$ rpki-client -vvf rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/A20DDFE2725911ED8CB4D763C4F9AE02.roa File: A20DDFE2725911ED8CB4D763C4F9AE02.roa (raw, json) Hash identifier: Shs9mCOElP23gCk1qChO6oCDzXrGpICaqUKMU94TuiQ= Subject key identifier: B9:65:21:4E:9B:79:23:3B:69:64:23:2C:89:BA:61:90:8A:12:8F:43 Certificate issuer: /CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Certificate serial: BD Authority key identifier: 05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/A20DDFE2725911ED8CB4D763C4F9AE02.roa Signing time: Sun 03 Dec 2023 04:54:56 +0000 ROA not before: Sun 03 Dec 2023 04:54:56 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 63526 IP address blocks: 103.48.160.0/23 maxlen: 23 103.48.160.0/24 maxlen: 24 103.48.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E77C/serialNumber=05037E4CDE44EC6642C4169FA851372D78FBFCAB Validity Not Before: Dec 3 04:54:56 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656c0a20-f5b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:28:e0:60:d6:54:e5:bd:87:e8:29:59:85:07: 85:b9:b1:ed:34:e6:88:70:4b:59:29:8e:96:6a:43: 51:f3:11:38:9c:fc:34:43:80:cf:11:64:11:67:3e: 53:d0:48:e4:db:3a:75:f2:b7:ce:b9:06:41:8d:67: 2b:98:bc:d2:38:49:f6:4f:5a:40:e7:e6:ad:c7:c5: cd:74:b8:ba:7c:5e:5a:25:2c:a9:00:fc:2f:c7:db: c9:6c:9e:3b:84:27:c4:26:78:aa:aa:cc:61:8e:ab: bb:2c:81:ee:7e:50:4f:56:f8:0b:7b:1c:98:f4:d0: 08:25:ea:8b:6a:29:68:f7:3f:ef:8c:10:d9:93:81: 6d:73:ea:ee:86:f1:15:98:72:ec:c3:e2:4e:cc:65: db:a7:33:13:2e:d1:30:d4:18:dd:64:b2:2c:b5:be: 67:ec:d0:37:68:7c:2d:41:2c:07:43:34:85:3c:cc: e0:52:05:3a:25:f0:47:ef:d2:ba:17:23:b9:9e:a0: 14:9f:fb:a0:9e:f4:93:51:46:e8:62:e3:28:6e:54: a6:22:4f:37:4c:93:af:92:6a:a1:18:ab:0f:4e:49: 72:39:8b:3b:a9:65:eb:a9:a6:6f:d9:f0:53:2b:b9: c5:a0:c4:cd:ab:73:99:89:a0:be:83:bf:58:b1:dd: e6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:65:21:4E:9B:79:23:3B:69:64:23:2C:89:BA:61:90:8A:12:8F:43 X509v3 Authority Key Identifier: keyid:05:03:7E:4C:DE:44:EC:66:42:C4:16:9F:A8:51:37:2D:78:FB:FC:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/BQN-TN5E7GZCxBafqFE3LXj7_Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQN-TN5E7GZCxBafqFE3LXj7_Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E77C/F700A9EC725611ED90211562C4F9AE02/A20DDFE2725911ED8CB4D763C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.160.0/23 Signature Algorithm: sha256WithRSAEncryption 25:71:01:fb:af:a0:20:55:1a:3b:a0:59:18:7b:b5:2b:31:b8: 19:38:be:e8:74:1e:c7:af:31:c4:4a:4c:df:4c:98:89:9c:e8: 67:ed:fe:67:08:a4:a6:c5:15:ef:81:5f:85:d7:f9:71:fd:e5: c5:8b:cc:a7:15:c9:cf:8b:6a:f9:7e:ee:61:5d:04:e3:2d:a6: c4:97:8e:d9:cc:08:f1:f0:f2:1b:fc:ef:1c:06:a0:78:5a:05: bb:bb:9d:06:28:0b:61:38:9b:ee:8c:ef:af:50:2c:46:70:3f: 7c:99:ee:66:2c:c2:40:b6:1f:e1:dd:0e:42:08:f8:84:7e:fd: 43:0f:f6:94:c4:56:b4:4c:03:9a:90:f0:fc:fa:75:15:26:03: 19:f1:3d:13:23:6c:54:ac:f2:dc:7c:ce:f2:21:95:6b:19:42: af:4f:67:2c:db:b3:b3:8b:e1:73:c5:32:00:a4:45:76:bb:01: ba:a4:c5:71:37:87:84:06:3a:f7:e9:d2:2e:c7:a9:78:d8:da: a8:38:48:fe:ca:33:2d:e3:14:3c:d3:e4:0b:27:42:fd:bd:27: 95:63:6d:06:f0:00:06:f7:60:8b:f8:a6:73:38:fc:83:74:68: 2a:73:b5:03:97:e8:75:79:69:bf:50:9e:01:cb:ba:84:f8:13: 56:2e:ff:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3N0MxMTAvBgNVBAUTKDA1MDM3RTRDREU0NEVDNjY0MkM0MTY5RkE4NTEzNzJE NzhGQkZDQUIwHhcNMjMxMjAzMDQ1NDU2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZjMGEyMC1mNWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSjgYNZU5b2H6ClZhQeFubHtNOaIcEtZKY6WakNR8xE4nPw0Q4DPEWQRZz5T 0Ejk2zp18rfOuQZBjWcrmLzSOEn2T1pA5+atx8XNdLi6fF5aJSypAPwvx9vJbJ47 hCfEJniqqsxhjqu7LIHuflBPVvgLexyY9NAIJeqLailo9z/vjBDZk4Ftc+ruhvEV mHLsw+JOzGXbpzMTLtEw1BjdZLIstb5n7NA3aHwtQSwHQzSFPMzgUgU6JfBH79K6 FyO5nqAUn/ugnvSTUUboYuMoblSmIk83TJOvkmqhGKsPTklyOYs7qWXrqaZv2fBT K7nFoMTNq3OZiaC+g79Ysd3mVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLllIU6b eSM7aWQjLIm6YZCKEo9DMB8GA1UdIwQYMBaAFAUDfkzeROxmQsQWn6hRNy14+/yr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Qy9GNzAwQTlFQzcy NTYxMUVEOTAyMTE1NjJDNEY5QUUwMi9CUU4tVE41RTdHWkN4QmFmcUZFM0xYajdf S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRTi1UTjVFN0daQ3hCYWZxRkUzTFhqN19Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU3N0MvRjcwMEE5RUM3MjU2MTFFRDkwMjExNTYyQzRGOUFFMDIvQTIwRERGRTI3 MjU5MTFFRDhDQjRENzYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnMKAwDQYJKoZIhvcNAQELBQADggEBACVxAfuvoCBVGjug WRh7tSsxuBk4vuh0HsevMcRKTN9MmImc6Gft/mcIpKbFFe+BX4XX+XH95cWLzKcV yc+Lavl+7mFdBOMtpsSXjtnMCPHw8hv87xwGoHhaBbu7nQYoC2E4m+6M769QLEZw P3yZ7mYswkC2H+HdDkII+IR+/UMP9pTEVrRMA5qQ8Pz6dRUmAxnxPRMjbFSs8tx8 zvIhlWsZQq9PZyzbs7OL4XPFMgCkRXa7AbqkxXE3h4QGOvfp0i7HqXjY2qg4SP7K My3jFDzT5AsnQv29J5VjbQbwAAb3YIv4pnM4/IN0aCpztQOX6HV5ab9QngHLuoT4 E1Yu//c= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org