$ rpki-client -vvf rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/48E4C546941F11EE8517B26FC4F9AE02.roa File: 48E4C546941F11EE8517B26FC4F9AE02.roa (raw, json) Hash identifier: Q3bzBf2Cm0H9fJSOzDe2WKkPLnodIQtsL1N0gyfPp9c= Subject key identifier: 34:25:3F:37:E3:98:C5:78:87:7A:08:BF:75:3C:6E:D2:BF:5F:C0:EA Certificate issuer: /CN=A9147C4C/serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Certificate serial: 0830 Authority key identifier: 2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/48E4C546941F11EE8517B26FC4F9AE02.roa Signing time: Mon 12 Aug 2024 21:18:52 +0000 ROA not before: Mon 12 Aug 2024 21:18:51 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 19905 IP address blocks: 103.66.180.0/24 maxlen: 24 103.66.181.0/24 maxlen: 24 103.66.182.0/24 maxlen: 24 103.66.183.0/24 maxlen: 24 103.244.112.0/24 maxlen: 24 103.244.113.0/24 maxlen: 24 103.244.114.0/24 maxlen: 24 103.244.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147C4C/serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Validity Not Before: Aug 12 21:18:51 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ba7c3b-ef1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:73:a1:78:d9:28:3f:4a:f4:53:1d:94:aa:ae: 38:71:84:f2:80:bf:32:64:e4:39:c6:7a:0f:6d:a4: 80:78:58:40:bf:56:ba:3e:9a:02:3b:22:4b:c9:27: d5:7e:57:83:ef:0a:5d:59:6c:42:69:e7:a2:18:8e: b0:e9:8b:01:93:ef:7e:d9:b5:fe:d6:f3:d7:79:ad: f6:0e:3d:36:ed:e0:5f:e8:b0:ab:4f:96:c1:8c:98: f7:1d:26:91:56:a7:b2:c9:78:2e:9d:04:dc:be:16: 8c:8d:4b:29:9c:7d:8f:71:9e:b4:e1:f1:4a:2e:22: fe:06:c2:20:92:2d:dc:02:14:bb:ea:f7:5a:80:d4: f3:34:47:d0:ab:c5:cb:81:bd:89:50:b2:5c:a7:34: e5:05:2e:a7:75:43:8d:ad:53:b3:d6:91:fe:dd:05: 66:98:67:2b:0d:37:29:d6:a9:52:8f:b1:c0:f0:8e: 1d:35:6c:76:ae:aa:33:9b:7d:8b:33:c6:ea:75:3a: b7:3a:3d:64:77:73:88:2d:04:72:1a:db:cb:b4:01: 10:4a:29:ba:d8:65:ff:38:b8:e5:39:cf:ab:91:dc: 35:02:7c:87:e2:71:2b:61:04:18:77:17:2b:5b:1a: 0d:da:72:09:49:a5:a9:d3:63:18:16:3d:0a:53:dc: a3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:25:3F:37:E3:98:C5:78:87:7A:08:BF:75:3C:6E:D2:BF:5F:C0:EA X509v3 Authority Key Identifier: keyid:2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/48E4C546941F11EE8517B26FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.180.0/22 103.244.112.0/22 Signature Algorithm: sha256WithRSAEncryption 90:82:44:e6:9d:f4:e8:78:7d:d1:17:60:22:8a:47:16:4f:43: 6b:36:9a:64:2b:64:27:a4:49:d8:84:69:fc:ab:22:57:8d:42: 09:8b:32:ea:b1:b6:01:74:4d:b9:0c:d0:96:11:1d:c7:04:b2: 7b:a4:5b:30:ae:77:6a:f3:f8:0d:2a:79:ab:00:be:b5:af:95: 51:5a:4e:1f:12:e1:aa:d7:c3:73:8f:75:9b:4f:10:89:d2:d4: d4:a4:8b:6f:24:f1:00:f9:32:1e:de:93:df:8f:d7:94:4a:89: 7d:48:fa:52:58:be:d7:c6:d2:d4:4f:6c:64:52:a6:d0:8f:f6: 63:91:80:13:6d:09:af:55:62:61:5d:c5:22:cd:cb:9e:1b:b1: f8:3b:9f:f2:18:c1:6a:b6:f2:84:af:2f:fb:70:42:9e:7e:07: b4:81:b9:2e:6b:c7:be:7f:a1:ba:3c:5b:6e:80:2f:60:51:68: 6d:25:41:a2:ef:d3:f3:b1:45:7c:db:1e:63:0e:ba:4f:91:88: b2:62:12:eb:7b:2b:b9:13:99:e1:cb:7b:28:a6:68:c7:9f:e5: a0:65:fd:3d:19:d2:83:36:f0:c2:b3:e8:49:75:81:af:f2:e0: 1e:9d:60:99:e1:ab:b5:5e:33:cd:38:16:f3:0e:2e:e3:a3:8f: d9:e0:1b:7f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDNEMxMTAvBgNVBAUTKDJBOUFFRjZCQzEyOTkxNENBMEI5MTA1QzkyNzFERUFG MzlEQkM4NjYwHhcNMjQwODEyMjExODUxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhN2MzYi1lZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63OheNkoP0r0Ux2Uqq44cYTygL8yZOQ5xnoPbaSAeFhAv1a6PpoCOyJLySfV fleD7wpdWWxCaeeiGI6w6YsBk+9+2bX+1vPXea32Dj027eBf6LCrT5bBjJj3HSaR VqeyyXgunQTcvhaMjUspnH2PcZ604fFKLiL+BsIgki3cAhS76vdagNTzNEfQq8XL gb2JULJcpzTlBS6ndUONrVOz1pH+3QVmmGcrDTcp1qlSj7HA8I4dNWx2rqozm32L M8bqdTq3Oj1kd3OILQRyGtvLtAEQSim62GX/OLjlOc+rkdw1AnyH4nErYQQYdxcr WxoN2nIJSaWp02MYFj0KU9yjIwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDQlPzfj mMV4h3oIv3U8btK/X8DqMB8GA1UdIwQYMBaAFCqa72vBKZFMoLkQXJJx3q8528hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0M0Qy9DQ0IyMDM1NEI5 RTIxMUVBQkM1NTRCODNDNEY5QUUwMi9LcHJ2YThFcGtVeWd1UkJja25IZXJ6bmJ5 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twcnZhOEVwa1V5Z3VSQmNrbkhlcnpuYnlHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdDNEMvQ0NCMjAzNTRCOUUyMTFFQUJDNTU0QjgzQzRGOUFFMDIvNDhFNEM1NDY5 NDFGMTFFRTg1MTdCMjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnQrQDBAJn9HAwDQYJKoZIhvcNAQELBQADggEBAJCCROad 9Oh4fdEXYCKKRxZPQ2s2mmQrZCekSdiEafyrIleNQgmLMuqxtgF0TbkM0JYRHccE snukWzCud2rz+A0qeasAvrWvlVFaTh8S4arXw3OPdZtPEInS1NSki28k8QD5Mh7e k9+P15RKiX1I+lJYvtfG0tRPbGRSptCP9mORgBNtCa9VYmFdxSLNy54bsfg7n/IY wWq28oSvL/twQp5+B7SBuS5rx75/obo8W26AL2BRaG0lQaLv0/OxRXzbHmMOuk+R iLJiEut7K7kTmeHLeyimaMef5aBl/T0Z0oM28MKz6El1ga/y4B6dYJnhq7VeM804 FvMOLuOjj9ngG38= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:02 2024 by rpki-client on console-ams.rpki-client.org