$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/BD314CEA619711EE81211277C4F9AE02.roa File: BD314CEA619711EE81211277C4F9AE02.roa (raw, json) Hash identifier: y9bYv10Sj2SzJjf7aWhedeuMSKoXzsaYdKD0ELdpARk= Subject key identifier: 57:B4:53:5D:22:2E:4E:70:D2:22:C0:DB:E7:48:7D:2D:31:B4:B9:8B Certificate issuer: /CN=A91CDCB6/serialNumber=0781675CC64FAB2B845DA7F51155498042ECE467 Certificate serial: 1CF8 Authority key identifier: 07:81:67:5C:C6:4F:AB:2B:84:5D:A7:F5:11:55:49:80:42:EC:E4:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4FnXMZPqyuEXaf1EVVJgELs5Gc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/BD314CEA619711EE81211277C4F9AE02.roa Signing time: Tue 03 Oct 2023 02:55:23 +0000 ROA not before: Tue 03 Oct 2023 02:55:23 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 58668 IP address blocks: 103.12.236.0/22 maxlen: 22 103.12.236.0/23 maxlen: 23 103.12.236.0/23 maxlen: 24 103.12.236.0/24 maxlen: 24 103.12.237.0/24 maxlen: 24 103.12.238.0/23 maxlen: 23 103.12.238.0/23 maxlen: 24 103.12.238.0/24 maxlen: 24 103.12.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/B4FnXMZPqyuEXaf1EVVJgELs5Gc.crl rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/B4FnXMZPqyuEXaf1EVVJgELs5Gc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4FnXMZPqyuEXaf1EVVJgELs5Gc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7416 (0x1cf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDCB6/serialNumber=0781675CC64FAB2B845DA7F51155498042ECE467 Validity Not Before: Oct 3 02:55:23 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=651b829b-44d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8c:57:15:b3:b5:af:a0:4a:7e:e5:e3:ed:88: 9c:4c:50:b1:b8:63:62:fb:9b:24:cc:33:03:e9:ce: 20:2a:3c:03:03:78:b7:80:69:f5:ed:54:1e:ed:62: 2b:e8:de:00:cb:b5:dc:e9:07:be:97:c1:57:f2:e5: f2:f8:9e:93:9a:97:3e:7f:e4:08:63:3c:9c:dd:1e: 64:0a:db:31:e6:e7:a6:01:85:65:f5:8e:a3:4c:be: f0:de:1d:bc:cc:88:cd:97:db:67:94:95:a0:d5:2e: 69:de:e4:fd:5d:a6:29:6e:1e:29:85:2a:5b:1f:06: 74:73:3f:01:f8:b6:e8:37:0c:e1:6d:67:9b:d6:f5: 7e:e1:33:28:14:bf:af:2f:53:5a:3f:8f:fe:86:94: 8b:12:de:34:46:82:9c:94:81:53:8a:ea:e9:f9:f7: db:32:56:4d:f9:cf:0e:81:48:2c:2f:e2:2f:d3:bc: 83:51:69:53:79:21:9e:7a:77:43:79:07:a8:ee:17: 08:ed:0a:59:76:2b:7f:7c:76:fb:7e:0e:73:bb:39: 6d:ea:bb:0e:af:66:10:b1:06:e7:ed:07:60:84:87: e4:7d:2f:88:a7:59:4a:57:f6:12:e5:aa:13:ea:22: d6:db:dc:d4:7f:9b:10:e0:65:8e:53:ae:73:9c:7d: af:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:B4:53:5D:22:2E:4E:70:D2:22:C0:DB:E7:48:7D:2D:31:B4:B9:8B X509v3 Authority Key Identifier: