$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/BE243D98CCE311EAA397205EC4F9AE02.roa File: BE243D98CCE311EAA397205EC4F9AE02.roa (raw, json) Hash identifier: 2uyPyTnKA5Zwl2pBoHO39thl2FFHLVE7fFoHDqNgHC8= Subject key identifier: A7:8E:23:3B:60:1B:FE:0C:E9:0C:41:AE:9B:E3:BF:55:BF:1E:BD:A1 Certificate issuer: /CN=A91DC0C0/serialNumber=C4F7C619546D92D6066FB2F4C76545A9CE2FE303 Certificate serial: 07A4 Authority key identifier: C4:F7:C6:19:54:6D:92:D6:06:6F:B2:F4:C7:65:45:A9:CE:2F:E3:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfGGVRtktYGb7L0x2VFqc4v4wM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/BE243D98CCE311EAA397205EC4F9AE02.roa Signing time: Tue 16 Jul 2024 21:39:33 +0000 ROA not before: Tue 16 Jul 2024 21:39:33 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134179 IP address blocks: 103.57.0.0/22 maxlen: 22 103.57.0.0/24 maxlen: 24 103.57.1.0/24 maxlen: 24 103.57.2.0/24 maxlen: 24 103.57.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/xPfGGVRtktYGb7L0x2VFqc4v4wM.crl rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/xPfGGVRtktYGb7L0x2VFqc4v4wM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfGGVRtktYGb7L0x2VFqc4v4wM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:40:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1956 (0x7a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC0C0/serialNumber=C4F7C619546D92D6066FB2F4C76545A9CE2FE303 Validity Not Before: Jul 16 21:39:33 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6696e895-1772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:dc:38:0e:9c:03:5e:3a:c3:9b:9c:a8:b0:f1: e9:57:97:15:14:4d:f0:43:85:76:a3:3f:5d:9f:47: 31:0d:41:9c:6f:c2:1e:3c:56:50:eb:e0:24:36:bd: 08:93:e5:c8:85:74:81:8f:79:dd:11:a4:3a:a7:0d: bd:74:a6:ca:8e:d7:79:0e:87:51:7b:cd:4c:3e:87: 8c:23:59:4c:a7:5a:f8:62:c6:2f:ea:24:10:cb:33: 7c:82:d3:76:a8:f8:d5:56:5f:a2:6c:e6:01:39:da: 5c:a7:29:74:7d:7f:25:f0:6d:99:71:60:21:7c:69: a2:44:5e:de:16:da:f0:0b:bb:3c:7e:ac:16:c3:7f: 2b:33:ff:6b:d0:3e:26:68:2b:ce:f5:22:c8:7f:5b: 10:a3:70:9c:57:57:9e:80:3c:f9:1e:cc:55:06:c9: 43:21:a6:e7:9b:55:82:46:36:5d:7b:0f:34:2a:f6: be:f5:0a:1e:fe:81:9a:cb:63:70:cf:75:ed:08:40: ee:9d:ee:95:be:4e:b9:00:ac:df:c0:af:0a:87:4a: 1a:6b:2e:7d:99:bf:04:6a:84:3f:84:74:56:da:24: 4d:11:9d:80:a1:20:aa:e0:dd:11:14:0b:a4:c3:ba: 82:06:5b:56:39:01:39:cb:db:17:d3:f8:96:5a:12: 38:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8E:23:3B:60:1B:FE:0C:E9:0C:41:AE:9B:E3:BF:55:BF:1E:BD:A1 X509v3 Authority Key Identifier: keyid:C4:F7:C6:19:54:6D:92:D6:06:6F:B2:F4:C7:65:45:A9:CE:2F:E3:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/xPfGGVRtktYGb7L0x2VFqc4v4wM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfGGVRtktYGb7L0x2VFqc4v4wM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC0C0/022DBCA4CCE311EAAF73FC5DC4F9AE02/BE243D98CCE311EAA397205EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.0.