$ rpki-client -vvf rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/2B68155C2C9D11EEB080623AC4F9AE02.roa File: 2B68155C2C9D11EEB080623AC4F9AE02.roa (raw, json) Hash identifier: c9nvOfU2KLrLRWXC99EhP9jGlFTmmacQblUfMAlz5U8= Subject key identifier: 0A:45:CF:C7:AF:48:84:FD:19:B1:86:B8:D7:ED:2A:B8:4E:D6:33:B6 Certificate issuer: /CN=A9143848/serialNumber=482D3E700EE5F1A4ADA7516F2E567834E710D135 Certificate serial: 011A Authority key identifier: 48:2D:3E:70:0E:E5:F1:A4:AD:A7:51:6F:2E:56:78:34:E7:10:D1:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/2B68155C2C9D11EEB080623AC4F9AE02.roa Signing time: Fri 29 Nov 2024 03:47:08 +0000 ROA not before: Fri 29 Nov 2024 03:47:08 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135615 IP address blocks: 103.175.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.crl rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 03:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143848 Validity Not Before: Nov 29 03:47:08 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6749393c-26d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e8:ed:25:82:6d:6d:73:43:1f:10:f0:48:a3: 22:94:28:c5:fd:ad:ec:f5:b0:78:b8:b8:73:7e:20: 48:15:71:bd:c0:f8:8a:50:a5:5c:3b:a1:c7:aa:23: 42:02:47:3d:a6:40:9c:bb:a6:ee:9a:be:4f:d3:43: d6:c1:ae:1d:e6:8b:24:a2:e7:27:dc:cf:08:b7:d6: d5:57:ce:5c:a3:f3:8c:b0:aa:8b:e8:43:1a:fd:4e: 8d:ab:2d:04:7e:25:1b:2b:dc:c9:5c:5e:e3:41:d4: 8e:06:98:df:29:ba:6c:25:f1:7c:87:af:9a:65:8e: 6b:23:90:0b:0a:7c:c4:c4:d7:a1:c7:f4:df:d3:8c: 08:28:9a:8c:e9:2e:8f:5a:bc:10:62:ef:a8:16:9c: 5b:f2:e8:21:1e:0d:9c:a7:85:44:e0:e2:91:49:91: 19:e1:16:a2:db:32:c9:2e:c2:b3:37:0a:01:94:80: bd:17:d0:c1:c8:2c:63:36:5a:37:a8:eb:4e:c5:89: 61:ee:cc:dc:a8:94:21:5e:f8:be:ed:57:ce:71:e5: db:92:bb:a8:3f:11:46:bb:40:7d:24:ca:d5:ee:d6: 95:d6:a8:6f:75:f6:12:a7:4f:92:15:8f:21:42:40: 49:b3:f9:30:59:b3:7b:7c:70:00:b0:c5:04:c8:cb: ee:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:45:CF:C7:AF:48:84:FD:19:B1:86:B8:D7:ED:2A:B8:4E:D6:33:B6 X509v3 Authority Key Identifier: keyid:48:2D:3E:70:0E:E5:F1:A4:AD:A7:51:6F:2E:56:78:34:E7:10:D1:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC0-cA7l8aStp1FvLlZ4NOcQ0TU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143848/1618DB742BB611EEBB7D526AC4F9AE02/2B68155C2C9D11EEB080623AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.56.0/24 Signature Algorithm: sha256WithRSAEncryption 