$ rpki-client -vvf rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/BD7E578079E011EA8DD5907FC4F9AE02.roa File: BD7E578079E011EA8DD5907FC4F9AE02.roa (raw, json) Hash identifier: hZNhQOH/ytzwG9GDAfdV+gztLsOvcnb7H0kMrbac6Ls= Subject key identifier: 58:09:71:5B:E0:21:6E:10:DD:BD:50:BC:51:82:8A:9E:25:1E:6A:8C Certificate issuer: /CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Certificate serial: 08F5 Authority key identifier: F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/BD7E578079E011EA8DD5907FC4F9AE02.roa Signing time: Sun 28 Jan 2024 20:59:02 +0000 ROA not before: Sun 28 Jan 2024 20:59:02 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 139909 IP address blocks: 103.146.248.0/24 maxlen: 24 2001:df2:7480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2293 (0x8f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Validity Not Before: Jan 28 20:59:02 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b6c016-884f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:35:e8:97:eb:31:91:50:8a:2c:63:47:75:2c: f9:fc:5b:db:14:02:2c:9f:c5:0b:fd:cc:66:3e:93: 4c:2c:49:23:4b:82:7e:09:99:29:a3:58:40:57:15: 1e:d8:b5:e7:e8:eb:dc:47:d2:c5:61:3e:13:0c:84: 11:a8:74:2d:a8:36:3c:6d:5a:0e:86:3c:5b:cf:98: 3d:24:cd:96:12:c1:dd:4f:e2:8d:92:97:30:3a:a7: a7:01:3a:bd:35:5c:a6:f8:f3:60:8e:90:1d:91:20: ac:1d:86:d0:ca:43:cf:33:f5:7e:6c:89:98:3d:14: 0c:06:83:0d:3b:c3:cb:2b:62:61:76:8d:c8:4f:e5: f9:21:73:72:9f:02:16:29:50:32:7b:7b:a1:36:c0: 60:34:a9:58:f9:36:41:29:2c:1e:5b:89:6f:e6:e4: 4b:07:7c:69:02:85:95:6f:5e:8f:79:62:ff:e6:6d: 00:82:1a:ba:e7:c8:57:d7:c3:9f:90:84:db:e4:5a: 3e:b4:64:43:1f:0d:d8:a0:62:60:ee:86:c2:e7:ab: 6f:8d:e5:0b:62:ec:47:4c:57:c7:7c:dc:cd:2e:02: 6c:ad:67:8d:14:b6:f7:7f:1d:7a:41:4e:f4:3b:6c: 5a:70:29:41:c4:95:84:0e:bb:c6:fc:55:4c:6b:41: a9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:09:71:5B:E0:21:6E:10:DD:BD:50:BC:51:82:8A:9E:25:1E:6A:8C X509v3 Authority Key Identifier: keyid:F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/BD7E578079E011EA8DD5907FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.248.0/24 IPv6: 2001:df2:7480::/48 Signature Algorithm: sha256WithRSAEncryption 20:bc:73:6e:67:c2:f2:6a:86:7b:6d:cf:35:5b:98:33:db:89: 0b:c7:38:83:39:07:13:fd:98:4f:8d:4c:60:a7:8a:2d:9b:d2: 2c:35:9d:ea:2e:ec:f2:ce:a4:48:c3:cc:3b:94:4c:3d:cb:3e: 11:c9:3a:12:0e:4f:81:98:0f:c2:b5:8a:39:9d:27:07:b0:54: 4a:c1:ee:77:69:bc:7f:1e:c0:83:c3:3c:23:bd:6c:b7:db:45: 6a:47:a6:01:05:63:fd:e4:67:6b:2f:89:1e:3e:31:bc:a9:ba: 5f:04:76:58:68:46:c4:d8:29:99:6b:f1:b3:8b:fc:04:ac:c4: 5b:37:2d:63:13:e5:a6:55:8e:b6:50:08:7d:ca:d5:98:db:50: 31:e3:30:9e:26:46:94:c8:17:a3:a0:9b:00:96:02:9f:c3:8a: c0:fe:e6:6f:c1:58:bb:13:3a:d6:af:e3:70:78:ff:9c:3b:7e: 85:cc:4e:80:47:09:15:dd:8c:08:d9:84:90:12:3c:ca:83:d4: c3:bd:a5:81:a1:81:ad:81:67:f3:ba:a5:35:95:11:46:0d:df: 53:6d:91:8d:70:1c:e9:90:35:f2:60:5b:b7:99:6c:fc:f3:d1: 24:ab:d1:bf:98:64:bb:49:45:cc:b4:97:83:94:a8:0c:a8:0e: d0:0e:7c:4f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY1M0MxMTAvBgNVBAUTKEYyMDk3OEI4QTIyQzEzQTBCMDJCOUYzQTVGQzJENDg4 QUJBOEJFRDUwHhcNMjQwMTI4MjA1OTAyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI2YzAxNi04ODRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojXol+sxkVCKLGNHdSz5/FvbFAIsn8UL/cxmPpNMLEkjS4J+CZkpo1hAVxUe 2LXn6OvcR9LFYT4TDIQRqHQtqDY8bVoOhjxbz5g9JM2WEsHdT+KNkpcwOqenATq9 NVym+PNgjpAdkSCsHYbQykPPM/V+bImYPRQMBoMNO8PLK2Jhdo3IT+X5IXNynwIW KVAye3uhNsBgNKlY+TZBKSweW4lv5uRLB3xpAoWVb16PeWL/5m0Aghq658hX18Of kITb5Fo+tGRDHw3YoGJg7obC56tvjeULYuxHTFfHfNzNLgJsrWeNFLb3fx16QU70 O2xacClBxJWEDrvG/FVMa0GppQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFgJcVvg IW4Q3b1QvFGCip4lHmqMMB8GA1UdIwQYMBaAFPIJeLiiLBOgsCufOl/C1IirqL7V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjUzQy81QkE4NzgyMDc5 REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2Q3dLNTg2WDhMVWlLdW92 dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnbDR1S0lzRTZDd0s1ODZYOExVaUt1b3Z0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDY1M0MvNUJBODc4MjA3OURGMTFFQUJDOUQ5NzdEQzRGOUFFMDIvQkQ3RTU3ODA3 OUUwMTFFQThERDU5MDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnkvgwDwQCAAIwCQMHACABDfJ0gDANBgkqhkiG9w0BAQsF AAOCAQEAILxzbmfC8mqGe23PNVuYM9uJC8c4gzkHE/2YT41MYKeKLZvSLDWd6i7s 8s6kSMPMO5RMPcs+Eck6Eg5PgZgPwrWKOZ0nB7BUSsHud2m8fx7Ag8M8I71st9tF akemAQVj/eRnay+JHj4xvKm6XwR2WGhGxNgpmWvxs4v8BKzEWzctYxPlplWOtlAI fcrVmNtQMeMwniZGlMgXo6CbAJYCn8OKwP7mb8FYuxM61q/jcHj/nDt+hcxOgEcJ Fd2MCNmEkBI8yoPUw72lgaGBrYFn87qlNZURRg3fU22RjXAc6ZA18mBbt5ls/PPR JKvRv5hku0lFzLSXg5SoDKgO0A58Tw== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org