$ rpki-client -vvf rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/BC41A65E33C011EE83E9A61BC4F9AE02.roa File: BC41A65E33C011EE83E9A61BC4F9AE02.roa (raw, json) Hash identifier: CaitNOKQkm3AvYSLSTJmnVLMkDD1jkPzfCvAkZPYXwc= Subject key identifier: EF:5F:91:9B:EF:B2:3A:3F:4C:78:7C:B9:5A:C0:F3:98:65:B7:12:70 Certificate issuer: /CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Certificate serial: 0653 Authority key identifier: 39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/BC41A65E33C011EE83E9A61BC4F9AE02.roa Signing time: Sat 31 Aug 2024 00:02:00 +0000 ROA not before: Sat 31 Aug 2024 00:02:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134365 IP address blocks: 103.68.192.0/23 maxlen: 23 103.68.192.0/24 maxlen: 24 103.68.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1619 (0x653) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Validity Not Before: Aug 31 00:02:00 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d25d77-8915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:e9:22:a8:d9:5b:8c:31:73:4c:f3:9b:6c: ae:33:ee:ed:36:e6:00:08:79:1b:49:b1:9c:0e:31: 4a:e2:2b:15:13:8c:58:d2:9f:eb:f2:63:09:73:36: d0:2b:eb:e0:1a:1c:3c:5e:d8:8d:3a:39:4d:b9:b0: 1a:e4:98:ef:70:85:52:b0:35:e0:83:52:4e:eb:af: e9:96:f0:c0:fe:8c:46:8b:3c:ff:2f:89:90:4b:6a: 8a:e5:04:a2:21:61:3e:b8:69:54:93:91:77:03:13: 25:c8:6f:14:c8:d5:4c:00:03:d9:4d:e5:04:53:d3: ae:9e:a8:6e:7a:d4:c2:99:62:89:d7:96:af:f5:fb: c3:b0:22:02:3c:2c:c0:d6:52:72:8d:f6:45:3d:96: 62:68:bd:11:f1:62:c9:bd:dd:3e:ad:60:c1:e5:c3: f1:d1:f1:3c:a0:07:7d:e6:db:68:fc:c5:f3:4d:95: eb:94:52:e5:d8:1b:61:99:d0:c2:24:8f:64:5a:7e: 87:7f:74:ec:ff:85:b2:c3:a8:34:e2:11:6f:5f:44: 89:14:0b:ec:07:62:aa:6b:28:ac:89:69:e7:c2:17: a0:e2:22:7e:01:31:8b:26:79:8e:80:ff:8d:5f:91: fe:fe:17:74:53:52:92:e7:b4:09:c9:64:f1:32:17: 48:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:5F:91:9B:EF:B2:3A:3F:4C:78:7C:B9:5A:C0:F3:98:65:B7:12:70 X509v3 Authority Key Identifier: keyid:39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/BC41A65E33C011EE83E9A61BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.192.0/23 Signature Algorithm: sha256WithRSAEncryption a9:aa:43:3a:1b:dd:0a:af:d6:ef:be:67:94:6c:b7:5e:82:a1: a4:42:62:52:79:bc:5a:0e:90:ad:15:2e:83:9b:fc:64:5e:b5: 70:88:c7:87:8f:04:0d:6c:fa:a5:39:f0:0e:02:c3:7a:65:a6: 19:34:65:3c:5a:e1:c6:9b:d3:93:69:73:02:88:11:32:18:97: b0:d6:7f:c5:d6:a2:82:02:8e:55:e3:3d:57:ed:8b:b0:87:99: 95:0d:ee:54:3c:a8:e6:0f:02:21:23:cb:bc:4f:b9:51:79:56: 36:ff:52:c9:ef:d0:a4:65:4a:9b:68:ff:ba:a7:b4:c0:00:50: d0:09:2d:25:69:6b:61:43:66:c5:24:23:13:d2:25:d3:91:19: cf:09:3c:6e:f2:0a:fd:d1:9b:41:7c:58:94:cc:aa:09:89:08: 73:84:e9:19:52:ce:d0:27:e5:95:f9:88:b4:13:b8:f4:02:4b: 64:43:d9:db:3e:6b:33:e0:a3:2f:3f:6f:8c:1d:cf:09:51:b2: 0c:e0:95:ce:d0:0f:28:04:bd:cc:61:9d:04:31:cf:42:cb:6a: d0:bb:c9:f4:03:db:36:50:59:bd:7d:ed:9e:b1:e4:31:87:7a: c5:64:c3:f4:76:dd:c2:43:5e:a6:39:f1:fc:e6:03:de:07:89: de:c2:ea:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMyNkYxMTAvBgNVBAUTKDM5MkYzNkUwQTQ1MDA1M0MzREM2NkQyRTM4OTRFMTBD QTczM0REQTYwHhcNMjQwODMxMDAwMjAwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNWQ3Ny04OTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRzpIqjZW4wxc0zzm2yuM+7tNuYACHkbSbGcDjFK4isVE4xY0p/r8mMJczbQ K+vgGhw8XtiNOjlNubAa5JjvcIVSsDXgg1JO66/plvDA/oxGizz/L4mQS2qK5QSi IWE+uGlUk5F3AxMlyG8UyNVMAAPZTeUEU9OunqhuetTCmWKJ15av9fvDsCICPCzA 1lJyjfZFPZZiaL0R8WLJvd0+rWDB5cPx0fE8oAd95tto/MXzTZXrlFLl2BthmdDC JI9kWn6Hf3Ts/4Wyw6g04hFvX0SJFAvsB2KqayisiWnnwheg4iJ+ATGLJnmOgP+N X5H+/hd0U1KS57QJyWTxMhdIuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO9fkZvv sjo/THh8uVrA85hltxJwMB8GA1UdIwQYMBaAFDkvNuCkUAU8PcZtLjiU4QynM92m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzI2Ri83ODY2RjUzMDVG QzcxMUVCOEE2OTIwMkVDNEY5QUUwMi9PUzgyNEtSUUJUdzl4bTB1T0pUaERLY3oz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TODI0S1JRQlR3OXhtMHVPSlRoREtjejNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMyNkYvNzg2NkY1MzA1RkM3MTFFQjhBNjkyMDJFQzRGOUFFMDIvQkM0MUE2NUUz M0MwMTFFRTgzRTlBNjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnRMAwDQYJKoZIhvcNAQELBQADggEBAKmqQzob3Qqv1u++ Z5Rst16CoaRCYlJ5vFoOkK0VLoOb/GRetXCIx4ePBA1s+qU58A4Cw3plphk0ZTxa 4cab05NpcwKIETIYl7DWf8XWooICjlXjPVfti7CHmZUN7lQ8qOYPAiEjy7xPuVF5 Vjb/Usnv0KRlSpto/7qntMAAUNAJLSVpa2FDZsUkIxPSJdORGc8JPG7yCv3Rm0F8 WJTMqgmJCHOE6RlSztAn5ZX5iLQTuPQCS2RD2ds+azPgoy8/b4wdzwlRsgzglc7Q DygEvcxhnQQxz0LLatC7yfQD2zZQWb197Z6x5DGHesVkw/R23cJDXqY58fzmA94H id7C6gE= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:48 2024 by rpki-client on console-fra.rpki-client.org