$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/48BEEFFEF52F11EDADE1B280C4F9AE02.roa File: 48BEEFFEF52F11EDADE1B280C4F9AE02.roa (raw, json) Hash identifier: /gF/xK28sNelpy3YvqWdqKZg63snceMhv1ZlXEV6p+A= Subject key identifier: 55:D7:6A:94:A3:3C:C1:0B:E0:D8:31:46:F5:E0:05:5D:E8:F7:DF:FB Certificate issuer: /CN=A91ECB9B/serialNumber=0D654D6FCECD33E1516E20C2E3734F85406E7246 Certificate serial: 0412 Authority key identifier: 0D:65:4D:6F:CE:CD:33:E1:51:6E:20:C2:E3:73:4F:85:40:6E:72:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWVNb87NM-FRbiDC43NPhUBuckY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/48BEEFFEF52F11EDADE1B280C4F9AE02.roa Signing time: Thu 07 Nov 2024 00:03:32 +0000 ROA not before: Thu 07 Nov 2024 00:03:32 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133041 IP address blocks: 45.120.44.0/24 maxlen: 24 45.120.45.0/24 maxlen: 24 45.120.46.0/24 maxlen: 24 45.120.47.0/24 maxlen: 24 103.75.0.0/24 maxlen: 24 103.75.1.0/24 maxlen: 24 103.75.2.0/24 maxlen: 24 103.75.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/DWVNb87NM-FRbiDC43NPhUBuckY.crl rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/DWVNb87NM-FRbiDC43NPhUBuckY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWVNb87NM-FRbiDC43NPhUBuckY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECB9B/serialNumber=0D654D6FCECD33E1516E20C2E3734F85406E7246 Validity Not Before: Nov 7 00:03:32 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672c03d4-5c88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e6:e9:fb:de:e6:b4:2a:fe:a0:3e:16:3a:e1: 99:08:3f:86:02:88:3a:a1:b7:56:45:f4:d7:27:1e: aa:38:75:c7:7f:0c:fa:e3:7a:42:4e:40:e0:48:cf: 22:bc:cd:da:bf:a1:8c:48:ef:c0:84:8f:ee:40:21: 02:f4:56:d6:a1:c2:23:02:3f:74:20:25:61:d5:27: 6d:c1:b7:4e:7e:5a:a0:97:25:29:1f:1d:cc:54:d2: 16:6c:aa:97:71:39:3b:66:39:d2:cc:6a:c6:77:f4: e1:20:42:fb:07:e3:e4:46:4d:b5:59:d6:b9:04:e0: 57:5f:83:dc:bd:b1:90:9d:a0:94:df:33:42:7d:c7: 32:c4:11:6a:dd:16:1d:fe:33:f6:be:f5:af:86:bb: 74:42:e1:fb:94:ed:32:3f:c7:38:e4:d0:f6:d6:e3: 1c:c1:16:4c:8e:3f:12:c4:da:77:48:d2:d3:16:e1: 3d:f5:0e:d5:cc:7d:20:7a:a2:be:9a:13:8a:89:94: 7a:f4:8f:1b:3b:54:60:1f:dc:50:bc:7a:f3:e4:ee: 31:da:00:42:ac:f8:b4:69:6d:9f:90:e6:be:29:4b: 51:b5:72:ba:7e:4b:8d:cb:24:8d:6d:60:d1:fb:d8: e9:fc:57:92:46:98:c1:4e:21:eb:2c:c3:e5:36:37: 55:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:D7:6A:94:A3:3C:C1:0B:E0:D8:31:46:F5:E0:05:5D:E8:F7:DF:FB X509v3 Authority Key Identifier: keyid:0D:65:4D:6F:CE:CD:33:E1:51:6E:20:C2:E3:73:4F:85:40:6E:72:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/DWVNb87NM-FRbiDC43NPhUBuckY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWVNb87NM-FRbiDC43NPhUBuckY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/48BEEFFEF52F11EDADE1B280C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.44.0/22 103.75.0.0/22 Signature Algorithm: sha256WithRSAEncryption 06:ef:ba:da:2f:4f:1c:b8:46:f6:e6:db:ba:e6:b9:a8:20:9c: 8e:80:de:fc:07:45:c2:cb:69:76:ef:37:e3:11:c5:f9:e0:e5: 4f:69:95:b5:e2:b0:39:31:b7:cd:1d:ec:b1:56:c4:2b:16:3a: 4a:65:7b:2a:44:61:c4:12:bd:5c:fb:ae:93:f0:d0:d9:93:f1: 85:51:d4:cd:c4:4b:da:b3:b4:b5:41:57:90:5a:ca:55:f3:b0: 23:a6:04:31:98:a0:3a:6e:4a:42:d6:02:a1:cf:a6:dd:1a:a5: b2:8c:c4:1f:93:c2:01:56:84:ba:ef:7a:84:7a:75:a2:bd:ab: fc:c8:97:ee:28:3b:23:b2:3d:c5:38:0a:57:b0:2a:f3:6d:73: 73:92:01:73:80:07:74:cb:c4:57:16:07:e9:00:ba:6c:ad:75: a9:56:b7:7e:69:15:13:a4:f3:5b:f0:b3:4f:9d:94:c9:c9:f7: ce:d4:1b:8e:b0:fb:6b:3d:c1:46:d6:49:a4:1e:38:2e:5b:07: 9f:0a:48:f8:c8:8e:5a:7d:37:cf:cd:5c:d3:87:9b:44:b6:db: e4:7b:34:f5:c1:20:34:2b:d2:cf:5c:f4:27:17:17:4a:42:60: 0a:2c:bb:82:96:6c:7a:9f:33:aa:31:f5:53:25:b9:47:8c:e2: 02:6c:82:5e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNCOUIxMTAvBgNVBAUTKDBENjU0RDZGQ0VDRDMzRTE1MTZFMjBDMkUzNzM0Rjg1 NDA2RTcyNDYwHhcNMjQxMTA3MDAwMzMyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjMDNkNC01Yzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnebp+97mtCr+oD4WOuGZCD+GAog6obdWRfTXJx6qOHXHfwz643pCTkDgSM8i vM3av6GMSO/AhI/uQCEC9FbWocIjAj90ICVh1SdtwbdOflqglyUpHx3MVNIWbKqX cTk7ZjnSzGrGd/ThIEL7B+PkRk21Wda5BOBXX4PcvbGQnaCU3zNCfccyxBFq3RYd /jP2vvWvhrt0QuH7lO0yP8c45ND21uMcwRZMjj8SxNp3SNLTFuE99Q7VzH0geqK+ mhOKiZR69I8bO1RgH9xQvHrz5O4x2gBCrPi0aW2fkOa+KUtRtXK6fkuNyySNbWDR +9jp/FeSRpjBTiHrLMPlNjdVnQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFXXapSj PMEL4NgxRvXgBV3o99/7MB8GA1UdIwQYMBaAFA1lTW/OzTPhUW4gwuNzT4VAbnJG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0I5Qi8zOURBMjg3MDQ1 REUxMUVDQTgyM0M1NzFDNEY5QUUwMi9EV1ZOYjg3Tk0tRlJiaURDNDNOUGhVQnVj a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXVk5iODdOTS1GUmJpREM0M05QaFVCdWNrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNCOUIvMzlEQTI4NzA0NURFMTFFQ0E4MjNDNTcxQzRGOUFFMDIvNDhCRUVGRkVG NTJGMTFFREFERTFCMjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteCwDBAJnSwAwDQYJKoZIhvcNAQELBQADggEBAAbvutov Txy4Rvbm27rmuaggnI6A3vwHRcLLaXbvN+MRxfng5U9plbXisDkxt80d7LFWxCsW OkpleypEYcQSvVz7rpPw0NmT8YVR1M3ES9qztLVBV5BaylXzsCOmBDGYoDpuSkLW AqHPpt0apbKMxB+TwgFWhLrveoR6daK9q/zIl+4oOyOyPcU4ClewKvNtc3OSAXOA B3TLxFcWB+kAumytdalWt35pFROk81vws0+dlMnJ987UG46w+2s9wUbWSaQeOC5b B58KSPjIjlp9N8/NXNOHm0S22+R7NPXBIDQr0s9c9CcXF0pCYAosu4KWbHqfM6ox 9VMluUeM4gJsgl4= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org