10:6c:02:7a:44:50:2a:c2:4f:eb:c2:58:e0:ce:fa:06:03:4c: 22:6f:49:67:bd:43:07:99:14:5a:7f:cf:9e:f7:8f:9d:02:82: ca:6c:4e:54:f3:75:b3:1d:a7:20:9c:38:cc:55:90:98:4c:d2: 50:c6:64:f8:65:29:ba:be:cd:5f:fd:76:19:be:38:a0:57:0f: d3:82:06:69:11:8f:ed:68:fb:48:4c:d4:c4:4e:2b:4d:5b:57: bf:9d:30:79:af:7a:53:14:66:f0:86:92:05:8d:59:3c:93:8d: dc:71:e7:3f:ac:06:8e:62:ea:69:2f:dd:77:33:99:06:60:e7: 02:ca:fe:90:b5:54:db:56:70:c5:3f:0a:40:14:47:29:4b:7e: f9:f0:45:c5:17:ce:9b:64:bc:2e:35:f6:ad:eb:25:02:b6:44: a2:ca:ac:80:23:3e:a7:8d:77:ba:27:c8:d4:06:04:fc:8e:2a: c2:ed:43:6b:f6:0d:bb:46:bc:da:e2:95:a3:03:62:f4:85:4a: e1:bd:fe:38:dc:b8:99:60:83:01:f4:a1:9b:f6:e1:94:92:ad: c7:03:f3:7b:ce:b1:2b:e7:de:f6:e1:0d:eb:aa:d2:63:58:ff: a1:40:60:38:8e:7f:74:14:42:2d:57:b6:1d:f3:96:25:b7:ec: 12:24:c4:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM4NDgxMTAvBgNVBAUTKDQ4MkQzRTcwMEVFNUYxQTRBREE3NTE2RjJFNTY3ODM0 RTcxMEQxMzUwHhcNMjQxMTI5MDM0NzA4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ5MzkzYy0yNmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+jtJYJtbXNDHxDwSKMilCjF/a3s9bB4uLhzfiBIFXG9wPiKUKVcO6HHqiNC Akc9pkCcu6bumr5P00PWwa4d5oskoucn3M8It9bVV85co/OMsKqL6EMa/U6Nqy0E fiUbK9zJXF7jQdSOBpjfKbpsJfF8h6+aZY5rI5ALCnzExNehx/Tf04wIKJqM6S6P WrwQYu+oFpxb8ughHg2cp4VE4OKRSZEZ4Rai2zLJLsKzNwoBlIC9F9DByCxjNlo3 qOtOxYlh7szcqJQhXvi+7VfOceXbkruoPxFGu0B9JMrV7taV1qhvdfYSp0+SFY8h QkBJs/kwWbN7fHAAsMUEyMvuPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFApFz8ev SIT9GbGGuNftKrhO1jO2MB8GA1UdIwQYMBaAFEgtPnAO5fGkradRby5WeDTnENE1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mzg0OC8xNjE4REI3NDJC QjYxMUVFQkI3RDUyNkFDNEY5QUUwMi9TQzAtY0E3bDhhU3RwMUZ2TGxaNE5PY1Ew VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDMC1jQTdsOGFTdHAxRnZMbFo0Tk9jUTBUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDM4NDgvMTYxOERCNzQyQkI2MTFFRUJCN0Q1MjZBQzRGOUFFMDIvMkI2ODE1NUMy QzlEMTFFRUIwODA2MjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrzgwDQYJKoZIhvcNAQELBQADggEBABBsAnpEUCrCT+vC WODO+gYDTCJvSWe9QweZFFp/z573j50CgspsTlTzdbMdpyCcOMxVkJhM0lDGZPhl Kbq+zV/9dhm+OKBXD9OCBmkRj+1o+0hM1MROK01bV7+dMHmvelMUZvCGkgWNWTyT jdxx5z+sBo5i6mkv3XczmQZg5wLK/pC1VNtWcMU/CkAURylLfvnwRcUXzptkvC41 9q3rJQK2RKLKrIAjPqeNd7onyNQGBPyOKsLtQ2v2DbtGvNrilaMDYvSFSuG9/jjc uJlggwH0oZv24ZSSrccD83vOsSvn3vbhDeuq0mNY/6FAYDiOf3QUQi1Xth3zliW3 7BIkxBg= -----END CERTIFICATE-----Generated at Mon Apr 7 13:58:08 2025 by rpki-client