$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/BFA3B5F81FC911EA8CF04E61C4F9AE02.roa File: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (raw, json) Hash identifier: tRDPOuysTM3j6RUChVc/lZ1Ir+BGvYj0vPYVhGcTQNo= Subject key identifier: B4:19:45:99:F2:4D:5D:A8:F7:46:05:F7:D3:31:B4:66:82:08:44:F9 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0B1F Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/BFA3B5F81FC911EA8CF04E61C4F9AE02.roa Signing time: Fri 26 Jul 2024 19:47:34 +0000 ROA not before: Fri 26 Jul 2024 19:47:34 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137981 IP address blocks: 103.119.75.0/24 maxlen: 24 103.143.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2847 (0xb1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Jul 26 19:47:34 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a3fd56-78f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:89:84:93:b8:c5:05:af:6e:68:ec:53:f8: 11:16:6a:53:fe:ff:65:6c:90:1e:17:1d:a0:f3:fc: 20:23:7c:48:90:a0:da:ce:6c:1f:92:8a:5b:be:6b: 5a:e7:96:ea:7d:f0:95:57:b6:cf:f9:97:aa:bc:58: 12:2c:fc:1b:9d:ad:fa:55:cf:b5:f2:11:c8:31:cc: da:7b:e9:12:2a:58:51:cf:16:e5:bd:9e:b9:b0:e4: 77:14:1b:27:e2:9e:46:23:1c:4a:76:02:42:38:ad: 6f:d8:cc:b6:b3:1d:9b:4a:37:de:67:80:c5:14:a1: 27:87:57:7f:4b:a7:db:b7:dc:e7:2e:86:6b:02:69: 2f:9a:6a:d6:12:f8:07:d5:e6:bd:45:a0:37:7e:2d: f7:63:d1:86:1b:23:ae:c6:ee:1f:30:73:fd:79:3d: 23:bb:a7:09:c2:05:22:e8:47:42:39:77:21:45:7d: 3d:9d:e2:60:1b:47:fd:9c:c4:2b:b9:1e:15:7c:eb: 33:21:e0:39:59:42:d1:53:38:95:4c:c1:5b:45:1b: 9e:00:9a:31:ba:b8:06:37:18:b2:c2:13:44:91:a9: ea:4b:b7:3b:15:94:29:c7:12:48:f0:6d:6e:46:b6: 30:79:6e:5d:58:07:ee:07:25:ef:2f:2a:17:17:11: 69:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:19:45:99:F2:4D:5D:A8:F7:46:05:F7:D3:31:B4:66:82:08:44:F9 X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/BFA3B5F81FC911EA8CF04E61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.75.0/24 103.143.252.0/24 Signature Algorithm: sha256WithRSAEncryption a4:fa:f5:a2:01:a5:25:05:f0:fc:60:54:ca:82:03:5c:e1:3f: 78:65:58:97:46:04:22:bb:e2:52:36:99:db:3b:44:21:ed:10: ff:da:fc:5b:09:f7:2c:28:eb:6c:f4:87:c5:7f:1b:4c:58:87: ca:71:1d:fd:24:7b:89:ab:eb:a8:71:7e:f1:26:57:c5:b9:a6: ef:eb:c1:84:97:10:51:d8:44:aa:7a:54:ac:78:dd:0d:7e:1f: 19:e1:6b:16:d3:7f:73:3a:fe:99:be:be:12:db:c8:b7:d8:0a: cf:bf:39:35:cc:7f:e3:af:21:74:c1:73:f9:16:d0:51:19:00: 7b:31:43:2f:83:50:29:2e:bc:3e:94:8e:14:bd:1e:1e:0e:a0: 11:01:94:24:70:c3:a5:50:30:6d:ac:cc:ca:2a:5c:f6:39:e5: 09:ae:86:b1:94:45:88:8d:cc:83:fa:7d:c5:49:9a:2d:60:d1: 56:1a:90:8c:74:60:4d:50:cb:b0:fa:74:13:40:cd:89:01:c3: 7b:87:e8:14:63:87:27:0b:12:45:d9:9e:a4:70:c6:d4:fb:ed: 9e:4d:82:ec:47:92:76:69:7d:4b:15:fd:4d:18:b1:be:5e:bd: 41:e5:d7:db:87:75:f3:97:41:e5:3e:d7:c9:94:88:37:89:33: 54:b2:83:7d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjQwNzI2MTk0NzM0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzZmQ1Ni03OGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaOJhJO4xQWvbmjsU/gRFmpT/v9lbJAeFx2g8/wgI3xIkKDazmwfkopbvmta 55bqffCVV7bP+ZeqvFgSLPwbna36Vc+18hHIMczae+kSKlhRzxblvZ65sOR3FBsn 4p5GIxxKdgJCOK1v2My2sx2bSjfeZ4DFFKEnh1d/S6fbt9znLoZrAmkvmmrWEvgH 1ea9RaA3fi33Y9GGGyOuxu4fMHP9eT0ju6cJwgUi6EdCOXchRX09neJgG0f9nMQr uR4VfOszIeA5WULRUziVTMFbRRueAJoxurgGNxiywhNEkanqS7c7FZQpxxJI8G1u RrYweW5dWAfuByXvLyoXFxFp0wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLQZRZny TV2o90YF99MxtGaCCET5MB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyMEUvMjNBQUQ5OEUxRkM4MTFFQTg0NTk0RjVFQzRGOUFFMDIvQkZBM0I1Rjgx RkM5MTFFQThDRjA0RTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnd0sDBABnj/wwDQYJKoZIhvcNAQELBQADggEBAKT69aIB pSUF8PxgVMqCA1zhP3hlWJdGBCK74lI2mds7RCHtEP/a/FsJ9ywo62z0h8V/G0xY h8pxHf0ke4mr66hxfvEmV8W5pu/rwYSXEFHYRKp6VKx43Q1+HxnhaxbTf3M6/pm+ vhLbyLfYCs+/OTXMf+OvIXTBc/kW0FEZAHsxQy+DUCkuvD6UjhS9Hh4OoBEBlCRw w6VQMG2szMoqXPY55QmuhrGURYiNzIP6fcVJmi1g0VYakIx0YE1Qy7D6dBNAzYkB w3uH6BRjhycLEkXZnqRwxtT77Z5NguxHknZpfUsV/U0Ysb5evUHl19uHdfOXQeU+ 18mUiDeJM1Syg30= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:34 2024 by rpki-client on console-ams.rpki-client.org