$ rpki-client -vvf rpki.apnic.net/member_repository/A9148C20/A5A4CD10CC7611ED93CEAD7EC4F9AE02/A8CCF2D4CC7A11EDA9430E31C4F9AE02.roa File: A8CCF2D4CC7A11EDA9430E31C4F9AE02.roa (raw, json) Hash identifier: aeO1Mj/elW/xh7ym1J+KF848UMK5HdQa3I9hteU56q0= Subject key identifier: 23:99:5D:CF:DE:A4:8F:54:62:85:84:2E:63:21:29:CD:19:4D:65:D6 Certificate issuer: /CN=A9148C20/serialNumber=F2244FA8FB0FC9F5111ADEFAC19799C29F3C885B Certificate serial: 0143 Authority key identifier: F2:24:4F:A8:FB:0F:C9:F5:11:1A:DE:FA:C1:97:99:C2:9F:3C:88:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8iRPqPsPyfURGt76wZeZwp88iFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148C20/A5A4CD10CC7611ED93CEAD7EC4F9AE02/A8CCF2D4CC7A11EDA9430E31C4F9AE02.roa Signing time: Tue 03 Dec 2024 03:06:12 +0000 ROA not before: Tue 03 Dec 2024 03:06:12 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 38186 IP address blocks: 103.145.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148C20/A5A4CD10CC7611ED93CEAD7EC4F9AE02/8iRPqPsPyfURGt76wZeZwp88iFs.crl rsync://rpki.apnic.net/member_repository/A9148C20/A5A4CD10CC7611ED93CEAD7EC4F9AE02/8iRPqPsPyfURGt76wZeZwp88iFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8iRPqPsPyfURGt76wZeZwp88iFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148C20 Validity Not Before: Dec 3 03:06:12 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e75a4-5c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:22:34:16:83:98:a5:12:40:e9:4c:0f:6d:2b: 8d:e8:fe:3b:05:ff:ef:08:ec:d0:f3:21:36:05:ac: 49:4e:53:1c:0a:3a:92:f2:82:6f:e1:8d:17:3d:07: 4f:e7:e8:d2:0b:d6:64:32:50:e7:2e:7a:a2:79:97: 51:f7:8c:92:75:46:e4:a5:89:85:80:31:27:1f:5f: 34:2d:58:99:31:bd:85:16:ab:85:45:00:72:3c:78: f8:ce:18:5e:da:6b:f4:50:cd:ac:8b:93:2c:40:33: e1:4e:9a:5a:0c:50:2d:f9:58:3d:da:c8:6a:53:e7: 3a:b3:10:3f:9a:70:70:56:b6:cb:1d:fd:f3:a3:7d: 9d:61:e7:78:5e:43:d0:1a:50:60:03:99:9e:47:be: c7:cf:04:77:a9:ff:92:a8:ec:14:2d:8f:17:17:03: 6a:80:17:d5:ba:21:6c:de:79:dc:9d:40:fa:37:a1: 52:45:a9:a8:23:48:ff:05:04:59:2c:a0:ce:1a:f3: c5:36:e2:35:88:cd:cd:6a:06:29:a3:36:ba:3d:25: 9d:33:1b:73:5a:a6:ca:e1:08:c9:b5:36:4d:9e:78: 8a:a4:67:b0:aa:70:3d:4c:da:fa:17:7e:d2:78:c2: 56:1e:70:f9:55:6c:ec:56:78:e8:ad:ce:a3:91:79: 63:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:99:5D:CF:DE:A4:8F:54:62:85:84:2E:63:21:29:CD:19:4D:65:D6 X509v3 Authority Key Identifier: keyid:F2:24:4F:A8:FB:0F:C9:F5:11:1A:DE:FA:C1:97:99:C2:9F:3C:88:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148C20/A5A4CD10CC7611ED93CEAD7EC4F9AE02/8iRPqPsPyfURGt76wZeZwp88iFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8iRPqPsPyfURGt76wZeZwp88iFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148C20/A5A4CD10CC7611ED93CEAD7EC4F9AE02/A8CCF2D4CC7A11EDA9430E31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.190.0/23 