$ rpki-client -vvf rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/4B2AAC20660211EA83A76342C4F9AE02.roa File: 4B2AAC20660211EA83A76342C4F9AE02.roa (raw, json) Hash identifier: wcas8hwm2SsOezrjKRuYetaNuSdRzjiKwQDbaDpGAJ8= Subject key identifier: 0A:C9:D1:02:BD:95:9A:93:68:31:9D:86:BA:1E:2A:33:E7:9D:B5:2B Certificate issuer: /CN=A915A821/serialNumber=77A134DFA7A2394ED2447539F13FE4A8D1E056C9 Certificate serial: 0974 Authority key identifier: 77:A1:34:DF:A7:A2:39:4E:D2:44:75:39:F1:3F:E4:A8:D1:E0:56:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6E036eiOU7SRHU58T_kqNHgVsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/4B2AAC20660211EA83A76342C4F9AE02.roa Signing time: Sat 16 Mar 2024 20:48:47 +0000 ROA not before: Sat 16 Mar 2024 20:48:47 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140085 IP address blocks: 103.148.94.0/23 maxlen: 24 2001:df2:cc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.crl rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6E036eiOU7SRHU58T_kqNHgVsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2420 (0x974) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A821/serialNumber=77A134DFA7A2394ED2447539F13FE4A8D1E056C9 Validity Not Before: Mar 16 20:48:47 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f605af-18fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c2:2e:01:2b:21:92:fe:3f:75:04:88:a6:59: 24:80:41:cd:85:4d:28:97:9a:57:5d:a8:df:1f:32: ec:eb:a2:76:34:2a:09:f7:c5:71:a8:8c:2b:a9:75: d1:8c:39:ed:51:1d:2e:49:83:c9:9e:bb:7b:bc:30: 49:a1:71:2c:59:3f:2e:77:99:28:b6:ee:01:b8:f2: 37:6f:79:53:82:2e:51:87:83:45:57:4d:1c:04:0d: e3:1c:36:82:80:03:83:3b:fd:69:f8:6b:84:de:3c: 66:bd:0d:24:2a:20:28:0c:97:c4:44:1c:28:5b:ee: c0:f9:48:e4:27:e2:9f:c6:f0:ba:30:24:37:6c:31: cf:1f:89:76:a1:df:fd:96:2a:8d:fa:4d:c6:51:7b: 27:ad:b0:e0:83:da:05:18:40:9a:03:65:a2:8a:57: 35:36:5c:5b:62:76:05:20:b8:fe:2c:ee:9c:92:07: 1e:b1:59:06:d9:13:13:dd:35:30:16:6f:d0:a5:18: 1f:35:c5:7d:56:d4:93:4a:a5:5d:af:67:9c:e9:22: c3:2a:21:17:94:3a:56:f3:e8:d9:24:6c:6e:74:40: f6:46:28:82:25:c8:b6:8b:fc:23:df:f1:31:19:7c: ad:41:2d:24:ae:75:ca:bf:bf:01:53:ef:b9:29:ca: d6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C9:D1:02:BD:95:9A:93:68:31:9D:86:BA:1E:2A:33:E7:9D:B5:2B X509v3 Authority Key Identifier: keyid:77:A1:34:DF:A7:A2:39:4E:D2:44:75:39:F1:3F:E4:A8:D1:E0:56:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6E036eiOU7SRHU58T_kqNHgVsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/4B2AAC20660211EA83A76342C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.94.0/23 