$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/1BCA5982656311ECA4E81323C4F9AE02.roa File: 1BCA5982656311ECA4E81323C4F9AE02.roa (raw, json) Hash identifier: JhAWbCAMrXKEKj1b3MlbXCTMtcBsS+XKDtYcGnLBqlU= Subject key identifier: 61:18:F9:8E:9B:B8:07:19:42:BE:D0:6A:32:B8:01:6E:E3:84:B0:2C Certificate issuer: /CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Certificate serial: 0F6B Authority key identifier: A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/1BCA5982656311ECA4E81323C4F9AE02.roa Signing time: Fri 26 Jul 2024 18:05:57 +0000 ROA not before: Fri 26 Jul 2024 18:05:57 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 59382 IP address blocks: 103.237.36.0/22 maxlen: 24 160.202.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3947 (0xf6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Validity Not Before: Jul 26 18:05:57 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66a3e585-311e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:25:0e:3b:b7:be:56:5d:81:e4:8e:ad:fc:21: d7:18:de:4d:ee:b6:c4:f4:e2:be:fb:5f:69:0a:71: 4c:53:b0:2e:ed:2d:62:07:55:20:9e:5e:fc:97:7c: f2:12:e6:f4:83:eb:41:6e:31:28:83:58:b7:73:d2: c1:ff:92:96:33:73:e9:9a:01:05:7c:8f:d7:99:43: 76:0a:c9:d6:36:7e:2f:d1:c2:c1:35:7f:2f:ba:a4: c7:fb:06:c4:a5:75:ae:e8:bf:be:7c:9b:ca:85:a5: fa:b0:16:b8:49:24:a8:3c:b1:cf:71:f1:a4:01:65: 16:46:9e:cc:39:06:fd:2b:bb:33:f7:1e:8a:c8:90: b3:e5:29:2e:de:86:aa:34:ca:f2:fd:af:2a:30:21: 79:12:3a:b3:99:1c:d0:5f:b5:de:61:c1:f3:53:ed: e1:b3:1d:b3:db:48:fc:e8:67:ba:b8:35:92:22:40: f4:28:6e:4b:27:4a:41:32:ce:e2:3d:dc:f1:df:fb: bb:dd:15:94:02:41:9d:d6:74:b4:ab:05:25:7e:81: db:5c:4a:28:d0:57:ad:ca:1c:c7:44:e7:52:16:e0: a6:38:39:33:9e:74:23:4f:0a:21:04:10:ea:a8:bc: 68:47:76:95:8b:f3:15:7d:e2:e1:13:3c:b3:e6:b2: 83:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:18:F9:8E:9B:B8:07:19:42:BE:D0:6A:32:B8:01:6E:E3:84:B0:2C X509v3 Authority Key Identifier: keyid:A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/1BCA5982656311ECA4E81323C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.237.36.0/22 160.202.144.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:5e:42:ff:30:7a:c9:80:16:1a:c9:f4:9b:3d:4f:c7:8e:8f: d1:e1:da:11:61:ae:4f:52:62:1d:d2:0c:0e:71:e2:a7:77:85: e9:fd:26:60:83:c3:bd:de:5f:e7:3b:b9:a3:9e:7a:f4:79:9e: 8b:c9:d5:cb:80:af:d7:a9:23:01:77:81:1e:19:5b:b4:cc:b6: 48:f0:af:67:9b:1f:d5:92:98:fc:e3:eb:80:14:14:9a:01:b6: f0:ba:7d:8a:06:ec:e0:f2:8e:62:ce:41:5b:51:da:4a:99:93: 7b:e0:df:b7:fe:0e:8d:33:b1:73:a5:d4:2a:5f:af:17:58:b6: a0:6f:ea:b3:26:2a:9c:9a:f0:78:ee:cf:52:36:8a:89:59:e1: 40:bd:67:00:4a:93:87:2e:6e:24:bc:91:c9:b5:40:71:81:d8: f2:8a:33:45:58:d7:b7:24:da:21:2a:b7:1b:48:ea:f8:65:e8: cb:75:0b:e6:02:e2:b9:05:3f:dd:08:b3:92:5e:6a:1f:dd:ad: e9:5a:95:6e:23:a9:62:aa:b1:3f:fb:5f:26:a0:cd:57:f3:aa: 3a:4a:4b:f5:72:d1:a6:90:51:5c:b0:5c:89:8c:c8:ce:e4:6c: 09:36:05:d9:ee:1a:5d:19:7a:54:f5:11:cf:5d:54:44:0b:bb: 3e:2c:c4:6f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCNkExMTAvBgNVBAUTKEE5NzEyQ0NCN0VFRTAyNEFFQjg4NzY3Qjc2MkUxMDkz QjE0MEZGNkUwHhcNMjQwNzI2MTgwNTU3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzZTU4NS0zMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyUOO7e+Vl2B5I6t/CHXGN5N7rbE9OK++19pCnFMU7Au7S1iB1Ugnl78l3zy Eub0g+tBbjEog1i3c9LB/5KWM3PpmgEFfI/XmUN2CsnWNn4v0cLBNX8vuqTH+wbE pXWu6L++fJvKhaX6sBa4SSSoPLHPcfGkAWUWRp7MOQb9K7sz9x6KyJCz5Sku3oaq NMry/a8qMCF5EjqzmRzQX7XeYcHzU+3hsx2z20j86Ge6uDWSIkD0KG5LJ0pBMs7i Pdzx3/u73RWUAkGd1nS0qwUlfoHbXEoo0FetyhzHROdSFuCmODkznnQjTwohBBDq qLxoR3aVi/MVfeLhEzyz5rKDcwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGEY+Y6b uAcZQr7QajK4AW7jhLAsMB8GA1UdIwQYMBaAFKlxLMt+7gJK64h2e3YuEJOxQP9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI2QS8wODc1RjQ5NjRD NzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFrcnJpSFo3ZGk0UWs3RkFf MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYRXN5Mzd1QWtycmlIWjdkaTRRazdGQV8yNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhCNkEvMDg3NUY0OTY0Qzc0MTFFOTk3OTAwRjU1QzRGOUFFMDIvMUJDQTU5ODI2 NTYzMTFFQ0E0RTgxMzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn7SQDBAKgypAwDQYJKoZIhvcNAQELBQADggEBAHxeQv8w esmAFhrJ9Js9T8eOj9Hh2hFhrk9SYh3SDA5x4qd3hen9JmCDw73eX+c7uaOeevR5 novJ1cuAr9epIwF3gR4ZW7TMtkjwr2ebH9WSmPzj64AUFJoBtvC6fYoG7ODyjmLO QVtR2kqZk3vg37f+Do0zsXOl1CpfrxdYtqBv6rMmKpya8Hjuz1I2iolZ4UC9ZwBK k4cubiS8kcm1QHGB2PKKM0VY17ck2iEqtxtI6vhl6Mt1C+YC4rkFP90Is5Jeah/d relalW4jqWKqsT/7XyagzVfzqjpKS/Vy0aaQUVywXImMyM7kbAk2BdnuGl0ZelT1 Ec9dVEQLuz4sxG8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org