$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/BDFE68F491FD11EB84408D16C4F9AE02.roa File: BDFE68F491FD11EB84408D16C4F9AE02.roa (raw, json) Hash identifier: upHJM3OU3AjTyMDlkbAZZQMntOq+98ARLD9pNjN3d3A= Subject key identifier: 05:E2:FE:01:A1:27:47:0F:88:B2:BF:0F:5A:85:89:A0:0C:9E:43:CD Certificate issuer: /CN=A91F3043/serialNumber=B9254FF32A33298D9D5C615CFDA45315E15C7CB5 Certificate serial: 050C Authority key identifier: B9:25:4F:F3:2A:33:29:8D:9D:5C:61:5C:FD:A4:53:15:E1:5C:7C:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSVP8yozKY2dXGFc_aRTFeFcfLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/BDFE68F491FD11EB84408D16C4F9AE02.roa Signing time: Wed 27 Sep 2023 00:00:35 +0000 ROA not before: Wed 27 Sep 2023 00:00:35 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 64037 IP address blocks: 103.195.140.0/23 maxlen: 23 103.195.140.0/24 maxlen: 24 103.195.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/uSVP8yozKY2dXGFc_aRTFeFcfLU.crl rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/uSVP8yozKY2dXGFc_aRTFeFcfLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSVP8yozKY2dXGFc_aRTFeFcfLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1292 (0x50c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3043/serialNumber=B9254FF32A33298D9D5C615CFDA45315E15C7CB5 Validity Not Before: Sep 27 00:00:35 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=651370a2-a832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7d:65:fb:25:17:19:63:f0:cf:c4:f3:49:cb: f5:e5:0a:42:f9:c8:78:0c:ff:e2:bd:49:b4:22:8d: 9a:d1:b5:71:fe:d5:64:48:14:29:f6:81:98:42:cf: 50:eb:91:52:47:e9:c5:8d:4d:db:61:89:73:9d:99: da:18:63:ef:0e:e9:5d:b1:53:5c:a3:1c:48:c8:9f: 6d:26:04:11:39:67:1e:23:c2:5f:5b:82:6d:9b:ca: dc:b1:82:2f:8e:e4:36:fc:87:0e:16:60:5f:06:09: 74:db:7b:57:9b:9d:31:4e:b3:0a:a2:6e:5e:3c:80: 51:42:ea:bd:41:03:ad:93:27:02:0d:bb:fd:32:11: dc:6a:4a:91:63:13:bf:8e:7e:da:9d:a4:31:c2:28: 92:7c:64:43:bd:a9:c5:ed:8e:02:cb:e1:2d:c2:f1: 2d:6e:cd:49:46:0c:7d:df:59:ec:d1:e1:87:66:a1: b8:35:c9:7f:c5:16:28:8a:85:3d:ce:55:1c:20:a1: 65:45:6e:6d:2e:05:06:37:d0:7a:12:d8:ee:af:63: 64:79:b6:78:15:07:b8:98:42:f6:96:fa:81:aa:d1: 08:fa:0c:32:61:d6:ac:53:5c:11:6f:b7:ce:d0:bf: 52:cc:f5:47:e2:b3:5f:37:c4:ab:91:87:31:66:e1: 20:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E2:FE:01:A1:27:47:0F:88:B2:BF:0F:5A:85:89:A0:0C:9E:43:CD X509v3 Authority Key Identifier: keyid:B9:25:4F:F3:2A:33:29:8D:9D:5C:61:5C:FD:A4:53:15:E1:5C:7C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/uSVP8yozKY2dXGFc_aRTFeFcfLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSVP8yozKY2dXGFc_aRTFeFcfLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3043/396C5D4091FC11EBA998DB14C4F9AE02/BDFE68F491FD11EB84408D16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.140.0/23 