$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/48BA598A180611EF8A144756C4F9AE02.roa File: 48BA598A180611EF8A144756C4F9AE02.roa (raw, json) Hash identifier: v5rCwgyqRx5u8KidQnrhF0Q+fjIuGy77dHFgS6yCLVM= Subject key identifier: ED:B5:7D:C9:DE:1C:A4:A6:0A:AA:0A:5E:AF:71:B0:05:BC:A5:4D:64 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06BF Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/48BA598A180611EF8A144756C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:43:12 +0000 ROA not before: Thu 24 Oct 2024 23:43:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 59371 IP address blocks: 103.209.235.0/24 maxlen: 24 163.53.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:43:12 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb90-0bca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:00:94:cc:6f:4f:82:43:3d:ed:ac:c0:e1:b1: 67:ff:f6:9e:68:93:39:68:94:e5:3c:3e:29:2e:fb: c5:d0:0d:5a:54:79:1e:47:a8:16:89:e7:d3:9f:34: 95:26:96:c8:61:a5:d1:27:02:7e:54:e5:4b:3f:6e: f7:89:c7:7e:65:4e:a0:d2:cd:60:e7:48:cf:3d:b2: 0a:c1:14:e3:6e:e5:49:95:fa:78:0c:01:45:c7:df: a3:f0:75:23:19:25:e1:f4:7c:33:a7:4a:88:74:3b: ca:44:8b:c5:ae:55:ac:bc:dc:28:88:7d:f3:ea:33: 31:f6:6b:8d:37:e6:3d:4c:1a:e8:5f:1a:26:c6:10: cf:e3:86:2c:2a:2a:f7:16:47:b0:04:1f:cc:76:99: ac:80:ce:62:b2:67:89:ff:46:3c:a7:40:c1:03:10: a3:02:bf:a7:98:e6:b5:5e:bc:ae:25:5d:1e:41:d9: e5:cd:8d:3e:a0:0a:30:d7:1b:8c:e2:3e:e6:b7:d9: 34:9b:ac:5e:49:9f:d1:9b:6b:d9:bd:ed:83:9d:f9: ee:14:a8:48:15:93:6c:15:5a:07:fa:c9:bb:76:d9: 14:0c:66:d7:df:bf:12:c3:bc:2b:21:9a:09:81:dc: 8b:0e:3c:ac:91:12:64:04:4a:d6:20:98:ed:21:f0: 27:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B5:7D:C9:DE:1C:A4:A6:0A:AA:0A:5E:AF:71:B0:05:BC:A5:4D:64 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/48BA598A180611EF8A144756C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.235.0/24 163.53.19.0/24 Signature Algorithm: sha256WithRSAEncryption 97:f1:d9:11:f5:35:28:01:4a:15:80:7b:bd:4d:b8:35:4c:53: 18:2f:b2:57:0f:96:d2:00:5a:ba:21:f3:6b:90:86:0d:89:46: 31:a1:b1:59:ca:dc:73:c0:43:06:bd:5b:07:22:7d:ab:3d:35: 41:39:af:46:5b:41:18:5b:f1:c4:f5:b2:f7:a8:db:73:6b:60: ff:94:7b:bf:28:06:08:44:bf:ad:b9:44:d7:0a:92:02:f1:61: 2e:a1:96:d4:a0:ac:f2:1d:77:f2:e6:74:40:5a:d8:88:45:23: 90:13:d7:47:4d:17:b0:dc:f1:11:5e:a4:d6:86:68:1c:bb:ea: de:65:88:f2:f2:81:78:b7:89:f1:0d:ee:eb:26:28:53:52:24: c0:6e:c5:af:1a:dc:94:35:46:e4:72:41:90:90:8f:98:8e:de: 18:6e:46:be:7e:d8:f0:7d:53:1c:b6:d9:ae:66:45:bc:ea:f8: 59:58:67:48:c3:72:26:1b:c8:3e:0d:c9:d1:62:48:1e:de:bf: fc:67:3a:44:21:b5:1a:63:cf:f2:92:9b:bd:9e:5f:af:b2:88: 2b:39:97:b2:2e:24:c9:37:f3:60:a3:cb:a0:0e:a3:66:7d:8e: 8a:1a:7a:11:f7:87:bf:d5:e9:c9:c6:86:b7:3e:c1:b6:c5:d9: 29:4e:c8:58 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MzEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI5MC0wYmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQCUzG9PgkM97azA4bFn//aeaJM5aJTlPD4pLvvF0A1aVHkeR6gWiefTnzSV JpbIYaXRJwJ+VOVLP273icd+ZU6g0s1g50jPPbIKwRTjbuVJlfp4DAFFx9+j8HUj GSXh9Hwzp0qIdDvKRIvFrlWsvNwoiH3z6jMx9muNN+Y9TBroXxomxhDP44YsKir3 FkewBB/MdpmsgM5ismeJ/0Y8p0DBAxCjAr+nmOa1XryuJV0eQdnlzY0+oAow1xuM 4j7mt9k0m6xeSZ/Rm2vZve2DnfnuFKhIFZNsFVoH+sm7dtkUDGbX378Sw7wrIZoJ gdyLDjyskRJkBErWIJjtIfAnPQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO21fcne HKSmCqoKXq9xsAW8pU1kMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNDhCQTU5OEEx ODA2MTFFRjhBMTQ0NzU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn0esDBACjNRMwDQYJKoZIhvcNAQELBQADggEBAJfx2RH1 NSgBShWAe71NuDVMUxgvslcPltIAWroh82uQhg2JRjGhsVnK3HPAQwa9Wwcifas9 NUE5r0ZbQRhb8cT1sveo23NrYP+Ue78oBghEv625RNcKkgLxYS6hltSgrPIdd/Lm dEBa2IhFI5AT10dNF7Dc8RFepNaGaBy76t5liPLygXi3ifEN7usmKFNSJMBuxa8a 3JQ1RuRyQZCQj5iO3hhuRr5+2PB9Uxy22a5mRbzq+FlYZ0jDciYbyD4NydFiSB7e v/xnOkQhtRpjz/KSm72eX6+yiCs5l7IuJMk382Cjy6AOo2Z9jooaehH3h7/V6cnG hrc+wbbF2SlOyFg= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:18 2024 by rpki-client on console-fra.rpki-client.org