$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/BC56EB8EA21811ED94424B59C4F9AE02.roa File: BC56EB8EA21811ED94424B59C4F9AE02.roa (raw, json) Hash identifier: Soa0nTU2rA3J23+wJd6LU+z2VdnIjv2Qmra/e4mNti0= Subject key identifier: BB:21:BC:93:C0:2C:BD:4A:B7:EF:91:5B:83:0C:B4:5E:7F:64:82:AF Certificate issuer: /CN=A91A5EF2/serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Certificate serial: 0573 Authority key identifier: 7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/BC56EB8EA21811ED94424B59C4F9AE02.roa Signing time: Fri 19 Apr 2024 01:02:48 +0000 ROA not before: Fri 19 Apr 2024 01:02:48 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150744 IP address blocks: 103.162.228.0/24 maxlen: 24 2001:df6:180:ca::/64 maxlen: 64 2001:df6:180:cb::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1395 (0x573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EF2/serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Validity Not Before: Apr 19 01:02:48 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6621c2b7-3519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8b:a0:b5:41:03:cc:35:f6:6c:98:78:69:07: ff:fc:4c:0d:c7:07:49:be:b5:20:42:d0:91:1e:9b: 36:9f:ac:0c:fd:05:9e:ab:93:2f:96:31:e4:f3:58: 96:d1:48:39:47:56:c2:2e:f2:41:98:9d:b6:42:89: b3:40:6a:47:a3:ff:df:99:fe:61:b9:6b:33:75:8f: 1e:cf:6e:37:cb:fe:dc:a5:38:cd:b1:b0:c6:f6:71: 1a:aa:85:49:42:53:d3:ed:d2:03:44:78:19:b1:9e: 93:7f:d8:56:81:f3:90:d6:8f:54:97:3b:73:6c:d2: 62:73:14:c8:12:4c:f2:e4:ae:a5:65:2d:a9:95:9f: aa:44:28:16:ab:09:a2:3a:d7:f9:f2:39:ac:8c:4f: eb:13:c7:2b:eb:29:6a:92:18:ab:6e:1c:32:1b:a1: f5:9e:13:9e:4e:25:99:8b:eb:0c:50:cf:1d:4a:da: ee:b8:09:bc:a5:79:a7:6b:10:29:cb:a1:95:25:15: 97:2e:72:60:e5:c6:e5:54:a5:26:fe:d1:87:0a:fc: 68:29:1e:1f:7b:4d:dd:fc:8c:88:94:90:db:fb:2e: 96:98:eb:00:7e:92:1e:03:b7:8a:85:fa:1c:a9:6d: a4:3c:d9:39:74:d2:d6:23:d7:44:11:63:b0:7a:c0: 06:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:21:BC:93:C0:2C:BD:4A:B7:EF:91:5B:83:0C:B4:5E:7F:64:82:AF X509v3 Authority Key Identifier: keyid:7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/BC56EB8EA21811ED94424B59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.228.0/24 IPv6: 2001:df6:180:ca::/63 Signature Algorithm: sha256WithRSAEncryption 48:a7:30:22:87:35:dc:73:63:af:f9:4a:d8:52:6c:09:55:df: c2:b6:a3:c3:31:3b:b6:cc:c6:5d:58:96:f8:05:41:dd:90:61: 80:02:96:dc:be:56:4f:c1:bb:c7:49:4e:f1:f8:f6:43:3c:78: af:3e:18:2c:84:a2:04:18:ac:12:1b:8c:f6:41:65:d5:a7:da: 47:a5:54:1a:1e:80:aa:4d:ca:58:da:f7:33:26:8d:2f:84:15: c6:ac:8d:db:d1:df:b9:5d:a7:80:ba:36:4c:17:5d:8a:82:24: 70:af:83:83:10:0b:ef:67:a3:91:8e:29:a7:5b:72:cc:2e:51: 93:ae:55:2d:8e:96:25:f1:10:64:4a:ea:ee:d4:28:b2:80:c4: ab:1e:87:09:dd:3d:7b:00:1d:77:e9:9b:90:2d:70:c9:c0:07: 4c:ee:06:bd:b6:e9:94:99:cd:9f:21:ed:cc:e0:07:90:a5:a7: b8:e1:19:ff:15:f6:0d:4f:0b:22:0a:90:31:53:b5:8a:fc:64: a9:e8:57:61:8a:61:1e:83:86:7a:a3:df:19:d0:e1:e2:b4:85: 94:6c:bc:8a:c1:84:a7:02:44:33:bc:4b:70:ec:ea:6c:1d:ae: 44:d6:6f:eb:38:9d:38:56:ec:cd:41:69:bc:c7:45:e3:9b:dd: 5c:e8:c6:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFRjIxMTAvBgNVBAUTKDdCRjE4MENFQUM0NzZEQkQxODM5MjkxMEZBMjJEQUEx RUY1QkE2RDUwHhcNMjQwNDE5MDEwMjQ4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxYzJiNy0zNTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyougtUEDzDX2bJh4aQf//EwNxwdJvrUgQtCRHps2n6wM/QWeq5MvljHk81iW 0Ug5R1bCLvJBmJ22QomzQGpHo//fmf5huWszdY8ez243y/7cpTjNsbDG9nEaqoVJ QlPT7dIDRHgZsZ6Tf9hWgfOQ1o9UlztzbNJicxTIEkzy5K6lZS2plZ+qRCgWqwmi Otf58jmsjE/rE8cr6ylqkhirbhwyG6H1nhOeTiWZi+sMUM8dStruuAm8pXmnaxAp y6GVJRWXLnJg5cblVKUm/tGHCvxoKR4fe03d/IyIlJDb+y6WmOsAfpIeA7eKhfoc qW2kPNk5dNLWI9dEEWOwesAG/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLshvJPA LL1Kt++RW4MMtF5/ZIKvMB8GA1UdIwQYMBaAFHvxgM6sR229GDkpEPoi2qHvW6bV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVGMi9EQTQ3RTU2MDk0 NDgxMUVCQTVBRTM2MDlDNEY5QUUwMi9lX0dBenF4SGJiMFlPU2tRLWlMYW9lOWJw dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VfR0F6cXhIYmIwWU9Ta1EtaUxhb2U5YnB0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVFRjIvREE0N0U1NjA5NDQ4MTFFQkE1QUUzNjA5QzRGOUFFMDIvQkM1NkVCOEVB MjE4MTFFRDk0NDI0QjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMAwEAgABMAYDBABnouQwEQQCAAIwCwMJASABDfYBgADKMA0GCSqGSIb3DQEB CwUAA4IBAQBIpzAihzXcc2Ov+UrYUmwJVd/CtqPDMTu2zMZdWJb4BUHdkGGAApbc vlZPwbvHSU7x+PZDPHivPhgshKIEGKwSG4z2QWXVp9pHpVQaHoCqTcpY2vczJo0v hBXGrI3b0d+5XaeAujZMF12KgiRwr4ODEAvvZ6ORjimnW3LMLlGTrlUtjpYl8RBk Suru1CiygMSrHocJ3T17AB136ZuQLXDJwAdM7ga9tumUmc2fIe3M4AeQpae44Rn/ FfYNTwsiCpAxU7WK/GSp6FdhimEeg4Z6o98Z0OHitIWUbLyKwYSnAkQzvEtw7Ops Ha5E1m/rOJ04VuzNQWm8x0Xjm91c6MZD -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org