$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/BD314CEA619711EE81211277C4F9AE02.roa File: BD314CEA619711EE81211277C4F9AE02.roa (raw, json) Hash identifier: pyylUNX9LlmDbhjQ7Mn/l8NCaA1ACQcAW5FWWwcceq0= Subject key identifier: 71:07:DB:E1:7C:4B:20:76:29:9E:EF:37:6C:0B:1E:C6:8F:A7:EA:0D Certificate issuer: /CN=A91CDCB6/serialNumber=0781675CC64FAB2B845DA7F51155498042ECE467 Certificate serial: 1DAE Authority key identifier: 07:81:67:5C:C6:4F:AB:2B:84:5D:A7:F5:11:55:49:80:42:EC:E4:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4FnXMZPqyuEXaf1EVVJgELs5Gc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/BD314CEA619711EE81211277C4F9AE02.roa Signing time: Fri 06 Sep 2024 16:34:03 +0000 ROA not before: Fri 06 Sep 2024 16:34:03 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 58668 IP address blocks: 103.12.236.0/22 maxlen: 22 103.12.236.0/23 maxlen: 23 103.12.236.0/23 maxlen: 24 103.12.236.0/24 maxlen: 24 103.12.237.0/24 maxlen: 24 103.12.238.0/23 maxlen: 23 103.12.238.0/23 maxlen: 24 103.12.238.0/24 maxlen: 24 103.12.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/B4FnXMZPqyuEXaf1EVVJgELs5Gc.crl rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/B4FnXMZPqyuEXaf1EVVJgELs5Gc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4FnXMZPqyuEXaf1EVVJgELs5Gc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7598 (0x1dae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDCB6/serialNumber=0781675CC64FAB2B845DA7F51155498042ECE467 Validity Not Before: Sep 6 16:34:03 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66db2efb-a69e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:16:d4:df:27:5d:f2:90:c1:c1:39:6b:3b:69: bd:75:24:ed:ee:cc:65:5e:d6:c7:16:44:3b:f8:80: 89:d7:28:78:a1:d4:6e:fb:61:d8:05:46:e9:ca:8a: ac:1d:d7:7c:86:11:a3:44:6e:01:bc:95:61:cf:27: 0e:00:27:8b:be:78:9b:21:ac:66:e8:2c:fe:3c:00: 6d:49:4b:4d:1b:e8:b8:49:f2:35:83:44:bc:af:fa: 48:ac:cc:0a:ab:c8:01:16:d2:96:d8:b2:95:45:09: 5f:2f:12:19:39:d4:77:04:c2:39:d8:d1:fd:a4:bf: d4:63:34:9b:0d:03:69:5e:0f:92:17:a1:48:94:4c: e3:be:cd:58:c8:b0:eb:3d:23:5a:e1:88:a5:a2:e0: aa:e9:50:78:52:0d:af:6d:0f:a7:e8:90:91:18:0f: 67:80:9b:92:89:50:5f:da:81:0a:64:1e:bc:e9:db: 16:e6:04:b4:31:78:31:11:b5:6d:91:25:b3:fd:e1: a1:12:17:ef:bc:25:ae:36:70:11:c2:c2:e2:fc:a2: b9:73:e4:a6:f2:23:91:e7:12:10:37:f7:ce:c7:92: f2:98:c5:9c:f4:7c:a0:d7:ea:33:51:ba:c9:24:02: f1:45:05:0a:ac:c8:f3:b3:be:8a:4a:d9:7b:d8:5e: 11:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:07:DB:E1:7C:4B:20:76:29:9E:EF:37:6C:0B:1E:C6:8F:A7:EA:0D X509v3 Authority Key Identifier: keyid:07:81:67:5C:C6:4F:AB:2B:84:5D:A7:F5:11:55:49:80:42:EC:E4:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/B4FnXMZPqyuEXaf1EVVJgELs5Gc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4FnXMZPqyuEXaf1EVVJgELs5Gc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/BD314CEA619711EE81211277C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.236.