$ rpki-client -vvf rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/595EF8C63DC711EBA35AB51DC4F9AE02.roa File: 595EF8C63DC711EBA35AB51DC4F9AE02.roa (raw, json) Hash identifier: kDcfkRRwNdoJ431TUAg/mhxPRjcYBJFeGLnnYla+ins= Subject key identifier: BB:DD:10:66:BD:ED:D2:0C:64:68:16:95:04:BF:E0:2F:8F:81:A3:B4 Certificate issuer: /CN=A914F0E7/serialNumber=AFAC57751C5E769875ED26F5BCDF17F53DFF9C99 Certificate serial: 06AC Authority key identifier: AF:AC:57:75:1C:5E:76:98:75:ED:26:F5:BC:DF:17:F5:3D:FF:9C:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6xXdRxedph17Sb1vN8X9T3_nJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/595EF8C63DC711EBA35AB51DC4F9AE02.roa Signing time: Fri 08 Nov 2024 22:12:06 +0000 ROA not before: Fri 08 Nov 2024 22:12:06 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141229 IP address blocks: 103.156.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/r6xXdRxedph17Sb1vN8X9T3_nJk.crl rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/r6xXdRxedph17Sb1vN8X9T3_nJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6xXdRxedph17Sb1vN8X9T3_nJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1708 (0x6ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F0E7/serialNumber=AFAC57751C5E769875ED26F5BCDF17F53DFF9C99 Validity Not Before: Nov 8 22:12:06 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672e8cb6-644a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:09:45:61:11:b8:22:81:73:f3:24:c3:4a:77: da:5b:99:b2:33:a6:00:3a:07:c9:88:12:45:da:1e: 05:ac:9b:2c:4e:3e:10:81:8d:b5:4a:07:04:f1:cf: 2c:57:e2:f6:14:18:ac:8d:fd:d6:7e:ad:20:6a:f2: 8f:3d:27:6f:6f:4b:f9:a6:23:84:90:96:04:98:3a: 46:21:44:2a:dc:a3:9e:ed:ab:20:59:6c:a2:70:01: a4:3b:67:7d:df:5f:92:f6:c4:25:57:53:a5:e7:f0: b1:90:2b:24:56:fa:08:8d:8a:05:c9:bc:cd:05:70: 02:68:24:2c:f0:c2:73:d3:61:de:85:f1:de:31:0b: b3:2c:62:0c:99:e4:8f:38:80:c1:18:65:ab:75:f6: f2:48:4d:41:e7:83:bd:63:98:5f:2b:02:2d:2f:68: 19:23:b1:bd:40:ef:88:97:18:0d:90:75:ec:33:1b: 70:0a:c9:a9:62:7a:46:6f:a1:be:74:db:15:5c:6e: fe:fd:80:51:49:fb:af:33:11:1c:27:f7:9f:53:e7: 21:09:14:e4:c0:2b:38:27:86:4b:7c:0a:c5:42:34: 5a:83:86:70:f4:9c:ff:58:b5:aa:f9:36:92:31:fb: ef:c6:a1:91:07:b0:ca:ec:01:51:e1:c1:ea:21:d9: 50:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DD:10:66:BD:ED:D2:0C:64:68:16:95:04:BF:E0:2F:8F:81:A3:B4 X509v3 Authority Key Identifier: keyid:AF:AC:57:75:1C:5E:76:98:75:ED:26:F5:BC:DF:17:F5:3D:FF:9C:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/r6xXdRxedph17Sb1vN8X9T3_nJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6xXdRxedph17Sb1vN8X9T3_nJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F0E7/03A12C5C3DC611EB82A7681CC4F9AE02/595EF8C63DC711EBA35AB51DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.198.