$ rpki-client -vvf rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa File: F648238E766911EC9EADC512C4F9AE02.roa (raw, json) Hash identifier: 5HR8HV4Pjb49WKQhkhqMDo2vrU9gsv4/J0a+FK8ah0g= Subject key identifier: CF:91:80:9F:6F:A2:EC:52:19:FF:8E:63:85:66:CC:30:5B:D2:57:88 Certificate issuer: /CN=A912147F/serialNumber=B6F797D84F2E49B8BB322206B7946D27918CA164 Certificate serial: 0AD5 Authority key identifier: B6:F7:97:D8:4F:2E:49:B8:BB:32:22:06:B7:94:6D:27:91:8C:A1:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa Signing time: Wed 20 Dec 2023 20:07:44 +0000 ROA not before: Wed 20 Dec 2023 20:07:44 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137048 IP address blocks: 103.103.32.0/24 maxlen: 24 103.103.33.0/24 maxlen: 24 103.103.34.0/24 maxlen: 24 103.103.35.0/24 maxlen: 24 2401:ee40::/32 maxlen: 32 2401:ee40::/48 maxlen: 48 2401:ee40:1::/48 maxlen: 48 2401:ee40:2::/48 maxlen: 48 2401:ee40:3::/48 maxlen: 48 2401:ee40:4::/48 maxlen: 48 2401:ee40:5::/48 maxlen: 48 2401:ee40:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.crl rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2773 (0xad5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912147F/serialNumber=B6F797D84F2E49B8BB322206B7946D27918CA164 Validity Not Before: Dec 20 20:07:44 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65834990-d238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3f:a0:c9:c7:e9:6c:e6:4d:c5:77:8c:d4:cc: 07:01:40:5b:28:55:c2:75:d9:e3:10:a2:5c:fb:4f: 7d:53:92:76:62:93:42:67:e6:34:1e:cd:41:52:ec: ee:59:cd:fd:cf:88:39:3d:52:f8:ec:89:55:b7:1e: a0:ad:ad:8c:37:82:ba:bb:5e:06:1f:fa:5b:a8:36: b6:95:e4:8b:b1:51:74:70:70:54:76:f7:28:29:8d: 45:e4:62:f3:72:66:bd:2b:d8:6a:6e:d7:c1:2a:3a: 38:4f:2b:74:81:72:4c:a6:fe:d6:91:89:4c:be:7a: 20:16:2d:a1:a7:24:0c:e3:fd:ab:35:37:8f:81:e5: 9b:d5:c6:aa:40:3c:33:c5:7e:d9:10:a9:30:09:b3: 21:71:ce:f7:07:52:ba:ef:16:af:1d:26:68:02:ea: 21:39:81:1b:25:7b:88:b9:4d:c9:e0:5d:a9:5d:dd: 4d:bd:79:66:ee:cc:3c:cd:df:b7:2a:18:f5:77:95: 75:d7:3a:9d:18:e0:97:d7:48:b4:63:4e:aa:b7:2a: a9:14:bc:23:ef:a0:ef:9c:17:90:dd:8c:41:a1:e6: 24:65:8b:17:28:8a:4d:4a:84:f5:c1:fb:b8:0d:af: fc:0d:11:ee:03:7e:8c:f9:40:b8:ac:1d:7e:b0:58: aa:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:91:80:9F:6F:A2:EC:52:19:FF:8E:63:85:66:CC:30:5B:D2:57:88 X509v3 Authority Key Identifier: keyid:B6:F7:97:D8:4F:2E:49:B8:BB:32:22:06:B7:94:6D:27:91:8C:A1:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.32.0/22 IPv6: 2401:ee40::/32 Signature