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:8c:c9:c0:a3:b0:bd:9c:d6:34:af:f7:5e:b7:02:59:64:64: 2a:5c:33:c0:75:6e:29:59:3a:73:e0:1d:2f:40:d7:88:f6:cc: 14:0e:d4:b6:18:7b:1a:79:aa:91:70:73:fc:9d:b4:33:c9:e9: b6:6d:7c:22:b3:1e:4b:c1:24:a6:8c:f4:76:f0:1f:66:de:0b: 6c:5d:7e:d4:36:39:9a:a3:f6:02:01:db:77:16:6c:70:bb:52: dd:4d:cc:84:dc:b1:5c:9f:56:47:5c:0b:0f:49:57:7a:60:be: 71:5f:39:92:81:59:84:6b:cc:a6:d1:50:43:8a:0a:bf:cc:57: 36:86:e8:b3:43:4e:17:7c:e1:1e:8e:ce:3f:32:1e:bb:a7:45: f4:85:3c:a6:20:39:9a:0a:4f:7c:6a:c6:53:f9:9b:58:7e:65: 00:95:b8:16:93:af:4d:8d:3e:89:c0:3d:06:ad:2d:33:a3:4a: ef:50:1e:b1:33:dc:57:e2:7d:22:5f:58:db:8f:d7:13:04:bb: ed:77:f3:47:90:33:31:cc:d7:8f:dc:ab:28:3d:ff:28:ae:78: 5b:83:e8:cc:ef:19:8a:0a:27:5f:ac:db:dd:75:11:5e:e2:5d: 2b:6e:b4:05:82:25:1e:ec:a8:17:37:f7:18:e1:75:ba:97:09: 8f:b4:b7:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwQzAxMTAvBgNVBAUTKEM0RjdDNjE5NTQ2RDkyRDYwNjZGQjJGNEM3NjU0NUE5 Q0UyRkUzMDMwHhcNMjQwNzE2MjEzOTMzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ZTg5NS0xNzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdw4DpwDXjrDm5yosPHpV5cVFE3wQ4V2oz9dn0cxDUGcb8IePFZQ6+AkNr0I k+XIhXSBj3ndEaQ6pw29dKbKjtd5DodRe81MPoeMI1lMp1r4YsYv6iQQyzN8gtN2 qPjVVl+ibOYBOdpcpyl0fX8l8G2ZcWAhfGmiRF7eFtrwC7s8fqwWw38rM/9r0D4m aCvO9SLIf1sQo3CcV1eegDz5HsxVBslDIabnm1WCRjZdew80Kva+9Qoe/oGay2Nw z3XtCEDune6Vvk65AKzfwK8Kh0oaay59mb8EaoQ/hHRW2iRNEZ2AoSCq4N0RFAuk w7qCBltWOQE5y9sX0/iWWhI4/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKeOIztg G/4M6QxBrpvjv1W/Hr2hMB8GA1UdIwQYMBaAFMT3xhlUbZLWBm+y9MdlRanOL+MD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzBDMC8wMjJEQkNBNEND RTMxMUVBQUY3M0ZDNURDNEY5QUUwMi94UGZHR1ZSdGt0WUdiN0wweDJWRnFjNHY0 d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZkdHVlJ0a3RZR2I3TDB4MlZGcWM0djR3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwQzAvMDIyREJDQTRDQ0UzMTFFQUFGNzNGQzVEQzRGOUFFMDIvQkUyNDNEOThD Q0UzMTFFQUEzOTcyMDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnOQAwDQYJKoZIhvcNAQELBQADggEBAJ+MycCjsL2c1jSv 9163AllkZCpcM8B1bilZOnPgHS9A14j2zBQO1LYYexp5qpFwc/ydtDPJ6bZtfCKz HkvBJKaM9HbwH2beC2xdftQ2OZqj9gIB23cWbHC7Ut1NzITcsVyfVkdcCw9JV3pg vnFfOZKBWYRrzKbRUEOKCr/MVzaG6LNDThd84R6Ozj8yHrunRfSFPKYgOZoKT3xq xlP5m1h+ZQCVuBaTr02NPonAPQatLTOjSu9QHrEz3FfifSJfWNuP1xMEu+1380eQ MzHM14/cqyg9/yiueFuD6MzvGYoKJ1+s2911EV7iXStutAWCJR7sqBc39xjhdbqX CY+0tyg= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org