$ rpki-client -vvf rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/B0EE80B28FBB11EAA0855C73C4F9AE02.roa File: B0EE80B28FBB11EAA0855C73C4F9AE02.roa (raw, json) Hash identifier: 3O4hSAzFPL+I7KPUSvKCCNU9mtGXDvPTBkqNJz4lBGM= Subject key identifier: 46:8B:46:CB:94:C6:DF:0A:2F:48:1E:2E:CB:1F:AE:79:FD:C5:ED:C2 Certificate issuer: /CN=A919690C/serialNumber=2D58989048C219F01088AE72BFAE0970DF5DA636 Certificate serial: 0885 Authority key identifier: 2D:58:98:90:48:C2:19:F0:10:88:AE:72:BF:AE:09:70:DF:5D:A6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/B0EE80B28FBB11EAA0855C73C4F9AE02.roa Signing time: Wed 31 Jan 2024 21:29:27 +0000 ROA not before: Wed 31 Jan 2024 21:29:27 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136030 IP address blocks: 103.85.128.0/24 maxlen: 24 103.85.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.crl rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2181 (0x885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919690C/serialNumber=2D58989048C219F01088AE72BFAE0970DF5DA636 Validity Not Before: Jan 31 21:29:27 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65babbb7-ed25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:47:16:af:e1:02:f9:6d:0c:e3:00:29:bc:ce: 2b:5e:b0:32:2b:33:29:67:ac:15:dc:b3:8b:c5:60: 0f:9b:40:20:ff:56:9d:54:34:28:a2:5c:60:6d:45: 24:2a:cb:4c:9f:5c:b9:56:6f:49:e8:03:eb:f1:47: a8:a2:f7:55:1b:8f:99:47:25:18:25:92:35:cd:13: 91:6f:cf:e8:cd:53:3d:95:61:4a:74:dc:ac:17:a7: 6c:b3:f3:f4:87:8a:5d:37:eb:9e:48:96:27:e8:ae: 25:9a:f1:a9:e3:ac:e3:6b:e4:ee:c3:31:03:f3:39: 70:9a:dd:a6:50:27:7a:3c:80:f2:ee:50:35:37:2f: 23:48:5f:40:72:4e:69:c0:9a:cd:ad:cb:75:97:02: 3b:91:69:cf:be:20:a7:15:8e:3f:36:fb:af:5f:6d: 87:4d:9f:27:ed:1a:5f:fe:bf:7e:d1:a6:8f:ad:e0: 5d:82:f5:5e:27:89:0f:52:65:b6:ad:91:be:0d:50: 9f:34:93:e9:5d:c0:c5:df:79:ae:fd:ab:bd:7e:29: 53:0d:3c:d4:9d:2b:e6:67:92:15:dd:4b:ac:5f:98: b8:e8:9f:91:7c:98:15:1b:5e:68:ec:df:10:c8:1e: ca:50:3f:dc:93:1d:48:90:ef:d3:a4:f5:3d:39:25: 19:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:8B:46:CB:94:C6:DF:0A:2F:48:1E:2E:CB:1F:AE:79:FD:C5:ED:C2 X509v3 Authority Key Identifier: keyid:2D:58:98:90:48:C2:19:F0:10:88:AE:72:BF:AE:09:70:DF:5D:A6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/B0EE80B28FBB11EAA0855C73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.128.0/24 103.85.131.0/24 Signature Algorithm: sha256WithRSAEncryption 