$ rpki-client -vvf rpki.apnic.net/member_repository/A918C5C8/3DEF45CEF5E511EBAE946437C4F9AE02/C98918824D4D11EEAC3AE136C4F9AE02.roa File: C98918824D4D11EEAC3AE136C4F9AE02.roa (raw, json) Hash identifier: wIJicg9FtrJ5+oKf02zdhLhzVM1vUaVObtbYVZXMezk= Subject key identifier: 32:62:C6:49:5F:27:BC:A6:94:77:89:06:2C:8D:63:15:F6:15:D1:B5 Certificate issuer: /CN=A918C5C8/serialNumber=AB8A751417FF67FC9948E3D427B84DD6593E9183 Certificate serial: 047F Authority key identifier: AB:8A:75:14:17:FF:67:FC:99:48:E3:D4:27:B8:4D:D6:59:3E:91:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4p1FBf_Z_yZSOPUJ7hN1lk-kYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C5C8/3DEF45CEF5E511EBAE946437C4F9AE02/C98918824D4D11EEAC3AE136C4F9AE02.roa Signing time: Fri 17 May 2024 02:05:48 +0000 ROA not before: Fri 17 May 2024 02:05:48 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 142552 IP address blocks: 103.149.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C5C8/3DEF45CEF5E511EBAE946437C4F9AE02/q4p1FBf_Z_yZSOPUJ7hN1lk-kYM.crl rsync://rpki.apnic.net/member_repository/A918C5C8/3DEF45CEF5E511EBAE946437C4F9AE02/q4p1FBf_Z_yZSOPUJ7hN1lk-kYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4p1FBf_Z_yZSOPUJ7hN1lk-kYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1151 (0x47f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C5C8/serialNumber=AB8A751417FF67FC9948E3D427B84DD6593E9183 Validity Not Before: May 17 02:05:48 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6646bb7c-66e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2a:61:2b:81:7b:44:6d:0d:1b:2e:db:bf:b7: 5a:35:4a:6b:a9:ac:02:be:12:74:a3:98:7a:f4:90: fa:5d:37:d0:fb:2c:d4:f6:13:48:7e:86:61:31:57: 4e:c5:43:17:04:08:f2:d9:8b:0b:29:2f:e3:18:97: 10:24:4b:e1:27:f5:0f:a3:71:bd:48:bd:8b:b9:90: e8:1f:a0:f6:17:e0:23:2b:b8:9d:e0:a5:d5:6b:fc: e1:3b:ef:ad:4b:9e:e6:8a:e6:b5:40:d1:f0:3b:2e: a1:7e:fd:46:73:7a:38:47:81:59:b0:52:c2:86:bd: 11:58:ad:ef:69:f5:33:05:62:5d:7d:6b:28:22:87: 13:93:f1:b4:b6:10:f4:0b:44:87:92:eb:da:fc:ab: 33:b9:94:cd:72:12:0b:f2:37:91:a2:e6:49:9a:24: 4a:b3:73:60:d6:f7:7b:75:52:18:7a:87:3e:54:0f: 37:2f:4e:5b:74:87:67:68:9f:c2:f7:11:46:c7:73: eb:3c:85:ee:a3:bd:b1:da:b3:03:42:75:99:93:45: d1:07:07:17:41:27:c2:d4:13:04:b6:d3:c9:23:44: ef:2f:1e:d1:b9:c9:45:b2:68:0b:a8:f0:7d:80:9c: 72:4f:cb:24:46:07:1a:05:32:c4:7b:e9:cb:45:9d: 34:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:62:C6:49:5F:27:BC:A6:94:77:89:06:2C:8D:63:15:F6:15:D1:B5 X509v3 Authority Key Identifier: keyid:AB:8A:75:14:17:FF:67:FC:99:48:E3:D4:27:B8:4D:D6:59:3E:91:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C5C8/3DEF45CEF5E511EBAE946437C4F9AE02/q4p1FBf_Z_yZSOPUJ7hN1lk-kYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q4p1FBf_Z_yZSOPUJ7hN1lk-kYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C5C8/3DEF45CEF5E511EBAE946437C4F9AE02/C98918824D4D11EEAC3AE136C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.240.0/24 Signature Algorithm: sha256WithRSAEncryption 16:13:2a:13:c9:0b:c0:c2:11:09:5b:45:89:1c:0b:bf:8a:ff: 38:cf:91:f1:37:e2:3f:c7:23:b1:92:a9:5f:bc:98:86:f6:54: 54:30:f2:89:33:31:61:be:3f:c0:69:c3:1a:00:37:20:cd:a1: 86:c9:50:2f:cf:be:46:88:3b:63:06:19:a5:48:d8:90:96:05: 39:09:97:63:59:56:a5:63:9e:7c:5e:57:a2:59:1c:56:3f:4d: f2:f9:74:61:54:da:22:65:d0:45:f9:e9:c5:54:4f:d8:ee:1c: ca:91:a2:6c:5a:c8:df:80:8d:fa:cb:50:ea:e4:da:6a:cc:a8: 4e:7b:70:d6:f5:3b:6f:1f:2e:e9:6d:73:9b:0d:8f:64:88:8e: e1:8c:d5:33:7f:81:3c:c4:85:a9:6c:b1:73:6e:16:2f:fc:ac: 5c:50:ce:38:de:5b:94:84:1b:17:47:b0:c3:d0:c3:5b:1d:de: 7a:f1:83:d9:1f:8f:7d:c8:fa:0b:74:29:af:38:61:23:e6:1b: 70:e0:94:2f:82:77:e0:c4:87:18:af:37:a7:ad:05:86:1c:bd: 6a:8a:d6:6c:16:50:56:ec:10:02:ac:30:fe:40:da:f8:46:1a: 8c:40:52:82:0f:41:f8:d8:5a:fe:b0:cc:30:e3:fa:48:e2:98: 4e:13:ce:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM1QzgxMTAvBgNVBAUTKEFCOEE3NTE0MTdGRjY3RkM5OTQ4RTNENDI3Qjg0REQ2 NTkzRTkxODMwHhcNMjQwNTE3MDIwNTQ4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2YmI3Yy02NmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CphK4F7RG0NGy7bv7daNUprqawCvhJ0o5h69JD6XTfQ+yzU9hNIfoZhMVdO xUMXBAjy2YsLKS/jGJcQJEvhJ/UPo3G9SL2LuZDoH6D2F+AjK7id4KXVa/zhO++t S57miua1QNHwOy6hfv1Gc3o4R4FZsFLChr0RWK3vafUzBWJdfWsoIocTk/G0thD0 C0SHkuva/KszuZTNchIL8jeRouZJmiRKs3Ng1vd7dVIYeoc+VA83L05bdIdnaJ/C 9xFGx3PrPIXuo72x2rMDQnWZk0XRBwcXQSfC1BMEttPJI0TvLx7RuclFsmgLqPB9 gJxyT8skRgcaBTLEe+nLRZ00ywIDAQABo4IClTCCApEwHQYDVR0OBBYEFDJixklf J7ymlHeJBiyNYxX2FdG1MB8GA1UdIwQYMBaAFKuKdRQX/2f8mUjj1Ce4TdZZPpGD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzVDOC8zREVGNDVDRUY1 RTUxMUVCQUU5NDY0MzdDNEY5QUUwMi9xNHAxRkJmX1pfeVpTT1BVSjdoTjFsay1r WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E0cDFGQmZfWl95WlNPUFVKN2hOMWxrLWtZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM1QzgvM0RFRjQ1Q0VGNUU1MTFFQkFFOTQ2NDM3QzRGOUFFMDIvQzk4OTE4ODI0 RDREMTFFRUFDM0FFMTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlfAwDQYJKoZIhvcNAQELBQADggEBABYTKhPJC8DCEQlb RYkcC7+K/zjPkfE34j/HI7GSqV+8mIb2VFQw8okzMWG+P8BpwxoANyDNoYbJUC/P vkaIO2MGGaVI2JCWBTkJl2NZVqVjnnxeV6JZHFY/TfL5dGFU2iJl0EX56cVUT9ju HMqRomxayN+AjfrLUOrk2mrMqE57cNb1O28fLultc5sNj2SIjuGM1TN/gTzEhals sXNuFi/8rFxQzjjeW5SEGxdHsMPQw1sd3nrxg9kfj33I+gt0Ka84YSPmG3DglC+C d+DEhxivN6etBYYcvWqK1mwWUFbsEAKsMP5A2vhGGoxAUoIPQfjYWv6wzDDj+kji mE4Tzrs= -----END CERTIFICATE-----Generated at Fri May 17 03:06:32 2024 by rpki-client on console-ams.rpki-client.org