$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa File: BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa (raw, json) Hash identifier: c1Daig7TyrV0vZ0j79IrCiKW1T1CwI19KHOBVkJ0bXg= Subject key identifier: 76:CE:8A:C2:CA:35:F8:80:4C:B2:B5:ED:02:27:23:B7:58:F5:D9:A7 Certificate issuer: /CN=A914D2E1/serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Certificate serial: 014B Authority key identifier: 3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa Signing time: Thu 31 Oct 2024 06:19:52 +0000 ROA not before: Thu 31 Oct 2024 06:19:52 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150788 IP address blocks: 103.203.240.0/24 maxlen: 24 103.206.98.0/24 maxlen: 24 203.0.139.0/24 maxlen: 24 2001:df2:10c0::/48 maxlen: 48 2400:e760:100::/48 maxlen: 48 2400:e760:200::/48 maxlen: 48 2400:e760:300::/48 maxlen: 48 2400:e760:400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:36:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2E1/serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5 Validity Not Before: Oct 31 06:19:52 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67232188-48d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c7:64:6b:82:ed:01:19:3c:66:7c:89:c4:dc: 57:bd:15:e1:0f:51:61:3f:dc:dd:55:57:e0:c5:2d: 3e:ef:cc:95:3a:cb:d4:2d:fa:d0:dc:96:b4:15:27: c7:b3:fc:6a:9b:11:96:f8:b2:91:b6:9c:59:eb:21: 66:75:b3:aa:ff:57:a7:14:b3:06:98:9d:b5:bf:13: 07:24:88:73:16:2d:80:99:37:51:19:db:c9:04:fb: 28:e8:89:2c:15:96:7c:44:20:18:b4:57:8a:be:7e: 78:2a:d9:89:ea:b5:cf:da:20:05:79:bc:dc:96:e5: 2f:83:c9:46:03:be:7f:a3:ad:33:4b:e4:c7:f2:ef: 6e:93:10:f7:89:57:7a:21:03:b1:db:cf:c6:20:90: 60:e3:1e:88:1e:8d:10:39:7c:d8:dc:ca:1f:21:30: ea:79:11:f6:29:10:d6:35:fb:69:00:85:61:f6:47: 82:c7:0a:7f:26:a9:c0:46:c3:16:b3:9a:cf:86:27: 53:40:52:0a:34:b6:50:83:59:bf:42:a0:67:75:1b: 1d:52:98:90:7b:c4:5e:51:26:e5:21:24:f2:d7:34: 35:65:eb:71:08:fa:9f:43:98:e2:49:67:10:6c:dd: 4c:95:94:fc:d1:e6:2d:63:7d:6e:14:03:94:83:7f: 85:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:CE:8A:C2:CA:35:F8:80:4C:B2:B5:ED:02:27:23:B7:58:F5:D9:A7 X509v3 Authority Key Identifier: keyid:3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/BCB2FFCEBA7211EDB0F5AE53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.240.0/24 103.206.98.0/24 203.0.139.0/24 IPv6: 2001:df2:10c0::/48 2400:e760:100::/48 2400:e760:200::/48 2400:e760:300::/48 2400:e760:400::/48 Signature Algorithm: sha256WithRSAEncryption 01:f4:e8:7b:3d:99:cc:9f:b4:79:f4:34:ee:ed:78:0d:79:84: