$ rpki-client -vvf rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/5A9BEA702D7611EB9827C368C4F9AE02.roa File: 5A9BEA702D7611EB9827C368C4F9AE02.roa (raw, json) Hash identifier: mPymEW6z8IFo04Vj9swNHA6t8X5G4yl8M8HmOF186ew= Subject key identifier: F8:A4:6D:BD:9C:8A:B6:AB:CE:47:45:41:EA:EF:CB:E6:A4:F3:77:A8 Certificate issuer: /CN=A915DAF1/serialNumber=BB9F42CFCE388EDC4B29EA65DEB6162B256D2102 Certificate serial: 065B Authority key identifier: BB:9F:42:CF:CE:38:8E:DC:4B:29:EA:65:DE:B6:16:2B:25:6D:21:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/5A9BEA702D7611EB9827C368C4F9AE02.roa Signing time: Mon 04 Mar 2024 23:42:32 +0000 ROA not before: Mon 04 Mar 2024 23:42:32 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140224 IP address blocks: 103.148.186.0/24 maxlen: 24 103.148.187.0/24 maxlen: 24 2001:df2:e380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.crl rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DAF1/serialNumber=BB9F42CFCE388EDC4B29EA65DEB6162B256D2102 Validity Not Before: Mar 4 23:42:32 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e65c68-d420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8e:b9:80:32:88:3b:bb:83:81:22:71:59:c2: cc:94:4f:37:92:1f:d4:93:66:06:79:1e:e4:9d:28: 1b:af:3e:b5:58:92:a6:70:30:04:47:e3:1f:35:d4: 31:36:f7:44:6b:08:28:0e:7f:60:22:d6:b4:d0:9f: 89:dd:cb:ba:cc:23:fc:26:5d:1a:14:a1:e6:ff:00: b9:9a:e3:19:1c:0b:63:fa:e2:2b:95:fe:4c:b0:be: 21:a5:1a:2b:6d:98:e6:8b:6b:bd:27:52:7b:80:78: 77:95:7b:1b:aa:23:c8:30:2d:77:80:b4:2e:05:04: 19:2e:ec:ab:96:99:26:0a:3f:3b:ba:fd:83:c6:17: 22:a8:0d:e3:70:f4:40:c7:54:2e:ef:19:93:70:1d: 84:89:0e:9d:cc:c8:21:be:82:c2:98:4c:36:4b:e6: f5:71:50:31:3d:7f:42:d6:f3:9f:14:76:31:0c:5a: b1:d6:93:56:69:b0:e6:41:3e:aa:08:1f:8f:7d:24: 9e:cb:d2:7c:da:56:d7:c0:ab:fc:ea:d5:8d:18:0e: 37:4c:ff:de:d9:8f:db:d9:39:e1:8b:f7:06:2f:ff: 51:a8:14:e5:a9:44:5b:ad:1e:c5:c7:bc:a4:f1:b0: 4b:b4:bf:cb:01:46:b8:54:53:69:54:31:f3:8e:4d: 92:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A4:6D:BD:9C:8A:B6:AB:CE:47:45:41:EA:EF:CB:E6:A4:F3:77:A8 X509v3 Authority Key Identifier: keyid:BB:9F:42:CF:CE:38:8E:DC:4B:29:EA:65:DE:B6:16:2B:25:6D:21:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/5A9BEA702D7611EB9827C368C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.186.0/23 IPv6: 2001:df2:e380::/48 Signature Algorithm: sha256WithRSAEncryption 17:e5:d2:22:25:e1:f0:4a:de:b5:94:72:b3:9c:60:e2:f9:75: 