$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/BDFE68F491FD11EB84408D16C4F9AE02.roa File: BDFE68F491FD11EB84408D16C4F9AE02.roa (raw, json) Hash identifier: NiOCVi1ZAoRhfdZ2LF+ut8x9beDsO9AQBCdgx3wc2ws= Subject key identifier: 71:5B:3A:B7:E7:F6:8D:D3:C2:73:63:69:4E:6E:32:DC:09:E3:12:57 Certificate issuer: /CN=A91F3043/serialNumber=B9254FF32A33298D9D5C615CFDA45315E15C7CB5 Certificate serial: 05D7 Authority key identifier: B9:25:4F:F3:2A:33:29:8D:9D:5C:61:5C:FD:A4:53:15:E1:5C:7C:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSVP8yozKY2dXGFc_aRTFeFcfLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/BDFE68F491FD11EB84408D16C4F9AE02.roa Signing time: Fri 18 Oct 2024 23:13:14 +0000 ROA not before: Fri 18 Oct 2024 23:13:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 64037 IP address blocks: 103.195.140.0/23 maxlen: 23 103.195.140.0/24 maxlen: 24 103.195.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/uSVP8yozKY2dXGFc_aRTFeFcfLU.crl rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/uSVP8yozKY2dXGFc_aRTFeFcfLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSVP8yozKY2dXGFc_aRTFeFcfLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3043/serialNumber=B9254FF32A33298D9D5C615CFDA45315E15C7CB5 Validity Not Before: Oct 18 23:13:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6712eb89-ab2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ea:01:a5:f8:d6:58:05:2c:4f:71:4b:3b:b3: 5c:d9:0f:71:f2:43:50:8d:2b:cc:7f:9a:bb:c1:20: 0d:5c:4b:df:8b:fe:2a:9d:34:ec:02:7a:64:b3:6e: d2:4b:78:01:6f:f1:60:f9:a4:64:ef:e9:5b:4c:39: 5a:50:a2:f3:65:3f:08:f6:86:17:a3:c5:c8:0a:f4: b0:63:73:7e:83:73:38:28:61:02:20:63:91:47:16: cc:c3:f6:a5:41:56:e3:52:7e:a8:ef:23:9c:b3:1b: e5:7b:28:14:74:17:a4:8f:c9:ef:b6:9f:14:a7:bd: 04:44:0c:27:09:8a:d8:c1:ee:80:6f:51:6e:62:ef: dd:0f:56:64:29:31:40:f9:3b:d3:c0:dc:c8:b9:26: f3:f6:18:8e:9d:24:66:1d:b3:7e:66:ee:3c:3d:78: f7:e0:d6:99:16:b4:d7:47:43:3d:fd:b8:e4:19:28: df:88:f2:c8:a1:3c:fd:7d:18:f4:36:0c:83:39:22: d3:61:be:86:54:00:64:46:f5:04:39:fc:66:8b:dc: e7:9c:4e:59:47:5a:5c:c2:b2:c4:19:5d:8e:1d:f6: cd:1f:7a:c1:a1:2f:9e:5e:c1:1c:cc:1c:97:1d:2c: 40:81:ad:db:ba:48:a7:44:b0:92:3e:58:31:80:f2: bf:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:5B:3A:B7:E7:F6:8D:D3:C2:73:63:69:4E:6E:32:DC:09:E3:12:57 X509v3 Authority Key Identifier: keyid:B9:25:4F:F3:2A:33:29:8D:9D:5C:61:5C:FD:A4:53:15:E1:5C:7C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/uSVP8yozKY2dXGFc_aRTFeFcfLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSVP8yozKY2dXGFc_aRTFeFcfLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/BDFE68F491FD11EB84408D16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.140.0/23 