$ rpki-client -vvf rpki.apnic.net/member_repository/A919D72D/98BA46B4968D11EB93FA350AC4F9AE02/00C79724968F11EB9A79630BC4F9AE02.roa File: 00C79724968F11EB9A79630BC4F9AE02.roa (raw, json) Hash identifier: CbFvyeP64z7lPjcb6/hOHGkSsa1q6j/tQwjni6wEqq0= Subject key identifier: 56:B9:81:D0:1F:6B:8A:5B:22:70:05:A4:D3:FA:DD:C7:9C:27:E4:CB Certificate issuer: /CN=A919D72D/serialNumber=B8F61CABB9119D6C37685F0ABE34AEE26A0217E6 Certificate serial: 0547 Authority key identifier: B8:F6:1C:AB:B9:11:9D:6C:37:68:5F:0A:BE:34:AE:E2:6A:02:17:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPYcq7kRnWw3aF8KvjSu4moCF-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D72D/98BA46B4968D11EB93FA350AC4F9AE02/00C79724968F11EB9A79630BC4F9AE02.roa Signing time: Fri 23 Feb 2024 00:42:59 +0000 ROA not before: Fri 23 Feb 2024 00:42:59 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136933 IP address blocks: 103.148.124.0/23 maxlen: 23 103.148.124.0/24 maxlen: 24 103.148.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D72D/98BA46B4968D11EB93FA350AC4F9AE02/uPYcq7kRnWw3aF8KvjSu4moCF-Y.crl rsync://rpki.apnic.net/member_repository/A919D72D/98BA46B4968D11EB93FA350AC4F9AE02/uPYcq7kRnWw3aF8KvjSu4moCF-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPYcq7kRnWw3aF8KvjSu4moCF-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D72D/serialNumber=B8F61CABB9119D6C37685F0ABE34AEE26A0217E6 Validity Not Before: Feb 23 00:42:59 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d7ea13-6703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:08:3c:9c:32:ae:43:6f:f4:ad:16:ea:60:54: 95:24:42:65:f5:4e:79:75:c3:8d:6c:f1:f8:37:2e: 97:34:5c:43:1d:3f:ff:91:67:dd:07:5e:93:08:be: a4:da:1c:78:f4:ef:31:0b:3d:8e:fc:dc:47:a2:60: 43:27:e8:2d:b3:5a:b6:fe:46:b5:24:dc:44:55:9e: 1d:e4:ad:4b:38:32:96:c1:23:cb:05:53:48:47:cf: 22:d6:0a:78:87:b2:62:4f:1b:ac:1a:93:4d:2a:f3: e3:e2:c4:ea:6e:2e:12:a2:87:84:a5:ac:bd:25:c4: 59:bb:6d:44:7b:98:0d:bf:95:5c:11:10:77:aa:ef: 4f:e1:d9:bc:46:54:4f:84:0a:36:02:92:e9:a8:68: df:03:87:0d:f0:35:ae:c9:6c:18:b7:2c:dc:c1:13: 69:9c:81:39:e3:e4:1f:d8:fe:18:08:f2:ce:e8:da: 86:3e:79:97:2d:2f:95:ee:43:41:83:f7:b6:2a:6b: 6b:03:90:cf:3b:ef:ab:dd:f5:65:69:57:fa:41:7c: a5:6e:31:55:b2:27:74:44:15:5e:73:fa:77:ec:8b: 80:e5:a8:4a:33:59:7f:ef:6a:19:3e:80:5e:0a:03: de:0f:11:a9:8a:1d:9b:73:f7:0c:1d:b6:69:ba:2a: 13:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B9:81:D0:1F:6B:8A:5B:22:70:05:A4:D3:FA:DD:C7:9C:27:E4:CB X509v3 Authority Key Identifier: keyid:B8:F6:1C:AB:B9:11:9D:6C:37:68:5F:0A:BE:34:AE:E2:6A:02:17:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D72D/98BA46B4968D11EB93FA350AC4F9AE02/uPYcq7kRnWw3aF8KvjSu4moCF-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPYcq7kRnWw3aF8KvjSu4moCF-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D72D/98BA46B4968D11EB93FA350AC4F9AE02/00C79724968F11EB9A79630BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.124.