$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/DCEA0362C17C11ED92AD7D85C4F9AE02.roa File: DCEA0362C17C11ED92AD7D85C4F9AE02.roa (raw, json) Hash identifier: yoMXZm0LgcOJnV0IoBVg2laJUkPV5hmT1fMRlUH17pM= Subject key identifier: FC:15:1F:41:5A:27:D9:2C:BE:E0:E1:F4:A1:01:89:BC:01:89:A0:85 Certificate issuer: /CN=A9167FF5/serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Certificate serial: B3 Authority key identifier: BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/DCEA0362C17C11ED92AD7D85C4F9AE02.roa Signing time: Wed 21 Feb 2024 05:37:33 +0000 ROA not before: Wed 21 Feb 2024 05:37:33 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 140210 IP address blocks: 103.148.154.0/23 maxlen: 23 103.148.154.0/24 maxlen: 24 103.148.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FF5/serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Validity Not Before: Feb 21 05:37:33 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d58c1c-19f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cc:b3:f6:46:5b:31:b4:d7:fd:7f:8c:c6:f8: dd:41:7f:c1:d8:99:1c:93:e1:6c:53:c7:b7:52:22: 17:df:7e:ff:27:c3:09:ba:d8:9b:fc:2b:79:a8:de: d5:df:8b:4e:2f:44:75:63:23:c8:33:94:ae:17:71: 77:eb:76:89:01:8a:57:c0:da:41:ad:54:ff:f8:96: 6a:6f:c0:42:fa:bf:25:06:f8:c7:68:75:10:01:be: 7a:06:60:76:bf:fd:bc:93:a3:e4:b2:24:eb:b2:31: c3:43:8d:e6:17:09:8e:2a:ac:6a:33:cf:a0:ff:9f: df:6a:bd:27:90:8b:7e:25:d1:64:d3:82:1b:23:11: 94:02:6d:18:65:0b:24:d7:4d:be:cf:62:47:06:06: 10:b3:67:f1:d1:43:db:17:1b:96:1d:27:95:d2:fd: aa:81:2a:7c:23:19:09:3d:2e:5a:6d:2f:ec:7f:d4: 34:ca:67:b4:91:6c:22:50:10:f8:69:2e:0f:ad:c4: 0e:94:a3:8c:20:67:52:4d:85:b6:55:8f:b8:05:9a: 3a:5f:ad:33:dc:65:80:96:d8:24:51:b1:6b:f8:d9: 37:ad:82:36:75:08:22:8e:35:ff:89:59:ae:d1:3b: ea:35:6d:80:13:b4:3c:06:3d:ef:bf:d0:46:70:5c: 53:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:15:1F:41:5A:27:D9:2C:BE:E0:E1:F4:A1:01:89:BC:01:89:A0:85 X509v3 Authority Key Identifier: keyid:BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/DCEA0362C17C11ED92AD7D85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.154.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:dc:85:d4:23:7c:0b:85:30:81:2a:35:7f:89:e4:1f:e4:9d: ff:86:fc:fb:90:0f:96:f9:0d:bb:17:34:6d:60:a9:a4:08:8d: a7:a1:c8:8d:d7:16:f8:cc:3a:84:30:b2:c6:91:dc:15:60:00: dc:5c:96:d3:3d:6b:25:12:25:ea:2e:2e:85:bf:48:72:dc:ae: 6c:95:65:78:d9:f3:54:b9:96:a2:3b:65:97:d6:aa:b6:c9:13: 01:76:dc:5e:39:14:b1:82:3d:f7:1d:68:c5:ff:42:a9:15:54: 37:0a:d3:52:96:09:b8:91:76:00:65:19:81:e8:c7:3f:0d:12: 74:3d:f3:c8:a9:67:b6:7c:c5:47:e3:4e:40:9c:7e:57:dc:35: 8a:29:f7:58:64:74:35:ab:70:e9:68:67:41:11:c7:06:8b:79: 91:42:31:70:4f:84:d9:75:fa:f9:84:2d:e5:ef:e0:79:3c:49: e8:1d:c8:47:f0:42:12:f8:0f:6a:98:db:36:c4:87:ce:7c:85: aa:0e:ba:ca:e7:59:09:eb:2f:f3:ae:96:22:38:eb:18:35:d1: 22:68:8c:77:46:32:bd:12:f7:eb:4a:1d:61:0a:3d:34:58:c1: 00:ad:ec:44:ee:e0:d8:32:a0:f5:82:a6:5d:5e:07:3f:41:e6: 01:40:08:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGRjUxMTAvBgNVBAUTKEJGQUYyMzYzNzU3NzI5RUUwNUFCMjFCNzFEMjA1QUI0 MThFMUI4MzQwHhcNMjQwMjIxMDUzNzMzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ1OGMxYy0xOWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsyz9kZbMbTX/X+MxvjdQX/B2Jkck+FsU8e3UiIX337/J8MJutib/Ct5qN7V 34tOL0R1YyPIM5SuF3F363aJAYpXwNpBrVT/+JZqb8BC+r8lBvjHaHUQAb56BmB2 v/28k6PksiTrsjHDQ43mFwmOKqxqM8+g/5/far0nkIt+JdFk04IbIxGUAm0YZQsk 102+z2JHBgYQs2fx0UPbFxuWHSeV0v2qgSp8IxkJPS5abS/sf9Q0yme0kWwiUBD4 aS4PrcQOlKOMIGdSTYW2VY+4BZo6X60z3GWAltgkUbFr+Nk3rYI2dQgijjX/iVmu 0TvqNW2AE7Q8Bj3vv9BGcFxTUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPwVH0Fa J9ksvuDh9KEBibwBiaCFMB8GA1UdIwQYMBaAFL+vI2N1dynuBashtx0gWrQY4bg0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZGNS8yNzIwNDM5MkMx NzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tlNEZxeUczSFNCYXRCamh1 RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y2OGpZM1YzS2U0RnF5RzNIU0JhdEJqaHVEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdGRjUvMjcyMDQzOTJDMTc4MTFFREFGNTRBOTVGQzRGOUFFMDIvRENFQTAzNjJD MTdDMTFFRDkyQUQ3RDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlJowDQYJKoZIhvcNAQELBQADggEBAJzchdQjfAuFMIEq NX+J5B/knf+G/PuQD5b5DbsXNG1gqaQIjaehyI3XFvjMOoQwssaR3BVgANxcltM9 ayUSJeouLoW/SHLcrmyVZXjZ81S5lqI7ZZfWqrbJEwF23F45FLGCPfcdaMX/QqkV VDcK01KWCbiRdgBlGYHoxz8NEnQ988ipZ7Z8xUfjTkCcflfcNYop91hkdDWrcOlo Z0ERxwaLeZFCMXBPhNl1+vmELeXv4Hk8SegdyEfwQhL4D2qY2zbEh858haoOusrn WQnrL/OuliI46xg10SJojHdGMr0S9+tKHWEKPTRYwQCt7ETu4NgyoPWCpl1eBz9B 5gFACIQ= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:57 2024 by rpki-client on console-fra.rpki-client.org