$ rpki-client -vvf rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/282DAABE82EC11EEB4D96065C4F9AE02.roa File: 282DAABE82EC11EEB4D96065C4F9AE02.roa (raw, json) Hash identifier: Q2vr7Gro7CPSBWIBXgNWEfCuh8qIitp6+jrEA/bCwE8= Subject key identifier: E0:05:48:04:5B:2A:50:ED:B2:28:FC:1A:5E:FE:DD:2B:F5:DD:5A:F8 Certificate issuer: /CN=A9148BFA/serialNumber=157B0BDE0E3CADB294839BC9815655644DB26E91 Certificate serial: 0432 Authority key identifier: 15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/282DAABE82EC11EEB4D96065C4F9AE02.roa Signing time: Thu 11 Jan 2024 01:43:18 +0000 ROA not before: Thu 11 Jan 2024 01:43:18 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 206264 IP address blocks: 43.226.231.0/24 maxlen: 24 103.46.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.crl rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1074 (0x432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148BFA/serialNumber=157B0BDE0E3CADB294839BC9815655644DB26E91 Validity Not Before: Jan 11 01:43:18 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659f47b5-46a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ab:47:6e:38:db:9a:41:df:96:c3:20:9c:c9: 1a:00:45:2b:0e:db:fa:49:d7:90:e7:93:51:2e:03: 22:72:13:3d:16:51:b5:16:28:7c:4d:11:67:83:88: 1e:ef:d0:f7:2c:ef:0e:0e:25:b5:58:16:c5:ca:46: b5:7c:71:25:bd:e6:09:02:03:55:5a:84:06:f9:61: 90:7e:bc:ed:d4:a9:4f:52:86:dc:bb:b9:ff:39:97: be:90:30:1b:74:54:cb:b3:b3:c8:55:cc:45:26:90: b6:89:31:e8:54:40:34:99:e3:ed:46:e8:d8:1a:ee: 22:6a:46:e1:9d:1f:d5:04:b2:6e:89:08:06:df:26: d3:c8:12:90:e2:9a:7e:99:97:c1:fb:c4:c2:10:fa: 6f:3d:ea:1f:c3:80:10:ae:2d:e3:21:6c:d2:72:56: 11:28:7f:cc:43:6c:e6:25:6a:10:03:da:aa:a7:1d: 30:3a:4e:c3:13:e8:40:7d:d8:a1:25:da:98:c0:66: 2f:93:e6:9a:5e:32:11:6e:ba:75:73:04:0c:c8:1d: b0:6e:15:f2:dc:e8:1e:1e:61:3e:6d:5d:6c:61:6b: 7b:ad:12:a5:a7:63:78:ea:62:6a:5e:59:f6:34:1b: 1e:df:53:ca:12:1e:fd:6f:41:a3:5e:e1:5a:89:93: 8b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:05:48:04:5B:2A:50:ED:B2:28:FC:1A:5E:FE:DD:2B:F5:DD:5A:F8 X509v3 Authority Key Identifier: keyid:15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/282DAABE82EC11EEB4D96065C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.231.0/24 103.46.141.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:6c:ae:ec:8f:84:d7:a5:45:0c:d5:74:5b:77:77:f8:a3:53: 63:a9:21:61:23:84:5d:a1:c8:c9:cf:c5:ba:56:f2:b7:66:d2: 59:4e:64:f5:8c:2a:39:33:8d:24:ee:46:33:04:fb:ad:c8:02: 66:80:13:5c:f8:48:64:49:ff:61:79:e9:52:30:6a:b1:ea:27: 6e:53:b2:88:62:5b:e3:15:cf:80:41:4c:a6:69:d2:2b:9d:9b: ff:2f:09:a0:9d:d9:9d:39:cd:ec:1a:ba:e9:09:28:53:19:3d: 1a:e1:6c:78:34:5d:25:62:07:c8:3f:71:78:8f:11:20:73:b6: 40:cd:5e:d0:b6:8a:c3:57:f8:66:0f:b7:1f:4c:53:b1:42:a9: d9:03:e3:35:23:54:86:cb:4a:90:b4:c8:6a:45:5a:4e:33:a5: 27:75:e0:56:5d:58:6d:69:b3:2c:ff:13:bd:79:78:4f:27:87: e2:91:70:68:d0:39:69:ec:7a:3d:24:a9:a7:07:dd:a1:57:62: 3a:9b:ea:3a:13:90:81:47:d2:a1:4d:5d:b1:e0:0a:47:a4:22: 7d:55:47:18:8c:fe:17:f0:1b:e7:da:67:0e:73:92:fd:ab:59: 0c:12:a4:4b:cf:89:a2:9e:09:19:67:63:5f:bd:db:b5:04:2b: 4c:87:b1:00 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCRkExMTAvBgNVBAUTKDE1N0IwQkRFMEUzQ0FEQjI5NDgzOUJDOTgxNTY1NTY0 NERCMjZFOTEwHhcNMjQwMTExMDE0MzE4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNDdiNS00NmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtatHbjjbmkHflsMgnMkaAEUrDtv6SdeQ55NRLgMichM9FlG1Fih8TRFng4ge 79D3LO8ODiW1WBbFyka1fHElveYJAgNVWoQG+WGQfrzt1KlPUobcu7n/OZe+kDAb dFTLs7PIVcxFJpC2iTHoVEA0mePtRujYGu4iakbhnR/VBLJuiQgG3ybTyBKQ4pp+ mZfB+8TCEPpvPeofw4AQri3jIWzSclYRKH/MQ2zmJWoQA9qqpx0wOk7DE+hAfdih JdqYwGYvk+aaXjIRbrp1cwQMyB2wbhXy3OgeHmE+bV1sYWt7rRKlp2N46mJqXln2 NBse31PKEh79b0GjXuFaiZOLoQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOAFSARb KlDtsij8Gl7+3Sv13Vr4MB8GA1UdIwQYMBaAFBV7C94OPK2ylIObyYFWVWRNsm6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEJGQS8wNEEyNEMzNDEx NDMxMUVDOTczNjlGNzNDNEY5QUUwMi9GWHNMM2c0OHJiS1VnNXZKZ1ZaVlpFMnli cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZYc0wzZzQ4cmJLVWc1dkpnVlpWWkUyeWJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhCRkEvMDRBMjRDMzQxMTQzMTFFQzk3MzY5RjczQzRGOUFFMDIvMjgyREFBQkU4 MkVDMTFFRUI0RDk2MDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr4ucDBABnLo0wDQYJKoZIhvcNAQELBQADggEBAEtsruyP hNelRQzVdFt3d/ijU2OpIWEjhF2hyMnPxbpW8rdm0llOZPWMKjkzjSTuRjME+63I AmaAE1z4SGRJ/2F56VIwarHqJ25TsohiW+MVz4BBTKZp0iudm/8vCaCd2Z05zewa uukJKFMZPRrhbHg0XSViB8g/cXiPESBztkDNXtC2isNX+GYPtx9MU7FCqdkD4zUj VIbLSpC0yGpFWk4zpSd14FZdWG1psyz/E715eE8nh+KRcGjQOWnsej0kqacH3aFX Yjqb6joTkIFH0qFNXbHgCkekIn1VRxiM/hfwG+faZw5zkv2rWQwSpEvPiaKeCRln Y1+927UEK0yHsQA= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:58 2024 by rpki-client on console-ams.rpki-client.org