$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/BF21F788EC5811EEB4293455C4F9AE02.roa File: BF21F788EC5811EEB4293455C4F9AE02.roa (raw, json) Hash identifier: a1JRhaeXn2WFPrwLiqmndenyLacpnioyFrrd1MH8M2Q= Subject key identifier: 07:29:E4:35:B6:11:7B:79:94:76:8A:2C:68:FE:6D:23:B6:88:53:5A Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0AD9 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/BF21F788EC5811EEB4293455C4F9AE02.roa Signing time: Wed 27 Mar 2024 16:40:40 +0000 ROA not before: Wed 27 Mar 2024 16:40:40 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134995 IP address blocks: 103.146.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 19:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2777 (0xad9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Mar 27 16:40:40 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66044c08-2c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:47:a7:0d:ce:bf:59:fc:13:35:aa:12:d1:76: 84:c0:5b:4b:2f:da:cd:9a:a1:6b:b0:d3:1d:f7:1b: db:f9:f6:27:d0:f1:99:38:ea:16:24:5c:8a:cd:e8: 79:32:11:a9:12:83:cd:dc:96:3e:49:79:fc:44:ae: 89:65:f7:74:d5:98:c3:cd:ee:21:29:6b:a3:bd:be: 5e:b6:23:66:2c:64:7d:ed:9a:9d:d6:ea:10:df:20: 4e:58:87:bd:5c:3f:63:5b:34:5a:b4:57:ab:6a:99: ba:83:de:57:01:2e:c8:53:19:b6:b4:a5:42:1a:cc: 4b:2f:00:14:34:51:30:76:7b:d7:d0:1a:48:6e:7a: ed:b6:3c:de:4c:4f:41:a6:0c:91:85:4b:e6:80:19: f1:c0:81:f7:aa:b9:be:3a:72:99:ea:93:9f:81:52: e2:a8:bf:44:97:04:17:33:c6:20:b7:b8:94:88:99: b1:e6:8a:12:4a:9d:49:46:5b:50:c1:b4:a7:b8:5d: 94:66:9e:97:8e:8c:c2:f3:ae:d9:75:3f:e5:18:41: 31:fe:da:cb:8d:e5:29:09:d1:4f:95:d6:aa:7a:94: 38:4e:c4:df:2f:47:f0:c7:70:c2:3b:1e:bf:10:35: f8:b6:cc:ab:19:e0:d8:e5:dd:f6:53:96:b4:93:c4: 11:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:29:E4:35:B6:11:7B:79:94:76:8A:2C:68:FE:6D:23:B6:88:53:5A X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/BF21F788EC5811EEB4293455C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.149.0/24 Signature Algorithm: sha256WithRSAEncryption 55:0b:f0:24:80:ed:ae:d5:d0:a8:6a:55:08:cb:46:da:e0:7e: 50:00:de:e0:ec:6d:45:b6:22:49:42:a0:5e:dd:25:50:07:83: 85:c6:48:9d:41:ec:9d:0e:7e:86:3c:8d:5d:df:4c:54:79:08: c3:c4:73:0b:93:87:90:fe:2c:77:a6:ae:c3:a5:f2:6a:b9:1f: bf:3a:53:95:c9:07:b4:66:2b:2b:2b:b6:95:a2:5d:26:5b:8e: 01:73:75:51:8e:ae:c9:26:a5:39:96:3c:40:c2:b4:bd:56:c3: b5:1f:c6:66:84:2e:26:97:18:15:1f:f3:c6:96:66:78:bc:ca: bc:36:cd:a3:4d:f4:93:63:94:d7:7b:27:3a:0d:9a:84:8b:03: 9a:8f:ab:3d:01:8a:79:b5:7f:92:24:0d:8d:30:87:0b:e3:65: a7:21:f4:88:80:a1:64:b5:32:76:8a:b3:f4:2c:68:92:c7:3b: 0e:9e:4e:ca:d2:8f:9a:8f:53:d2:f2:b3:c7:d3:78:23:36:ee: 83:00:26:bf:27:4c:14:a1:14:9d:b6:cd:75:c5:0c:60:8d:89: eb:a8:e7:88:45:60:62:bb:e7:98:b7:9d:e7:a4:77:b7:77:7a: ec:1a:a3:4e:59:cb:f7:a5:9f:f1:aa:db:e4:be:78:3c:6f:db: d8:21:0e:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjQwMzI3MTY0MDQwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA0NGMwOC0yYzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0enDc6/WfwTNaoS0XaEwFtLL9rNmqFrsNMd9xvb+fYn0PGZOOoWJFyKzeh5 MhGpEoPN3JY+SXn8RK6JZfd01ZjDze4hKWujvb5etiNmLGR97Zqd1uoQ3yBOWIe9 XD9jWzRatFerapm6g95XAS7IUxm2tKVCGsxLLwAUNFEwdnvX0BpIbnrttjzeTE9B pgyRhUvmgBnxwIH3qrm+OnKZ6pOfgVLiqL9ElwQXM8Ygt7iUiJmx5ooSSp1JRltQ wbSnuF2UZp6XjozC867ZdT/lGEEx/trLjeUpCdFPldaqepQ4TsTfL0fwx3DCOx6/ EDX4tsyrGeDY5d32U5a0k8QRKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAcp5DW2 EXt5lHaKLGj+bSO2iFNaMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JGQ0YvOTU2MzlCRjAyNDhEMTFFQUFEQTIwNTRFQzRGOUFFMDIvQkYyMUY3ODhF QzU4MTFFRUI0MjkzNDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkpUwDQYJKoZIhvcNAQELBQADggEBAFUL8CSA7a7V0Khq VQjLRtrgflAA3uDsbUW2IklCoF7dJVAHg4XGSJ1B7J0OfoY8jV3fTFR5CMPEcwuT h5D+LHemrsOl8mq5H786U5XJB7RmKysrtpWiXSZbjgFzdVGOrskmpTmWPEDCtL1W w7UfxmaELiaXGBUf88aWZni8yrw2zaNN9JNjlNd7JzoNmoSLA5qPqz0Binm1f5Ik DY0whwvjZach9IiAoWS1MnaKs/QsaJLHOw6eTsrSj5qPU9Lys8fTeCM27oMAJr8n TBShFJ22zXXFDGCNieuo54hFYGK755i3neekd7d3euwao05Zy/eln/Gq2+S+eDxv 29ghDjw= -----END CERTIFICATE-----Generated at Mon May 20 20:44:21 2024 by rpki-client on console-fra.rpki-client.org