Signature Algorithm: sha256WithRSAEncryption 15:5e:5c:ad:8d:1e:f8:16:13:a7:6c:fd:6b:1d:c2:a3:0d:58: b5:e0:e0:38:ea:a6:a7:88:41:3b:55:71:31:57:52:df:a7:81: 9d:e3:e2:15:4e:41:dd:a9:cf:72:57:66:26:37:70:ba:1b:cf: 7e:d8:a6:f4:f7:a4:ec:97:54:8f:ef:14:ed:4f:b0:c9:8a:fe: 26:e1:9f:02:0e:ca:45:82:e8:c7:fd:38:8e:fc:6e:b2:cb:1b: 40:da:0a:de:ac:39:78:f6:52:8a:20:84:42:52:d8:36:9a:6a: aa:76:ce:38:69:43:29:da:82:96:02:7d:34:bd:8f:e4:a9:7e: 82:87:5b:66:dc:a5:64:59:44:72:20:05:78:63:3d:4f:9c:cc: 9b:c8:90:d6:09:92:66:4c:2c:7e:4c:f9:a7:36:04:1e:6c:b2: 0e:13:65:8d:78:58:89:d9:ca:6d:2f:f8:62:1d:e8:13:8d:77: 71:5a:0a:3d:96:dd:fe:53:7e:e3:0c:e9:53:35:57:46:88:12: 73:46:28:6a:21:c4:72:a0:13:43:69:06:12:71:8e:f4:43:23: eb:fd:9c:ce:5c:5b:c0:30:14:73:78:3b:0e:15:88:5c:7c:97: c2:b1:05:f9:ad:89:26:17:0f:1f:ac:7b:2e:38:60:7d:99:9c: 64:38:40:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhDMjAxMTAvBgNVBAUTKEYyMjQ0RkE4RkIwRkM5RjUxMTFBREVGQUMxOTc5OUMy OUYzQzg4NUIwHhcNMjQxMjAzMDMwNjEyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlNzVhNC01YzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CI0FoOYpRJA6UwPbSuN6P47Bf/vCOzQ8yE2BaxJTlMcCjqS8oJv4Y0XPQdP 5+jSC9ZkMlDnLnqieZdR94ySdUbkpYmFgDEnH180LViZMb2FFquFRQByPHj4zhhe 2mv0UM2si5MsQDPhTppaDFAt+Vg92shqU+c6sxA/mnBwVrbLHf3zo32dYed4XkPQ GlBgA5meR77HzwR3qf+SqOwULY8XFwNqgBfVuiFs3nncnUD6N6FSRamoI0j/BQRZ LKDOGvPFNuI1iM3NagYpoza6PSWdMxtzWqbK4QjJtTZNnniKpGewqnA9TNr6F37S eMJWHnD5VWzsVnjorc6jkXljiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCOZXc/e pI9UYoWELmMhKc0ZTWXWMB8GA1UdIwQYMBaAFPIkT6j7D8n1ERre+sGXmcKfPIhb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEMyMC9BNUE0Q0QxMEND NzYxMUVEOTNDRUFEN0VDNEY5QUUwMi84aVJQcVBzUHlmVVJHdDc2d1plWndwODhp RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhpUlBxUHNQeWZVUkd0NzZ3WmVad3A4OGlGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhDMjAvQTVBNENEMTBDQzc2MTFFRDkzQ0VBRDdFQzRGOUFFMDIvQThDQ0YyRDRD QzdBMTFFREE5NDMwRTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkb4wDQYJKoZIhvcNAQELBQADggEBABVeXK2NHvgWE6ds /WsdwqMNWLXg4DjqpqeIQTtVcTFXUt+ngZ3j4hVOQd2pz3JXZiY3cLobz37YpvT3 pOyXVI/vFO1PsMmK/ibhnwIOykWC6Mf9OI78brLLG0DaCt6sOXj2UooghEJS2Daa aqp2zjhpQynagpYCfTS9j+SpfoKHW2bcpWRZRHIgBXhjPU+czJvIkNYJkmZMLH5M +ac2BB5ssg4TZY14WInZym0v+GId6BONd3FaCj2W3f5TfuMM6VM1V0aIEnNGKGoh xHKgE0NpBhJxjvRDI+v9nM5cW8AwFHN4Ow4ViFx8l8KxBfmtiSYXDx+sey44YH2Z nGQ4QH0= -----END CERTIFICATE-----Generated at Sat Apr 5 07:51:46 2025 by rpki-client