$ rpki-client -vvf rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/BF289EBC6F7911EBA5D39C85C4F9AE02.roa File: BF289EBC6F7911EBA5D39C85C4F9AE02.roa (raw, json) Hash identifier: AaF3FcFShOiafDSRHmqVYnDEeJGLyPeUuLGsOLhjuVc= Subject key identifier: D6:4C:BF:FE:A1:5E:AB:35:8C:19:21:0B:28:CE:66:0E:96:2F:2E:8D Certificate issuer: /CN=A9191EE7/serialNumber=B7DFC802720B43F036351B0BC7163F22E5353D43 Certificate serial: 0621 Authority key identifier: B7:DF:C8:02:72:0B:43:F0:36:35:1B:0B:C7:16:3F:22:E5:35:3D:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9_IAnILQ_A2NRsLxxY_IuU1PUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/BF289EBC6F7911EBA5D39C85C4F9AE02.roa Signing time: Tue 08 Oct 2024 22:32:08 +0000 ROA not before: Tue 08 Oct 2024 22:32:08 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 139697 IP address blocks: 103.143.204.0/24 maxlen: 24 103.143.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/t9_IAnILQ_A2NRsLxxY_IuU1PUM.crl rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/t9_IAnILQ_A2NRsLxxY_IuU1PUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9_IAnILQ_A2NRsLxxY_IuU1PUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191EE7/serialNumber=B7DFC802720B43F036351B0BC7163F22E5353D43 Validity Not Before: Oct 8 22:32:08 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6705b2e7-ed44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8a:50:c3:5f:95:38:6c:ff:44:1f:6b:b4:27: ee:72:45:f1:2f:7c:1b:b8:01:d6:b6:c4:14:66:6d: 79:70:92:e8:0a:a7:94:c2:03:28:ae:15:57:0a:f0: 15:08:95:98:d9:2d:cb:19:90:1f:33:ef:dd:77:75: 45:70:13:ff:f1:59:44:e8:a4:eb:c1:67:94:da:26: d1:19:7f:6c:e8:36:fd:53:ca:02:72:b4:cf:b0:57: 13:f9:98:f2:24:8b:47:04:eb:d0:37:f5:a2:4e:2a: 9f:11:5d:13:5d:3c:4e:b1:92:11:73:72:51:0d:ec: 80:9b:d6:62:00:67:74:48:ed:c0:ea:d6:e1:f3:aa: 83:6f:a8:bf:6a:1f:59:ff:9d:23:ec:d6:6a:a9:d8: 0a:66:8b:9c:3d:3c:a3:f3:3c:6d:09:bf:fc:9d:f5: d8:f4:16:c4:6e:7e:4e:8a:63:23:2e:61:8a:4e:24: 08:29:b7:88:0a:74:1e:f8:fb:6f:88:71:8f:14:54: 95:c2:61:c1:c3:bd:9b:4c:64:7a:83:ee:24:7f:85: 06:e5:3a:e3:5f:63:5d:ee:6e:38:1a:99:99:45:e7: b4:b9:63:3e:2a:fb:eb:74:f2:7d:5a:c8:19:b9:0d: ed:b5:20:c3:ec:0b:98:49:34:5c:9c:6c:ca:ca:52: 9d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:4C:BF:FE:A1:5E:AB:35:8C:19:21:0B:28:CE:66:0E:96:2F:2E:8D X509v3 Authority Key Identifier: keyid:B7:DF:C8:02:72:0B:43:F0:36:35:1B:0B:C7:16:3F:22:E5:35:3D:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/t9_IAnILQ_A2NRsLxxY_IuU1PUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9_IAnILQ_A2NRsLxxY_IuU1PUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191EE7/04DC30426F7811EB92FE0782C4F9AE02/BF289EBC6F7911EBA5D39C85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.204.