$ rpki-client -vvf rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/BED97520B1D911EA912C632EC4F9AE02.roa File: BED97520B1D911EA912C632EC4F9AE02.roa (raw, json) Hash identifier: yZtfC9LSMoXTGmKuqHvmMWSYTC6XY4ts4luZ57LmnKo= Subject key identifier: 24:B9:28:35:08:A9:CA:34:8F:6D:DA:B7:61:E7:FA:52:66:EF:EB:E1 Certificate issuer: /CN=A912A455/serialNumber=0FAD1BD346184C71927C82C61D3FA6D7E472EE9E Certificate serial: 0796 Authority key identifier: 0F:AD:1B:D3:46:18:4C:71:92:7C:82:C6:1D:3F:A6:D7:E4:72:EE:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D60b00YYTHGSfILGHT-m1-Ry7p4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/BED97520B1D911EA912C632EC4F9AE02.roa Signing time: Tue 26 Sep 2023 21:19:16 +0000 ROA not before: Tue 26 Sep 2023 21:19:16 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133048 IP address blocks: 103.240.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/D60b00YYTHGSfILGHT-m1-Ry7p4.crl rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/D60b00YYTHGSfILGHT-m1-Ry7p4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D60b00YYTHGSfILGHT-m1-Ry7p4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1942 (0x796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A455/serialNumber=0FAD1BD346184C71927C82C61D3FA6D7E472EE9E Validity Not Before: Sep 26 21:19:16 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65134ad3-84de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:af:fa:2e:7b:b5:52:67:1a:00:2e:4c:d4:cf: 18:1a:f5:12:bc:2b:63:34:01:77:6b:f2:aa:df:ca: fc:b7:72:ed:5b:28:3c:9c:2d:25:88:fa:7a:28:6e: 9c:11:6b:0b:7d:cb:ee:5e:50:ba:6b:fb:60:3a:5d: 2b:3d:3d:a0:e8:ca:63:11:4d:b7:72:5c:1a:28:07: 00:c2:9a:ce:a5:6d:65:03:d2:b6:af:ba:90:20:25: 15:1e:dd:6a:3c:b4:9b:4a:6d:ce:dc:b8:0d:a1:7a: 5f:1d:bb:26:cd:d8:f2:00:df:ca:7e:39:25:09:da: 9b:07:65:7c:8b:e0:c9:46:00:4b:95:c0:fd:c2:9d: 4b:79:5e:0d:37:1c:79:35:a9:5d:d3:34:eb:8f:49: 14:66:b3:06:ce:01:6f:93:78:06:fe:93:e1:db:ae: b6:ee:30:71:8d:68:8e:77:f5:31:7b:00:b6:44:18: e9:78:f6:fe:76:8d:ec:53:ca:51:4b:84:b3:36:74: 86:47:c2:c3:8f:cf:04:7d:e0:d5:9d:ce:a3:47:44: 71:87:89:21:01:f0:e1:06:b1:d9:76:43:b7:51:bd: 6f:51:1d:a7:d0:8b:ee:cf:b3:33:18:a1:53:4c:bd: ba:96:7c:bd:ae:c9:23:92:01:e8:0c:4f:04:f2:1c: dc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B9:28:35:08:A9:CA:34:8F:6D:DA:B7:61:E7:FA:52:66:EF:EB:E1 X509v3 Authority Key Identifier: keyid:0F:AD:1B:D3:46:18:4C:71:92:7C:82:C6:1D:3F:A6:D7:E4:72:EE:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/D60b00YYTHGSfILGHT-m1-Ry7p4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D60b00YYTHGSfILGHT-m1-Ry7p4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A455/841C8DDCB1D411EA92F6AA1BC4F9AE02/BED97520B1D911EA912C632EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.222.0/24 