keyid:07:81:67:5C:C6:4F:AB:2B:84:5D:A7:F5:11:55:49:80:42:EC:E4:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/B4FnXMZPqyuEXaf1EVVJgELs5Gc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4FnXMZPqyuEXaf1EVVJgELs5Gc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/BD314CEA619711EE81211277C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.236.0/22 Signature Algorithm: sha256WithRSAEncryption 08:5a:77:ad:ad:41:28:23:22:c7:83:8b:00:f2:d9:f0:19:24: 05:3f:c2:f1:4d:89:00:2d:cb:44:09:05:af:7e:e4:c5:59:8b: 24:f4:8b:8a:12:41:8b:59:89:d5:fd:4f:6d:4d:33:92:d0:6f: a6:eb:7a:d3:60:1f:8e:68:97:fe:3d:ef:83:d3:44:a6:c4:03: 50:ff:32:cb:84:cd:14:d1:31:c2:70:76:ce:e1:07:ad:9a:20: ec:6a:6d:8c:c6:56:ff:ad:fa:1c:b1:6d:5a:85:22:bb:c3:68: d0:1b:91:0e:64:a5:e0:2d:26:d3:55:cd:6e:bd:f9:9b:0d:25: cd:c0:6a:a7:bc:85:c1:17:77:1a:c3:6a:0e:38:a8:a5:ba:36: 83:2a:4c:f7:f9:57:69:b9:83:44:72:40:e3:d8:d5:b3:5c:ef: 13:2a:40:a7:fc:53:da:4c:19:35:4c:b5:22:19:9b:2e:22:61: 93:4e:75:22:19:a7:0e:4e:21:0e:c6:e3:87:cc:2f:8b:bb:a7: 1d:ce:73:10:7b:76:bd:9a:fe:97:60:95:62:58:e3:9d:d0:35: 66:b4:bd:96:65:e2:5c:ac:5f:19:d2:b2:87:b9:6d:9b:10:99: e0:a7:22:5d:3d:9c:e5:db:d9:fb:16:a5:b0:6e:12:db:ec:d1: 36:06:4a:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RDQjYxMTAvBgNVBAUTKDA3ODE2NzVDQzY0RkFCMkI4NDVEQTdGNTExNTU0OTgw NDJFQ0U0NjcwHhcNMjMxMDAzMDI1NTIzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiODI5Yi00NGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4xXFbO1r6BKfuXj7YicTFCxuGNi+5skzDMD6c4gKjwDA3i3gGn17VQe7WIr 6N4Ay7Xc6Qe+l8FX8uXy+J6Tmpc+f+QIYzyc3R5kCtsx5uemAYVl9Y6jTL7w3h28 zIjNl9tnlJWg1S5p3uT9XaYpbh4phSpbHwZ0cz8B+LboNwzhbWeb1vV+4TMoFL+v L1NaP4/+hpSLEt40RoKclIFTiurp+ffbMlZN+c8OgUgsL+Iv07yDUWlTeSGeendD eQeo7hcI7QpZdit/fHb7fg5zuzlt6rsOr2YQsQbn7QdghIfkfS+Ip1lKV/YS5aoT 6iLW29zUf5sQ4GWOU65znH2vGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFe0U10i Lk5w0iLA2+dIfS0xtLmLMB8GA1UdIwQYMBaAFAeBZ1zGT6srhF2n9RFVSYBC7ORn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRENCNi82N0M2QUE0QThB RjExMUU2OTgwNzgzNTVDNEY5QUUwMi9CNEZuWE1aUHF5dUVYYWYxRVZWSmdFTHM1 R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0Rm5YTVpQcXl1RVhhZjFFVlZKZ0VMczVHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RDQjYvNjdDNkFBNEE4QUYxMTFFNjk4MDc4MzU1QzRGOUFFMDIvQkQzMTRDRUE2 MTk3MTFFRTgxMjExMjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnDOwwDQYJKoZIhvcNAQELBQADggEBAAhad62tQSgjIseD iwDy2fAZJAU/wvFNiQAty0QJBa9+5MVZiyT0i4oSQYtZidX9T21NM5LQb6bretNg H45ol/4974PTRKbEA1D/MsuEzRTRMcJwds7hB62aIOxqbYzGVv+t+hyxbVqFIrvD aNAbkQ5kpeAtJtNVzW69+ZsNJc3Aaqe8hcEXdxrDag44qKW6NoMqTPf5V2m5g0Ry QOPY1bNc7xMqQKf8U9pMGTVMtSIZmy4iYZNOdSIZpw5OIQ7G44fML4u7px3OcxB7 dr2a/pdglWJY453QNWa0vZZl4lysXxnSsoe5bZsQmeCnIl09nOXb2fsWpbBuEtvs 0TYGSnQ= -----END CERTIFICATE-----Generated at Thu May 16 18:26:09 2024 by rpki-client on console-fra.rpki-client.org