$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/4BB44892AE1111EBB4C2DA11C4F9AE02.roa File: 4BB44892AE1111EBB4C2DA11C4F9AE02.roa (raw, json) Hash identifier: mMnOi+eys5qq8N+NeN/zjXPwIANf7lKUZxSBya3MUE4= Subject key identifier: 80:E6:ED:A6:F2:4E:BC:67:A1:25:FC:5E:5E:9E:F3:15:6F:B8:F8:BE Certificate issuer: /CN=A91DC146/serialNumber=690C729F18390564D670B18F7774754E5D279951 Certificate serial: 0514 Authority key identifier: 69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/4BB44892AE1111EBB4C2DA11C4F9AE02.roa Signing time: Fri 15 Mar 2024 00:43:22 +0000 ROA not before: Fri 15 Mar 2024 00:43:22 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 134241 IP address blocks: 103.148.246.0/23 maxlen: 23 103.148.246.0/24 maxlen: 24 103.148.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 23:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC146/serialNumber=690C729F18390564D670B18F7774754E5D279951 Validity Not Before: Mar 15 00:43:22 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f399aa-aaae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1d:cd:ff:34:50:da:3d:d7:bc:95:59:60:75: 3f:e8:15:f9:7c:e0:88:8b:c3:8a:4e:6e:38:41:a8: b0:f0:dc:28:ce:92:cf:80:b0:78:88:c7:58:a8:75: 06:26:c7:82:f0:0c:17:0e:51:f5:1f:b4:6e:8e:eb: 86:45:d7:fb:f5:d9:95:83:f6:bc:05:e4:6e:46:51: 7b:b7:f1:fe:a1:fd:6d:22:f6:26:37:4b:1c:50:75: 23:65:66:f0:ae:09:aa:45:ea:6f:d0:9d:a4:f3:4d: c8:3e:8c:ad:9f:e9:f3:ba:2c:4d:00:0c:4e:80:ab: a9:c1:08:d6:c0:f4:7c:32:7b:de:74:af:fc:29:dc: 7e:ef:62:c3:c0:f7:d9:e5:af:cc:fc:c6:ff:e2:87: aa:72:38:b4:0b:13:a8:80:58:38:3e:c1:63:15:7f: 12:41:90:ba:8d:bb:ed:5c:19:55:5a:31:54:47:35: 85:2e:8f:18:3c:27:bd:06:7b:32:85:a9:03:4c:51: 7d:22:66:a0:26:47:a6:1d:48:b8:8f:5c:30:c5:7d: 08:ea:8d:fa:97:ac:cd:ee:51:54:54:0c:26:78:ca: 2b:6f:a1:cd:a5:59:ba:e9:75:31:71:9d:65:cb:18: 84:7a:7d:fb:7e:ce:58:45:d3:df:63:63:3a:8a:5b: 42:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E6:ED:A6:F2:4E:BC:67:A1:25:FC:5E:5E:9E:F3:15:6F:B8:F8:BE X509v3 Authority Key Identifier: keyid:69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/4BB44892AE1111EBB4C2DA11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.246.0/23 Signature Algorithm: sha256WithRSAEncryption 95:e3:d6:2d:79:3f:ad:8a:ea:48:6f:24:de:1a:d3:f6:83:f5: 7e:6d:54:fe:f7:74:61:35:a5:2b:1d:39:cc:3a:22:88:85:4e: c3:70:10:1e:70:95:90:9e:6c:b9:08:f0:c6:0a:6d:35:53:83: bf:99:ff:84:31:db:08:4d:16:ef:da:79:5a:41:57:3a:90:ce: e4:38:82:a3:2a:b5:ba:95:5c:bf:8c:36:37:a3:d1:b5:ca:d1: 8d:83:64:27:5e:1f:91:70:e1:d5:d7:be:50:8c:c7:19:f8:7e: 01:81:6b:96:f9:3a:bf:4d:78:12:3a:33:cf:79:4f:54:f1:0b: a9:3c:41:36:d4:04:c0:5a:b4:75:57:86:a6:b0:1c:36:83:38: 2f:65:f0:53:5e:86:80:11:a6:f9:f6:3a:41:a1:6a:b0:12:3d: ae:8e:a3:30:61:19:c8:a8:af:51:e4:8c:7f:48:cf:6b:77:fb: ea:11:67:fa:74:d5:fa:1d:c7:a4:d3:79:cb:17:71:84:4d:9e: ef:59:ea:82:bc:ea:cc:fc:d7:72:b5:9e:1c:6c:78:24:94:36: b8:cc:b7:b8:14:29:d2:a9:ab:b6:1a:f6:9e:26:a1:ac:10:99: 57:54:d4:00:5a:5d:fe:af:aa:c0:9e:11:31:fd:14:05:1d:d1: 3a:f4:df:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMxNDYxMTAvBgNVBAUTKDY5MEM3MjlGMTgzOTA1NjRENjcwQjE4Rjc3NzQ3NTRF NUQyNzk5NTEwHhcNMjQwMzE1MDA0MzIyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzOTlhYS1hYWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArh3N/zRQ2j3XvJVZYHU/6BX5fOCIi8OKTm44Qaiw8NwozpLPgLB4iMdYqHUG JseC8AwXDlH1H7RujuuGRdf79dmVg/a8BeRuRlF7t/H+of1tIvYmN0scUHUjZWbw rgmqRepv0J2k803IPoytn+nzuixNAAxOgKupwQjWwPR8MnvedK/8Kdx+72LDwPfZ 5a/M/Mb/4oeqcji0CxOogFg4PsFjFX8SQZC6jbvtXBlVWjFURzWFLo8YPCe9Bnsy hakDTFF9ImagJkemHUi4j1wwxX0I6o36l6zN7lFUVAwmeMorb6HNpVm66XUxcZ1l yxiEen37fs5YRdPfY2M6iltCbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIDm7aby TrxnoSX8Xl6e8xVvuPi+MB8GA1UdIwQYMBaAFGkMcp8YOQVk1nCxj3d0dU5dJ5lR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzE0Ni9EQUE3NjQ5MkFF MEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJXVFdjTEdQZDNSMVRsMG5t VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FReHlueGc1QldUV2NMR1BkM1IxVGwwbm1WRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMxNDYvREFBNzY0OTJBRTBFMTFFQjhBQkEzMzREQzRGOUFFMDIvNEJCNDQ4OTJB RTExMTFFQkI0QzJEQTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlPYwDQYJKoZIhvcNAQELBQADggEBAJXj1i15P62K6khv JN4a0/aD9X5tVP73dGE1pSsdOcw6IoiFTsNwEB5wlZCebLkI8MYKbTVTg7+Z/4Qx 2whNFu/aeVpBVzqQzuQ4gqMqtbqVXL+MNjej0bXK0Y2DZCdeH5Fw4dXXvlCMxxn4 fgGBa5b5Or9NeBI6M895T1TxC6k8QTbUBMBatHVXhqawHDaDOC9l8FNehoARpvn2 OkGharASPa6OozBhGcior1HkjH9Iz2t3++oRZ/p01fodx6TTecsXcYRNnu9Z6oK8 6sz813K1nhxseCSUNrjMt7gUKdKpq7Ya9p4moawQmVdU1ABaXf6vqsCeETH9FAUd 0Tr032Q= -----END CERTIFICATE-----Generated at Mon Jun 17 02:12:25 2024 by rpki-client on console-ams.rpki-client.org