjJDOENCREU1 RURBMTFFRkJGQThBMjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqWIwDwQCAAIwCQMHACABDfb1gDANBgkqhkiG9w0BAQsF AAOCAQEAlO3RzsYLg7AV3fKG9YTXr6B9B3SRKLjdfNhG8nFulYmJUGiVq/ppLBTs +JlkBk+QCwfleapso6EM2nTk+HE1gweDvblR6wOPHTjj56y75LiVCFnfU0aiYTfi /sSdnwf/YrQOONcvw0fkYfj+oi+tiDNau9A72w5KRLT8hpP+M3zRh6bdh6LWeORg QR2wj5rBmHF/PrGuV7SdugChzjGuAlMIibNpnrmhPpfshS8IeydIcwl4H9ziFNn3 E3TsJkSRgk0GChKquDaG2htlSEpIkDJ9VuQojXahtyJIrkEXAfHUDKAdScQ/HIZN Ut8h0A56BInIw7IyMDB+ME04IElCpQ== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org