Signature Algorithm: sha256WithRSAEncryption 41:46:28:cb:e0:24:28:8b:4c:f0:4c:5f:f8:53:eb:98:46:70: 8b:07:f6:49:d4:18:0e:5d:09:5d:5d:84:14:18:52:0b:7d:3d: 9e:96:18:54:b8:e2:3e:bd:88:e0:12:80:07:4f:c2:2f:54:71: 76:20:e8:68:83:c5:62:3e:ba:12:f0:50:1b:cc:1a:1e:e0:47: 3a:f7:e5:ab:3e:a0:89:23:44:4b:17:ac:7d:33:82:0a:39:0e: bd:91:4e:6a:cc:82:53:6d:6e:93:72:a0:c9:9a:43:d0:34:b7: 9f:9b:8c:e8:4a:18:b8:9e:42:72:fa:07:b3:30:31:33:65:95: 70:09:a4:03:9f:bc:fa:e9:4d:03:16:37:e2:da:1e:27:65:fa: af:07:f2:47:f9:42:22:79:64:e7:66:ed:3d:03:3b:bc:53:56: 3b:07:50:94:00:a8:1d:15:44:96:6a:68:c7:37:79:7a:6f:19: ea:c5:1a:a9:a8:3a:5f:08:42:d3:d5:5c:51:36:5e:70:6e:0d: ad:f0:09:9e:e7:19:b5:36:8e:d3:f6:f8:54:e1:a4:bb:9f:e4: f7:45:40:93:80:ca:f5:a2:03:45:c3:96:11:32:ad:38:d3:b5: 11:ba:c5:50:dc:d3:ce:ba:c3:01:69:1d:16:73:19:5e:d8:8e: 50:37:99:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMwNDMxMTAvBgNVBAUTKEI5MjU0RkYzMkEzMzI5OEQ5RDVDNjE1Q0ZEQTQ1MzE1 RTE1QzdDQjUwHhcNMjQxMDE4MjMxMzE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEyZWI4OS1hYjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeoBpfjWWAUsT3FLO7Nc2Q9x8kNQjSvMf5q7wSANXEvfi/4qnTTsAnpks27S S3gBb/Fg+aRk7+lbTDlaUKLzZT8I9oYXo8XICvSwY3N+g3M4KGECIGORRxbMw/al QVbjUn6o7yOcsxvleygUdBekj8nvtp8Up70ERAwnCYrYwe6Ab1FuYu/dD1ZkKTFA +TvTwNzIuSbz9hiOnSRmHbN+Zu48PXj34NaZFrTXR0M9/bjkGSjfiPLIoTz9fRj0 NgyDOSLTYb6GVABkRvUEOfxmi9znnE5ZR1pcwrLEGV2OHfbNH3rBoS+eXsEczByX HSxAga3bukinRLCSPlgxgPK/sQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHFbOrfn 9o3TwnNjaU5uMtwJ4xJXMB8GA1UdIwQYMBaAFLklT/MqMymNnVxhXP2kUxXhXHy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzA0My8zOTZDNUQ0MDkx RkMxMUVCQTk5OERCMTRDNEY5QUUwMi91U1ZQOHlvektZMmRYR0ZjX2FSVEZlRmNm TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VTVlA4eW96S1kyZFhHRmNfYVJURmVGY2ZMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMwNDMvMzk2QzVENDA5MUZDMTFFQkE5OThEQjE0QzRGOUFFMDIvQkRGRTY4RjQ5 MUZEMTFFQjg0NDA4RDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnw4wwDQYJKoZIhvcNAQELBQADggEBAEFGKMvgJCiLTPBM X/hT65hGcIsH9knUGA5dCV1dhBQYUgt9PZ6WGFS44j69iOASgAdPwi9UcXYg6GiD xWI+uhLwUBvMGh7gRzr35as+oIkjREsXrH0zggo5Dr2RTmrMglNtbpNyoMmaQ9A0 t5+bjOhKGLieQnL6B7MwMTNllXAJpAOfvPrpTQMWN+LaHidl+q8H8kf5QiJ5ZOdm 7T0DO7xTVjsHUJQAqB0VRJZqaMc3eXpvGerFGqmoOl8IQtPVXFE2XnBuDa3wCZ7n GbU2jtP2+FThpLuf5PdFQJOAyvWiA0XDlhEyrTjTtRG6xVDc0866wwFpHRZzGV7Y jlA3mTk= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:37 2024 by rpki-client on console-fra.rpki-client.org