$ rpki-client -vvf rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa File: A89C497E6D1911ED9C34360FC4F9AE02.roa (raw, json) Hash identifier: ziWLWBvpn29tk5TkdJOT57wBTTzTwUrFTHzZ3w/DxZY= Subject key identifier: 4A:5A:89:10:98:5D:7D:9E:42:C0:DC:E8:91:2E:6B:33:25:F3:9E:C2 Certificate issuer: /CN=A913F478/serialNumber=568F765CCAB42C5230798E68FBC37C8AA49F5F44 Certificate serial: B6 Authority key identifier: 56:8F:76:5C:CA:B4:2C:52:30:79:8E:68:FB:C3:7C:8A:A4:9F:5F:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa Signing time: Wed 25 Oct 2023 04:15:41 +0000 ROA not before: Wed 25 Oct 2023 04:15:40 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150447 IP address blocks: 103.17.148.0/23 maxlen: 23 103.17.148.0/24 maxlen: 24 103.17.149.0/24 maxlen: 24 2001:df1:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.crl rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F478/serialNumber=568F765CCAB42C5230798E68FBC37C8AA49F5F44 Validity Not Before: Oct 25 04:15:40 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6538966c-b5b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2c:d7:66:2f:ff:0f:fc:d5:5c:d4:a5:d2:4d: 07:42:a5:fe:f7:f4:26:07:6c:72:e2:16:32:66:55: cb:67:9f:56:c5:d7:e8:a5:bf:61:04:ec:e2:02:26: f0:b6:73:bc:c1:5b:21:53:45:2e:31:52:a9:a6:bc: 28:1a:9d:7a:1a:13:8c:86:fb:c3:65:ec:19:7f:de: 0b:84:d2:12:65:8d:39:cd:56:f2:cd:26:89:2b:47: e1:59:42:e7:79:f9:f2:23:35:90:b2:6d:db:52:2b: b7:67:fc:3c:ea:d6:fa:53:9a:ee:3f:51:b4:cc:79: 44:f8:e3:f9:43:2a:ca:ce:a5:0d:22:12:7a:a2:4b: fa:ae:67:3a:64:bd:df:9f:94:f4:62:0b:47:4b:b3: 10:bf:4c:a7:24:00:39:4a:c0:33:36:29:e0:aa:0e: 8b:8a:90:42:c9:0b:f7:77:cf:e1:23:aa:30:12:39: 62:b9:c4:dc:6d:97:fb:b5:76:04:1d:c4:f4:a0:16: 48:6d:87:d6:7f:11:ec:12:ea:51:42:f5:38:4f:dc: e3:09:9d:06:f0:69:a6:67:db:31:1a:6e:43:cb:34: 01:4d:b9:07:62:84:c8:62:28:ae:07:a4:f3:92:de: f6:fb:81:33:40:04:54:16:9a:1c:ec:3e:8c:65:13: 78:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:5A:89:10:98:5D:7D:9E:42:C0:DC:E8:91:2E:6B:33:25:F3:9E:C2 X509v3 Authority Key Identifier: keyid:56:8F:76:5C:CA:B4:2C:52:30:79:8E:68:FB:C3:7C:8A:A4:9F:5F:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.148.0/23 IPv6: 2001:df1:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 31:08:dc:9f:53:a6:23:1d:a4:a6:9f:68:b3:7f:dc:b0:59:c8: 04:c3:dc:f2:dc:0b:96:83:93:8d:d0:88:27:d0:8a:54:34:1b: 