10:22:0b:36:5c:75:65:6f:d9:ba:e1:5b:40:2b:9c:0b:50:4c: 67:ac:69:e6:ae:0c:08:a3:87:ff:c0:c5:1b:5f:fe:a0:29:bf: cc:ee:c7:ce:7b:b8:d5:64:c7:c0:42:eb:fb:f0:c7:90:cb:28: 02:ff:86:92:34:a8:55:dd:41:f0:a3:fa:fe:54:a1:01:09:b6: f7:fd:92:d9:aa:12:21:24:d1:dc:ee:cf:1b:45:79:7d:b3:b8: 16:8b:01:ea:e9:34:92:0f:14:a0:1b:9f:bf:21:fd:bf:e3:ee: f1:d4:8b:f0:49:6c:be:ba:ab:d8:d5:e2:23:22:83:01:a1:70: 6c:9b:59:9b:9f:fd:76:71:e3:b4:57:47:87:65:50:a9:33:7c: 56:38:b7:7b:a6:99:f2:37:5e:34:89:64:8b:96:c3:cb:6f:e2: fa:e1:96:29:15:c9:ce:19:04:47:dd:e7:b9:40:ae:c3:77:0b: 71:9c:ff:77:78:9a:83:56:f9:ae:c4:2a:df:eb:d4:03:f7:d5: 45:be:e6:81:e7:7e:aa:62:2b:dc:ee:ae:1e:e4:62:80:74:78: 6e:6a:d8:23:92:9f:f0:8c:c8:70:9e:38:ed:91:41:78:57:dd: 17:c3:38:ce:61:61:b3:4c:52:39:58:aa:a1:c3:b4:24:73:8b: 86:ab:dd:92 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5MEMxMTAvBgNVBAUTKDJENTg5ODkwNDhDMjE5RjAxMDg4QUU3MkJGQUUwOTcw REY1REE2MzYwHhcNMjQwMTMxMjEyOTI3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhYmJiNy1lZDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkcWr+EC+W0M4wApvM4rXrAyKzMpZ6wV3LOLxWAPm0Ag/1adVDQoolxgbUUk KstMn1y5Vm9J6APr8UeoovdVG4+ZRyUYJZI1zRORb8/ozVM9lWFKdNysF6dss/P0 h4pdN+ueSJYn6K4lmvGp46zja+TuwzED8zlwmt2mUCd6PIDy7lA1Ny8jSF9Ack5p wJrNrct1lwI7kWnPviCnFY4/NvuvX22HTZ8n7Rpf/r9+0aaPreBdgvVeJ4kPUmW2 rZG+DVCfNJPpXcDF33mu/au9filTDTzUnSvmZ5IV3UusX5i46J+RfJgVG15o7N8Q yB7KUD/ckx1IkO/TpPU9OSUZFwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEaLRsuU xt8KL0geLssfrnn9xe3CMB8GA1UdIwQYMBaAFC1YmJBIwhnwEIiucr+uCXDfXaY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjkwQy9EM0Q1ODQ4QzhG QkExMUVBQTM0QUMwNzJDNEY5QUUwMi9MVmlZa0VqQ0dmQVFpSzV5djY0SmNOOWRw alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xWaVlrRWpDR2ZBUWlLNXl2NjRKY045ZHBqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY5MEMvRDNENTg0OEM4RkJBMTFFQUEzNEFDMDcyQzRGOUFFMDIvQjBFRTgwQjI4 RkJCMTFFQUEwODU1QzczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnVYADBABnVYMwDQYJKoZIhvcNAQELBQADggEBABAiCzZc dWVv2brhW0ArnAtQTGesaeauDAijh//AxRtf/qApv8zux857uNVkx8BC6/vwx5DL KAL/hpI0qFXdQfCj+v5UoQEJtvf9ktmqEiEk0dzuzxtFeX2zuBaLAerpNJIPFKAb n78h/b/j7vHUi/BJbL66q9jV4iMigwGhcGybWZuf/XZx47RXR4dlUKkzfFY4t3um mfI3XjSJZIuWw8tv4vrhlikVyc4ZBEfd57lArsN3C3Gc/3d4moNW+a7EKt/r1AP3 1UW+5oHnfqpiK9zurh7kYoB0eG5q2COSn/CMyHCeOO2RQXhX3RfDOM5hYbNMUjlY qqHDtCRzi4ar3ZI= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:43 2024 by rpki-client on console-fra.rpki-client.org