$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/BF466AE8325611EFA462C323C4F9AE02.roa File: BF466AE8325611EFA462C323C4F9AE02.roa (raw, json) Hash identifier: uYzfBkSO8vYpHzBAx2+F7vI8tdkh606kvIxq3n44H3U= Subject key identifier: E4:38:46:64:FF:44:6A:D2:D9:A2:41:CC:F0:50:D3:FE:C9:C7:2F:58 Certificate issuer: /CN=A91A2E6A/serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Certificate serial: 05 Authority key identifier: 82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/BF466AE8325611EFA462C323C4F9AE02.roa Signing time: Mon 24 Jun 2024 18:22:43 +0000 ROA not before: Mon 24 Jun 2024 18:22:43 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150806 IP address blocks: 103.109.184.0/24 maxlen: 24 103.109.185.0/24 maxlen: 24 2001:df2:1840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2E6A/serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Validity Not Before: Jun 24 18:22:43 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6679b973-a806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e2:40:f1:bb:d6:58:0f:50:5b:21:6b:95:0a: c8:65:5c:a6:6f:60:e6:fc:4c:0a:eb:1e:e3:6e:3c: 60:49:0f:d5:96:d6:26:92:c6:24:61:02:34:9e:0c: e8:f1:41:2a:e2:a0:9d:8b:d5:06:5b:7c:70:61:ca: 49:4e:9e:cb:a4:13:5a:4d:c6:89:02:da:74:21:cc: af:21:b6:14:bf:18:e3:97:0f:da:83:d4:36:b7:0a: 6e:6e:14:06:18:41:8a:db:3c:39:e4:97:4e:0d:20: af:bc:70:43:3f:d7:ed:2e:79:84:29:87:b6:a4:55: fc:12:05:f3:32:3f:61:1f:38:80:69:a2:b1:43:23: aa:4a:ef:88:06:c6:90:cf:29:a8:3f:7c:dd:06:87: 1e:c0:3c:0c:6c:d6:55:a6:15:77:cf:e2:72:50:7d: 35:dc:77:39:4a:f8:28:d1:c7:49:81:6d:cb:07:91: f8:f5:60:98:6a:b5:f2:27:53:a4:d2:1b:15:03:73: 8f:39:41:17:20:56:81:1e:b8:e5:c4:68:db:bb:a6: 13:47:ca:39:9d:22:9c:23:48:93:b9:ef:ea:0a:c7: 35:88:a2:37:da:87:18:88:27:45:ec:42:df:dc:f5: f8:cc:60:10:7b:82:c6:b6:16:df:3e:f2:63:b9:1a: a7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:38:46:64:FF:44:6A:D2:D9:A2:41:CC:F0:50:D3:FE:C9:C7:2F:58 X509v3 Authority Key Identifier: keyid:82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/BF466AE8325611EFA462C323C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.184.0/23 IPv6: 2001:df2:1840::/48 Signature Algorithm: sha256WithRSAEncryption 42:82:0d:57:1c:a2:05:98:77:49:74:23:ac:02:a7:75:87:0c: c9:d4:e5:a2:1d:f2:8d:da:d1:9f:5d:0a:47:14:9f:06:5e:dd: 25:9e:5f:c4:c1:36:2b:2a:2f:d0:1b:51:11:7c:ef:6e:04:c4: 58:b4:18:a9:d2:87:86:95:3e:bf:d9:36:3c:d4:5d:d9:83:27: 32:67:b0:af:87:96:d5:6e:47:4f:04:1b:ea:18:e2:ea:0a:46: 59:5e:b0:aa:46:59:17:6e:18:19:91:d8:e8:66:22:a6:12:1d: 95:dd:63:d5:42:b1:2e:d2:19:4f:f7:e4:2d:5d:51:64:a7:6d: a8:b4:cb:91:d8:70:ef:46:fa:e4:42:bb:98:99:c7:08:f8:3e: ba:4a:d1:84:4d:c1:73:e1:de:12:ec:92:c9:ba:d5:37:18:6d: 1e:12:83:01:16:2a:8d:96:30:f8:da:dc:6e:e1:6f:13:c7:a1: f5:11:2f:7e:74:2f:33:6d:ca:e4:42:20:0c:bd:21:45:2a:f0: ac:13:c4:ad:d3:90:fb:cc:cc:65:21:5a:48:56:00:90:fe:7f: df:3d:cc:6f:73:ba:8a:53:a6:4a:76:09:6c:94:02:00:27:08: 50:46:6a:8b:b5:d1:2c:59:85:dc:e7:45:aa:1d:fd:1b:f3:bb: 1e:42:9c:ae -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MkU2QTExMC8GA1UEBRMoODIzMTAwQjc1RTVERDQxQTFFN0MzMjgxQzM1NzEzRjQ0 QkU4NkM5ODAeFw0yNDA2MjQxODIyNDNaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzliOTczLWE4MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw4kDxu9ZYD1BbIWuVCshlXKZvYOb8TArrHuNuPGBJD9WW1iaSxiRhAjSeDOjx QSrioJ2L1QZbfHBhyklOnsukE1pNxokC2nQhzK8hthS/GOOXD9qD1Da3Cm5uFAYY QYrbPDnkl04NIK+8cEM/1+0ueYQph7akVfwSBfMyP2EfOIBporFDI6pK74gGxpDP Kag/fN0Ghx7APAxs1lWmFXfP4nJQfTXcdzlK+CjRx0mBbcsHkfj1YJhqtfInU6TS GxUDc485QRcgVoEeuOXEaNu7phNHyjmdIpwjSJO57+oKxzWIojfahxiIJ0XsQt/c 9fjMYBB7gsa2Ft8+8mO5Gqd3AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU5DhGZP9E atLZokHM8FDT/snHL1gwHwYDVR0jBBgwFoAUgjEAt15d1BoefDKBw1cT9EvobJgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyRTZBL0FFMzczRDg0MzIz MDExRUY5RTUzMjE1NkM0RjlBRTAyL2dqRUF0MTVkMUJvZWZES0J3MWNUOUV2b2JK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ2pFQXQxNWQxQm9lZkRLQncxY1Q5RXZvYkpnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkU2QS9BRTM3M0Q4NDMyMzAxMUVGOUU1MzIxNTZDNEY5QUUwMi9CRjQ2NkFFODMy NTYxMUVGQTQ2MkMzMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWdtuDAPBAIAAjAJAwcAIAEN8hhAMA0GCSqGSIb3DQEBCwUA A4IBAQBCgg1XHKIFmHdJdCOsAqd1hwzJ1OWiHfKN2tGfXQpHFJ8GXt0lnl/EwTYr Ki/QG1ERfO9uBMRYtBip0oeGlT6/2TY81F3ZgycyZ7Cvh5bVbkdPBBvqGOLqCkZZ XrCqRlkXbhgZkdjoZiKmEh2V3WPVQrEu0hlP9+QtXVFkp22otMuR2HDvRvrkQruY mccI+D66StGETcFz4d4S7JLJutU3GG0eEoMBFiqNljD42txu4W8Tx6H1ES9+dC8z bcrkQiAMvSFFKvCsE8St05D7zMxlIVpIVgCQ/n/fPcxvc7qKU6ZKdglslAIAJwhQ RmqLtdEsWYXc50WqHf0b87seQpyu -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:26 2024 by rpki-client on console-ams.rpki-client.org