45:84:21:d0:77:8e:40:24:f2:02:c3:6c:a0:9f:72:bf:01:3b: 94:ba:89:ab:76:1a:b8:bf:3c:bd:fa:63:77:3c:ea:d3:be:83: f0:3d:65:b4:8a:f7:ff:0a:61:ce:42:8d:1c:fa:9e:fb:21:ea: bf:e1:ef:40:6c:ea:a3:03:33:42:10:2b:65:da:fe:78:e4:82: 13:b1:0c:6c:f8:6c:fa:e2:29:74:05:e4:2b:96:95:4b:90:42: d2:7a:99:54:c2:f8:50:8f:05:8d:df:c8:ec:e4:bf:59:fa:ad: ce:eb:50:e1:ba:6c:9e:1b:72:45:df:a8:a3:05:eb:c3:5e:60: f4:4b:a3:36:49:30:8c:09:da:ab:8d:7c:b4:eb:ed:e8:73:5c: 9f:88:2b:a3:7a:9e:aa:d6:45:b1:82:c3:5c:ae:ba:48:5f:7b: bb:78:c5:14:1a:63:b5:9a:bd:c9:e3:59:82:68:7a:8a:58:d3: b2:ba:66:e1:93:99:6d:71:6d:e4:a9:9c:32:eb:52:0b:3f:2b: 49:e1:a1:84:6c:9b:1e:a8:d3:09:07:5f:d6:b9:89:6c:0e:fc: 7c:c2:5c:23:16:89:26:61:ea:32:71:ed:86:02:e2:bf:fa:8a: f1:e7:cb:b2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBRjExMTAvBgNVBAUTKEJCOUY0MkNGQ0UzODhFREM0QjI5RUE2NURFQjYxNjJC MjU2RDIxMDIwHhcNMjQwMzA0MjM0MjMyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2NWM2OC1kNDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI65gDKIO7uDgSJxWcLMlE83kh/Uk2YGeR7knSgbrz61WJKmcDAER+MfNdQx NvdEawgoDn9gIta00J+J3cu6zCP8Jl0aFKHm/wC5muMZHAtj+uIrlf5MsL4hpRor bZjmi2u9J1J7gHh3lXsbqiPIMC13gLQuBQQZLuyrlpkmCj87uv2DxhciqA3jcPRA x1Qu7xmTcB2EiQ6dzMghvoLCmEw2S+b1cVAxPX9C1vOfFHYxDFqx1pNWabDmQT6q CB+PfSSey9J82lbXwKv86tWNGA43TP/e2Y/b2Tnhi/cGL/9RqBTlqURbrR7Fx7yk 8bBLtL/LAUa4VFNpVDHzjk2S9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPikbb2c irarzkdFQervy+ak83eoMB8GA1UdIwQYMBaAFLufQs/OOI7cSynqZd62FislbSEC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REFGMS8wQjJCOTBBNDJE NzUxMUVCOTM2RTM0NThDNEY5QUUwMi91NTlDejg0NGp0eExLZXBsM3JZV0t5VnRJ UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1OUN6ODQ0anR4TEtlcGwzcllXS3lWdElRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBRjEvMEIyQjkwQTQyRDc1MTFFQjkzNkUzNDU4QzRGOUFFMDIvNUE5QkVBNzAy RDc2MTFFQjk4MjdDMzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlLowDwQCAAIwCQMHACABDfLjgDANBgkqhkiG9w0BAQsF AAOCAQEAF+XSIiXh8EretZRys5xg4vl1RYQh0HeOQCTyAsNsoJ9yvwE7lLqJq3Ya uL88vfpjdzzq076D8D1ltIr3/wphzkKNHPqe+yHqv+HvQGzqowMzQhArZdr+eOSC E7EMbPhs+uIpdAXkK5aVS5BC0nqZVML4UI8Fjd/I7OS/WfqtzutQ4bpsnhtyRd+o owXrw15g9EujNkkwjAnaq418tOvt6HNcn4gro3qeqtZFsYLDXK66SF97u3jFFBpj tZq9yeNZgmh6iljTsrpm4ZOZbXFt5KmcMutSCz8rSeGhhGybHqjTCQdf1rmJbA78 fMJcIxaJJmHqMnHthgLiv/qK8efLsg== -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:41 2024 by rpki-client on console-ams.rpki-client.org