$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/48BEEFFEF52F11EDADE1B280C4F9AE02.roa File: 48BEEFFEF52F11EDADE1B280C4F9AE02.roa (raw, json) Hash identifier: pAr96Ja88tBgEMsYsrm76ApyJHiw1uIfNdDZH/EF40A= Subject key identifier: BD:F5:81:B6:6E:B9:5A:04:55:2C:0B:3D:56:13:42:7E:53:23:1F:9B Certificate issuer: /CN=A91ECB9B/serialNumber=0D654D6FCECD33E1516E20C2E3734F85406E7246 Certificate serial: 0349 Authority key identifier: 0D:65:4D:6F:CE:CD:33:E1:51:6E:20:C2:E3:73:4F:85:40:6E:72:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWVNb87NM-FRbiDC43NPhUBuckY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/48BEEFFEF52F11EDADE1B280C4F9AE02.roa Signing time: Sun 15 Oct 2023 01:33:28 +0000 ROA not before: Sun 15 Oct 2023 01:33:28 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 133041 IP address blocks: 45.120.44.0/24 maxlen: 24 45.120.45.0/24 maxlen: 24 45.120.46.0/24 maxlen: 24 45.120.47.0/24 maxlen: 24 103.75.0.0/24 maxlen: 24 103.75.1.0/24 maxlen: 24 103.75.2.0/24 maxlen: 24 103.75.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/DWVNb87NM-FRbiDC43NPhUBuckY.crl rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/DWVNb87NM-FRbiDC43NPhUBuckY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWVNb87NM-FRbiDC43NPhUBuckY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:33:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 841 (0x349) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECB9B/serialNumber=0D654D6FCECD33E1516E20C2E3734F85406E7246 Validity Not Before: Oct 15 01:33:28 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652b4168-09a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:0a:17:a1:e5:b9:13:0e:b8:55:a9:95:74:d5: cf:18:62:0b:df:2a:ec:3f:7c:65:e8:d2:d2:71:88: a2:5a:3d:99:20:07:2d:eb:8f:b3:7e:16:fe:45:5b: 8e:87:0a:d6:69:c3:8c:be:8c:d7:7a:79:04:4f:38: 3b:8b:fa:5c:8f:5c:d6:41:50:bd:f6:87:17:04:9f: 11:78:3a:60:11:1e:38:75:39:32:0d:e1:48:de:3f: f1:23:e9:f5:cf:bc:f1:67:23:74:75:25:89:49:dc: 0e:9c:46:c1:46:43:6c:44:72:f0:57:f8:23:36:5d: c2:23:9a:08:35:78:4a:23:ea:00:f8:9c:10:3d:5e: 44:4f:00:ff:76:c8:9a:a2:fd:14:df:57:f9:1a:8f: e7:ef:ae:ec:7e:fa:7c:69:37:42:50:69:54:9e:c3: e7:67:32:9d:5f:86:9f:5e:cd:c1:27:47:dc:b7:55: 57:f8:db:7a:4a:fc:9f:80:74:90:f6:36:6a:09:6c: 72:85:ec:77:3e:a3:e5:aa:89:e5:c8:37:9b:32:11: dc:1e:64:70:d2:30:48:3d:43:73:92:5a:bc:f1:17: 07:52:b5:01:15:14:cb:6d:83:e3:80:a3:cb:b8:8c: 4a:8f:ff:7f:22:73:b6:93:1f:90:4e:f3:e0:0f:29: 0d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F5:81:B6:6E:B9:5A:04:55:2C:0B:3D:56:13:42:7E:53:23:1F:9B X509v3 Authority Key Identifier: keyid:0D:65:4D:6F:CE:CD:33:E1:51:6E:20:C2:E3:73:4F:85:40:6E:72:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/DWVNb87NM-FRbiDC43NPhUBuckY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWVNb87NM-FRbiDC43NPhUBuckY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECB9B/39DA287045DE11ECA823C571C4F9AE02/48BEEFFEF52F11EDADE1B280C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.44.0/22 103.75.0.