$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa File: BC148566D22B11EE9443A443C4F9AE02.roa (raw, json) Hash identifier: 8jQTCX4xTiPoXu0/ej/EZcoxkeQXfk8XFCW9Bjr7lm4= Subject key identifier: 49:DB:9D:1C:BE:69:63:7F:A6:8E:71:F0:DC:4E:36:EA:3D:98:F0:01 Certificate issuer: /CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13 Certificate serial: 03A8 Authority key identifier: 45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa Signing time: Thu 08 Aug 2024 04:39:16 +0000 ROA not before: Thu 08 Aug 2024 04:39:16 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.179.36.0/24 maxlen: 24 2001:df0:45c4::/46 maxlen: 47 2001:df0:45c4::/47 maxlen: 48 2001:df0:45c6::/48 maxlen: 48 2001:df0:45c8::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 936 (0x3a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13 Validity Not Before: Aug 8 04:39:16 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66b44bf4-e424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:52:a9:fd:f4:c2:77:37:ac:af:2c:ac:ec: 6a:4e:8c:7d:80:86:8a:e5:a7:ef:e4:a2:3c:fa:48: 39:53:13:2f:e8:a6:4a:24:92:5b:b4:fd:f0:28:85: 03:34:48:2a:f7:7c:95:5d:70:2b:64:eb:20:c8:43: ae:e2:df:44:1f:d5:c5:56:ea:06:8b:f8:3d:48:c3: 12:31:7e:fd:ae:d6:38:44:30:1c:00:e0:05:e0:f6: 57:43:8e:6b:f8:d8:b8:eb:e4:8c:62:fe:58:43:ce: d5:26:dd:c3:40:1c:41:bf:df:3e:e1:6d:85:de:26: f5:2f:93:49:fa:85:69:de:5f:75:79:f4:e0:90:9f: d1:7e:11:7b:e7:07:c6:f4:c6:aa:03:c4:fe:88:f3: 4c:62:ef:52:cf:09:f0:d7:46:28:33:a7:44:d1:9a: 91:c1:2c:c6:c7:65:2c:0d:46:93:a6:a5:10:9b:8a: 84:d6:c4:33:14:77:91:f7:b7:e2:f0:fb:b1:a5:88: ff:bb:5f:7f:67:5e:21:97:f6:12:c6:7e:7b:a3:94: 96:13:ea:76:5d:1e:2d:6f:0b:cf:4e:b9:ef:2e:0f: 79:5a:dd:a1:9c:1c:4b:8b:ab:97:d4:b3:1f:f6:d4: d8:a5:2c:9b:1a:93:85:67:a9:53:28:b8:f6:8a:b7: 0a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:DB:9D:1C:BE:69:63:7F:A6:8E:71:F0:DC:4E:36:EA:3D:98:F0:01 X509v3 Authority Key Identifier: keyid:45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.36.0/24 IPv6: 2001:df0:45c4::-2001:df0:45cf:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 58:67:5b:64:fc:3b:bb:c8:ca:5d:0e:cd:e4:ba:2e:10:84:63: 09:24:e5:12:81:7f:f6:5c:31:fa:07:c8:08:9c:41:9c:61:9e: 05:60:58:88:c8:aa:70:fd:a9:d0:46:02:57:74:81:d5:64:26: d1:e4:7a:c1:d2:2d:a6:55:8c:56:59:a0:b8:cb:4e:e9:86:d4: e2:b6:e7:61:3d:ab:a0:81:13:c8:dc:38:1c:30:3d:fc:13:1d: 09:12:28:e3:8c:9a:b9:1d:16:f8:10:3b:17:5f:27:e8:28:ed: 82:66:67:d8:96:d8:34:29:5c:39:07:69:81:fb:ba:a9:5c:da: 39:24:61:60:58:a4:dd:c9:7f:39:3b:ac:41:b0:0d:e0:5c:7e: fe:f3:f9:9f:0e:ca:a3:ba:99:9b:5a:23:f3:ac:c3:a0:ce:d7: a8:70:ae:7e:a4:6d:a5:8e:5e:31:e6:89:8d:63:e2:98:e6:83: 85:31:0a:6a:31:b1:a6:cd:5e:0b:7b:26:5d:2f:f8:29:52:90: 4b:bb:9e:59:48:59:9f:c4:28:7c:39:33:9d:40:8a:57:43:67: ce:90:ba:9a:d2:a1:89:06:83:ce:39:14:29:c2:72:39:c8:5f: eb:e0:0a:9e:d7:a8:5b:ad:ea:c7:03:08:fd:a0:1b:86:22:05: 50:c1:3c:10 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICA6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFBRjUxMTAvBgNVBAUTKDQ1ODRBRUEyMzk0QzQ2RDY5MzRFNjNFRDY4ODdENDcy NkZERjdBMTMwHhcNMjQwODA4MDQzOTE2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI0NGJmNC1lNDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu41Sqf30wnc3rK8srOxqTox9gIaK5afv5KI8+kg5UxMv6KZKJJJbtP3wKIUD NEgq93yVXXArZOsgyEOu4t9EH9XFVuoGi/g9SMMSMX79rtY4RDAcAOAF4PZXQ45r +Ni46+SMYv5YQ87VJt3DQBxBv98+4W2F3ib1L5NJ+oVp3l91efTgkJ/RfhF75wfG 9MaqA8T+iPNMYu9Szwnw10YoM6dE0ZqRwSzGx2UsDUaTpqUQm4qE1sQzFHeR97fi 8PuxpYj/u19/Z14hl/YSxn57o5SWE+p2XR4tbwvPTrnvLg95Wt2hnBxLi6uX1LMf 9tTYpSybGpOFZ6lTKLj2ircK7wIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFEnbnRy+ aWN/po5x8NxONuo9mPABMB8GA1UdIwQYMBaAFEWErqI5TEbWk05j7WiH1HJv33oT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUFGNS9FOTlGNTIzQTZF QzQxMUVDQUZEMjczMzFDNEY5QUUwMi9SWVN1b2psTVJ0YVRUbVB0YUlmVWNtX2Zl aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZU3VvamxNUnRhVFRtUHRhSWZVY21fZmVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFBRjUvRTk5RjUyM0E2RUM0MTFFQ0FGRDI3MzMxQzRGOUFFMDIvQkMxNDg1NjZE MjJCMTFFRTk0NDNBNDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBABnsyQwGgQCAAIwFDASAwcCIAEN8EXEAwcEIAEN8EXAMA0G CSqGSIb3DQEBCwUAA4IBAQBYZ1tk/Du7yMpdDs3kui4QhGMJJOUSgX/2XDH6B8gI nEGcYZ4FYFiIyKpw/anQRgJXdIHVZCbR5HrB0i2mVYxWWaC4y07phtTitudhPaug gRPI3DgcMD38Ex0JEijjjJq5HRb4EDsXXyfoKO2CZmfYltg0KVw5B2mB+7qpXNo5 JGFgWKTdyX85O6xBsA3gXH7+8/mfDsqjupmbWiPzrMOgzteocK5+pG2ljl4x5omN Y+KY5oOFMQpqMbGmzV4LeyZdL/gpUpBLu55ZSFmfxCh8OTOdQIpXQ2fOkLqa0qGJ BoPOORQpwnI5yF/r4Aqe16hbrerHAwj9oBuGIgVQwTwQ -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:06 2024 by rpki-client on console-ams.rpki-client.org