72:83:4f:60:b6:48:c5:8a:14:f2:a8:08:29:20:91:f5:d1:32: ae:93:b9:da:51:a1:8b:9d:c7:58:21:9e:6f:e3:6d:c2:65:1b: 33:b0:5f:68:49:be:ef:61:52:5e:21:e3:ff:6a:27:96:54:1d: 57:13:cd:a4:68:44:fd:51:51:8b:a8:e5:6e:ea:ca:9b:aa:57: 4a:65:26:ca:e3:9b:9e:bc:c3:5e:dc:c9:e8:8c:d7:f7:3b:bf: c4:ba:f2:4e:b4:b4:bd:23:1f:d4:c0:82:55:d8:06:36:53:5c: 45:c0:05:db:f9:30:4c:bf:1a:13:07:d7:b3:a5:70:34:37:34: d7:31:71:25:13:c5:75:7f:fb:8b:cd:46:14:cc:a8:36:50:f4: 29:0d:44:56:35:70:35:7d:0f:c4:79:8a:ed:60:fb:f9:ce:8d: 76:2a:8d:39:81:9a:00:95:de:62:41:34:48:62:b2:cf:40:b6: 20:20:0c:89:e0:cb:be:1d:ea:bb:94:9d:5d:77:85:03:91:72: 69:8a:a4:59:09:a1:e3:4a:2d:e4:0c:a3:4b:ee:c6:52:bc:55: 60:22:1c:04 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y0NzgxMTAvBgNVBAUTKDU2OEY3NjVDQ0FCNDJDNTIzMDc5OEU2OEZCQzM3QzhB QTQ5RjVGNDQwHhcNMjMxMDI1MDQxNTQwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM4OTY2Yy1iNWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCzXZi//D/zVXNSl0k0HQqX+9/QmB2xy4hYyZlXLZ59Wxdfopb9hBOziAibw tnO8wVshU0UuMVKpprwoGp16GhOMhvvDZewZf94LhNISZY05zVbyzSaJK0fhWULn efnyIzWQsm3bUiu3Z/w86tb6U5ruP1G0zHlE+OP5QyrKzqUNIhJ6okv6rmc6ZL3f n5T0YgtHS7MQv0ynJAA5SsAzNingqg6LipBCyQv3d8/hI6owEjliucTcbZf7tXYE HcT0oBZIbYfWfxHsEupRQvU4T9zjCZ0G8GmmZ9sxGm5DyzQBTbkHYoTIYiiuB6Tz kt72+4EzQARUFpoc7D6MZRN4CwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEpaiRCY XX2eQsDc6JEuazMl857CMB8GA1UdIwQYMBaAFFaPdlzKtCxSMHmOaPvDfIqkn19E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjQ3OC80OTlBOTE1RTZE MTYxMUVEQkUxMjA1MENDNEY5QUUwMi9WbzkyWE1xMExGSXdlWTVvLThOOGlxU2ZY MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZvOTJYTXEwTEZJd2VZNW8tOE44aXFTZlgwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y0NzgvNDk5QTkxNUU2RDE2MTFFREJFMTIwNTBDQzRGOUFFMDIvQTg5QzQ5N0U2 RDE5MTFFRDlDMzQzNjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnEZQwDwQCAAIwCQMHACABDfFbwDANBgkqhkiG9w0BAQsF AAOCAQEAMQjcn1OmIx2kpp9os3/csFnIBMPc8twLloOTjdCIJ9CKVDQbcoNPYLZI xYoU8qgIKSCR9dEyrpO52lGhi53HWCGeb+NtwmUbM7BfaEm+72FSXiHj/2onllQd VxPNpGhE/VFRi6jlburKm6pXSmUmyuObnrzDXtzJ6IzX9zu/xLryTrS0vSMf1MCC VdgGNlNcRcAF2/kwTL8aEwfXs6VwNDc01zFxJRPFdX/7i81GFMyoNlD0KQ1EVjVw NX0PxHmK7WD7+c6NdiqNOYGaAJXeYkE0SGKyz0C2ICAMieDLvh3qu5SdXXeFA5Fy aYqkWQmh40ot5AyjS+7GUrxVYCIcBA== -----END CERTIFICATE-----Generated at Sat Jun 1 08:15:56 2024 by rpki-client on console-ams.rpki-client.org