$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa File: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (raw, json) Hash identifier: C2RsYbuvVkPn9nhOkeMiqyxQvhJHdbdxyne9j3bxktw= Subject key identifier: 78:21:7D:2D:A3:F0:3F:85:A5:89:C0:5A:87:B1:A8:56:2D:4A:F0:26 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 04EF Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa Signing time: Tue 25 Jun 2024 00:49:55 +0000 ROA not before: Tue 25 Jun 2024 00:49:55 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 23947 IP address blocks: 103.116.124.0/24 maxlen: 24 103.116.125.0/24 maxlen: 24 103.116.126.0/24 maxlen: 24 103.116.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Jun 25 00:49:55 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667a1433-adb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1f:f6:d2:6b:54:eb:a4:90:65:f2:0b:16:d1: 81:61:fa:59:8d:bc:de:88:8f:8c:4e:c2:f6:db:da: 5e:ec:af:5d:a4:4b:7e:5f:c8:21:bc:74:e1:18:5b: 0e:ab:80:cb:0d:98:bf:ed:8f:88:f3:b0:56:42:b2: 78:8b:d0:4f:f5:98:a5:7f:4d:1a:c4:26:ad:4d:c3: e0:35:72:a0:69:b1:bd:52:a0:61:d1:55:55:2e:51: a8:a4:51:f9:10:44:6c:ce:d2:d2:b2:8b:f0:08:94: ac:f8:99:f5:1d:61:26:50:56:20:ff:32:a3:d3:c6: 73:50:0c:08:9f:fc:0a:db:70:f1:24:26:b4:59:58: 94:71:e0:56:cd:b0:fe:c1:66:80:fb:d0:9a:e7:a2: a8:ab:4c:9e:f3:32:06:7b:e7:53:a8:5f:46:93:04: 12:74:0e:84:b4:11:c3:11:4d:75:ed:50:bf:f1:1e: c9:a1:cb:2a:be:4d:cc:5f:8f:80:45:39:ac:80:57: 64:7d:b8:41:4d:d5:af:a2:92:02:96:bf:d0:41:05: 7b:44:78:06:b0:e0:4e:d8:5d:8f:6d:dd:f3:ab:3c: 99:0f:3f:89:5f:18:87:03:15:82:d4:e5:73:12:9d: 06:7f:af:81:32:37:39:ef:e7:d1:be:f8:51:d6:67: 03:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:21:7D:2D:A3:F0:3F:85:A5:89:C0:5A:87:B1:A8:56:2D:4A:F0:26 X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.124.0/22 Signature Algorithm: sha256WithRSAEncryption 12:77:46:62:01:b8:c3:15:73:ad:25:2d:57:3b:d0:20:0b:25: e6:a8:81:9e:43:6e:c5:c0:58:f5:27:8a:cd:8e:55:50:e7:eb: 46:3e:ce:eb:6b:9e:e8:59:52:66:3f:68:5e:01:82:fc:bb:60: ba:00:52:fa:40:c8:e9:2e:49:8d:dd:2d:d5:e8:cc:a9:47:a0: e8:19:80:18:a7:c7:bf:4c:2b:cf:74:a8:d1:df:8c:5b:2e:74: a5:92:e9:01:fe:3f:83:f0:52:8a:24:ab:40:30:07:c7:fa:1b: 7f:4b:89:e8:29:79:f6:da:f2:c9:42:39:23:6d:27:c6:7c:02: d1:01:d7:de:c0:37:58:01:43:7e:70:fb:8b:de:fa:03:bf:c1: be:ef:bf:3b:c0:71:17:bb:51:d3:d3:26:13:a4:4b:55:a1:c7: aa:40:0d:ab:26:94:66:cc:f3:5d:15:d1:9e:86:1a:ec:86:03: 77:f8:f0:c7:44:ba:60:9b:69:2a:0a:12:f7:cf:e9:50:5a:2a: 89:40:e4:b9:7d:8d:b0:fa:1a:c2:ca:20:3f:65:fa:94:09:40: 56:58:31:65:dd:80:eb:e1:d3:f9:20:aa:39:3c:47:c2:17:ed: 13:fb:d1:01:6f:d0:98:49:41:f2:96:8b:eb:44:fe:06:f0:36: 8a:7f:0d:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjQwNjI1MDA0OTU1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhMTQzMy1hZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzh/20mtU66SQZfILFtGBYfpZjbzeiI+MTsL229pe7K9dpEt+X8ghvHThGFsO q4DLDZi/7Y+I87BWQrJ4i9BP9Zilf00axCatTcPgNXKgabG9UqBh0VVVLlGopFH5 EERsztLSsovwCJSs+Jn1HWEmUFYg/zKj08ZzUAwIn/wK23DxJCa0WViUceBWzbD+ wWaA+9Ca56Koq0ye8zIGe+dTqF9GkwQSdA6EtBHDEU117VC/8R7Jocsqvk3MX4+A RTmsgFdkfbhBTdWvopIClr/QQQV7RHgGsOBO2F2Pbd3zqzyZDz+JXxiHAxWC1OVz Ep0Gf6+BMjc57+fRvvhR1mcDOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHghfS2j 8D+FpYnAWoexqFYtSvAmMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I2NDcvMDE1N0JBREVEMjQ5MTFFQkEwNEI0QzNCQzRGOUFFMDIvQkY4RjcwQzY3 QjgyMTFFRDlDNEVERDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndHwwDQYJKoZIhvcNAQELBQADggEBABJ3RmIBuMMVc60l LVc70CALJeaogZ5DbsXAWPUnis2OVVDn60Y+zutrnuhZUmY/aF4Bgvy7YLoAUvpA yOkuSY3dLdXozKlHoOgZgBinx79MK890qNHfjFsudKWS6QH+P4PwUookq0AwB8f6 G39Liegpefba8slCOSNtJ8Z8AtEB197AN1gBQ35w+4ve+gO/wb7vvzvAcRe7UdPT JhOkS1Whx6pADasmlGbM810V0Z6GGuyGA3f48MdEumCbaSoKEvfP6VBaKolA5Ll9 jbD6GsLKID9l+pQJQFZYMWXdgOvh0/kgqjk8R8IX7RP70QFv0JhJQfKWi+tE/gbw Nop/DbQ= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:21 2024 by rpki-client on console-fra.rpki-client.org