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:8f:77:1d:55:ad:23:17:89:ed:41:f7:9a:b3:40:2f:19:38: 2c:4e:1a:c6:df:1a:27:d7:4c:43:dc:18:63:8a:a2:4d:77:55: ba:5e:39:57:1a:5b:db:12:13:a6:33:18:13:f8:b1:80:d7:12: fd:81:05:3e:f8:50:57:ef:99:11:03:ff:33:cb:30:05:d2:2b: 04:c2:ff:92:08:87:f3:d0:fd:49:c1:6c:3b:17:79:be:06:c8: e5:f4:48:f2:a9:49:f1:5b:07:5d:32:57:54:18:63:eb:1f:0f: 7f:ef:82:fe:f5:62:f9:c9:3a:74:66:6c:1b:bb:34:85:24:6c: 14:5f:76:8d:c5:ac:98:a3:af:fe:dc:0a:ff:89:64:e6:37:79: 3b:d7:cd:c8:d4:88:45:d2:0c:bc:1f:d0:b3:e0:bf:37:66:2d: b6:da:9e:32:ef:4b:70:0e:ce:97:09:99:c4:d5:21:8d:8c:b1: 6a:ee:d8:c3:ff:8f:33:42:ea:11:08:16:da:c9:60:81:fc:a0: fc:4d:1e:f2:ce:8d:74:bb:3b:37:f1:79:8b:73:a8:7f:c7:7a: 55:94:82:f9:80:05:d0:eb:f3:7e:9d:d0:eb:7d:25:e8:0c:ca: 7c:ce:cc:1e:e0:27:99:d9:e8:03:4e:bf:cb:77:b1:4d:ad:53: e0:1f:37:b3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNCOUIxMTAvBgNVBAUTKDBENjU0RDZGQ0VDRDMzRTE1MTZFMjBDMkUzNzM0Rjg1 NDA2RTcyNDYwHhcNMjMxMDE1MDEzMzI4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJiNDE2OC0wOWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+goXoeW5Ew64VamVdNXPGGIL3yrsP3xl6NLScYiiWj2ZIAct64+zfhb+RVuO hwrWacOMvozXenkETzg7i/pcj1zWQVC99ocXBJ8ReDpgER44dTkyDeFI3j/xI+n1 z7zxZyN0dSWJSdwOnEbBRkNsRHLwV/gjNl3CI5oINXhKI+oA+JwQPV5ETwD/dsia ov0U31f5Go/n767sfvp8aTdCUGlUnsPnZzKdX4afXs3BJ0fct1VX+Nt6SvyfgHSQ 9jZqCWxyhex3PqPlqonlyDebMhHcHmRw0jBIPUNzklq88RcHUrUBFRTLbYPjgKPL uIxKj/9/InO2kx+QTvPgDykNaQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFL31gbZu uVoEVSwLPVYTQn5TIx+bMB8GA1UdIwQYMBaAFA1lTW/OzTPhUW4gwuNzT4VAbnJG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0I5Qi8zOURBMjg3MDQ1 REUxMUVDQTgyM0M1NzFDNEY5QUUwMi9EV1ZOYjg3Tk0tRlJiaURDNDNOUGhVQnVj a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXVk5iODdOTS1GUmJpREM0M05QaFVCdWNrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNCOUIvMzlEQTI4NzA0NURFMTFFQ0E4MjNDNTcxQzRGOUFFMDIvNDhCRUVGRkVG NTJGMTFFREFERTFCMjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteCwDBAJnSwAwDQYJKoZIhvcNAQELBQADggEBADuPdx1V rSMXie1B95qzQC8ZOCxOGsbfGifXTEPcGGOKok13VbpeOVcaW9sSE6YzGBP4sYDX Ev2BBT74UFfvmRED/zPLMAXSKwTC/5IIh/PQ/UnBbDsXeb4GyOX0SPKpSfFbB10y V1QYY+sfD3/vgv71YvnJOnRmbBu7NIUkbBRfdo3FrJijr/7cCv+JZOY3eTvXzcjU iEXSDLwf0LPgvzdmLbbanjLvS3AOzpcJmcTVIY2MsWru2MP/jzNC6hEIFtrJYIH8 oPxNHvLOjXS7OzfxeYtzqH/HelWUgvmABdDr836d0Ot9JegMynzOzB7gJ5nZ6ANO v8t3sU2tU+AfN7M= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:08 2024 by rpki-client on console-fra.rpki-client.org