$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/148BC3E8833B11EEA71E1715C4F9AE02.roa File: 148BC3E8833B11EEA71E1715C4F9AE02.roa (raw, json) Hash identifier: 1o3ksyli1ZEbtFwVgIIX+J8xMbJMLDqAM0N6HCXHRdY= Subject key identifier: FD:28:EC:88:A8:82:89:23:D0:51:07:5A:1E:63:59:28:04:4E:09:A4 Certificate issuer: /CN=A91A5B07/serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Certificate serial: 025B Authority key identifier: F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/148BC3E8833B11EEA71E1715C4F9AE02.roa Signing time: Wed 17 Apr 2024 04:06:33 +0000 ROA not before: Wed 17 Apr 2024 04:06:33 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135391 IP address blocks: 103.211.194.0/24 maxlen: 24 139.5.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B07/serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Validity Not Before: Apr 17 04:06:33 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661f4ac9-28c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:54:e0:f5:40:cd:b9:03:cb:4b:d7:9a:dd:d6: 95:a4:0e:a0:f2:d2:d1:fa:70:57:66:bb:b0:4b:09: 7f:df:58:82:46:b9:6f:c8:4f:23:42:26:47:a5:49: 7a:c8:ff:26:d0:45:b7:a0:63:3e:76:c6:63:af:a2: 74:51:f2:8b:28:66:33:25:b5:09:43:d1:87:af:71: f0:94:4f:0c:bd:ac:14:c4:82:30:6d:09:48:13:63: 35:e1:17:f2:c9:13:0b:9a:a7:34:6e:49:47:70:9d: 5d:0e:97:2f:61:00:78:4f:51:3d:59:76:4b:7b:64: 68:a6:59:8d:37:81:ef:3e:e0:81:ea:ec:f3:1f:ba: 83:cd:85:e0:51:e5:f2:e8:ab:8f:ba:38:b9:af:76: b7:33:98:a1:ac:7c:85:a8:6f:c6:8a:f5:fe:d0:5e: 90:7b:62:67:1e:0a:7b:18:31:c1:b5:52:75:80:be: e5:71:25:10:4c:6c:b6:e3:19:41:ae:a0:37:93:d1: ef:f9:b2:e9:60:e5:20:04:23:dd:f9:88:a9:57:4f: 26:66:35:63:b9:c1:3b:91:7e:0b:91:73:c0:19:12: a9:a2:a2:99:bf:b0:cc:62:17:8b:f2:38:f5:57:db: c5:c5:8e:56:33:6a:ec:ec:ab:1c:a2:d8:76:e1:93: db:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:28:EC:88:A8:82:89:23:D0:51:07:5A:1E:63:59:28:04:4E:09:A4 X509v3 Authority Key Identifier: keyid:F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/148BC3E8833B11EEA71E1715C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.211.194.0/24 139.5.108.0/22 Signature Algorithm: sha256WithRSAEncryption 34:66:ab:87:22:9b:1c:52:cf:12:f3:3a:ad:5e:da:5f:03:f3: c3:da:e7:11:0e:26:4e:a8:38:d2:c1:2c:b4:3f:8b:e0:6c:0f: 7c:52:c7:87:76:7b:fc:39:f7:49:8a:51:cd:2b:3e:22:7e:a7: 20:bd:77:7c:df:db:c4:b6:6c:99:54:47:c8:88:b0:45:80:c4: 74:72:02:b0:39:33:03:27:cd:e8:ab:bc:4c:69:93:f8:97:2f: 8e:55:d2:be:62:3e:28:c0:de:78:82:ae:a1:c3:21:62:5a:64: ce:cb:21:17:a9:0d:04:66:bf:02:5b:84:d9:2e:b2:1e:f8:2c: 21:4c:96:1a:76:2a:e8:ae:cf:b1:59:d5:94:4b:0b:9c:3e:2c: 94:22:5e:54:15:95:db:f4:a8:ee:a0:92:64:b7:d3:69:fc:ef: d9:2d:b2:79:67:02:73:8f:6a:b0:f6:65:c3:f7:60:b1:ed:5c: 66:94:61:aa:2e:c2:4e:21:00:ff:ef:d9:c8:a8:29:83:0d:db: 41:34:01:3f:0c:dc:4c:dc:9f:78:3f:69:d8:d3:ee:ed:88:da: 9b:86:9e:a1:87:f6:6e:6d:df:0f:8f:f0:69:08:4d:20:24:ab: b7:26:c2:0a:3a:ff:b1:8b:a3:42:fd:a3:a8:b1:58:a0:da:be: 20:ac:59:b5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCMDcxMTAvBgNVBAUTKEY0RkZGRTYwRTdENjNCRTRGMTgxOUJCQTg0Q0Q1QjIw NDc0QzkxQzYwHhcNMjQwNDE3MDQwNjMzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmNGFjOS0yOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FTg9UDNuQPLS9ea3daVpA6g8tLR+nBXZruwSwl/31iCRrlvyE8jQiZHpUl6 yP8m0EW3oGM+dsZjr6J0UfKLKGYzJbUJQ9GHr3HwlE8MvawUxIIwbQlIE2M14Rfy yRMLmqc0bklHcJ1dDpcvYQB4T1E9WXZLe2RoplmNN4HvPuCB6uzzH7qDzYXgUeXy 6KuPuji5r3a3M5ihrHyFqG/GivX+0F6Qe2JnHgp7GDHBtVJ1gL7lcSUQTGy24xlB rqA3k9Hv+bLpYOUgBCPd+YipV08mZjVjucE7kX4LkXPAGRKpoqKZv7DMYheL8jj1 V9vFxY5WM2rs7Kscoth24ZPb8QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFP0o7Iio gokj0FEHWh5jWSgETgmkMB8GA1UdIwQYMBaAFPT//mDn1jvk8YGbuoTNWyBHTJHG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUIwNy83MkE0OEE3NkND RTExMUVDQkJBMDVDMkNDNEY5QUUwMi85UF8tWU9mV08tVHhnWnU2aE0xYklFZE1r Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQXy1ZT2ZXTy1UeGdadTZoTTFiSUVkTWtjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVCMDcvNzJBNDhBNzZDQ0UxMTFFQ0JCQTA1QzJDQzRGOUFFMDIvMTQ4QkMzRTg4 MzNCMTFFRUE3MUUxNzE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn08IDBAKLBWwwDQYJKoZIhvcNAQELBQADggEBADRmq4ci mxxSzxLzOq1e2l8D88Pa5xEOJk6oONLBLLQ/i+BsD3xSx4d2e/w590mKUc0rPiJ+ pyC9d3zf28S2bJlUR8iIsEWAxHRyArA5MwMnzeirvExpk/iXL45V0r5iPijA3niC rqHDIWJaZM7LIRepDQRmvwJbhNkush74LCFMlhp2Kuiuz7FZ1ZRLC5w+LJQiXlQV ldv0qO6gkmS302n879ktsnlnAnOParD2ZcP3YLHtXGaUYaouwk4hAP/v2cioKYMN 20E0AT8M3Ezcn3g/adjT7u2I2puGnqGH9m5t3w+P8GkITSAkq7cmwgo6/7GLo0L9 o6ixWKDaviCsWbU= -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:43 2024 by rpki-client on console-fra.rpki-client.org