Signature Algorithm: sha256WithRSAEncryption 45:95:48:1b:1d:12:29:ab:8f:fb:2e:8b:88:7a:fa:f1:6b:58: 13:10:49:df:bb:1c:53:6b:51:0b:ea:72:4b:5f:23:de:84:a7: b5:6c:c4:7c:67:d5:cb:0c:b5:9a:ed:72:ec:cb:00:23:0f:c0: 56:ee:6a:72:b9:cf:8b:4b:0b:60:ae:28:e0:1b:fd:ef:2c:bb: c5:af:b9:b8:50:b3:e6:f4:f8:83:40:cb:be:cd:2b:66:b9:93: 80:d1:e5:9d:5c:7a:c0:b2:71:b2:24:35:88:9f:cf:6f:da:19: d9:fc:36:f9:c0:9c:bc:f8:94:f9:aa:24:c8:2f:05:e1:e8:82: 33:3c:e8:a9:f0:cd:8e:df:97:cb:bb:36:e6:50:3e:9a:5f:37: c4:0a:34:cd:0e:be:c7:86:0f:a6:e0:c6:d0:02:0a:80:0b:17: 5a:26:81:db:d8:07:d8:aa:55:c8:b5:21:20:ec:09:5c:f4:76: de:4c:5b:b4:59:37:83:2b:cb:83:9b:15:f4:2d:5b:96:23:ee: 4a:c0:3f:c1:9d:e6:40:01:5f:bd:d5:65:9f:0a:81:95:3d:f7: 5c:f1:63:6d:cd:e5:d8:9b:15:08:42:3e:29:6d:0d:06:06:3e: 67:d6:71:b6:d4:66:73:9e:0b:d7:5d:da:9f:16:9e:35:8c:ad: 9b:90:46:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE0NTUxMTAvBgNVBAUTKDBGQUQxQkQzNDYxODRDNzE5MjdDODJDNjFEM0ZBNkQ3 RTQ3MkVFOUUwHhcNMjMwOTI2MjExOTE2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzNGFkMy04NGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAza/6Lnu1UmcaAC5M1M8YGvUSvCtjNAF3a/Kq38r8t3LtWyg8nC0liPp6KG6c EWsLfcvuXlC6a/tgOl0rPT2g6MpjEU23clwaKAcAwprOpW1lA9K2r7qQICUVHt1q PLSbSm3O3LgNoXpfHbsmzdjyAN/KfjklCdqbB2V8i+DJRgBLlcD9wp1LeV4NNxx5 Nald0zTrj0kUZrMGzgFvk3gG/pPh26627jBxjWiOd/UxewC2RBjpePb+do3sU8pR S4SzNnSGR8LDj88EfeDVnc6jR0Rxh4khAfDhBrHZdkO3Ub1vUR2n0Ivuz7MzGKFT TL26lny9rskjkgHoDE8E8hzcLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCS5KDUI qco0j23at2Hn+lJm7+vhMB8GA1UdIwQYMBaAFA+tG9NGGExxknyCxh0/ptfkcu6e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTQ1NS84NDFDOEREQ0Ix RDQxMUVBOTJGNkFBMUJDNEY5QUUwMi9ENjBiMDBZWVRIR1NmSUxHSFQtbTEtUnk3 cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q2MGIwMFlZVEhHU2ZJTEdIVC1tMS1SeTdwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkE0NTUvODQxQzhERENCMUQ0MTFFQTkyRjZBQTFCQzRGOUFFMDIvQkVEOTc1MjBC MUQ5MTFFQTkxMkM2MzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn8N4wDQYJKoZIhvcNAQELBQADggEBAEWVSBsdEimrj/su i4h6+vFrWBMQSd+7HFNrUQvqcktfI96Ep7VsxHxn1csMtZrtcuzLACMPwFbuanK5 z4tLC2CuKOAb/e8su8WvubhQs+b0+INAy77NK2a5k4DR5Z1cesCycbIkNYifz2/a Gdn8NvnAnLz4lPmqJMgvBeHogjM86KnwzY7fl8u7NuZQPppfN8QKNM0OvseGD6bg xtACCoALF1omgdvYB9iqVci1ISDsCVz0dt5MW7RZN4Mry4ObFfQtW5Yj7krAP8Gd 5kABX73VZZ8KgZU991zxY23N5dibFQhCPiltDQYGPmfWcbbUZnOeC9dd2p8WnjWM rZuQRto= -----END CERTIFICATE-----Generated at Wed May 22 22:41:47 2024 by rpki-client on console-fra.rpki-client.org