$ rpki-client -vvf rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/2B68155C2C9D11EEB080623AC4F9AE02.roa File: 2B68155C2C9D11EEB080623AC4F9AE02.roa (raw, json) Hash identifier: /Vh/4JY8xCIY7gjrvacdvkrn99MfimK7KiFPU0rc0TY= Subject key identifier: 5A:C2:10:57:E8:EC:91:34:3B:A0:21:57:09:66:DE:40:47:74:8D:4D Certificate issuer: /CN=A9143848/serialNumber=482D3E700EE5F1A4ADA7516F2E567834E710D135 Certificate serial: 6C Authority key identifier: 48:2D:3E:70:0E:E5:F1:A4:AD:A7:51:6F:2E:56:78:34:E7:10:D1:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/2B68155C2C9D11EEB080623AC4F9AE02.roa Signing time: Fri 29 Dec 2023 06:07:41 +0000 ROA not before: Fri 29 Dec 2023 06:07:41 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135615 IP address blocks: 103.175.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.crl rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143848/serialNumber=482D3E700EE5F1A4ADA7516F2E567834E710D135 Validity Not Before: Dec 29 06:07:41 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=658e622d-2648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:78:35:8f:6c:36:6a:83:bf:71:84:04:46:44: cb:9e:ec:40:c8:fc:81:23:d4:c6:04:d9:31:ac:c4: c8:51:48:9d:cd:35:eb:1b:50:8e:55:19:e5:3b:b5: 3d:67:bf:8c:bc:cd:ec:c7:84:23:ab:b6:d0:ac:b9: 47:28:99:c9:58:0f:18:cb:69:1f:19:2a:fa:c6:5e: c8:4d:7d:da:3d:a2:92:0c:67:c8:77:41:51:a5:4f: 3c:e4:99:0d:6d:ad:83:fc:c2:44:8e:61:b7:28:a8: f3:45:31:d8:53:75:70:60:de:ac:e1:d1:06:2c:f6: 35:b9:e7:a3:e9:24:34:02:24:77:4e:8a:ec:45:25: d5:7c:e3:74:a8:3f:36:41:d1:3e:ef:4b:2f:d4:f4: da:1b:aa:6b:5e:54:78:60:06:3a:67:77:a8:d9:da: 52:a2:63:e4:40:9a:dd:47:1e:0b:ec:a4:4a:39:1a: 16:69:14:ad:fa:0d:73:7f:e6:61:93:56:b4:a4:27: d7:6c:33:ef:f9:e2:4a:3b:76:22:26:ed:19:7d:d1: ce:3c:dc:cb:31:ef:54:d5:bb:04:6b:9e:04:78:9b: cf:60:a8:e5:a6:48:7b:12:26:d1:ea:23:d1:d8:65: bd:b4:05:bc:1d:33:3e:75:68:25:e1:1a:4f:51:2a: 02:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C2:10:57:E8:EC:91:34:3B:A0:21:57:09:66:DE:40:47:74:8D:4D X509v3 Authority Key Identifier: keyid:48:2D:3E:70:0E:E5:F1:A4:AD:A7:51:6F:2E:56:78:34:E7:10:D1:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/2B68155C2C9D11EEB080623AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.56.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:7a:b7:a2:82:02:7c:d9:ee:f0:04:33:44:4d:e6:25:7e:e2: 9e:a3:b1:0f:b9:b5:62:47:f4:02:7a:d2:92:e9:32:bb:0d:bd: a2:83:e9:1b:cd:f2:17:08:ef:eb:0e:65:c4:b5:eb:05:e7:25: d3:07:5b:a9:d5:83:7c:2f:f4:29:53:f2:54:cb:e9:38:5d:f6: 9e:22:1f:9a:3c:04:0f:f6:5d:ec:e0:78:97:89:1c:a5:21:7b: ed:37:09:bc:c6:7c:13:f4:f6:8c:63:5f:ab:ce:43:5b:84:83: 5a:70:4f:b2:73:0f:6b:f3:2d:0f:da:ba:57:73:26:3f:18:70: 4b:11:7d:ce:6a:59:77:f6:43:43:96:2f:ad:2d:6b:6e:7c:c2: 88:6e:e0:82:49:59:8d:e1:4b:2e:a2:d3:b2:45:b0:7d:32:e3: 31:dc:3e:7d:fb:89:49:0f:5d:1b:c3:9e:ce:82:ae:a2:af:df: 96:9d:30:63:13:d6:46:5f:c1:c5:c3:21:99:03:42:2b:a0:08: 0c:16:40:ee:ca:45:ee:c9:42:35:47:e0:e3:4e:64:97:c1:5c: 45:cf:81:15:37:5a:36:fe:36:7f:22:bb:92:0e:a2:01:ef:f8: 82:f1:fa:7b:2e:2e:84:f0:7c:97:46:51:87:ae:39:39:24:8b: a8:8a:b4:25 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Mzg0ODExMC8GA1UEBRMoNDgyRDNFNzAwRUU1RjFBNEFEQTc1MTZGMkU1Njc4MzRF NzEwRDEzNTAeFw0yMzEyMjkwNjA3NDFaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OGU2MjJkLTI2NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqeDWPbDZqg79xhARGRMue7EDI/IEj1MYE2TGsxMhRSJ3NNesbUI5VGeU7tT1n v4y8zezHhCOrttCsuUcomclYDxjLaR8ZKvrGXshNfdo9opIMZ8h3QVGlTzzkmQ1t rYP8wkSOYbcoqPNFMdhTdXBg3qzh0QYs9jW556PpJDQCJHdOiuxFJdV843SoPzZB 0T7vSy/U9NobqmteVHhgBjpnd6jZ2lKiY+RAmt1HHgvspEo5GhZpFK36DXN/5mGT VrSkJ9dsM+/54ko7diIm7Rl90c483Msx71TVuwRrngR4m89gqOWmSHsSJtHqI9HY Zb20BbwdMz51aCXhGk9RKgIJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWsIQV+js kTQ7oCFXCWbeQEd0jU0wHwYDVR0jBBgwFoAUSC0+cA7l8aStp1FvLlZ4NOcQ0TUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQzODQ4LzE2MThEQjc0MkJC NjExRUVCQjdENTI2QUM0RjlBRTAyL1NDMC1jQTdsOGFTdHAxRnZMbFo0Tk9jUTBU VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU0MwLWNBN2w4YVN0cDFGdkxsWjROT2NRMFRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Mzg0OC8xNjE4REI3NDJCQjYxMUVFQkI3RDUyNkFDNEY5QUUwMi8yQjY4MTU1QzJD OUQxMUVFQjA4MDYyM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGevODANBgkqhkiG9w0BAQsFAAOCAQEAX3q3ooICfNnu8AQz RE3mJX7inqOxD7m1Ykf0AnrSkukyuw29ooPpG83yFwjv6w5lxLXrBecl0wdbqdWD fC/0KVPyVMvpOF32niIfmjwED/Zd7OB4l4kcpSF77TcJvMZ8E/T2jGNfq85DW4SD WnBPsnMPa/MtD9q6V3MmPxhwSxF9zmpZd/ZDQ5YvrS1rbnzCiG7ggklZjeFLLqLT skWwfTLjMdw+ffuJSQ9dG8OezoKuoq/flp0wYxPWRl/BxcMhmQNCK6AIDBZA7spF 7slCNUfg405kl8FcRc+BFTdaNv42fyK7kg6iAe/4gvH6ey4uhPB8l0ZRh645OSSL qIq0JQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:11 2024 by rpki-client on console-ams.rpki-client.org