$ rpki-client -vvf rpki.apnic.net/member_repository/A915FECB/4D47DC868D0911EDB9790850C4F9AE02/BDBF9A0666D011EF861D9840C4F9AE02.roa File: BDBF9A0666D011EF861D9840C4F9AE02.roa (raw, json) Hash identifier: bHUERkg8bGXKbdYgVMtl9i6ispE9ShleXxD/LHmjK+I= Subject key identifier: D1:54:81:44:9C:C5:A0:47:D7:D0:9E:07:96:D5:19:A0:8C:07:28:54 Certificate issuer: /CN=A915FECB/serialNumber=B4B4AB9F3CB04430FD64D4EE2ADD0845E44D57FF Certificate serial: 0151 Authority key identifier: B4:B4:AB:9F:3C:B0:44:30:FD:64:D4:EE:2A:DD:08:45:E4:4D:57:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLSrnzywRDD9ZNTuKt0IReRNV_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FECB/4D47DC868D0911EDB9790850C4F9AE02/BDBF9A0666D011EF861D9840C4F9AE02.roa Signing time: Fri 30 Aug 2024 13:07:00 +0000 ROA not before: Fri 30 Aug 2024 13:07:00 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 30938 IP address blocks: 103.136.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FECB/4D47DC868D0911EDB9790850C4F9AE02/tLSrnzywRDD9ZNTuKt0IReRNV_8.crl rsync://rpki.apnic.net/member_repository/A915FECB/4D47DC868D0911EDB9790850C4F9AE02/tLSrnzywRDD9ZNTuKt0IReRNV_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLSrnzywRDD9ZNTuKt0IReRNV_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FECB/serialNumber=B4B4AB9F3CB04430FD64D4EE2ADD0845E44D57FF Validity Not Before: Aug 30 13:07:00 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66d1c3f3-1593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1a:f8:b6:79:98:1a:19:46:06:e5:f7:3b:67: 72:d6:35:93:8a:1c:22:de:87:26:b2:17:46:5f:40: 2c:f3:3e:e7:05:6c:fa:8f:86:44:e0:fc:9b:21:e1: e0:a6:29:d1:c5:13:ad:37:7d:ce:ef:c0:84:91:3e: d1:2b:78:f4:71:b9:29:ce:27:62:b0:ba:5a:c6:6c: 77:99:6b:1a:ec:d4:d8:2e:19:c9:32:15:e1:b9:59: 77:8c:26:c1:2d:f6:82:fb:ba:85:1e:8c:12:a4:c8: da:d3:5e:f6:eb:0c:97:84:9a:8e:d6:dd:0f:46:6e: c9:9e:92:5c:8b:ac:ed:06:3b:cf:85:15:02:e6:56: e5:d6:5c:6d:03:17:75:83:e8:43:c1:73:22:29:bc: 4f:7e:43:50:09:9f:72:37:59:5b:2b:a2:77:dd:88: 90:81:f9:88:87:5f:80:0c:07:35:15:8b:80:1f:1b: 2b:c7:29:c4:3c:5d:b7:01:4e:e6:37:63:99:9b:88: 66:2b:05:fa:db:fb:31:cf:5c:1a:c9:c5:6d:b8:3e: ad:ee:68:2e:b5:4c:63:39:25:09:d7:72:c0:8e:36: e5:45:a4:2f:8a:15:ae:ac:b1:fa:91:86:51:0d:a0: ec:e2:6f:3b:38:1f:07:37:c4:b8:9a:81:e0:07:63: 67:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:54:81:44:9C:C5:A0:47:D7:D0:9E:07:96:D5:19:A0:8C:07:28:54 X509v3 Authority Key Identifier: keyid:B4:B4:AB:9F:3C:B0:44:30:FD:64:D4:EE:2A:DD:08:45:E4:4D:57:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FECB/4D47DC868D0911EDB9790850C4F9AE02/tLSrnzywRDD9ZNTuKt0IReRNV_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLSrnzywRDD9ZNTuKt0IReRNV_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FECB/4D47DC868D0911EDB9790850C4F9AE02/BDBF9A0666D011EF861D9840C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.69.0/24 