$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa File: BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa (raw, json) Hash identifier: EikgtLBFZ+GcMX0vibVaRvnZCJfkspVWoQB1eoPQJJA= Subject key identifier: DE:57:C8:F3:2F:16:74:8F:E5:46:F2:6B:8A:20:A3:DE:4E:A0:D5:32 Certificate issuer: /CN=A9194AF5/serialNumber=97D11AE212CB213DF9652F5BB6248E40CE0C29FA Certificate serial: 64 Authority key identifier: 97:D1:1A:E2:12:CB:21:3D:F9:65:2F:5B:B6:24:8E:40:CE:0C:29:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9Ea4hLLIT35ZS9btiSOQM4MKfo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa Signing time: Thu 11 Jul 2024 06:57:42 +0000 ROA not before: Thu 11 Jul 2024 06:57:42 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132822 IP address blocks: 103.65.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/l9Ea4hLLIT35ZS9btiSOQM4MKfo.crl rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/l9Ea4hLLIT35ZS9btiSOQM4MKfo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9Ea4hLLIT35ZS9btiSOQM4MKfo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AF5/serialNumber=97D11AE212CB213DF9652F5BB6248E40CE0C29FA Validity Not Before: Jul 11 06:57:42 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668f8266-a257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:be:11:b1:26:f2:22:b8:ad:d9:86:b7:a2:75: d1:47:62:63:f4:4c:22:25:1a:38:72:bb:ec:33:d3: 86:08:ec:d0:c2:5b:35:f0:39:78:a7:79:fa:47:92: bc:6d:36:99:31:a1:1e:5e:4f:e5:69:32:42:22:11: 99:9f:b4:e6:2a:94:7e:a6:a1:5c:74:f8:2f:1e:48: 88:90:77:41:a2:6c:a7:5d:91:6e:43:53:2b:69:46: 03:d6:01:10:92:ae:51:42:81:76:1b:c4:14:d7:9a: 65:c4:cd:d4:02:04:b8:f5:e2:3b:68:fe:74:f6:4a: 9b:18:a1:c8:a9:d9:d6:6f:f1:16:89:ab:ad:05:bd: 25:dc:89:8b:ed:1d:c9:70:bd:1f:3c:74:de:6d:b6: c6:43:e0:f8:93:c4:91:d4:a3:63:e0:d9:14:ea:35: a8:22:2f:71:2b:52:07:3c:38:5a:20:8f:a8:df:f0: 82:1d:8a:16:12:1d:f2:55:3f:8e:f9:72:45:f5:3b: 22:41:2e:de:de:47:f8:88:f4:ec:85:c0:97:04:8f: c4:70:38:56:d1:f5:83:b5:ea:3e:f7:cd:16:54:f6: 24:52:e2:9a:b3:db:52:ad:5b:6d:40:6e:ce:97:58: 9e:e2:0d:2a:94:29:e2:f4:f4:c5:c5:70:31:60:db: 2a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:57:C8:F3:2F:16:74:8F:E5:46:F2:6B:8A:20:A3:DE:4E:A0:D5:32 X509v3 Authority Key Identifier: keyid:97:D1:1A:E2:12:CB:21:3D:F9:65:2F:5B:B6:24:8E:40:CE:0C:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/l9Ea4hLLIT35ZS9btiSOQM4MKfo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9Ea4hLLIT35ZS9btiSOQM4MKfo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.239.