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:99:87:f1:50:a8:ae:d2:36:ea:bb:ae:49:4c:16:d2:02:e8: 13:6e:72:b9:83:6c:74:3c:cd:95:94:64:94:e2:40:c7:a5:d7: 98:9c:82:a3:09:c9:63:42:01:24:21:ff:39:9e:b7:df:2d:4e: 42:c5:a0:96:13:02:c7:8e:7d:0d:7b:dd:2d:9a:73:05:7d:29: ed:d1:c2:29:84:76:09:56:67:ed:75:7c:73:d1:03:3a:af:6e: 0a:39:f9:4b:5e:e8:e9:cd:77:40:44:8a:30:d3:af:86:17:c7: 04:e2:b8:31:ce:70:86:96:f5:ca:df:ee:38:41:8e:0e:d5:51: 2e:46:10:9d:1f:c5:07:78:79:55:06:96:5f:f3:b4:97:c6:40: be:e1:e3:85:8c:c5:b4:91:3d:e9:6a:3f:ad:d3:27:6e:ac:ac: 70:7f:69:3b:2b:b1:b1:17:d0:fa:d5:2c:4f:c4:9d:c9:1e:d9: c8:eb:0e:db:5b:71:ee:48:9a:1f:e4:67:df:5d:d7:1c:cd:bb: 62:9e:22:eb:19:8f:66:90:07:07:77:5e:80:b5:96:5c:ad:06: 39:3e:83:83:7d:6d:fe:ff:ae:77:e9:a3:a2:aa:82:27:d2:b2: c5:83:0e:d7:29:63:f6:f3:50:11:8f:74:19:37:6f:96:08:04: 6d:1b:91:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ3MkQxMTAvBgNVBAUTKEI4RjYxQ0FCQjkxMTlENkMzNzY4NUYwQUJFMzRBRUUy NkEwMjE3RTYwHhcNMjQwMjIzMDA0MjU5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3ZWExMy02NzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wg8nDKuQ2/0rRbqYFSVJEJl9U55dcONbPH4Ny6XNFxDHT//kWfdB16TCL6k 2hx49O8xCz2O/NxHomBDJ+gts1q2/ka1JNxEVZ4d5K1LODKWwSPLBVNIR88i1gp4 h7JiTxusGpNNKvPj4sTqbi4SooeEpay9JcRZu21Ee5gNv5VcERB3qu9P4dm8RlRP hAo2ApLpqGjfA4cN8DWuyWwYtyzcwRNpnIE54+Qf2P4YCPLO6NqGPnmXLS+V7kNB g/e2KmtrA5DPO++r3fVlaVf6QXylbjFVsid0RBVec/p37IuA5ahKM1l/72oZPoBe CgPeDxGpih2bc/cMHbZpuioTTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFa5gdAf a4pbInAFpNP63cecJ+TLMB8GA1UdIwQYMBaAFLj2HKu5EZ1sN2hfCr40ruJqAhfm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDcyRC85OEJBNDZCNDk2 OEQxMUVCOTNGQTM1MEFDNEY5QUUwMi91UFljcTdrUm5XdzNhRjhLdmpTdTRtb0NG LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VQWWNxN2tSbld3M2FGOEt2alN1NG1vQ0YtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQ3MkQvOThCQTQ2QjQ5NjhEMTFFQjkzRkEzNTBBQzRGOUFFMDIvMDBDNzk3MjQ5 NjhGMTFFQjlBNzk2MzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlHwwDQYJKoZIhvcNAQELBQADggEBAB2Zh/FQqK7SNuq7 rklMFtIC6BNucrmDbHQ8zZWUZJTiQMel15icgqMJyWNCASQh/zmet98tTkLFoJYT AseOfQ173S2acwV9Ke3RwimEdglWZ+11fHPRAzqvbgo5+Ute6OnNd0BEijDTr4YX xwTiuDHOcIaW9crf7jhBjg7VUS5GEJ0fxQd4eVUGll/ztJfGQL7h44WMxbSRPelq P63TJ26srHB/aTsrsbEX0PrVLE/Encke2cjrDttbce5Imh/kZ99d1xzNu2KeIusZ j2aQBwd3XoC1llytBjk+g4N9bf7/rnfpo6KqgifSssWDDtcpY/bzUBGPdBk3b5YI BG0bkaU= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:31 2024 by rpki-client on console-fra.rpki-client.org