$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A673E0B6146611EB9279264FC4F9AE02.roa File: A673E0B6146611EB9279264FC4F9AE02.roa (raw, json) Hash identifier: hlf2ORE3EOdjekqoxwOZFLBJpoos8DOKwALcQn/R6V4= Subject key identifier: 64:D0:F2:79:AA:3D:4C:32:E7:4A:19:68:EC:85:D6:43:2E:40:56:03 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8886 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A673E0B6146611EB9279264FC4F9AE02.roa Signing time: Thu 30 May 2024 15:54:54 +0000 ROA not before: Thu 30 May 2024 15:54:54 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132783 IP address blocks: 103.48.45.0/24 maxlen: 24 103.48.46.0/24 maxlen: 24 103.48.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34950 (0x8886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:54:54 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a14e-8778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:aa:36:83:06:43:b1:53:14:5a:61:ac:de:30: 98:0b:54:d9:37:98:5a:f8:cd:7c:7c:58:70:85:9a: cd:47:26:28:52:0e:28:d8:b0:57:44:75:c9:2c:79: bd:8f:0b:03:45:45:c1:3f:ff:f8:fd:d4:05:67:e3: 92:41:81:92:6d:2c:d4:5d:05:a9:ac:ac:7b:48:c1: a0:ce:db:ec:dd:90:28:f0:c1:1c:d3:4a:57:5d:0f: e8:8d:ba:4c:89:a6:66:17:ea:3a:30:d4:8e:09:d9: 94:07:bf:e4:38:b6:a9:ff:94:ed:71:a9:73:ab:89: 51:e9:09:ae:0b:f7:b7:1b:13:36:85:76:cd:1b:7e: 72:6e:9f:f4:12:9d:d0:63:23:ce:59:78:cc:b1:7e: cc:ac:fd:02:b1:de:a7:46:06:1c:31:6e:c4:a6:a3: 08:1c:a7:ea:36:48:9c:22:bc:e6:07:a6:d8:b0:95: 0a:1b:fa:56:42:d0:13:8c:24:f1:76:67:f4:8a:78: 9e:06:4f:b7:9c:13:ff:db:dc:6b:e6:30:9f:f0:32: ee:5d:f0:83:7f:40:90:ca:4c:8e:e2:9c:fc:e1:83: 41:08:1d:e6:74:7a:c8:14:fc:00:61:22:64:47:d0: 4e:aa:ac:5b:d9:65:22:37:c7:d9:48:a2:59:dc:32: df:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D0:F2:79:AA:3D:4C:32:E7:4A:19:68:EC:85:D6:43:2E:40:56:03 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A673E0B6146611EB9279264FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.45.0-103.48.47.255 Signature Algorithm: sha256WithRSAEncryption bb:89:77:45:a0:87:78:43:7a:95:fb:b2:5f:b1:2d:05:07:d0: 7d:cc:6b:3b:8e:d1:18:8a:7f:c0:fd:b2:62:d5:bc:34:d2:1a: d7:fd:94:71:31:27:55:3b:28:50:68:44:0c:9d:4e:19:50:dc: af:7c:3f:81:40:66:ec:bf:f7:4c:49:2e:c3:32:a6:68:c5:fa: e2:9b:22:7e:3b:d8:c4:e3:93:cb:5e:08:1a:fa:8d:9c:a2:53: 05:86:23:1e:28:73:ba:8b:58:74:09:ab:9a:5c:f9:a9:b5:c2: 31:39:a2:fc:63:b5:a7:e0:99:98:a9:31:cf:bf:8c:df:c7:a3: 8a:ac:b2:72:63:04:13:b4:bd:05:ac:fc:ae:ff:fc:06:a9:2c: 78:b2:79:18:75:8e:6b:32:8d:1b:51:41:50:50:8e:64:a6:fb: e2:04:05:75:6e:55:f9:9b:d2:5c:db:32:96:5c:ab:d6:75:b3: 5b:a2:3a:b0:e5:85:88:df:f0:d4:00:c9:c4:59:60:d1:da:a8: 78:80:63:21:d2:88:7d:f2:0c:0a:45:58:bc:2e:4a:9f:90:83: 50:65:af:85:97:c6:53:24:0b:eb:f4:b8:3b:d5:b0:94:80:ce: da:22:d6:0e:30:dc:ad:ff:da:a5:04:2c:d9:e5:17:99:fe:ae: b4:a9:c8:90 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIDAIiGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTQ1NFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExNGUtODc3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSqNoMGQ7FTFFphrN4wmAtU2TeYWvjNfHxYcIWazUcmKFIOKNiwV0R1ySx5 vY8LA0VFwT//+P3UBWfjkkGBkm0s1F0Fqayse0jBoM7b7N2QKPDBHNNKV10P6I26 TImmZhfqOjDUjgnZlAe/5Di2qf+U7XGpc6uJUekJrgv3txsTNoV2zRt+cm6f9BKd 0GMjzll4zLF+zKz9ArHep0YGHDFuxKajCByn6jZInCK85gem2LCVChv6VkLQE4wk 8XZn9Ip4ngZPt5wT/9vca+Ywn/Ay7l3wg39AkMpMjuKc/OGDQQgd5nR6yBT8AGEi ZEfQTqqsW9llIjfH2UiiWdwy370CAwEAAaOCAp0wggKZMB0GA1UdDgQWBBRk0PJ5 qj1MMudKGWjshdZDLkBWAzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E2NzNFMEI2 MTQ2NjExRUI5Mjc5MjY0RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCcGCCsGAQUFBwEHAQH/ BBgwFjAUBAIAATAOMAwDBABnMC0DBARnMCAwDQYJKoZIhvcNAQELBQADggEBALuJ d0Wgh3hDepX7sl+xLQUH0H3MazuO0RiKf8D9smLVvDTSGtf9lHExJ1U7KFBoRAyd ThlQ3K98P4FAZuy/90xJLsMypmjF+uKbIn472MTjk8teCBr6jZyiUwWGIx4oc7qL WHQJq5pc+am1wjE5ovxjtafgmZipMc+/jN/Ho4qssnJjBBO0vQWs/K7//AapLHiy eRh1jmsyjRtRQVBQjmSm++IEBXVuVfmb0lzbMpZcq9Z1s1uiOrDlhYjf8NQAycRZ YNHaqHiAYyHSiH3yDApFWLwuSp+Qg1Blr4WXxlMkC+v0uDvVsJSAztoi1g4w3K3/ 2qUELNnlF5n+rrSpyJA= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:04 2024 by rpki-client on console-fra.rpki-client.org