$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/49CEB44A28D111EDB364C870C4F9AE02.roa File: 49CEB44A28D111EDB364C870C4F9AE02.roa (raw, json) Hash identifier: JGGOwQFcpR3ELTy5wFGQ2CrG/qRvA17VfD8zk3vhn0c= Subject key identifier: CA:E2:DE:74:67:12:80:2E:4E:BF:A0:CC:1E:81:56:D8:9B:C9:BC:F9 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 0183 Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/49CEB44A28D111EDB364C870C4F9AE02.roa Signing time: Sat 15 Jun 2024 05:52:42 +0000 ROA not before: Sat 15 Jun 2024 05:52:42 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 56294 IP address blocks: 103.215.160.0/24 maxlen: 24 103.215.161.0/24 maxlen: 24 103.215.162.0/24 maxlen: 24 103.215.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Jun 15 05:52:42 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666d2c29-2a3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:08:7a:71:92:53:b0:27:ec:6a:f0:0e:5a:9a: 69:23:0a:67:22:59:4b:0e:7f:c4:6b:9e:1f:94:a2: a0:62:02:bf:5e:87:58:cd:37:8d:21:12:ae:f2:83: 6a:a5:cb:8d:08:10:53:1f:f5:6f:57:62:5d:e0:60: 7b:40:bb:84:0b:46:65:5a:10:ac:90:b9:46:bc:8b: d7:ec:b1:6c:2b:f3:d5:a5:68:3a:71:3a:a0:80:21: d2:e4:21:13:b9:8f:58:8a:04:46:55:03:a0:f6:c6: 93:16:96:bc:01:85:c3:cb:cd:fc:57:93:7b:31:14: 50:2a:57:2e:12:ba:47:46:6f:f8:70:ff:af:e3:75: 7a:f9:38:14:8c:4c:4d:34:5b:2c:17:b1:3b:9a:6f: 52:f2:a3:59:9c:0a:7b:1d:d1:ad:32:e7:75:a2:05: 92:ac:d8:e2:91:2b:4e:2b:7a:02:31:9d:79:92:b9: c3:3f:63:7b:a5:4f:64:dc:8a:ac:34:7d:3b:56:5c: 6a:2a:b0:d3:41:c9:ce:b9:3b:bd:f9:e9:8f:a9:8e: a8:3a:72:8b:61:5c:c0:a0:ca:42:14:0c:55:da:92: 95:38:7a:ec:c5:9f:f5:09:51:b9:8b:5c:ad:a5:83: b5:0a:73:bf:07:bd:08:d2:2b:c8:87:01:45:7f:9e: 61:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:E2:DE:74:67:12:80:2E:4E:BF:A0:CC:1E:81:56:D8:9B:C9:BC:F9 X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/49CEB44A28D111EDB364C870C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.160.0/22 Signature Algorithm: sha256WithRSAEncryption 55:22:45:8e:c2:aa:9c:dd:ae:a1:f1:0e:d3:42:2a:c7:94:6f: 6f:58:04:63:c4:37:b4:64:c3:2f:f3:89:3f:7a:a9:04:58:2e: cd:0c:63:15:3a:29:29:31:3f:05:f9:69:8e:48:b9:67:8d:39: cf:ae:d7:ad:ed:6d:3b:ac:f2:82:f1:09:3b:0c:61:86:ab:2e: 24:34:0f:6c:c4:d6:dd:2e:52:f2:54:24:55:96:a6:42:9e:b2: 0b:a8:49:41:b0:c9:9c:fc:27:db:bd:54:a7:e6:da:93:c1:08: 51:48:be:b2:2d:eb:61:95:f8:56:a4:57:3c:4f:f3:27:af:ea: 5e:75:99:55:f7:3c:38:cf:21:89:97:35:a8:81:16:31:8e:3b: b1:44:6f:79:76:76:f3:66:61:72:8b:fc:3c:72:24:fb:df:36: 23:0a:ec:90:41:c2:c3:58:db:18:f7:31:29:06:d0:9d:b3:53: 35:c5:ec:f0:99:00:a2:eb:ec:20:1e:ed:05:a7:61:11:c3:14: 94:31:e6:0d:11:fa:e2:62:67:8a:66:16:b0:26:a0:53:5a:47: 08:16:9a:6b:b2:1a:cd:24:eb:95:63:33:60:a7:0d:69:f8:cd: ff:60:e7:20:73:91:a1:84:06:3c:a6:7e:c2:e2:61:72:04:da: d0:ff:cf:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjQwNjE1MDU1MjQyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZkMmMyOS0yYTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+wh6cZJTsCfsavAOWpppIwpnIllLDn/Ea54flKKgYgK/XodYzTeNIRKu8oNq pcuNCBBTH/VvV2Jd4GB7QLuEC0ZlWhCskLlGvIvX7LFsK/PVpWg6cTqggCHS5CET uY9YigRGVQOg9saTFpa8AYXDy838V5N7MRRQKlcuErpHRm/4cP+v43V6+TgUjExN NFssF7E7mm9S8qNZnAp7HdGtMud1ogWSrNjikStOK3oCMZ15krnDP2N7pU9k3Iqs NH07VlxqKrDTQcnOuTu9+emPqY6oOnKLYVzAoMpCFAxV2pKVOHrsxZ/1CVG5i1yt pYO1CnO/B70I0ivIhwFFf55hZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMri3nRn EoAuTr+gzB6BVtibybz5MB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEMjgvNEJEQUVFREMyOENFMTFFREI2ODMzOTZFQzRGOUFFMDIvNDlDRUI0NEEy OEQxMTFFREIzNjRDODcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn16AwDQYJKoZIhvcNAQELBQADggEBAFUiRY7CqpzdrqHx DtNCKseUb29YBGPEN7Rkwy/ziT96qQRYLs0MYxU6KSkxPwX5aY5IuWeNOc+u163t bTus8oLxCTsMYYarLiQ0D2zE1t0uUvJUJFWWpkKesguoSUGwyZz8J9u9VKfm2pPB CFFIvrIt62GV+FakVzxP8yev6l51mVX3PDjPIYmXNaiBFjGOO7FEb3l2dvNmYXKL /DxyJPvfNiMK7JBBwsNY2xj3MSkG0J2zUzXF7PCZAKLr7CAe7QWnYRHDFJQx5g0R +uJiZ4pmFrAmoFNaRwgWmmuyGs0k65VjM2CnDWn4zf9g5yBzkaGEBjymfsLiYXIE 2tD/zwg= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:31 2024 by rpki-client on console-fra.rpki-client.org