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:61:38:20:6e:bc:3a:6c:4b:23:8b:3f:f8:66:f1:8c:de:f2: 9e:e2:75:e8:29:83:de:8f:b9:cd:72:26:87:cf:14:55:c6:ce: 6f:1a:bb:9d:37:b9:e6:f9:80:0f:73:37:2c:ca:b0:ac:ec:4d: a2:de:20:02:12:a8:ff:bf:35:31:be:1c:bf:58:47:61:e7:01: b0:d7:01:d1:46:92:69:84:c0:60:36:e6:88:bf:62:25:fc:ef: bd:31:2e:ae:1e:21:0b:1c:ab:e8:0a:10:b1:67:38:df:a0:40: c1:db:b9:46:fb:ca:eb:e1:c0:1f:f0:f9:b2:2b:78:c6:2e:23: ee:d4:7b:72:4b:73:df:ec:38:f1:16:5c:99:49:2a:10:61:58: 0d:7c:be:17:5f:68:88:67:eb:c4:ca:31:6a:cc:2a:ed:e6:6e: 32:1b:d4:1a:65:af:b8:45:30:72:92:97:89:84:33:cc:fb:a2: 08:c0:12:f2:b4:22:60:28:69:89:71:da:e3:66:40:94:f9:d3: ad:76:8f:b0:dc:a5:37:62:e8:7f:a0:83:76:91:ba:9e:17:aa: ee:7b:4a:88:d3:cb:be:b3:a9:56:96:82:f2:9a:be:01:26:58: 03:30:9b:e4:34:01:b4:fb:4a:2b:0f:bf:06:85:de:2b:77:32: e4:32:7f:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RDQjYxMTAvBgNVBAUTKDA3ODE2NzVDQzY0RkFCMkI4NDVEQTdGNTExNTU0OTgw NDJFQ0U0NjcwHhcNMjQwOTA2MTYzNDAzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiMmVmYi1hNjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBbU3ydd8pDBwTlrO2m9dSTt7sxlXtbHFkQ7+ICJ1yh4odRu+2HYBUbpyoqs Hdd8hhGjRG4BvJVhzycOACeLvnibIaxm6Cz+PABtSUtNG+i4SfI1g0S8r/pIrMwK q8gBFtKW2LKVRQlfLxIZOdR3BMI52NH9pL/UYzSbDQNpXg+SF6FIlEzjvs1YyLDr PSNa4YilouCq6VB4Ug2vbQ+n6JCRGA9ngJuSiVBf2oEKZB686dsW5gS0MXgxEbVt kSWz/eGhEhfvvCWuNnARwsLi/KK5c+Sm8iOR5xIQN/fOx5LymMWc9Hyg1+ozUbrJ JALxRQUKrMjzs76KStl72F4R/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHEH2+F8 SyB2KZ7vN2wLHsaPp+oNMB8GA1UdIwQYMBaAFAeBZ1zGT6srhF2n9RFVSYBC7ORn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRENCNi82N0M2QUE0QThB RjExMUU2OTgwNzgzNTVDNEY5QUUwMi9CNEZuWE1aUHF5dUVYYWYxRVZWSmdFTHM1 R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0Rm5YTVpQcXl1RVhhZjFFVlZKZ0VMczVHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RDQjYvNjdDNkFBNEE4QUYxMTFFNjk4MDc4MzU1QzRGOUFFMDIvQkQzMTRDRUE2 MTk3MTFFRTgxMjExMjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnDOwwDQYJKoZIhvcNAQELBQADggEBAC5hOCBuvDpsSyOL P/hm8Yze8p7idegpg96Puc1yJofPFFXGzm8au503ueb5gA9zNyzKsKzsTaLeIAIS qP+/NTG+HL9YR2HnAbDXAdFGkmmEwGA25oi/YiX8770xLq4eIQscq+gKELFnON+g QMHbuUb7yuvhwB/w+bIreMYuI+7Ue3JLc9/sOPEWXJlJKhBhWA18vhdfaIhn68TK MWrMKu3mbjIb1Bplr7hFMHKSl4mEM8z7ogjAEvK0ImAoaYlx2uNmQJT50612j7Dc pTdi6H+gg3aRup4Xqu57SojTy76zqVaWgvKavgEmWAMwm+Q0AbT7SisPvwaF3it3 MuQyf68= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org