$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/BED54F1A9B1611EA939F5A3FC4F9AE02.roa File: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (raw, json) Hash identifier: sHHQTYQ4Ee+qL1FSRc7R4PCypgoLoQnfR9k5950BZKI= Subject key identifier: 9D:58:5D:87:EA:3E:29:7E:90:BA:AF:50:55:B1:8D:34:9B:F1:A7:92 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 08F0 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/BED54F1A9B1611EA939F5A3FC4F9AE02.roa Signing time: Wed 26 Jun 2024 21:14:20 +0000 ROA not before: Wed 26 Jun 2024 21:14:20 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45750 IP address blocks: 43.242.236.0/22 maxlen: 22 103.1.32.0/22 maxlen: 22 103.9.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Jun 26 21:14:20 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667c84ac-9519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:18:32:6b:39:c1:06:2e:14:cd:0b:3d:06:34: 9c:44:16:eb:2e:23:03:b3:75:ce:53:65:e3:e0:e9: 08:f0:d7:a4:46:a5:27:b5:1a:0b:8f:30:56:14:aa: 01:19:a2:a6:6d:7b:fc:53:eb:09:bd:5e:8a:03:8d: 18:ce:ac:98:dc:56:01:fc:d1:5d:e9:93:5f:7c:a2: 12:df:4d:d0:d3:2a:32:ab:a4:0e:d4:18:6f:07:24: c8:e9:7e:e4:42:2a:0e:a1:e7:76:46:d8:2f:a7:eb: 23:42:b2:26:02:a5:1d:4c:26:60:15:52:66:07:56: 73:26:7c:57:a1:0e:6f:15:70:f8:e8:43:1d:7c:1f: 80:ce:38:01:ef:7d:8a:15:1c:09:7d:d3:33:83:cb: 6d:67:7f:47:9c:28:47:05:6f:64:5e:ec:b2:b5:06: 02:b2:af:29:71:63:f4:d7:6e:b2:e0:75:4d:71:62: 69:4e:97:a9:d5:09:3f:b4:d0:b7:53:10:e8:df:4e: c1:44:1b:1c:80:2d:04:10:e1:ba:b0:ba:c3:b2:6f: 3b:bd:54:fb:f1:07:fd:80:f3:5c:b2:8c:31:04:04: 49:71:bb:68:a3:34:d5:a5:ef:20:fa:dd:4e:e5:36: 69:f5:29:a1:d8:8b:02:0b:b3:7d:b0:fa:2d:50:3e: e1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:58:5D:87:EA:3E:29:7E:90:BA:AF:50:55:B1:8D:34:9B:F1:A7:92 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/BED54F1A9B1611EA939F5A3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.236.0/22 103.1.32.0/22 103.9.244.0/22 Signature Algorithm: sha256WithRSAEncryption 27:b3:2d:82:0a:93:f0:58:20:7f:7e:c2:49:24:54:bb:b4:d5: 4f:9f:47:60:c3:2f:2f:e4:b4:49:6b:29:af:9a:34:f2:a0:ea: 06:c1:88:0b:e8:f4:7e:ff:64:52:74:a5:99:5a:20:b7:79:ff: f7:e3:58:c1:ef:05:d6:5c:8a:f7:03:9a:22:b5:c6:ee:81:27: 1c:f8:35:71:bb:c2:fd:08:69:dc:fe:f1:fe:64:3f:ca:1b:98: 45:be:92:45:51:af:79:20:ff:36:c1:68:6d:d9:cb:94:e4:17: ed:21:65:eb:f2:1a:68:55:eb:be:58:d9:42:26:e9:99:d2:35: fc:99:52:b7:80:44:5c:ce:c4:c5:96:74:34:e5:56:3e:f9:50: 83:1d:e2:d0:75:e2:f8:91:89:9e:20:44:e3:c4:e5:fb:3e:ff: 68:4b:97:7b:fc:28:1c:89:f6:e2:78:26:fb:47:12:27:53:4a: fe:5a:d5:35:72:24:81:d4:ac:03:ea:cd:47:a9:db:3b:5e:71: a9:61:22:2a:61:ff:f4:80:61:ca:df:5d:42:01:50:3c:8b:01: 31:d9:88:98:3c:1d:a5:1d:3c:68:d4:0b:b7:39:7e:21:08:aa: c2:0a:71:9c:99:02:ad:50:4f:26:8b:0d:86:27:a7:a6:c0:fa: 1f:f1:e8:d0 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjQwNjI2MjExNDIwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjODRhYy05NTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRgyaznBBi4UzQs9BjScRBbrLiMDs3XOU2Xj4OkI8NekRqUntRoLjzBWFKoB GaKmbXv8U+sJvV6KA40YzqyY3FYB/NFd6ZNffKIS303Q0yoyq6QO1BhvByTI6X7k QioOoed2Rtgvp+sjQrImAqUdTCZgFVJmB1ZzJnxXoQ5vFXD46EMdfB+AzjgB732K FRwJfdMzg8ttZ39HnChHBW9kXuyytQYCsq8pcWP0126y4HVNcWJpTpep1Qk/tNC3 UxDo307BRBscgC0EEOG6sLrDsm87vVT78Qf9gPNcsowxBARJcbtoozTVpe8g+t1O 5TZp9Smh2IsCC7N9sPotUD7hPQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJ1YXYfq Pil+kLqvUFWxjTSb8aeSMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEIwQjkvOUNCRjNEOTA4RkEwMTFFQUFBOUJCQTE4QzRGOUFFMDIvQkVENTRGMUE5 QjE2MTFFQTkzOUY1QTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIr8uwDBAJnASADBAJnCfQwDQYJKoZIhvcNAQELBQADggEB ACezLYIKk/BYIH9+wkkkVLu01U+fR2DDLy/ktElrKa+aNPKg6gbBiAvo9H7/ZFJ0 pZlaILd5//fjWMHvBdZcivcDmiK1xu6BJxz4NXG7wv0Iadz+8f5kP8obmEW+kkVR r3kg/zbBaG3Zy5TkF+0hZevyGmhV675Y2UIm6ZnSNfyZUreARFzOxMWWdDTlVj75 UIMd4tB14viRiZ4gROPE5fs+/2hLl3v8KByJ9uJ4JvtHEidTSv5a1TVyJIHUrAPq zUep2ztecalhIiph//SAYcrfXUIBUDyLATHZiJg8HaUdPGjUC7c5fiEIqsIKcZyZ Aq1QTyaLDYYnp6bA+h/x6NA= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:30 2024 by rpki-client on console-fra.rpki-client.org