$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/49F85154F41411EA80EEA916C4F9AE02.roa File: 49F85154F41411EA80EEA916C4F9AE02.roa (raw, json) Hash identifier: YnIsSyoulvS66VwOM/5L/PLz1YAoxmdbQUvL26x0NH0= Subject key identifier: 1F:AE:7C:8B:52:F7:D0:55:15:34:B7:8B:BC:05:DB:86:62:D1:19:7C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C94 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/49F85154F41411EA80EEA916C4F9AE02.roa Signing time: Wed 10 May 2023 16:25:13 +0000 ROA not before: Wed 10 May 2023 16:25:13 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136653 IP address blocks: 103.148.120.0/24 maxlen: 24 103.148.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27796 (0x6c94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:25:13 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc569-24f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:b0:86:79:54:6d:44:27:be:6a:93:00:fe:82: b4:92:c1:99:59:80:9e:1b:6c:77:dc:0b:6a:26:2a: 5d:23:90:76:d0:9e:ea:61:1b:c4:df:14:c2:0f:5a: 2c:cb:d6:e7:d7:3b:59:ac:f2:8b:11:bc:f1:fd:35: e5:2c:45:2b:7e:a9:79:41:7b:82:09:68:5b:1d:7c: 87:55:77:69:d4:30:29:6f:86:1f:7a:46:41:42:7c: 53:cd:c8:d9:83:58:60:03:62:7b:8c:97:8b:de:e4: ca:c1:22:7f:41:81:ab:4c:c9:3d:2a:6e:ec:54:00: 60:b1:60:46:41:f1:a1:68:3b:d4:e4:38:37:1f:dd: 2a:1d:b1:89:68:22:a9:50:a9:ce:dc:f9:6d:5c:7a: fc:21:10:2c:6b:1d:93:28:f2:cf:ee:8b:94:ad:2e: 00:cf:38:a8:a9:02:27:ba:99:2d:81:2f:34:84:f3: d7:b0:7c:2a:5d:cf:70:e5:4e:7b:ee:83:3f:1d:0c: 21:64:36:b9:65:d3:dd:81:fb:47:5d:21:16:0e:75: c7:22:c6:69:21:ae:b0:17:93:7d:f4:43:91:bc:04: 95:ea:a6:d1:37:40:83:d0:d4:02:cc:66:22:2d:4e: 6f:41:33:56:b9:ab:27:04:42:f1:bd:88:b2:23:a1: 9f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:AE:7C:8B:52:F7:D0:55:15:34:B7:8B:BC:05:DB:86:62:D1:19:7C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/49F85154F41411EA80EEA916C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.120.0/23 Signature Algorithm: sha256WithRSAEncryption b5:88:a7:ef:ab:28:04:7d:a5:4f:ac:b8:ba:8a:34:71:26:05: 13:74:fa:4d:b9:90:e3:fd:a2:6e:a5:03:0c:48:ef:16:f6:bd: b0:a5:dd:0d:5a:bc:c1:aa:cc:9a:0e:4a:ac:ea:b1:6f:8a:b9: bf:f3:45:a3:e7:08:8f:ae:2e:d0:82:e5:2c:6c:39:f0:ce:30: 90:39:f1:4d:80:64:6d:36:e7:a8:7c:e0:c8:dc:dc:49:a2:ca: 21:13:44:ce:ba:5f:2a:41:b6:c4:14:0a:26:1d:d8:6b:d9:cb: 07:9a:e1:45:6f:8e:9b:f9:f3:51:cf:d3:0b:88:bf:93:0f:71: 97:53:08:cb:1b:2d:dd:1c:01:a7:12:b3:19:a4:e9:f8:a7:70: 6d:98:18:c5:68:e9:45:df:b0:89:a8:32:79:4a:86:d9:7a:33: 7f:db:3a:eb:d6:be:a6:d0:28:ab:bb:8d:99:d3:77:77:f9:07: 33:4a:45:43:bb:21:55:8e:74:9a:96:c8:df:4a:db:c7:36:93: c6:fa:83:65:9f:17:9f:f8:dc:bd:91:ed:dc:f4:78:65:ae:dd: ef:52:d6:e7:7a:26:1e:3b:61:4f:a7:5e:d4:26:06:3a:ef:da: 47:65:f3:c0:34:d0:e9:64:66:44:eb:4c:cd:b2:19:cc:bd:6d: 39:c1:b1:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICbJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNTEzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU2OS0yNGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9LCGeVRtRCe+apMA/oK0ksGZWYCeG2x33AtqJipdI5B20J7qYRvE3xTCD1os y9bn1ztZrPKLEbzx/TXlLEUrfql5QXuCCWhbHXyHVXdp1DApb4YfekZBQnxTzcjZ g1hgA2J7jJeL3uTKwSJ/QYGrTMk9Km7sVABgsWBGQfGhaDvU5Dg3H90qHbGJaCKp UKnO3PltXHr8IRAsax2TKPLP7ouUrS4AzzioqQInupktgS80hPPXsHwqXc9w5U57 7oM/HQwhZDa5ZdPdgftHXSEWDnXHIsZpIa6wF5N99EORvASV6qbRN0CD0NQCzGYi LU5vQTNWuasnBELxvYiyI6GfYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB+ufItS 99BVFTS3i7wF24Zi0Rl8MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDlGODUxNTRG NDE0MTFFQTgwRUVBOTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlHgwDQYJKoZIhvcNAQELBQADggEBALWIp++rKAR9pU+s uLqKNHEmBRN0+k25kOP9om6lAwxI7xb2vbCl3Q1avMGqzJoOSqzqsW+Kub/zRaPn CI+uLtCC5SxsOfDOMJA58U2AZG0256h84Mjc3EmiyiETRM66XypBtsQUCiYd2GvZ ywea4UVvjpv581HP0wuIv5MPcZdTCMsbLd0cAacSsxmk6fincG2YGMVo6UXfsImo MnlKhtl6M3/bOuvWvqbQKKu7jZnTd3f5BzNKRUO7IVWOdJqWyN9K28c2k8b6g2Wf F5/43L2R7dz0eGWu3e9S1ud6Jh47YU+nXtQmBjrv2kdl88A00OlkZkTrTM2yGcy9 bTnBsXo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:31 2024 by rpki-client on console-ams.rpki-client.org