$ rpki-client -vvf rpki.apnic.net/member_repository/A9192248/C798A0FAFF0011E99586AB21C4F9AE02/F3E543B4CBB611EB94FE6E68C4F9AE02.roa File: F3E543B4CBB611EB94FE6E68C4F9AE02.roa (raw, json) Hash identifier: lzPPJbLm0fCvj0Ivmx0f1E3fqtXDlgUxOWdfG9K7YJo= Subject key identifier: AF:60:52:F3:11:91:49:92:EF:A4:11:16:60:93:39:84:7D:EB:6D:6F Certificate issuer: /CN=A9192248/serialNumber=5511DEC29DCAEDA17BF36BBF3395327159F14A81 Certificate serial: 0B64 Authority key identifier: 55:11:DE:C2:9D:CA:ED:A1:7B:F3:6B:BF:33:95:32:71:59:F1:4A:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRHewp3K7aF782u_M5UycVnxSoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192248/C798A0FAFF0011E99586AB21C4F9AE02/F3E543B4CBB611EB94FE6E68C4F9AE02.roa Signing time: Tue 28 Nov 2023 19:26:37 +0000 ROA not before: Tue 28 Nov 2023 19:26:37 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139728 IP address blocks: 103.144.48.0/23 maxlen: 23 103.144.48.0/24 maxlen: 24 2405:bd40::/32 maxlen: 32 2405:bd40::/48 maxlen: 48 2405:bd40:1::/48 maxlen: 48 2405:bd40:2::/48 maxlen: 48 2405:bd40:3::/48 maxlen: 48 2405:bd40:4::/48 maxlen: 48 2405:bd40:5::/48 maxlen: 48 2405:bd40:6::/48 maxlen: 48 2405:bd40:7::/48 maxlen: 48 2405:bd40:8::/48 maxlen: 48 2405:bd40:9::/48 maxlen: 48 2405:bd40:a::/48 maxlen: 48 2405:bd40:10::/48 maxlen: 48 2405:bd40:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192248/C798A0FAFF0011E99586AB21C4F9AE02/VRHewp3K7aF782u_M5UycVnxSoE.crl rsync://rpki.apnic.net/member_repository/A9192248/C798A0FAFF0011E99586AB21C4F9AE02/VRHewp3K7aF782u_M5UycVnxSoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRHewp3K7aF782u_M5UycVnxSoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2916 (0xb64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192248/serialNumber=5511DEC29DCAEDA17BF36BBF3395327159F14A81 Validity Not Before: Nov 28 19:26:37 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65663eed-accd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c7:20:fb:03:15:9f:86:0f:a5:dc:e6:85:52: c1:26:a0:53:68:1a:5c:1e:0b:a2:89:75:99:a3:21: ef:02:80:96:3d:9e:67:d6:07:a3:70:54:b0:86:50: c7:70:13:c1:4e:ce:88:81:ad:c8:c9:d3:c1:c3:5d: 72:ca:45:c3:1c:61:bf:a6:52:b3:d1:35:77:42:e7: dd:a0:5b:56:43:c5:5b:04:02:bc:a7:36:32:ec:d7: 29:96:6c:da:32:26:58:eb:18:2b:9e:6e:d6:16:a6: 14:93:e0:52:46:11:68:f0:48:a3:e0:9d:60:18:a0: e6:79:80:4e:fc:6e:27:4a:0f:bf:9a:0c:bd:6b:f5: 41:86:9b:b4:d5:c4:6f:ca:a5:57:6b:7b:0f:af:92: 1a:f1:d5:b7:21:94:e8:47:92:ec:27:5f:3b:d1:55: 21:5b:4b:49:74:a7:57:6a:f0:77:2c:8f:ef:85:9c: 5f:fc:5e:d0:c3:b6:3b:94:76:03:4c:b4:dd:ee:b9: ab:5c:45:0b:f9:0e:03:37:8a:86:7e:51:9a:b8:e5: 1c:35:4c:83:8b:72:b8:ac:ca:62:ac:f4:2c:aa:14: 6b:f3:f6:37:f5:62:35:25:e3:39:df:d4:40:c9:31: f0:c4:39:34:e9:74:b2:35:77:77:61:a8:f3:8d:81: 73:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:60:52:F3:11:91:49:92:EF:A4:11:16:60:93:39:84:7D:EB:6D:6F X509v3 Authority Key Identifier: keyid:55:11:DE:C2:9D:CA:ED:A1:7B:F3:6B:BF:33:95:32:71:59:F1:4A:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192248/C798A0FAFF0011E99586AB21C4F9AE02/VRHewp3K7aF782u_M5UycVnxSoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRHewp3K7aF782u_M5UycVnxSoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192248/C798A0FAFF0011E99586AB21C4F9AE02/F3E543B4CBB611EB94FE6E68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.48.0/23 IPv6: 2405:bd40::/32 Signature Algorithm: sha256WithRSAEncryption 91:ce:08:8f:0d:db:a5:bb:54:e5:2c:04:fe:ae:c2:8e:c9:f1: 02:6f:da:72:46:49:01:f9:94:4e:d3:9b:30:3b:d7:fd:f9:7c: ae:03:07:ce:b8:1f:8d:7e:ea:76:92:5c:23:e9:31:29:be:bf: 72:6b:e6:18:0b:a7:b7:7f:52:ac:29:ca:66:d4:8e:c7:15:31: de:28:80:bb:28:f3:5c:9c:bc:71:fa:d9:ba:9a:18:c2:fd:3f: a3:80:8b:8a:4a:45:19:b2:5a:6a:23:16:61:6c:a9:a2:c0:be: ba:c7:f0:4f:37:2e:76:b9:7a:76:32:7d:b4:66:12:6b:31:1f: c7:b5:52:80:63:d7:49:64:79:b2:ad:d5:cc:f8:bf:cf:57:28: a9:0d:09:76:e3:da:ec:48:8e:79:20:bd:38:20:6a:72:03:96: 55:db:e3:75:ae:60:5f:50:0e:eb:fb:b0:0d:17:da:d5:cf:4a: 3e:e4:21:1e:56:a4:13:6d:50:bf:e1:cb:05:92:f5:c3:11:a8: 5c:34:ff:43:3b:fd:be:59:60:c8:22:12:2a:a9:a5:7f:22:de: 29:da:f3:70:8f:09:f2:9d:20:61:9a:b1:d2:c1:30:c6:1d:eb: 13:69:89:13:a8:3b:90:7c:f7:0c:07:0d:ec:78:b4:79:2a:70: a3:c0:ab:d0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIyNDgxMTAvBgNVBAUTKDU1MTFERUMyOURDQUVEQTE3QkYzNkJCRjMzOTUzMjcx NTlGMTRBODEwHhcNMjMxMTI4MTkyNjM3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2M2VlZC1hY2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Mcg+wMVn4YPpdzmhVLBJqBTaBpcHguiiXWZoyHvAoCWPZ5n1gejcFSwhlDH cBPBTs6Iga3IydPBw11yykXDHGG/plKz0TV3QufdoFtWQ8VbBAK8pzYy7Ncplmza MiZY6xgrnm7WFqYUk+BSRhFo8Eij4J1gGKDmeYBO/G4nSg+/mgy9a/VBhpu01cRv yqVXa3sPr5Ia8dW3IZToR5LsJ1870VUhW0tJdKdXavB3LI/vhZxf/F7Qw7Y7lHYD TLTd7rmrXEUL+Q4DN4qGflGauOUcNUyDi3K4rMpirPQsqhRr8/Y39WI1JeM539RA yTHwxDk06XSyNXd3YajzjYFzewIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK9gUvMR kUmS76QRFmCTOYR9621vMB8GA1UdIwQYMBaAFFUR3sKdyu2he/NrvzOVMnFZ8UqB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjI0OC9DNzk4QTBGQUZG MDAxMUU5OTU4NkFCMjFDNEY5QUUwMi9WUkhld3AzSzdhRjc4MnVfTTVVeWNWbnhT b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZSSGV3cDNLN2FGNzgydV9NNVV5Y1ZueFNvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTIyNDgvQzc5OEEwRkFGRjAwMTFFOTk1ODZBQjIxQzRGOUFFMDIvRjNFNTQzQjRD QkI2MTFFQjk0RkU2RTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnkDAwDQQCAAIwBwMFACQFvUAwDQYJKoZIhvcNAQELBQAD ggEBAJHOCI8N26W7VOUsBP6uwo7J8QJv2nJGSQH5lE7TmzA71/35fK4DB864H41+ 6naSXCPpMSm+v3Jr5hgLp7d/UqwpymbUjscVMd4ogLso81ycvHH62bqaGML9P6OA i4pKRRmyWmojFmFsqaLAvrrH8E83Lna5enYyfbRmEmsxH8e1UoBj10lkebKt1cz4 v89XKKkNCXbj2uxIjnkgvTgganIDllXb43WuYF9QDuv7sA0X2tXPSj7kIR5WpBNt UL/hywWS9cMRqFw0/0M7/b5ZYMgiEiqppX8i3ina83CPCfKdIGGasdLBMMYd6xNp iROoO5B89wwHDex4tHkqcKPAq9A= -----END CERTIFICATE-----Generated at Fri May 31 22:13:08 2024 by rpki-client on console-fra.rpki-client.org