$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/BABFD4EC2BE311EFB9C16320C4F9AE02.roa File: BABFD4EC2BE311EFB9C16320C4F9AE02.roa (raw, json) Hash identifier: mof9dpIHFO9XsCWju4ey9h4zi8MK+Uyfb5E/+l6Ujao= Subject key identifier: 29:7A:3B:57:F7:42:1E:98:2B:77:AC:FA:3D:C9:79:97:D1:F3:1A:B7 Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 02D1 Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/BABFD4EC2BE311EFB9C16320C4F9AE02.roa Signing time: Mon 12 Aug 2024 03:28:25 +0000 ROA not before: Mon 12 Aug 2024 03:28:25 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 21859 IP address blocks: 103.215.125.0/24 maxlen: 24 103.215.126.0/24 maxlen: 24 157.119.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 721 (0x2d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Validity Not Before: Aug 12 03:28:25 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66b98159-fc03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0a:ae:4b:7c:27:ba:72:2c:89:d5:f8:93:ab: d9:5e:52:f8:d5:7d:16:ab:fc:36:40:07:ea:69:99: 62:e0:c8:b5:27:36:fc:77:d4:b3:d6:dc:f6:25:0d: be:96:1c:24:5b:14:ca:84:bf:08:55:10:08:d7:07: 32:5d:86:59:e7:7d:b4:39:2c:a7:91:a0:b0:a6:f4: 5b:db:ce:e6:b8:75:61:20:6b:ad:5d:1b:d2:7a:6c: fb:f1:de:07:b4:dc:d8:d2:5a:55:8a:36:d2:9a:be: fe:2e:96:91:f5:8c:7d:4a:66:eb:3d:07:d1:8a:f0: 0f:6e:66:15:e5:be:07:3a:a5:c7:7e:6b:de:0b:59: 34:07:2f:f5:e2:1f:7b:58:60:54:67:a0:58:34:99: 15:75:ec:1c:00:00:e5:78:fb:0e:a3:79:2b:50:1a: 35:02:a7:6a:6b:75:22:8b:81:36:31:57:22:2b:e0: 7a:81:73:df:6d:0b:83:c9:6d:47:bd:86:ac:52:50: 85:3f:f6:8f:17:18:6f:b3:58:79:29:a0:c0:84:ad: a2:0a:4b:bd:fb:8a:f0:8f:c8:ec:50:ab:bf:c3:5d: 08:d1:37:0a:76:05:c9:91:ef:38:78:6d:bc:bb:4a: 36:57:98:29:0d:da:7c:63:37:d9:0e:aa:02:9e:09: 1b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:7A:3B:57:F7:42:1E:98:2B:77:AC:FA:3D:C9:79:97:D1:F3:1A:B7 X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/BABFD4EC2BE311EFB9C16320C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.125.0-103.215.126.255 157.119.23.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:63:41:43:78:6d:92:be:5e:e1:b3:f6:a4:3b:78:cd:17:e8: 4f:59:68:1d:46:62:55:72:f4:84:94:44:88:2d:9f:19:7c:ac: 5c:ab:65:76:bc:de:88:c7:7a:bb:7c:05:bf:94:c8:c5:b0:54: 12:23:49:84:28:36:34:36:6f:d6:b3:56:a2:1f:41:38:f8:ca: 4e:9a:53:b2:6d:a8:dc:b1:71:39:bd:80:1c:bf:d1:f0:57:54: 62:28:df:81:69:fd:d7:d9:64:7a:89:0d:d4:8f:d5:bb:3c:1f: 3d:f9:bb:63:2a:23:18:9a:2d:08:15:45:d5:75:74:6d:48:2d: 17:81:f6:15:b2:60:51:c8:65:fe:52:b1:24:3f:2b:85:67:12: 79:c3:7a:e1:eb:10:67:c8:d1:10:f3:73:b3:30:4d:32:ac:e7: c1:6c:ec:1d:b1:db:d4:4d:4c:26:37:57:5f:ff:67:c2:b6:f7: ea:0c:d0:64:86:e0:c4:24:84:f3:a6:03:df:e5:23:24:db:22: e2:3e:80:90:a8:5a:6f:cc:e1:5b:d7:57:04:47:b2:2a:00:8a: dc:f0:90:2e:94:34:4d:cb:98:cc:d7:48:f6:f5:6f:fc:05:a6: d7:2b:90:98:cf:ce:c1:03:45:82:46:2b:5c:8e:94:3e:e6:4f: 90:1f:65:e8 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjQwODEyMDMyODI1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI5ODE1OS1mYzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gquS3wnunIsidX4k6vZXlL41X0Wq/w2QAfqaZli4Mi1Jzb8d9Sz1tz2JQ2+ lhwkWxTKhL8IVRAI1wcyXYZZ5320OSynkaCwpvRb287muHVhIGutXRvSemz78d4H tNzY0lpVijbSmr7+LpaR9Yx9SmbrPQfRivAPbmYV5b4HOqXHfmveC1k0By/14h97 WGBUZ6BYNJkVdewcAADlePsOo3krUBo1Aqdqa3Uii4E2MVciK+B6gXPfbQuDyW1H vYasUlCFP/aPFxhvs1h5KaDAhK2iCku9+4rwj8jsUKu/w10I0TcKdgXJke84eG28 u0o2V5gpDdp8YzfZDqoCngkbFwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFCl6O1f3 Qh6YK3es+j3JeZfR8xq3MB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvQkFCRkQ0RUMy QkUzMTFFRkI5QzE2MzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGfXfQMEAGfXfgMEAJ13FzANBgkqhkiG9w0BAQsFAAOC AQEAL2NBQ3htkr5e4bP2pDt4zRfoT1loHUZiVXL0hJREiC2fGXysXKtldrzeiMd6 u3wFv5TIxbBUEiNJhCg2NDZv1rNWoh9BOPjKTppTsm2o3LFxOb2AHL/R8FdUYijf gWn919lkeokN1I/VuzwfPfm7YyojGJotCBVF1XV0bUgtF4H2FbJgUchl/lKxJD8r hWcSecN64esQZ8jREPNzszBNMqznwWzsHbHb1E1MJjdXX/9nwrb36gzQZIbgxCSE 86YD3+UjJNsi4j6AkKhab8zhW9dXBEeyKgCK3PCQLpQ0TcuYzNdI9vVv/AWm1yuQ mM/OwQNFgkYrXI6UPuZPkB9l6A== -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:54 2024 by rpki-client on console-fra.rpki-client.org