$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa File: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (raw, json) Hash identifier: MBwn72JmsCT7vih3AtTLJUpOi+wUy13VRx2xsOOKJ2U= Subject key identifier: 41:3A:32:76:FF:23:F3:66:DC:36:A9:D5:22:D8:2B:50:10:3F:92:5B Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 12 Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa Signing time: Tue 05 Mar 2024 15:05:56 +0000 ROA not before: Tue 05 Mar 2024 15:05:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 135341 IP address blocks: 103.174.192.0/24 maxlen: 24 103.174.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Mar 5 15:05:56 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65e734d4-a626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:46:ef:02:f3:80:23:37:66:28:6d:ae:8c:27: 5c:9b:31:8b:d1:f5:3b:f6:dc:4e:75:6c:2f:ff:c1: 3d:ea:84:dc:06:6b:8b:aa:8a:2f:f5:38:af:46:20: 20:73:05:7a:60:14:7c:20:de:92:9f:1c:b6:5a:e2: bd:21:ee:7d:bc:f6:9a:6c:30:1c:65:b2:e6:78:02: b0:4d:14:cf:b9:c8:a6:47:11:90:9b:aa:f9:52:d4: 12:31:33:72:ac:85:43:dd:0b:a4:60:12:bf:6a:f6: 18:5d:e7:8a:2d:57:89:9e:29:b2:b2:c8:2c:a5:f6: 92:ec:57:23:85:7d:83:80:c3:bd:ba:c9:91:90:ae: b1:01:07:13:b8:2f:95:fe:11:18:08:3d:79:bd:7c: 8f:de:01:99:82:1d:60:c6:9f:02:79:72:6f:df:de: f9:b2:ba:bd:bf:4e:29:03:21:c3:02:7f:71:c8:3c: 53:b4:50:8f:24:4c:6d:ae:6b:e9:d7:6b:be:8c:c3: b6:6f:1e:9f:a1:c4:de:43:df:26:50:a4:2f:4f:f5: 9a:d9:9b:ce:94:41:7b:a8:f1:8d:4e:55:4e:fb:6d: e2:89:6d:9d:bc:c6:12:1c:7c:69:4e:a6:65:ed:d3: 99:98:49:4e:ca:dc:b7:ed:38:c2:a9:1a:23:f2:da: 42:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3A:32:76:FF:23:F3:66:DC:36:A9:D5:22:D8:2B:50:10:3F:92:5B X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.192.0/23 Signature Algorithm: sha256WithRSAEncryption a0:18:a0:6e:45:a8:90:b4:9f:bb:b6:35:93:0c:4f:b0:fe:10: d0:6b:77:68:0a:7c:5e:b4:59:49:23:0d:01:08:a5:d5:63:2c: 9f:78:a2:ec:c4:d8:ce:30:89:22:3d:ba:67:30:d9:e3:86:f3: 11:eb:93:35:59:b7:9d:5b:69:b2:80:ba:98:25:54:54:32:36: ff:22:0f:45:9d:7f:0f:a1:14:1f:9e:97:cf:07:85:a3:38:c9: 20:7a:8b:6a:89:56:66:56:c0:67:37:13:fd:81:ff:22:fb:4b: 7d:61:ab:dd:bf:35:c2:49:68:66:5a:9e:d2:a6:44:a3:51:69: a0:4b:f7:27:1b:29:c6:0a:5d:1c:7f:d5:97:ad:05:70:d7:8a: 48:96:49:22:f9:59:f4:f7:6c:9b:ca:e1:87:9e:5f:9b:49:52: d5:47:b7:7a:a4:f0:38:c5:3b:0a:8a:fd:94:42:19:d9:08:62: cd:74:5e:30:48:58:ff:1a:cd:10:de:d7:30:02:42:03:74:0b: b2:3a:c9:30:2b:5b:f9:8c:c1:af:bb:fa:4c:1f:e3:e3:10:21: 53:c0:27:87:8c:7a:54:df:c7:c4:a3:e4:39:fb:2c:65:37:c0: 6b:4d:86:00:08:9a:21:72:61:fe:93:2c:8a:e4:4c:0f:0a:c9: 5f:87:dd:60 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjMzNDExMC8GA1UEBRMoOEU4REQ1QjJDMTAxQjk4M0E3OTlDOTM4QUEwRTQwQTY1 MUZDQkUwNzAeFw0yNDAzMDUxNTA1NTZaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTczNGQ0LWE2MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGRu8C84AjN2Yoba6MJ1ybMYvR9Tv23E51bC//wT3qhNwGa4uqii/1OK9GICBz BXpgFHwg3pKfHLZa4r0h7n289ppsMBxlsuZ4ArBNFM+5yKZHEZCbqvlS1BIxM3Ks hUPdC6RgEr9q9hhd54otV4meKbKyyCyl9pLsVyOFfYOAw726yZGQrrEBBxO4L5X+ ERgIPXm9fI/eAZmCHWDGnwJ5cm/f3vmyur2/TikDIcMCf3HIPFO0UI8kTG2ua+nX a76Mw7ZvHp+hxN5D3yZQpC9P9ZrZm86UQXuo8Y1OVU77beKJbZ28xhIcfGlOpmXt 05mYSU7K3LftOMKpGiPy2kLlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQToydv8j 82bcNqnVItgrUBA/klswHwYDVR0jBBgwFoAUjo3VssEBuYOnmck4qg5AplH8vgcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2MzM0L0U3Q0RERkNFQzhE ODExRUU5RjRBQjk2REM0RjlBRTAyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZn Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvam8zVnNzRUJ1WU9ubWNrNHFnNUFwbEg4dmdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjMzNC9FN0NEREZDRUM4RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9CRkY2MzJCQUM4 REExMUVFOUQ5MDgzMEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeuwDANBgkqhkiG9w0BAQsFAAOCAQEAoBigbkWokLSfu7Y1 kwxPsP4Q0Gt3aAp8XrRZSSMNAQil1WMsn3ii7MTYzjCJIj26ZzDZ44bzEeuTNVm3 nVtpsoC6mCVUVDI2/yIPRZ1/D6EUH56XzweFozjJIHqLaolWZlbAZzcT/YH/IvtL fWGr3b81wkloZlqe0qZEo1FpoEv3JxspxgpdHH/Vl60FcNeKSJZJIvlZ9Pdsm8rh h55fm0lS1Ue3eqTwOMU7Cor9lEIZ2QhizXReMEhY/xrNEN7XMAJCA3QLsjrJMCtb +YzBr7v6TB/j4xAhU8Anh4x6VN/HxKPkOfssZTfAa02GAAiaIXJh/pMsiuRMDwrJ X4fdYA== -----END CERTIFICATE-----Generated at Fri May 31 10:42:21 2024 by rpki-client on console-fra.rpki-client.org