d9:6e:ee:28:0f:27:43:28:d4:ac:1a:87:7f:07:66:5a:7a:77: 4b:41:39:18:79:c5:a7:8d:d2:ba:cc:dd:03:0c:51:c0:35:20: a2:31:8a:5e:fd:79:b0:9a:eb:5d:eb:6c:1b:6c:1b:3d:8b:0f: 4b:0b:5f:6c:35:72:08:77:21:0d:7c:8a:b8:b0:70:e1:b9:57: 78:9d:cf:f3:22:65:7f:65:c5:2f:b7:2f:43:fa:bb:c7:a6:8b: a2:18:88:da:b3:f4:2b:1f:8d:34:d4:1e:67:6e:b5:1c:58:97: fe:bd:71:50:8f:8a:9f:5c:8e:74:fb:bd:3f:a3:93:ba:95:b8: 41:e9:9c:c2:fe:c8:84:f9:0a:df:0b:69:d8:65:9e:10:54:2e: f9:dc:3a:1c:36:b3:f4:ff:a2:66:e4:df:a5:64:c7:78:d6:3c: 2c:58:1e:45:a9:c5:4a:a2:5f:0a:f5:a7:27:62:86:2d:d7:76: 5f:aa:ef:4b:41:fe:ff:48:7f:8b:23:fb:fa:14:f5:73:12:85: cc:95:37:3b:95:ba:90:74:7e:0f:7c:56:8f:07:b6:f6:1d:3a: 85:44:3a:5b:c3:ff:2d:a7:92:a6:4e:a8:1b:65:16:07:3f:81: df:90:c2:be -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyRTExMTAvBgNVBAUTKDNDNjUxNTI0QjRGOTFBMzUwRDFFQ0ZCQkE2NkNBQkQx QjQ4RkI3QzUwHhcNMjQxMDMxMDYxOTUyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzIzMjE4OC00OGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMdka4LtARk8ZnyJxNxXvRXhD1FhP9zdVVfgxS0+78yVOsvULfrQ3Ja0FSfH s/xqmxGW+LKRtpxZ6yFmdbOq/1enFLMGmJ21vxMHJIhzFi2AmTdRGdvJBPso6Iks FZZ8RCAYtFeKvn54KtmJ6rXP2iAFebzcluUvg8lGA75/o60zS+TH8u9ukxD3iVd6 IQOx28/GIJBg4x6IHo0QOXzY3MofITDqeRH2KRDWNftpAIVh9keCxwp/JqnARsMW s5rPhidTQFIKNLZQg1m/QqBndRsdUpiQe8ReUSblISTy1zQ1ZetxCPqfQ5jiSWcQ bN1MlZT80eYtY31uFAOUg3+FLwIDAQABo4IC1jCCAtIwHQYDVR0OBBYEFHbOisLK NfiATLK17QInI7dY9dmnMB8GA1UdIwQYMBaAFDxlFSS0+Ro1DR7Pu6Zsq9G0j7fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJFMS9EQTg2QjYxNkJB NkUxMUVEQjlDRUE0M0FDNEY5QUUwMi9QR1VWSkxUNUdqVU5Icy03cG15cjBiU1B0 OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BHVVZKTFQ1R2pVTkhzLTdwbXlyMGJTUHQ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQyRTEvREE4NkI2MTZCQTZFMTFFREI5Q0VBNDNBQzRGOUFFMDIvQkNCMkZGQ0VC QTcyMTFFREIwRjVBRTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYAYIKwYBBQUHAQcBAf8E UTBPMBgEAgABMBIDBABny/ADBABnzmIDBADLAIswMwQCAAIwLQMHACABDfIQwAMH ACQA52ABAAMHACQA52ACAAMHACQA52ADAAMHACQA52AEADANBgkqhkiG9w0BAQsF AAOCAQEAAfToez2ZzJ+0efQ07u14DXmE2W7uKA8nQyjUrBqHfwdmWnp3S0E5GHnF p43SuszdAwxRwDUgojGKXv15sJrrXetsG2wbPYsPSwtfbDVyCHchDXyKuLBw4blX eJ3P8yJlf2XFL7cvQ/q7x6aLohiI2rP0Kx+NNNQeZ261HFiX/r1xUI+Kn1yOdPu9 P6OTupW4Qemcwv7IhPkK3wtp2GWeEFQu+dw6HDaz9P+iZuTfpWTHeNY8LFgeRanF SqJfCvWnJ2KGLdd2X6rvS0H+/0h/iyP7+hT1cxKFzJU3O5W6kHR+D3xWjwe29h06 hUQ6W8P/LaeSpk6oG2UWBz+B35DCvg== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:39 2024 by rpki-client on console-ams.rpki-client.org