$ rpki-client -vvf rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/1577D3D4CEED11EEAD68A169C4F9AE02.roa File: 1577D3D4CEED11EEAD68A169C4F9AE02.roa (raw, json) Hash identifier: UI9VDDNj5/gUUO3ewueElxsuAaYwPSQhrOvYuANf840= Subject key identifier: BC:99:89:72:0E:6B:94:FE:0D:C1:36:BC:F6:D0:E3:6A:49:48:BB:4E Certificate issuer: /CN=A914C651/serialNumber=76D6FA7CF9BF8E415F2F42619B804288763E67A2 Certificate serial: 23 Authority key identifier: 76:D6:FA:7C:F9:BF:8E:41:5F:2F:42:61:9B:80:42:88:76:3E:67:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/1577D3D4CEED11EEAD68A169C4F9AE02.roa Signing time: Wed 03 Apr 2024 09:10:18 +0000 ROA not before: Wed 03 Apr 2024 09:10:18 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151630 IP address blocks: 103.149.152.0/24 maxlen: 24 103.149.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.crl rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C651/serialNumber=76D6FA7CF9BF8E415F2F42619B804288763E67A2 Validity Not Before: Apr 3 09:10:18 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660d1cfa-528b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7d:d7:aa:5b:6f:16:21:61:8f:8f:b7:c2:02: 4b:d4:c7:07:8f:ff:e5:f7:3f:32:e9:79:fd:7f:4c: 33:59:bf:d1:e1:d5:15:89:75:8f:e3:6c:4c:b0:4f: 49:6c:7c:5a:ae:6c:69:01:a7:29:d3:9e:3e:82:e3: 96:c4:db:eb:d4:14:88:65:4a:5a:ce:7c:d8:3a:8a: fe:53:0f:5c:47:d5:d9:e3:56:d9:c6:34:96:f1:7a: 99:eb:a3:f4:89:27:8b:d9:b9:1d:cb:57:b1:7f:be: 61:b5:45:db:e4:37:b9:b8:21:d3:f4:2a:4d:0d:3b: 53:6a:cf:cb:cd:ce:cc:38:bf:72:11:b9:93:1d:13: f6:1d:2a:0e:c7:39:31:b7:62:e5:8f:93:e7:91:17: 3b:24:f2:34:07:ff:83:0f:14:a7:3f:4b:e8:73:0a: 64:b2:1c:13:00:8d:10:11:6d:2f:21:3e:9e:59:cc: 08:70:6b:ec:34:57:84:43:ac:12:39:93:d1:fc:55: 70:c3:54:f9:fe:ee:b5:ec:53:d5:33:42:cd:3f:8f: df:71:70:46:33:c5:c5:c4:e9:9a:22:48:1c:f4:94: a7:c7:90:8e:da:82:db:3a:2b:54:ad:ea:d8:a4:c5: d0:fe:27:ee:b0:e8:51:b6:aa:86:ff:31:4d:92:43: 06:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:99:89:72:0E:6B:94:FE:0D:C1:36:BC:F6:D0:E3:6A:49:48:BB:4E X509v3 Authority Key Identifier: keyid:76:D6:FA:7C:F9:BF:8E:41:5F:2F:42:61:9B:80:42:88:76:3E:67:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/1577D3D4CEED11EEAD68A169C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.152.