$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/4EF79184489411ED86987260C4F9AE02.roa File: 4EF79184489411ED86987260C4F9AE02.roa (raw, json) Hash identifier: k7KXYbChOHqpdItmNemI/9G9HWNYz5Sv2bSwF8YpeuU= Subject key identifier: 17:EB:B6:12:3F:7A:1A:82:75:FD:C9:5D:EC:54:27:27:23:48:45:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0779 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/4EF79184489411ED86987260C4F9AE02.roa Signing time: Tue 02 Jan 2024 22:20:20 +0000 ROA not before: Tue 02 Jan 2024 22:20:20 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 206092 IP address blocks: 103.125.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1913 (0x779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Jan 2 22:20:20 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65948c24-a316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0f:14:c7:36:0d:8e:89:93:52:4d:38:cf:50: 6e:45:cf:a4:22:9d:64:fd:3a:ce:81:fa:ba:86:d9: 7b:a2:d9:8b:dd:5d:f1:12:f3:5c:54:7d:26:36:8a: 11:bf:9e:5e:3b:9f:17:7a:22:62:ae:d1:07:b3:e1: 55:93:04:93:41:45:e2:5d:1e:ca:42:92:4a:63:c0: 90:52:23:69:f8:0f:b5:07:bd:5e:1f:c6:21:81:39: 0f:fa:ed:a6:df:24:5f:f2:ee:f6:e3:4c:0a:dd:f4: 5d:dc:eb:36:e5:8e:01:70:e3:08:08:fa:ef:05:1d: d6:b9:a2:55:79:20:5c:9c:e5:ce:32:6c:ce:5c:47: 1e:6a:ab:99:3f:34:27:fe:65:3d:3f:b2:ba:59:0d: e8:35:fa:be:cb:fd:d4:21:e9:ec:6e:c3:fb:c7:bb: 43:2a:63:d5:89:30:f2:44:6e:ec:a6:c2:45:9b:a6: 76:db:3c:a2:76:59:d5:f4:37:d5:22:a0:4c:50:e5: 09:d9:10:1e:6d:0b:21:92:1a:35:72:b5:3f:68:da: ab:22:a7:8a:ac:96:8c:bd:76:71:57:2e:4f:30:33: 8e:b4:ba:ed:c4:06:ee:ed:92:72:7f:e8:f3:12:68: 15:9c:fa:71:02:55:c2:d2:b0:4e:e8:c7:0d:dc:9c: 5c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:EB:B6:12:3F:7A:1A:82:75:FD:C9:5D:EC:54:27:27:23:48:45:A2 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/4EF79184489411ED86987260C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.146.0/24 Signature Algorithm: sha256WithRSAEncryption 02:2d:99:c9:eb:92:e7:57:9f:82:4e:e2:fe:12:13:a7:a3:58: 92:8d:24:29:66:97:ad:eb:7a:07:e3:0c:f5:49:d3:e8:ad:b1: 89:bf:e3:a8:23:29:70:74:3b:14:07:30:0d:8d:e7:15:18:25: 08:f3:0c:38:ef:e2:ba:f5:59:0e:be:8d:fa:3e:7c:ed:e7:84: b8:4e:f1:2f:7a:5f:f4:be:23:88:e7:e3:ee:c2:e4:61:e0:d0: 16:e5:eb:fa:95:02:e8:36:db:5e:2f:63:16:4c:13:bc:a0:6f: e9:1b:8a:e6:49:00:3f:69:5e:be:b6:14:b5:30:7d:a1:6f:fa: c8:42:67:f0:5b:96:6e:70:a8:52:24:08:f7:f6:56:98:92:53: ce:02:55:c3:75:84:50:ee:0c:24:83:c7:7c:08:78:5b:86:57: c1:28:87:cc:a2:24:b3:b7:cf:20:3c:a4:fa:9f:e1:2e:82:6d: e5:78:b0:92:1d:96:a0:10:ea:3a:f6:56:96:48:e5:84:69:72: f5:25:f4:d0:0a:d5:68:76:17:d5:5b:8e:e8:43:36:ff:21:75: d6:2f:d0:e9:4c:9d:df:47:d9:ba:5c:1c:d2:d9:a4:ce:ac:b0: a3:ed:69:ea:41:1f:a6:ee:bb:82:cf:d1:61:09:9c:78:87:46: a5:91:b4:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjQwMTAyMjIyMDIwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0OGMyNC1hMzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA8UxzYNjomTUk04z1BuRc+kIp1k/TrOgfq6htl7otmL3V3xEvNcVH0mNooR v55eO58XeiJirtEHs+FVkwSTQUXiXR7KQpJKY8CQUiNp+A+1B71eH8YhgTkP+u2m 3yRf8u7240wK3fRd3Os25Y4BcOMICPrvBR3WuaJVeSBcnOXOMmzOXEceaquZPzQn /mU9P7K6WQ3oNfq+y/3UIensbsP7x7tDKmPViTDyRG7spsJFm6Z22zyidlnV9DfV IqBMUOUJ2RAebQshkho1crU/aNqrIqeKrJaMvXZxVy5PMDOOtLrtxAbu7ZJyf+jz EmgVnPpxAlXC0rBO6McN3JxcaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBfrthI/ ehqCdf3JXexUJycjSEWiMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk4QkUvMTUwRTU3QzZDRjQ5MTFFQTlDQzkzNTNFQzRGOUFFMDIvNEVGNzkxODQ0 ODk0MTFFRDg2OTg3MjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnfZIwDQYJKoZIhvcNAQELBQADggEBAAItmcnrkudXn4JO 4v4SE6ejWJKNJClml63regfjDPVJ0+itsYm/46gjKXB0OxQHMA2N5xUYJQjzDDjv 4rr1WQ6+jfo+fO3nhLhO8S96X/S+I4jn4+7C5GHg0Bbl6/qVAug2214vYxZME7yg b+kbiuZJAD9pXr62FLUwfaFv+shCZ/Bblm5wqFIkCPf2VpiSU84CVcN1hFDuDCSD x3wIeFuGV8Eoh8yiJLO3zyA8pPqf4S6CbeV4sJIdlqAQ6jr2VpZI5YRpcvUl9NAK 1Wh2F9VbjuhDNv8hddYv0OlMnd9H2bpcHNLZpM6ssKPtaepBH6buu4LP0WEJnHiH RqWRtHI= -----END CERTIFICATE-----Generated at Thu May 2 23:19:02 2024 by rpki-client on console-ams.rpki-client.org