$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80CB/901482B8CC5F11ED9D432B65C4F9AE02/48485D88CC6411EDA7970484C4F9AE02.roa File: 48485D88CC6411EDA7970484C4F9AE02.roa (raw, json) Hash identifier: ncbBfvNfTN+9UCNMy82nzUawOBbP+HTp1MNHAi4I74c= Subject key identifier: E8:81:5F:36:3C:FD:27:90:59:C7:45:F4:6C:D0:8E:FA:99:DC:C2:56 Certificate issuer: /CN=A91A80CB/serialNumber=C6171B7A6A30BFB8A97CC006835C8C93AD02DE4E Certificate serial: BF Authority key identifier: C6:17:1B:7A:6A:30:BF:B8:A9:7C:C0:06:83:5C:8C:93:AD:02:DE:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xhcbemowv7ipfMAGg1yMk60C3k4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80CB/901482B8CC5F11ED9D432B65C4F9AE02/48485D88CC6411EDA7970484C4F9AE02.roa Signing time: Wed 27 Mar 2024 06:09:01 +0000 ROA not before: Wed 27 Mar 2024 06:09:01 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149631 IP address blocks: 103.224.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80CB/901482B8CC5F11ED9D432B65C4F9AE02/xhcbemowv7ipfMAGg1yMk60C3k4.crl rsync://rpki.apnic.net/member_repository/A91A80CB/901482B8CC5F11ED9D432B65C4F9AE02/xhcbemowv7ipfMAGg1yMk60C3k4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xhcbemowv7ipfMAGg1yMk60C3k4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80CB/serialNumber=C6171B7A6A30BFB8A97CC006835C8C93AD02DE4E Validity Not Before: Mar 27 06:09:01 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6603b7fd-9655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0c:21:5b:a5:12:32:e4:be:e6:20:90:51:ec: 67:17:f8:bf:3c:f8:27:fb:a6:ed:00:1a:1a:fe:bc: c3:ca:49:b2:8f:ab:84:7b:17:8a:ae:82:a8:b5:97: 66:73:89:40:4f:ab:89:77:4d:e8:67:98:bb:96:25: 0e:3f:15:7f:d3:75:d0:44:55:e0:93:69:37:91:09: 9b:9d:9d:0f:e0:b0:51:09:64:d9:88:66:6f:aa:da: 41:47:3b:34:42:12:96:07:5e:d6:ff:d9:7e:44:80: 00:60:5e:e5:25:e2:6e:c2:e2:87:31:c6:6a:75:39: f6:ca:ba:77:25:9e:0e:ab:5d:87:6d:25:75:da:47: 71:70:61:e1:d1:3e:4f:6b:a3:93:7c:63:38:18:25: 63:38:0f:78:b6:6e:17:d9:6b:88:0c:cd:35:22:46: da:14:13:59:c7:66:a5:8d:ae:c0:1f:8e:db:85:23: 24:e2:ff:7b:37:b9:60:f9:b8:ce:76:22:6b:7e:5e: ad:57:ea:13:19:b1:2a:a3:66:36:ef:d7:6a:8f:3f: 34:43:0f:59:68:32:73:f5:af:4a:ee:a0:9e:7f:aa: e3:58:a4:50:dd:3b:43:ef:b9:8f:d7:ed:61:34:e9: 4d:e5:53:c6:7e:b5:57:84:04:b8:3d:bf:b0:55:0b: af:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:81:5F:36:3C:FD:27:90:59:C7:45:F4:6C:D0:8E:FA:99:DC:C2:56 X509v3 Authority Key Identifier: keyid:C6:17:1B:7A:6A:30:BF:B8:A9:7C:C0:06:83:5C:8C:93:AD:02:DE:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80CB/901482B8CC5F11ED9D432B65C4F9AE02/xhcbemowv7ipfMAGg1yMk60C3k4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xhcbemowv7ipfMAGg1yMk60C3k4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80CB/901482B8CC5F11ED9D432B65C4F9AE02/48485D88CC6411EDA7970484C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.106.0/24 