$ rpki-client -vvf rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/AF3CEA305ADB11EEA96AE979C4F9AE02.roa File: AF3CEA305ADB11EEA96AE979C4F9AE02.roa (raw, json) Hash identifier: wxVKUqydm62Dk782SZrIhbwE5T75wUycQIm2l+eMW2Q= Subject key identifier: 64:76:DE:4E:AA:4B:CA:FA:46:9F:0A:C1:3D:11:05:99:07:CE:3B:76 Certificate issuer: /CN=A917E726/serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Certificate serial: 09E9 Authority key identifier: D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/AF3CEA305ADB11EEA96AE979C4F9AE02.roa Signing time: Sat 02 Mar 2024 20:58:53 +0000 ROA not before: Sat 02 Mar 2024 20:58:53 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138623 IP address blocks: 103.148.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2537 (0x9e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E726/serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Validity Not Before: Mar 2 20:58:53 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e3930c-d67f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:eb:ac:1b:56:29:24:08:d9:eb:36:5e:15:a9: d6:75:ef:5c:2d:7d:2c:8d:06:a1:58:88:19:a5:78: 12:fc:66:56:e6:1f:ef:43:03:4b:8e:c2:d0:2e:ed: 01:20:da:b3:d3:57:70:25:fe:3f:7c:9c:02:5b:a1: e7:87:77:26:71:06:ca:70:26:ad:8c:6e:a9:ed:f8: 38:49:3b:d7:fe:2a:30:cd:1c:c8:b0:fb:9f:3e:9b: 8e:56:c4:59:7b:9a:e7:c4:4b:d2:e7:0e:3f:66:dc: 97:97:c8:91:9d:2e:47:a7:02:13:cd:99:0c:da:7d: 2c:1c:5d:95:56:69:f3:98:78:d7:3d:44:61:5d:00: aa:38:a6:23:c6:49:94:ec:9d:ba:8b:5f:b4:08:d4: 32:49:30:c1:75:d5:d4:5b:df:44:1f:ee:49:8a:83: c5:78:2f:28:cb:3c:ab:00:f4:e2:56:2d:de:35:bc: 44:df:48:55:69:e9:0e:34:24:20:d2:cf:8a:ae:1f: c8:eb:89:ee:43:ca:28:cc:63:80:cd:ef:09:14:c3: 1e:aa:d4:81:a2:25:6a:0b:ac:4b:ba:51:17:f0:fa: 34:7e:48:3f:72:99:d2:5f:8d:9f:fa:79:d2:d5:62: 81:a5:ee:f8:34:6d:8d:78:ea:f3:a2:85:69:18:d1: e1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:76:DE:4E:AA:4B:CA:FA:46:9F:0A:C1:3D:11:05:99:07:CE:3B:76 X509v3 Authority Key Identifier: keyid:D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/AF3CEA305ADB11EEA96AE979C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.172.0/24 Signature Algorithm: sha256WithRSAEncryption 09:2c:04:5c:38:91:54:8d:48:5f:bc:3a:75:b1:30:fa:8f:3b: c1:92:e9:cb:81:fe:ea:f3:11:de:24:4c:65:a2:da:8e:63:e5: b8:75:06:bd:82:a1:16:06:08:c6:01:ad:9d:72:79:ff:fa:a3: ba:bc:33:4d:40:a9:fa:75:32:94:5e:e8:a6:b3:37:eb:04:d3: 0c:0d:f8:d8:ea:78:86:8a:1a:46:ed:8b:f9:02:0b:bb:3a:06: 94:c3:32:21:c2:58:10:54:96:8f:42:92:6d:ad:45:76:60:db: 36:c8:29:f1:82:10:72:9d:3b:74:a9:05:01:a4:09:11:57:e4: a1:09:c0:f7:f0:62:9a:b5:50:45:76:c8:e5:98:29:3c:89:d7: 84:c9:14:f6:ae:35:d1:11:8f:69:a9:00:1b:c8:02:b3:57:fc: 25:94:ce:d2:1b:b7:1c:03:46:37:50:02:74:ab:c5:bd:65:9d: 53:3d:4b:9b:78:98:bd:b9:aa:2a:67:65:97:02:04:b1:7e:e6: 0a:e0:50:40:38:f4:b0:68:17:d4:13:e1:60:d7:cf:8e:90:5e: b6:94:d4:30:ac:cb:e6:a4:15:49:bc:e7:94:6c:d7:60:68:9d: 2c:79:56:55:fd:4d:6c:74:c7:45:bb:20:a1:da:34:6b:13:10: 06:49:a2:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3MjYxMTAvBgNVBAUTKEQ3NEFDMUI4QTMzMzUyNDNGQ0IyRjk5MDVCQzUxREJE Q0IwRTIzNkQwHhcNMjQwMzAyMjA1ODUzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzOTMwYy1kNjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOusG1YpJAjZ6zZeFanWde9cLX0sjQahWIgZpXgS/GZW5h/vQwNLjsLQLu0B INqz01dwJf4/fJwCW6Hnh3cmcQbKcCatjG6p7fg4STvX/iowzRzIsPufPpuOVsRZ e5rnxEvS5w4/ZtyXl8iRnS5HpwITzZkM2n0sHF2VVmnzmHjXPURhXQCqOKYjxkmU 7J26i1+0CNQySTDBddXUW99EH+5JioPFeC8oyzyrAPTiVi3eNbxE30hVaekONCQg 0s+Krh/I64nuQ8oozGOAze8JFMMeqtSBoiVqC6xLulEX8Po0fkg/cpnSX42f+nnS 1WKBpe74NG2NeOrzooVpGNHhhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGR23k6q S8r6Rp8KwT0RBZkHzjt2MB8GA1UdIwQYMBaAFNdKwbijM1JD/LL5kFvFHb3LDiNt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTcyNi82REJGQTM4QTUy RDkxMUVBODI3REQwODJDNEY5QUUwMi8xMHJCdUtNelVrUDhzdm1RVzhVZHZjc09J MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwckJ1S016VWtQOHN2bVFXOFVkdmNzT0kyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U3MjYvNkRCRkEzOEE1MkQ5MTFFQTgyN0REMDgyQzRGOUFFMDIvQUYzQ0VBMzA1 QURCMTFFRUE5NkFFOTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlKwwDQYJKoZIhvcNAQELBQADggEBAAksBFw4kVSNSF+8 OnWxMPqPO8GS6cuB/urzEd4kTGWi2o5j5bh1Br2CoRYGCMYBrZ1yef/6o7q8M01A qfp1MpRe6KazN+sE0wwN+NjqeIaKGkbti/kCC7s6BpTDMiHCWBBUlo9Ckm2tRXZg 2zbIKfGCEHKdO3SpBQGkCRFX5KEJwPfwYpq1UEV2yOWYKTyJ14TJFPauNdERj2mp ABvIArNX/CWUztIbtxwDRjdQAnSrxb1lnVM9S5t4mL25qipnZZcCBLF+5grgUEA4 9LBoF9QT4WDXz46QXraU1DCsy+akFUm855Rs12BonSx5VlX9TWx0x0W7IKHaNGsT EAZJopE= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:29 2024 by rpki-client on console-fra.rpki-client.org