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:dc:46:0c:4f:da:2a:e3:17:74:88:f8:5d:26:56:9f:9f:cc: 45:30:61:de:b0:1c:62:2b:4e:0c:46:47:1f:1f:35:26:99:e6: 16:08:df:3b:59:f7:af:8f:cb:a3:0c:ca:10:99:af:64:02:2e: 50:78:e4:9e:5a:6b:8b:64:3e:9f:f2:7c:d6:3f:da:a5:a4:fe: b5:1c:04:9f:ba:d2:06:22:02:84:c2:a4:90:7d:ea:03:12:fa: c2:7a:38:80:1c:f0:8c:05:29:4a:7d:8e:2c:0f:f1:5d:e0:dd: 6e:da:a4:d5:e9:b6:69:f6:bd:01:f4:37:89:28:bb:04:65:70: 83:de:c9:b7:81:d3:29:70:e1:62:bf:5e:82:60:d6:bd:9c:dd: a2:2b:53:a6:e1:7a:a4:a7:da:e7:fc:91:a1:09:06:e2:ca:bd: be:93:1c:ee:f0:81:c8:c8:ca:c5:89:e1:e4:ee:f2:98:cc:68: f6:c3:19:e0:a7:3b:ef:21:30:c9:86:d3:a9:c0:ba:bb:77:e4: da:28:e2:bb:51:d5:eb:85:de:11:4c:00:bb:4e:d3:f8:bf:5e: cc:27:da:be:57:47:80:ce:ff:c0:71:24:fc:6f:f3:0d:3f:1b: 58:a0:ae:2f:75:ab:88:f0:84:1d:5b:7e:d0:b1:61:a9:a5:9b: f2:b5:90:a4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QzY1MTExMC8GA1UEBRMoNzZENkZBN0NGOUJGOEU0MTVGMkY0MjYxOUI4MDQyODg3 NjNFNjdBMjAeFw0yNDA0MDMwOTEwMThaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGQxY2ZhLTUyOGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5fdeqW28WIWGPj7fCAkvUxweP/+X3PzLpef1/TDNZv9Hh1RWJdY/jbEywT0ls fFqubGkBpynTnj6C45bE2+vUFIhlSlrOfNg6iv5TD1xH1dnjVtnGNJbxepnro/SJ J4vZuR3LV7F/vmG1RdvkN7m4IdP0Kk0NO1Nqz8vNzsw4v3IRuZMdE/YdKg7HOTG3 YuWPk+eRFzsk8jQH/4MPFKc/S+hzCmSyHBMAjRARbS8hPp5ZzAhwa+w0V4RDrBI5 k9H8VXDDVPn+7rXsU9UzQs0/j99xcEYzxcXE6ZoiSBz0lKfHkI7agts6K1St6tik xdD+J+6w6FG2qob/MU2SQwbxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUvJmJcg5r lP4NwTa89tDjaklIu04wHwYDVR0jBBgwFoAUdtb6fPm/jkFfL0Jhm4BCiHY+Z6Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDNjUxLzMzNEY2OEM4Q0VF QzExRUVBRTAzMzA2Q0M0RjlBRTAyL2R0YjZmUG1famtGZkwwSmhtNEJDaUhZLVo2 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZHRiNmZQbV9qa0ZmTDBKaG00QkNpSFktWjZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzY1MS8zMzRGNjhDOENFRUMxMUVFQUUwMzMwNkNDNEY5QUUwMi8xNTc3RDNENENF RUQxMUVFQUQ2OEExNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeVmDANBgkqhkiG9w0BAQsFAAOCAQEAHNxGDE/aKuMXdIj4 XSZWn5/MRTBh3rAcYitODEZHHx81JpnmFgjfO1n3r4/LowzKEJmvZAIuUHjknlpr i2Q+n/J81j/apaT+tRwEn7rSBiIChMKkkH3qAxL6wno4gBzwjAUpSn2OLA/xXeDd btqk1em2afa9AfQ3iSi7BGVwg97Jt4HTKXDhYr9egmDWvZzdoitTpuF6pKfa5/yR oQkG4sq9vpMc7vCByMjKxYnh5O7ymMxo9sMZ4Kc77yEwyYbTqcC6u3fk2ijiu1HV 64XeEUwAu07T+L9ezCfavldHgM7/wHEk/G/zDT8bWKCuL3WriPCEHVt+0LFhqaWb 8rWQpA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:05 2024 by rpki-client on console-ams.rpki-client.org