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:90:7b:32:59:a6:4e:14:60:9b:6d:05:68:b1:05:f7:53:ba: 05:42:ec:41:92:78:1d:08:99:0f:d8:5e:5b:f8:9d:f0:3d:22: 3a:2c:48:e3:73:24:27:98:8d:16:24:56:88:6d:5f:50:95:e9: 17:b8:53:8b:24:67:9c:3f:a3:02:c0:ad:12:32:6b:64:4e:e0: 21:1f:19:da:79:17:a0:80:1e:40:21:13:1e:bc:0e:d4:cc:88: 9f:21:35:f3:36:4e:f0:88:47:66:4c:e8:1d:99:e1:dd:e1:ad: c9:d8:76:01:11:0f:4b:46:51:68:db:64:40:0f:7c:59:4b:68: 78:f0:83:ad:40:a6:b0:e4:2b:4b:4e:bf:11:19:db:05:51:44: d0:60:1c:d6:fe:b1:a5:a6:68:82:15:c2:c1:3a:8f:a3:6f:36: 7f:cc:70:d8:c8:e9:70:af:f3:78:3f:01:fa:cd:f4:8c:08:ed: 1c:38:e7:e2:93:5b:00:30:22:06:6f:6b:a9:35:1e:bd:d5:af: 5e:12:29:74:c3:9a:a9:66:7e:21:0d:a3:68:a8:19:49:ce:10: 6d:5a:a2:1b:c2:bc:1b:b1:30:69:40:cd:bc:52:50:2c:54:ef: 1e:d4:e6:fc:ea:4e:0c:85:ab:88:54:ba:49:3d:e7:06:57:26: ff:3e:eb:4e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NEFGNTExMC8GA1UEBRMoOTdEMTFBRTIxMkNCMjEzREY5NjUyRjVCQjYyNDhFNDBD RTBDMjlGQTAeFw0yNDA3MTEwNjU3NDJaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OGY4MjY2LWEyNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVvhGxJvIiuK3ZhreiddFHYmP0TCIlGjhyu+wz04YI7NDCWzXwOXinefpHkrxt NpkxoR5eT+VpMkIiEZmftOYqlH6moVx0+C8eSIiQd0GibKddkW5DUytpRgPWARCS rlFCgXYbxBTXmmXEzdQCBLj14jto/nT2SpsYocip2dZv8RaJq60FvSXciYvtHclw vR88dN5ttsZD4PiTxJHUo2Pg2RTqNagiL3ErUgc8OFogj6jf8IIdihYSHfJVP475 ckX1OyJBLt7eR/iI9OyFwJcEj8RwOFbR9YO16j73zRZU9iRS4pqz21KtW21Abs6X WJ7iDSqUKeL09MXFcDFg2yrXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3lfI8y8W dI/lRvJriiCj3k6g1TIwHwYDVR0jBBgwFoAUl9Ea4hLLIT35ZS9btiSOQM4MKfow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0QUY1LzFCMUMyNDY2QUI1 NzExRUU4MThBMjgzRUM0RjlBRTAyL2w5RWE0aExMSVQzNVpTOWJ0aVNPUU00TUtm by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbDlFYTRoTExJVDM1WlM5YnRpU09RTTRNS2ZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEFGNS8xQjFDMjQ2NkFCNTcxMUVFODE4QTI4M0VDNEY5QUUwMi9CQzg3Q0I1MkFC NTcxMUVFQkM2RUJCM0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdB7zANBgkqhkiG9w0BAQsFAAOCAQEAC5B7MlmmThRgm20F aLEF91O6BULsQZJ4HQiZD9heW/id8D0iOixI43MkJ5iNFiRWiG1fUJXpF7hTiyRn nD+jAsCtEjJrZE7gIR8Z2nkXoIAeQCETHrwO1MyInyE18zZO8IhHZkzoHZnh3eGt ydh2AREPS0ZRaNtkQA98WUtoePCDrUCmsOQrS06/ERnbBVFE0GAc1v6xpaZoghXC wTqPo282f8xw2MjpcK/zeD8B+s30jAjtHDjn4pNbADAiBm9rqTUevdWvXhIpdMOa qWZ+IQ2jaKgZSc4QbVqiG8K8G7EwaUDNvFJQLFTvHtTm/OpODIWriFS6ST3nBlcm /z7rTg== -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:13 2024 by rpki-client on console-ams.rpki-client.org