$ rpki-client -vvf rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/48E4C546941F11EE8517B26FC4F9AE02.roa File: 48E4C546941F11EE8517B26FC4F9AE02.roa (raw, json) Hash identifier: tJgnvhjfqszWIbz7KiTI8tGxv6b+hvyNX6FX0CZAyQg= Subject key identifier: 90:B5:E8:FC:DE:16:24:0A:D9:1B:2B:77:19:3E:6B:D0:32:27:8D:E5 Certificate issuer: /CN=A9147C4C/serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Certificate serial: 07A9 Authority key identifier: 2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/48E4C546941F11EE8517B26FC4F9AE02.roa Signing time: Wed 06 Dec 2023 10:07:38 +0000 ROA not before: Wed 06 Dec 2023 10:07:38 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 19905 IP address blocks: 103.66.180.0/24 maxlen: 24 103.66.181.0/24 maxlen: 24 103.66.182.0/24 maxlen: 24 103.66.183.0/24 maxlen: 24 103.244.112.0/24 maxlen: 24 103.244.113.0/24 maxlen: 24 103.244.114.0/24 maxlen: 24 103.244.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1961 (0x7a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147C4C/serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Validity Not Before: Dec 6 10:07:38 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=657047ea-158b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1e:0a:fa:23:fb:0e:11:77:45:bb:5b:3e:19: ad:5c:be:cf:27:e4:10:60:6a:77:b3:04:85:95:20: 3f:7c:14:7f:fa:8f:9e:1d:ab:bd:8d:08:e6:9d:69: 19:7b:56:d5:2f:cf:8e:04:12:74:86:87:45:b4:f4: 4f:a4:ab:31:d1:e5:dc:4e:04:3e:f5:36:a2:41:06: 6a:39:ad:6f:04:21:bd:c4:2e:59:5e:cf:3e:c6:e0: 04:dc:6f:fa:86:50:41:ed:7d:d9:69:80:e4:fb:1e: 9f:3f:ee:9c:51:1d:1e:80:b6:15:4f:5e:a4:fd:4a: 85:f8:90:b3:b2:f8:2e:75:b6:dc:27:b7:b8:10:10: 55:19:0d:a6:c8:75:1e:a7:1e:98:d0:ed:f9:3b:54: 8b:ed:1f:15:ef:0a:d6:1e:cc:58:ae:61:ac:de:3a: 6e:f0:dd:07:48:94:89:0d:db:e6:57:8c:d4:c9:fc: 6d:59:12:6d:de:a8:5d:94:8c:41:0f:21:35:48:80: 3c:cc:d6:76:9a:53:80:61:12:05:ba:2a:8e:3d:7b: 9a:7d:58:cf:62:e1:5b:03:99:03:14:a0:cc:72:dc: d2:4a:64:9d:67:cb:53:c0:e8:ba:dc:48:93:13:b8: 07:4c:e6:ab:22:18:72:9f:b2:97:65:aa:08:0f:35: e8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:B5:E8:FC:DE:16:24:0A:D9:1B:2B:77:19:3E:6B:D0:32:27:8D:E5 X509v3 Authority Key Identifier: keyid:2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/48E4C546941F11EE8517B26FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.180.0/22 103.244.112.0/22 Signature Algorithm: sha256WithRSAEncryption 