Signature Algorithm: sha256WithRSAEncryption 64:0a:3f:63:a9:31:21:4d:0d:73:44:a8:01:ba:50:e4:f1:b9: 1b:20:4b:58:26:3b:40:2e:87:23:42:7d:a2:73:bf:d4:99:ae: 1c:7d:ee:37:93:7c:62:e8:76:c0:4b:a3:fb:da:33:eb:3c:ac: 61:8a:c1:7a:78:f3:9a:9b:e8:52:77:b2:22:17:e6:09:d6:18: fd:3a:fa:60:02:38:33:5f:28:37:36:1b:cb:1d:ea:d5:bf:10: 66:6d:1b:60:f1:34:3c:ca:a9:d9:1c:1d:21:87:68:b1:ed:47: e1:0e:02:54:bc:fe:4b:a7:cc:96:fa:bc:d6:5c:50:7f:ac:77: 6d:ca:ec:5c:43:98:a1:65:34:f8:f2:61:37:82:5e:6b:00:0b: cd:67:d5:c5:98:70:28:91:47:b8:27:10:7b:9e:92:86:3b:18: 14:2d:df:04:f4:9f:d3:86:57:f7:93:95:d7:18:0f:45:b7:22: aa:d8:23:3e:44:2a:ce:10:2b:f7:d0:0f:08:cf:f7:65:52:7b: e3:67:81:c3:6d:61:72:03:99:bc:3e:44:e6:ac:2e:f3:67:fd: 05:a7:50:7c:6f:19:7e:5a:1e:0f:6b:ee:a4:e5:d6:ad:ab:f3: 75:9a:3c:57:fb:d4:63:e2:3d:24:6f:9b:a0:51:5c:c0:52:48: ff:e9:51:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMwNDMxMTAvBgNVBAUTKEI5MjU0RkYzMkEzMzI5OEQ5RDVDNjE1Q0ZEQTQ1MzE1 RTE1QzdDQjUwHhcNMjMwOTI3MDAwMDM1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzNzBhMi1hODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoX1l+yUXGWPwz8TzScv15QpC+ch4DP/ivUm0Io2a0bVx/tVkSBQp9oGYQs9Q 65FSR+nFjU3bYYlznZnaGGPvDuldsVNcoxxIyJ9tJgQROWceI8JfW4Jtm8rcsYIv juQ2/IcOFmBfBgl023tXm50xTrMKom5ePIBRQuq9QQOtkycCDbv9MhHcakqRYxO/ jn7anaQxwiiSfGRDvanF7Y4Cy+EtwvEtbs1JRgx931ns0eGHZqG4Ncl/xRYoioU9 zlUcIKFlRW5tLgUGN9B6Etjur2NkebZ4FQe4mEL2lvqBqtEI+gwyYdasU1wRb7fO 0L9SzPVH4rNfN8SrkYcxZuEgNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAXi/gGh J0cPiLK/D1qFiaAMnkPNMB8GA1UdIwQYMBaAFLklT/MqMymNnVxhXP2kUxXhXHy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzA0My8zOTZDNUQ0MDkx RkMxMUVCQTk5OERCMTRDNEY5QUUwMi91U1ZQOHlvektZMmRYR0ZjX2FSVEZlRmNm TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VTVlA4eW96S1kyZFhHRmNfYVJURmVGY2ZMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMwNDMvMzk2QzVENDA5MUZDMTFFQkE5OThEQjE0QzRGOUFFMDIvQkRGRTY4RjQ5 MUZEMTFFQjg0NDA4RDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnw4wwDQYJKoZIhvcNAQELBQADggEBAGQKP2OpMSFNDXNE qAG6UOTxuRsgS1gmO0AuhyNCfaJzv9SZrhx97jeTfGLodsBLo/vaM+s8rGGKwXp4 85qb6FJ3siIX5gnWGP06+mACODNfKDc2G8sd6tW/EGZtG2DxNDzKqdkcHSGHaLHt R+EOAlS8/kunzJb6vNZcUH+sd23K7FxDmKFlNPjyYTeCXmsAC81n1cWYcCiRR7gn EHuekoY7GBQt3wT0n9OGV/eTldcYD0W3IqrYIz5EKs4QK/fQDwjP92VSe+NngcNt YXIDmbw+ROasLvNn/QWnUHxvGX5aHg9r7qTl1q2r83WaPFf71GPiPSRvm6BRXMBS SP/pUbg= -----END CERTIFICATE-----Generated at Tue May 7 01:58:32 2024 by rpki-client on console-fra.rpki-client.org