Signature Algorithm: sha256WithRSAEncryption 08:a5:99:2e:5c:76:0d:63:b7:62:f3:19:48:c9:a7:58:a0:e7: e1:3d:6b:4f:06:82:61:c6:84:2f:0b:9f:d3:43:d0:61:72:0f: af:c4:2f:02:52:a1:21:3b:13:29:5c:fd:10:da:51:e4:e7:84: 99:ed:2c:8b:85:fb:d6:76:eb:8c:a9:a9:13:6a:d7:a3:b5:d9: 3b:06:f0:3a:04:b3:dd:65:98:57:2f:15:e0:26:67:47:0a:f3: 57:6f:da:3c:dc:0f:b6:0c:ab:08:e5:ff:08:d3:03:f5:45:ce: f2:a5:0f:1c:08:a3:ad:e8:fd:b3:39:3a:94:b3:ff:9d:6f:d1: 89:ef:87:9d:e0:e9:69:14:8d:7c:fc:93:f4:e3:1c:7d:e7:8a: 14:52:bb:e4:4f:f4:0c:dc:b0:f4:12:8d:7e:1a:18:04:db:f2: fd:cf:f9:64:d6:74:20:b9:05:02:07:ba:fa:b8:78:ff:8e:68: e3:4f:e4:32:3d:6e:de:54:0f:2e:ac:2d:f8:7e:1d:8d:8c:d8: de:1f:5e:0f:ab:e6:92:c7:42:7e:09:d5:a8:cf:3d:85:3c:58: 74:80:0a:17:cb:80:2e:1d:cc:c0:12:36:a5:04:ca:b1:b1:a7: 8a:3e:e6:3c:56:8f:a2:b9:45:09:0b:70:77:05:fb:10:94:f0: 23:54:40:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwQ0IxMTAvBgNVBAUTKEM2MTcxQjdBNkEzMEJGQjhBOTdDQzAwNjgzNUM4Qzkz QUQwMkRFNEUwHhcNMjQwMzI3MDYwOTAxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzYjdmZC05NjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAwhW6USMuS+5iCQUexnF/i/PPgn+6btABoa/rzDykmyj6uEexeKroKotZdm c4lAT6uJd03oZ5i7liUOPxV/03XQRFXgk2k3kQmbnZ0P4LBRCWTZiGZvqtpBRzs0 QhKWB17W/9l+RIAAYF7lJeJuwuKHMcZqdTn2yrp3JZ4Oq12HbSV12kdxcGHh0T5P a6OTfGM4GCVjOA94tm4X2WuIDM01IkbaFBNZx2alja7AH47bhSMk4v97N7lg+bjO diJrfl6tV+oTGbEqo2Y279dqjz80Qw9ZaDJz9a9K7qCef6rjWKRQ3TtD77mP1+1h NOlN5VPGfrVXhAS4Pb+wVQuvQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOiBXzY8 /SeQWcdF9GzQjvqZ3MJWMB8GA1UdIwQYMBaAFMYXG3pqML+4qXzABoNcjJOtAt5O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBDQi85MDE0ODJCOEND NUYxMUVEOUQ0MzJCNjVDNEY5QUUwMi94aGNiZW1vd3Y3aXBmTUFHZzF5TWs2MEMz azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hoY2JlbW93djdpcGZNQUdnMXlNazYwQzNrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTgwQ0IvOTAxNDgyQjhDQzVGMTFFRDlENDMyQjY1QzRGOUFFMDIvNDg0ODVEODhD QzY0MTFFREE3OTcwNDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn4GowDQYJKoZIhvcNAQELBQADggEBAAilmS5cdg1jt2Lz GUjJp1ig5+E9a08GgmHGhC8Ln9ND0GFyD6/ELwJSoSE7Eylc/RDaUeTnhJntLIuF +9Z264ypqRNq16O12TsG8DoEs91lmFcvFeAmZ0cK81dv2jzcD7YMqwjl/wjTA/VF zvKlDxwIo63o/bM5OpSz/51v0Ynvh53g6WkUjXz8k/TjHH3nihRSu+RP9AzcsPQS jX4aGATb8v3P+WTWdCC5BQIHuvq4eP+OaONP5DI9bt5UDy6sLfh+HY2M2N4fXg+r 5pLHQn4J1ajPPYU8WHSAChfLgC4dzMASNqUEyrGxp4o+5jxWj6K5RQkLcHcF+xCU 8CNUQPs= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:47 2024 by rpki-client on console-ams.rpki-client.org