Signature Algorithm: sha256WithRSAEncryption b6:92:d7:0a:7d:8a:64:b9:de:55:3b:82:10:d6:00:b2:61:9e: d7:05:52:48:dc:28:fc:fd:e3:6c:04:bf:9a:ee:08:a8:d2:9e: 73:bc:fd:11:8b:12:ef:26:77:f8:6c:80:a7:bd:4b:d2:dc:39: 8c:22:7f:6a:e8:fa:9e:a0:dc:2d:dd:e5:7f:a7:3b:c0:79:db: 3d:06:e0:43:3c:c2:11:bf:38:59:49:5f:6b:cf:95:86:55:15: 6e:48:c2:16:98:d2:a5:c9:b4:ed:63:32:f1:da:63:c3:97:b4: b2:03:c5:16:f4:bc:6f:ef:78:e0:3f:7a:37:58:20:1f:cc:ba: 72:c0:c8:22:6c:93:88:54:45:b4:19:48:34:0d:0c:22:3c:de: a9:71:28:ea:e2:36:35:f7:0f:37:e7:08:76:d1:ac:fd:1a:07: a2:85:6d:f8:97:4a:b6:2f:64:3b:36:0a:73:c4:ee:86:73:2a: 64:f9:1d:03:39:2f:e9:0b:92:dd:4a:9d:13:e5:99:9d:9a:09: 95:c2:71:23:a0:f4:d4:a1:e2:ef:0a:84:5c:49:9a:c2:2c:d5: c6:77:c2:c2:f6:4f:df:b4:3e:59:d1:b0:b0:b3:9e:94:d6:be: 1b:00:d4:00:be:e1:13:96:bf:fc:0b:87:e8:cf:0a:6b:50:39: c1:1c:c8:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZFQ0IxMTAvBgNVBAUTKEI0QjRBQjlGM0NCMDQ0MzBGRDY0RDRFRTJBREQwODQ1 RTQ0RDU3RkYwHhcNMjQwODMwMTMwNzAwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxYzNmMy0xNTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxr4tnmYGhlGBuX3O2dy1jWTihwi3ocmshdGX0As8z7nBWz6j4ZE4PybIeHg pinRxROtN33O78CEkT7RK3j0cbkpzidisLpaxmx3mWsa7NTYLhnJMhXhuVl3jCbB LfaC+7qFHowSpMja01726wyXhJqO1t0PRm7JnpJci6ztBjvPhRUC5lbl1lxtAxd1 g+hDwXMiKbxPfkNQCZ9yN1lbK6J33YiQgfmIh1+ADAc1FYuAHxsrxynEPF23AU7m N2OZm4hmKwX62/sxz1waycVtuD6t7mgutUxjOSUJ13LAjjblRaQvihWurLH6kYZR DaDs4m87OB8HN8S4moHgB2NnIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNFUgUSc xaBH19CeB5bVGaCMByhUMB8GA1UdIwQYMBaAFLS0q588sEQw/WTU7irdCEXkTVf/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkVDQi80RDQ3REM4NjhE MDkxMUVEQjk3OTA4NTBDNEY5QUUwMi90TFNybnp5d1JERDlaTlR1S3QwSVJlUk5W XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMU3Juenl3UkREOVpOVHVLdDBJUmVSTlZfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZFQ0IvNEQ0N0RDODY4RDA5MTFFREI5NzkwODUwQzRGOUFFMDIvQkRCRjlBMDY2 NkQwMTFFRjg2MUQ5ODQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniEUwDQYJKoZIhvcNAQELBQADggEBALaS1wp9imS53lU7 ghDWALJhntcFUkjcKPz942wEv5ruCKjSnnO8/RGLEu8md/hsgKe9S9LcOYwif2ro +p6g3C3d5X+nO8B52z0G4EM8whG/OFlJX2vPlYZVFW5IwhaY0qXJtO1jMvHaY8OX tLIDxRb0vG/veOA/ejdYIB/MunLAyCJsk4hURbQZSDQNDCI83qlxKOriNjX3Dzfn CHbRrP0aB6KFbfiXSrYvZDs2CnPE7oZzKmT5HQM5L+kLkt1KnRPlmZ2aCZXCcSOg 9NSh4u8KhFxJmsIs1cZ3wsL2T9+0PlnRsLCznpTWvhsA1AC+4ROWv/wLh+jPCmtQ OcEcyHs= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:38 2024 by rpki-client on console-ams.rpki-client.org