$ rpki-client -vvf rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/0BC0DC9AE15911EE90A99E65C4F9AE02.roa File: 0BC0DC9AE15911EE90A99E65C4F9AE02.roa (raw, json) Hash identifier: Fp+gkDrLCoWr44qv9T+GvMZxl0K1izvvxuM6/9HR45M= Subject key identifier: 39:C6:1B:8D:42:8C:7E:FD:22:B2:58:A9:92:CA:09:91:A2:56:80:32 Certificate issuer: /CN=A9161DF8/serialNumber=3FBC3AF43102CEDA4FA0F7FA9BD91B2D65346D6E Certificate serial: 0140 Authority key identifier: 3F:BC:3A:F4:31:02:CE:DA:4F:A0:F7:FA:9B:D9:1B:2D:65:34:6D:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7w69DECztpPoPf6m9kbLWU0bW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/0BC0DC9AE15911EE90A99E65C4F9AE02.roa Signing time: Wed 13 Mar 2024 16:47:13 +0000 ROA not before: Wed 13 Mar 2024 16:47:13 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 137047 IP address blocks: 103.250.28.0/24 maxlen: 24 103.250.29.0/24 maxlen: 24 2001:df1:4540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/P7w69DECztpPoPf6m9kbLWU0bW4.crl rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/P7w69DECztpPoPf6m9kbLWU0bW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7w69DECztpPoPf6m9kbLWU0bW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161DF8/serialNumber=3FBC3AF43102CEDA4FA0F7FA9BD91B2D65346D6E Validity Not Before: Mar 13 16:47:13 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65f1d890-2a28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:52:01:70:36:ca:6c:73:4c:f4:62:0a:3a:a5: de:ed:d7:c7:68:22:13:99:c8:21:ba:0f:ab:92:55: a5:6e:fd:15:4f:58:49:ee:55:84:e1:01:a8:aa:fc: 4f:27:7c:c6:27:56:9c:91:9f:9b:b6:3f:f7:dc:59: de:a7:6e:c7:4d:b1:1e:03:dd:97:59:5a:ee:05:59: 64:03:81:74:fb:90:27:dd:c4:8b:51:a8:2a:50:31: 88:e3:28:4a:76:31:63:2e:d7:b5:98:f6:b1:bd:4f: 94:56:8d:bf:8a:54:d5:88:05:3d:91:51:68:cb:8e: 28:78:0d:29:06:e7:0a:d3:1a:7e:e0:d2:0f:52:3f: de:30:55:48:4d:b8:91:22:41:92:a4:c7:05:cb:1e: d5:52:09:de:fd:11:07:57:d1:ca:91:18:ba:c2:73: 4e:ae:8d:c0:8d:8d:b9:d2:03:cb:2a:84:c3:05:fa: 3c:2b:c1:13:a5:6a:87:3b:6d:85:8e:d2:92:96:b1: 78:cd:82:ee:02:10:83:32:14:49:2c:be:dd:63:e1: 8e:f9:4c:a7:df:f9:6b:32:e6:b3:c3:74:cf:d4:2b: 57:d1:33:18:e9:57:85:81:05:43:60:6e:d5:68:39: 03:ed:e8:d0:56:fd:c9:ed:3c:6e:62:ad:e7:ff:3d: 0b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C6:1B:8D:42:8C:7E:FD:22:B2:58:A9:92:CA:09:91:A2:56:80:32 X509v3 Authority Key Identifier: keyid:3F:BC:3A:F4:31:02:CE:DA:4F:A0:F7:FA:9B:D9:1B:2D:65:34:6D:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/P7w69DECztpPoPf6m9kbLWU0bW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7w69DECztpPoPf6m9kbLWU0bW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/0BC0DC9AE15911EE90A99E65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.28.0/23 