$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/BE8369D6053711EA9A24E761C4F9AE02.roa File: BE8369D6053711EA9A24E761C4F9AE02.roa (raw, json) Hash identifier: VMJPLLhedlHAk4tQ5HhxEAJ5POLeqMTVPXSXcNzn0f0= Subject key identifier: D5:CE:45:C5:53:9C:82:7A:E1:57:FC:24:05:45:8A:35:A9:89:54:EF Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0BF9 Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/BE8369D6053711EA9A24E761C4F9AE02.roa Signing time: Fri 04 Oct 2024 18:57:19 +0000 ROA not before: Fri 04 Oct 2024 18:57:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 16276 IP address blocks: 103.5.12.0/22 maxlen: 22 2402:1f00::/32 maxlen: 32 2402:1f00:8000::/40 maxlen: 40 2402:1f00:8100::/40 maxlen: 40 2402:1f00:8200::/40 maxlen: 40 2402:1f00:8300::/40 maxlen: 40 2402:1f00:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3065 (0xbf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: Oct 4 18:57:19 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67003a8f-67ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9d:df:78:b1:7e:7e:d2:84:db:47:a1:00:f5: 49:b8:b6:2e:b9:3b:91:9f:36:a3:b0:d6:80:74:51: c1:d4:28:9e:72:f2:24:38:7c:53:f2:2d:c3:d2:0a: 66:bf:a1:dc:50:20:31:7b:9b:af:cf:e1:6f:a3:ea: 75:4e:eb:93:6e:28:4a:76:65:05:83:42:bd:a4:74: d0:39:ad:28:aa:d4:ff:ea:e4:21:40:b2:0f:85:4d: 94:39:8e:1f:bc:c4:7c:88:7d:49:ad:b7:b5:41:df: fa:5a:52:df:6a:4f:06:dd:9a:c2:0c:bd:39:5d:1a: 7c:87:f9:71:9c:a2:e6:cc:0d:88:b1:f4:99:f3:85: ae:3d:5d:43:07:b6:4b:c7:ee:4e:94:46:cc:fb:c9: cb:84:1d:d9:23:51:b7:3d:d9:43:eb:ee:91:54:8e: 7e:59:5d:a8:b7:fb:10:82:8e:c2:03:c4:55:d9:07: 9a:f5:f2:53:b1:42:f0:fa:9d:81:5b:8c:bc:a4:ab: e8:24:a4:b9:e0:b8:26:a6:16:2d:c4:62:b3:f4:7d: 4f:e0:9d:48:d9:e7:33:61:98:b0:c3:d2:3d:b2:10: 99:13:ff:02:ef:c7:7f:78:e5:e7:fb:dd:d7:ed:32: 87:da:4a:51:82:32:8c:9a:09:81:9a:78:6a:7a:97: bf:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:CE:45:C5:53:9C:82:7A:E1:57:FC:24:05:45:8A:35:A9:89:54:EF X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/BE8369D6053711EA9A24E761C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.12.0/22 IPv6: 2402:1f00::/32 Signature Algorithm: sha256WithRSAEncryption 4b:86:c8:fa:cd:7a:5e:1c:72:d7:ba:c2:c1:28:dd:69:50:64: 31:92:1a:27:b2:6b:99:2f:56:bb:c7:19:35:a6:67:9c:70:bc: 2f:27:71:7f:81:05:3e:3e:19:ed:43:a5:bc:4c:8a:a4:11:f2: fb:8e:29:7c:bb:82:ab:ba:5a:ba:f4:dc:61:98:9d:5f:03:2c: 11:16:8e:e9:a2:97:05:03:fe:01:24:92:29:87:a7:5a:36:62: 8b:5c:56:51:20:ea:6f:e8:a9:f3:06:51:7e:1e:f1:67:a1:60: 99:fe:d7:a0:7a:58:17:da:e5:38:45:39:16:77:41:95:d8:76: 3b:c3:7b:cd:69:36:da:ea:92:e3:5e:6c:91:80:0c:8b:2e:5b: 01:2d:f2:3b:5a:73:24:d5:bc:4a:7b:c8:f2:05:78:c0:82:79: c9:d1:b3:7e:e0:2e:ec:13:a6:e8:dd:af:b6:2c:18:31:18:ee: 89:9b:8c:bf:ab:0c:bf:4f:02:31:7e:45:a4:5b:4a:58:4a:62: d1:cf:81:8b:15:1d:a4:4b:a2:d3:54:11:43:e3:40:39:e8:9a: bf:50:1e:5e:54:e0:72:18:fb:b3:05:0f:6b:80:3b:aa:1a:d5: a8:c3:e5:0a:f7:53:09:a6:96:52:9e:ba:aa:e9:6b:a6:61:f0: 2f:54:32:a9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjQxMDA0MTg1NzE5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwM2E4Zi02N2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp3feLF+ftKE20ehAPVJuLYuuTuRnzajsNaAdFHB1CiecvIkOHxT8i3D0gpm v6HcUCAxe5uvz+Fvo+p1TuuTbihKdmUFg0K9pHTQOa0oqtT/6uQhQLIPhU2UOY4f vMR8iH1Jrbe1Qd/6WlLfak8G3ZrCDL05XRp8h/lxnKLmzA2IsfSZ84WuPV1DB7ZL x+5OlEbM+8nLhB3ZI1G3PdlD6+6RVI5+WV2ot/sQgo7CA8RV2Qea9fJTsULw+p2B W4y8pKvoJKS54LgmphYtxGKz9H1P4J1I2eczYZiww9I9shCZE/8C78d/eOXn+93X 7TKH2kpRgjKMmgmBmnhqepe/qQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNXORcVT nIJ64Vf8JAVFijWpiVTvMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI0NkIvNDkzMUVFNDYwMDdEMTFFQUI0ODkxMzFCQzRGOUFFMDIvQkU4MzY5RDYw NTM3MTFFQTlBMjRFNzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnBQwwDQQCAAIwBwMFACQCHwAwDQYJKoZIhvcNAQELBQAD ggEBAEuGyPrNel4ccte6wsEo3WlQZDGSGieya5kvVrvHGTWmZ5xwvC8ncX+BBT4+ Ge1DpbxMiqQR8vuOKXy7gqu6Wrr03GGYnV8DLBEWjumilwUD/gEkkimHp1o2Yotc VlEg6m/oqfMGUX4e8WehYJn+16B6WBfa5ThFORZ3QZXYdjvDe81pNtrqkuNebJGA DIsuWwEt8jtacyTVvEp7yPIFeMCCecnRs37gLuwTpujdr7YsGDEY7ombjL+rDL9P AjF+RaRbSlhKYtHPgYsVHaRLotNUEUPjQDnomr9QHl5U4HIY+7MFD2uAO6oa1ajD 5Qr3UwmmllKeuqrpa6Zh8C9UMqk= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:28 2024 by rpki-client on console-fra.rpki-client.org