56:ca:4c:68:78:72:6c:92:0e:38:6d:be:e4:04:44:9e:9f:e1: 2d:41:2d:be:98:f4:4c:40:47:aa:24:1f:ec:a5:25:24:7d:41: 81:4e:f3:53:2b:01:2d:ef:15:7d:06:67:e1:ea:1f:9f:06:d1: c1:f4:e0:00:c1:06:6d:ea:e2:61:b8:d5:e1:58:2a:ac:2d:37: b0:b4:0b:df:51:d2:12:d9:ed:4b:72:7c:85:ba:04:1b:3f:07: 96:50:ca:49:0d:5f:8b:a2:73:74:df:e7:97:04:dc:cf:06:47: 88:35:f1:a7:ec:2d:0b:69:68:84:33:4e:83:cd:03:5e:ab:82: f8:c6:f9:cb:d7:13:7c:4a:71:52:86:70:50:fe:28:55:52:b3: d4:06:da:c3:f7:a9:50:f2:1f:b9:a4:54:71:8e:38:ea:fd:49: 41:30:70:af:bb:25:27:a6:3c:b6:71:aa:c0:cf:71:c2:62:5d: 83:0f:1e:cd:22:b9:43:b6:bb:1b:66:c5:cc:cb:9d:aa:3d:41: d0:3d:b6:72:be:7c:a9:49:a2:3c:18:4c:75:c6:cb:d5:64:4c: c0:f2:2c:97:3c:a8:06:4e:a0:c0:4d:a6:10:48:4f:6a:b4:a7: ae:56:99:be:c9:8d:d1:2d:8c:29:91:6a:5c:0d:81:81:e5:a5: 36:ce:8c:97 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDNEMxMTAvBgNVBAUTKDJBOUFFRjZCQzEyOTkxNENBMEI5MTA1QzkyNzFERUFG MzlEQkM4NjYwHhcNMjMxMjA2MTAwNzM4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcwNDdlYS0xNThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoB4K+iP7DhF3RbtbPhmtXL7PJ+QQYGp3swSFlSA/fBR/+o+eHau9jQjmnWkZ e1bVL8+OBBJ0hodFtPRPpKsx0eXcTgQ+9TaiQQZqOa1vBCG9xC5ZXs8+xuAE3G/6 hlBB7X3ZaYDk+x6fP+6cUR0egLYVT16k/UqF+JCzsvgudbbcJ7e4EBBVGQ2myHUe px6Y0O35O1SL7R8V7wrWHsxYrmGs3jpu8N0HSJSJDdvmV4zUyfxtWRJt3qhdlIxB DyE1SIA8zNZ2mlOAYRIFuiqOPXuafVjPYuFbA5kDFKDMctzSSmSdZ8tTwOi63EiT E7gHTOarIhhyn7KXZaoIDzXo0QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJC16Pze FiQK2Rsrdxk+a9AyJ43lMB8GA1UdIwQYMBaAFCqa72vBKZFMoLkQXJJx3q8528hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0M0Qy9DQ0IyMDM1NEI5 RTIxMUVBQkM1NTRCODNDNEY5QUUwMi9LcHJ2YThFcGtVeWd1UkJja25IZXJ6bmJ5 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twcnZhOEVwa1V5Z3VSQmNrbkhlcnpuYnlHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdDNEMvQ0NCMjAzNTRCOUUyMTFFQUJDNTU0QjgzQzRGOUFFMDIvNDhFNEM1NDY5 NDFGMTFFRTg1MTdCMjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnQrQDBAJn9HAwDQYJKoZIhvcNAQELBQADggEBAFbKTGh4 cmySDjhtvuQERJ6f4S1BLb6Y9ExAR6okH+ylJSR9QYFO81MrAS3vFX0GZ+HqH58G 0cH04ADBBm3q4mG41eFYKqwtN7C0C99R0hLZ7UtyfIW6BBs/B5ZQykkNX4uic3Tf 55cE3M8GR4g18afsLQtpaIQzToPNA16rgvjG+cvXE3xKcVKGcFD+KFVSs9QG2sP3 qVDyH7mkVHGOOOr9SUEwcK+7JSemPLZxqsDPccJiXYMPHs0iuUO2uxtmxczLnao9 QdA9tnK+fKlJojwYTHXGy9VkTMDyLJc8qAZOoMBNphBIT2q0p65Wmb7JjdEtjCmR alwNgYHlpTbOjJc= -----END CERTIFICATE-----Generated at Thu May 2 23:19:01 2024 by rpki-client on console-ams.rpki-client.org