IPv6: 2001:df1:4540::/48 Signature Algorithm: sha256WithRSAEncryption 73:58:ea:57:3d:36:b9:06:95:b2:73:41:c9:c8:de:10:d8:cd: 2f:fa:81:19:37:47:e8:fb:01:2a:2b:38:e5:7f:74:bd:9a:e4: 60:61:9b:4f:8c:db:3a:1b:cf:91:8d:0d:03:88:14:66:a4:a5: 8d:80:29:e3:0b:e8:16:ee:08:80:a5:7a:ff:0a:be:a9:2c:9e: 33:fe:18:f6:87:f0:6e:a5:45:e2:84:a0:01:5f:bc:b3:6b:0e: 33:b1:9e:2f:17:db:03:c0:e4:22:c1:fe:0e:f8:b1:f5:e6:cc: 9d:ba:ce:9d:69:30:f0:68:3f:5b:b5:32:89:37:38:8e:0a:ad: 57:9c:e6:e8:e6:eb:0a:f7:ba:50:bc:14:64:1e:c7:54:3f:d7: 2a:27:d7:81:15:b0:52:8e:a1:a2:da:8f:37:cf:f7:4c:8f:d4: 2d:df:58:e6:75:7b:56:a4:bc:cd:34:9a:82:3a:f0:53:77:3e: 39:3d:55:b9:86:2b:dd:9a:a8:5c:ec:90:64:87:19:14:15:49: 88:be:60:69:ba:88:cd:74:d6:23:fe:5c:bf:42:a1:a5:60:63: 58:28:d4:83:21:bf:39:21:55:7c:23:87:05:d1:2d:ae:3e:68: 00:6f:3b:21:90:26:6a:f5:cf:4e:b0:c2:65:cf:70:8f:b6:78: 8f:e3:79:a2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFERjgxMTAvBgNVBAUTKDNGQkMzQUY0MzEwMkNFREE0RkEwRjdGQTlCRDkxQjJE NjUzNDZENkUwHhcNMjQwMzEzMTY0NzEzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYxZDg5MC0yYTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1IBcDbKbHNM9GIKOqXe7dfHaCITmcghug+rklWlbv0VT1hJ7lWE4QGoqvxP J3zGJ1ackZ+btj/33Fnep27HTbEeA92XWVruBVlkA4F0+5An3cSLUagqUDGI4yhK djFjLte1mPaxvU+UVo2/ilTViAU9kVFoy44oeA0pBucK0xp+4NIPUj/eMFVITbiR IkGSpMcFyx7VUgne/REHV9HKkRi6wnNOro3AjY250gPLKoTDBfo8K8ETpWqHO22F jtKSlrF4zYLuAhCDMhRJLL7dY+GO+Uyn3/lrMuazw3TP1CtX0TMY6VeFgQVDYG7V aDkD7ejQVv3J7TxuYq3n/z0LEwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDnGG41C jH79IrJYqZLKCZGiVoAyMB8GA1UdIwQYMBaAFD+8OvQxAs7aT6D3+pvZGy1lNG1u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MURGOC8yNkU1MzExNDU1 MDYxMUVEOTUwNkMwNDVDNEY5QUUwMi9QN3c2OURFQ3p0cFBvUGY2bTlrYkxXVTBi VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3dzY5REVDenRwUG9QZjZtOWtiTFdVMGJXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFERjgvMjZFNTMxMTQ1NTA2MTFFRDk1MDZDMDQ1QzRGOUFFMDIvMEJDMERDOUFF MTU5MTFFRTkwQTk5RTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn+hwwDwQCAAIwCQMHACABDfFFQDANBgkqhkiG9w0BAQsF AAOCAQEAc1jqVz02uQaVsnNBycjeENjNL/qBGTdH6PsBKis45X90vZrkYGGbT4zb OhvPkY0NA4gUZqSljYAp4wvoFu4IgKV6/wq+qSyeM/4Y9ofwbqVF4oSgAV+8s2sO M7GeLxfbA8DkIsH+Dvix9ebMnbrOnWkw8Gg/W7UyiTc4jgqtV5zm6ObrCve6ULwU ZB7HVD/XKifXgRWwUo6hotqPN8/3TI/ULd9Y5nV7VqS8zTSagjrwU3c+OT1VuYYr 3ZqoXOyQZIcZFBVJiL5gabqIzXTWI/5cv0KhpWBjWCjUgyG/OSFVfCOHBdEtrj5o AG87IZAmavXPTrDCZc9wj7Z4j+N5og== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org