Algorithm: sha256WithRSAEncryption 9a:7f:4f:78:bb:c2:39:e5:45:7c:e0:93:1f:d4:13:50:63:5b: 89:a1:04:a6:70:4d:f0:92:e4:ee:53:4a:bc:fa:fc:6f:3e:ab: 4c:df:18:a9:5f:7f:74:a9:43:4f:3f:d6:af:d7:df:92:64:ea: 77:0e:83:4e:d3:61:50:de:39:bc:26:09:0e:72:c7:8e:81:c4: c5:f0:ab:97:00:e7:10:c0:18:42:7d:df:8c:87:c4:cb:87:49: 7d:a5:38:61:a2:64:11:6e:dc:a6:6f:82:59:89:3b:f5:40:44: c4:8f:e8:75:94:67:0c:42:18:4f:f2:c3:c0:57:7d:90:78:2c: 1c:11:b2:57:b3:01:98:85:8c:a7:8d:d4:23:b1:c2:94:07:53: 4a:ac:42:ad:72:8e:ff:ea:42:bf:cd:4e:ef:6b:c9:b6:10:ea: 02:00:26:24:37:71:70:64:f6:67:03:2f:35:31:1b:1e:08:a3: 3f:5f:cd:ea:5a:85:d3:fb:07:c2:86:db:f5:43:8b:c4:1a:f4: 7b:61:e9:1c:42:9a:70:69:64:f6:86:89:e9:29:41:e5:d8:16: ec:84:fb:4a:cc:5e:04:16:e5:d1:da:6d:b9:e0:69:45:c5:e2: 56:fe:81:c3:15:6a:28:75:e4:15:51:6d:d5:5a:a4:56:57:b8: 52:b6:75:ce -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE0N0YxMTAvBgNVBAUTKEI2Rjc5N0Q4NEYyRTQ5QjhCQjMyMjIwNkI3OTQ2RDI3 OTE4Q0ExNjQwHhcNMjMxMjIwMjAwNzQ0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzNDk5MC1kMjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsj+gycfpbOZNxXeM1MwHAUBbKFXCddnjEKJc+099U5J2YpNCZ+Y0Hs1BUuzu Wc39z4g5PVL47IlVtx6gra2MN4K6u14GH/pbqDa2leSLsVF0cHBUdvcoKY1F5GLz cma9K9hqbtfBKjo4Tyt0gXJMpv7WkYlMvnogFi2hpyQM4/2rNTePgeWb1caqQDwz xX7ZEKkwCbMhcc73B1K67xavHSZoAuohOYEbJXuIuU3J4F2pXd1NvXlm7sw8zd+3 Khj1d5V11zqdGOCX10i0Y06qtyqpFLwj76DvnBeQ3YxBoeYkZYsXKIpNSoT1wfu4 Da/8DRHuA36M+UC4rB1+sFiqywIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFM+RgJ9v ouxSGf+OY4VmzDBb0leIMB8GA1UdIwQYMBaAFLb3l9hPLkm4uzIiBreUbSeRjKFk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTQ3Ri8xNjFBQUJFQzFD RjcxMUVBQUQ2NjQ1MzJDNEY5QUUwMi90dmVYMkU4dVNiaTdNaUlHdDVSdEo1R01v V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R2ZVgyRTh1U2JpN01pSUd0NVJ0SjVHTW9XUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE0N0YvMTYxQUFCRUMxQ0Y3MTFFQUFENjY0NTMyQzRGOUFFMDIvRjY0ODIzOEU3 NjY5MTFFQzlFQURDNTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZyAwDQQCAAIwBwMFACQB7kAwDQYJKoZIhvcNAQELBQAD ggEBAJp/T3i7wjnlRXzgkx/UE1BjW4mhBKZwTfCS5O5TSrz6/G8+q0zfGKlff3Sp Q08/1q/X35Jk6ncOg07TYVDeObwmCQ5yx46BxMXwq5cA5xDAGEJ934yHxMuHSX2l OGGiZBFu3KZvglmJO/VARMSP6HWUZwxCGE/yw8BXfZB4LBwRslezAZiFjKeN1COx wpQHU0qsQq1yjv/qQr/NTu9rybYQ6gIAJiQ3cXBk9mcDLzUxGx4Ioz9fzepahdP7 B8KG2/VDi8Qa9Hth6RxCmnBpZPaGiekpQeXYFuyE+0rMXgQW5dHabbngaUXF4lb+ gcMVaih15BVRbdVapFZXuFK2dc4= -----END CERTIFICATE-----Generated at Fri May 31 22:13:02 2024 by rpki-client on console-fra.rpki-client.org