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:03:0c:b7:30:44:47:9c:8d:2b:4d:ec:2b:7a:7b:81:01:48: d4:6e:de:fe:6e:9f:2c:c2:81:76:4a:b2:b3:34:0f:21:b7:d5: 41:d9:a2:13:5c:60:e8:00:5b:3d:32:a7:74:c8:ba:7a:4f:90: 61:06:f6:27:aa:10:c7:f5:44:2f:08:a0:df:49:13:ae:d5:a9: 58:9c:85:12:87:d2:9b:14:03:29:26:f5:d3:69:b7:50:87:35: 38:40:a6:29:57:35:86:62:1f:43:23:0a:cd:21:f2:8a:4a:c4: bf:c8:1d:9b:e0:7f:85:dc:8f:98:6f:b6:f2:af:7d:fc:f5:88: a2:84:86:53:bd:91:bc:78:19:88:82:cb:22:66:71:7d:eb:5d: 5a:18:15:9d:5b:9d:32:8c:64:0f:c3:c3:3d:de:f5:43:85:ea: b7:e1:10:50:38:47:ff:76:6c:c0:cd:83:29:29:75:45:78:aa: 72:93:9d:45:93:48:ca:56:ed:40:cb:65:d8:7c:79:d3:ea:8e: 10:c6:30:f6:fe:5d:9e:8a:84:8d:46:03:2e:3a:79:51:56:48: 5b:45:e5:0b:5e:61:a5:85:a0:cd:b4:43:a8:a7:ce:09:36:99: 61:ba:17:56:61:b1:b3:b1:a5:e9:e7:0f:08:04:8d:f2:bb:ac: 26:ca:11:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFRTcxMTAvBgNVBAUTKEI3REZDODAyNzIwQjQzRjAzNjM1MUIwQkM3MTYzRjIy RTUzNTNENDMwHhcNMjQxMDA4MjIzMjA4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1YjJlNy1lZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IpQw1+VOGz/RB9rtCfuckXxL3wbuAHWtsQUZm15cJLoCqeUwgMorhVXCvAV CJWY2S3LGZAfM+/dd3VFcBP/8VlE6KTrwWeU2ibRGX9s6Db9U8oCcrTPsFcT+Zjy JItHBOvQN/WiTiqfEV0TXTxOsZIRc3JRDeyAm9ZiAGd0SO3A6tbh86qDb6i/ah9Z /50j7NZqqdgKZoucPTyj8zxtCb/8nfXY9BbEbn5OimMjLmGKTiQIKbeICnQe+Ptv iHGPFFSVwmHBw72bTGR6g+4kf4UG5TrjX2Nd7m44GpmZRee0uWM+KvvrdPJ9WsgZ uQ3ttSDD7AuYSTRcnGzKylKdOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNZMv/6h Xqs1jBkhCyjOZg6WLy6NMB8GA1UdIwQYMBaAFLffyAJyC0PwNjUbC8cWPyLlNT1D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUVFNy8wNERDMzA0MjZG NzgxMUVCOTJGRTA3ODJDNEY5QUUwMi90OV9JQW5JTFFfQTJOUnNMeHhZX0l1VTFQ VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5X0lBbklMUV9BMk5Sc0x4eFlfSXVVMVBVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFRTcvMDREQzMwNDI2Rjc4MTFFQjkyRkUwNzgyQzRGOUFFMDIvQkYyODlFQkM2 Rjc5MTFFQkE1RDM5Qzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnj8wwDQYJKoZIhvcNAQELBQADggEBAF0DDLcwREecjStN 7Ct6e4EBSNRu3v5unyzCgXZKsrM0DyG31UHZohNcYOgAWz0yp3TIunpPkGEG9ieq EMf1RC8IoN9JE67VqVichRKH0psUAykm9dNpt1CHNThApilXNYZiH0MjCs0h8opK xL/IHZvgf4Xcj5hvtvKvffz1iKKEhlO9kbx4GYiCyyJmcX3rXVoYFZ1bnTKMZA/D wz3e9UOF6rfhEFA4R/92bMDNgykpdUV4qnKTnUWTSMpW7UDLZdh8edPqjhDGMPb+ XZ6KhI1GAy46eVFWSFtF5QteYaWFoM20Q6inzgk2mWG6F1ZhsbOxpennDwgEjfK7 rCbKEZE= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:31 2024 by rpki-client on console-fra.rpki-client.org