IPv6: 2001:df2:cc80::/48 Signature Algorithm: sha256WithRSAEncryption b6:e5:7a:63:ab:52:ed:a6:a3:89:6f:b1:aa:06:bf:1b:6b:78: ab:5b:b2:f1:8b:c7:25:5b:7b:37:a8:d7:e2:db:34:1a:8c:d1: ea:02:4c:4c:2a:ab:04:2f:31:02:95:9a:ac:2d:39:8b:20:b8: fc:f0:08:c0:79:40:91:f7:43:bd:2d:7c:b6:b0:f8:5c:d9:42: 52:5c:a1:a4:27:6d:69:7f:2a:4d:98:38:47:7f:a8:df:0d:b0: 56:75:b1:70:6f:7f:a5:09:93:12:05:d1:92:10:ab:ed:34:06: 0d:28:35:30:9c:1a:4e:52:ee:fb:67:3a:ae:8c:9d:fe:52:20: 1e:83:5a:3b:03:6d:a2:28:18:82:c0:d5:cc:1c:f3:fe:f7:30: d5:e9:e0:17:9f:33:40:a0:7e:2d:a6:41:54:04:6d:00:46:d4: 9d:5b:4e:d1:52:0e:66:67:44:28:8b:ca:8b:ee:4f:12:ad:55: 10:5e:94:db:fa:24:8d:c6:8f:f3:63:f4:e4:5c:29:cc:e0:ed: db:16:10:6c:a8:73:b8:62:8d:72:62:c0:85:e6:93:b6:d2:a0: 1d:ba:eb:aa:d5:25:b7:64:04:3a:73:83:24:f9:23:ae:23:4e: 4a:68:b3:50:20:52:8c:f7:12:3a:22:37:27:17:e0:dc:99:51: 28:d1:bb:54 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE4MjExMTAvBgNVBAUTKDc3QTEzNERGQTdBMjM5NEVEMjQ0NzUzOUYxM0ZFNEE4 RDFFMDU2QzkwHhcNMjQwMzE2MjA0ODQ3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY2MDVhZi0xOGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsIuASshkv4/dQSIplkkgEHNhU0ol5pXXajfHzLs66J2NCoJ98VxqIwrqXXR jDntUR0uSYPJnrt7vDBJoXEsWT8ud5kotu4BuPI3b3lTgi5Rh4NFV00cBA3jHDaC gAODO/1p+GuE3jxmvQ0kKiAoDJfERBwoW+7A+UjkJ+KfxvC6MCQ3bDHPH4l2od/9 liqN+k3GUXsnrbDgg9oFGECaA2Wiilc1NlxbYnYFILj+LO6ckgcesVkG2RMT3TUw Fm/QpRgfNcV9VtSTSqVdr2ec6SLDKiEXlDpW8+jZJGxudED2RiiCJci2i/wj3/Ex GXytQS0krnXKv78BU++5KcrWeQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFArJ0QK9 lZqTaDGdhroeKjPnnbUrMB8GA1UdIwQYMBaAFHehNN+nojlO0kR1OfE/5KjR4FbJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTgyMS8yMzlCRkM2NDY2 MDExMUVBQkVFQTA3NDFDNEY5QUUwMi9kNkUwMzZlaU9VN1NSSFU1OFRfa3FOSGdW c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2RTAzNmVpT1U3U1JIVTU4VF9rcU5IZ1Zzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUE4MjEvMjM5QkZDNjQ2NjAxMTFFQUJFRUEwNzQxQzRGOUFFMDIvNEIyQUFDMjA2 NjAyMTFFQTgzQTc2MzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlF4wDwQCAAIwCQMHACABDfLMgDANBgkqhkiG9w0BAQsF AAOCAQEAtuV6Y6tS7aajiW+xqga/G2t4q1uy8YvHJVt7N6jX4ts0GozR6gJMTCqr BC8xApWarC05iyC4/PAIwHlAkfdDvS18trD4XNlCUlyhpCdtaX8qTZg4R3+o3w2w VnWxcG9/pQmTEgXRkhCr7TQGDSg1MJwaTlLu+2c6royd/lIgHoNaOwNtoigYgsDV zBzz/vcw1engF58zQKB+LaZBVARtAEbUnVtO0VIOZmdEKIvKi+5PEq1VEF6U2/ok jcaP82P05FwpzODt2xYQbKhzuGKNcmLAheaTttKgHbrrqtUlt2QEOnODJPkjriNO SmizUCBSjPcSOiI3Jxfg3JlRKNG7VA== -----END CERTIFICATE-----Generated at Sat May 18 21:24:21 2024 by rpki-client on console-fra.rpki-client.org