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:2c:cb:9c:a9:b3:ce:69:cd:ab:6e:99:c0:63:07:a0:b8:01: de:3b:71:28:9c:8a:de:88:da:f8:60:3e:a7:15:bd:e3:68:4f: de:ec:71:b1:67:1c:20:d5:cf:1f:0b:f1:5f:4c:9a:f0:6a:61: 9c:0f:68:c9:a3:8b:61:0d:f1:1b:79:46:03:41:aa:78:a9:86: 5a:a6:17:11:8b:d9:99:82:69:79:14:92:f0:aa:2f:e9:cb:12: ca:99:f6:d6:46:a1:64:9b:36:be:88:59:66:4e:ca:6a:e7:2e: 41:41:41:56:f8:dc:66:96:33:4f:d2:83:aa:18:e6:ea:c9:db: c3:a9:a1:43:0c:ca:f8:e4:86:f6:ed:cc:13:dc:c5:1a:a5:d4: 57:1a:74:3c:f3:ca:8d:b3:6b:7c:49:a9:f0:90:39:26:42:e0: 9e:ab:3a:eb:76:d3:36:2f:42:38:32:7a:6c:6d:18:3e:3f:45: 48:d0:cc:c2:94:ce:be:ce:84:3e:d0:d3:98:d0:6a:4e:31:b8: 8e:83:b0:97:31:24:a9:c6:24:61:6c:61:66:f4:00:2d:20:b0: e6:f2:f4:b5:05:4e:e3:c7:e4:ee:2d:ee:59:d7:22:e8:9b:f3: 97:2d:dd:4e:d6:7d:f5:d0:92:6f:b6:fd:f9:3b:14:14:65:ac: 4c:db:cd:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYwRTcxMTAvBgNVBAUTKEFGQUM1Nzc1MUM1RTc2OTg3NUVEMjZGNUJDREYxN0Y1 M0RGRjlDOTkwHhcNMjQxMTA4MjIxMjA2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJlOGNiNi02NDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQlFYRG4IoFz8yTDSnfaW5myM6YAOgfJiBJF2h4FrJssTj4QgY21SgcE8c8s V+L2FBisjf3Wfq0gavKPPSdvb0v5piOEkJYEmDpGIUQq3KOe7asgWWyicAGkO2d9 31+S9sQlV1Ol5/CxkCskVvoIjYoFybzNBXACaCQs8MJz02HehfHeMQuzLGIMmeSP OIDBGGWrdfbySE1B54O9Y5hfKwItL2gZI7G9QO+IlxgNkHXsMxtwCsmpYnpGb6G+ dNsVXG7+/YBRSfuvMxEcJ/efU+chCRTkwCs4J4ZLfArFQjRag4Zw9Jz/WLWq+TaS MfvvxqGRB7DK7AFR4cHqIdlQzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLvdEGa9 7dIMZGgWlQS/4C+PgaO0MB8GA1UdIwQYMBaAFK+sV3UcXnaYde0m9bzfF/U9/5yZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjBFNy8wM0ExMkM1QzNE QzYxMUVCODJBNzY4MUNDNEY5QUUwMi9yNnhYZFJ4ZWRwaDE3U2Ixdk44WDlUM19u SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2eFhkUnhlZHBoMTdTYjF2TjhYOVQzX25Kay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEYwRTcvMDNBMTJDNUMzREM2MTFFQjgyQTc2ODFDQzRGOUFFMDIvNTk1RUY4QzYz REM3MTFFQkEzNUFCNTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnMYwDQYJKoZIhvcNAQELBQADggEBACssy5yps85pzatu mcBjB6C4Ad47cSicit6I2vhgPqcVveNoT97scbFnHCDVzx8L8V9MmvBqYZwPaMmj i2EN8Rt5RgNBqniphlqmFxGL2ZmCaXkUkvCqL+nLEsqZ9tZGoWSbNr6IWWZOymrn LkFBQVb43GaWM0/Sg6oY5urJ28OpoUMMyvjkhvbtzBPcxRql1FcadDzzyo2za3xJ qfCQOSZC4J6rOut20zYvQjgyemxtGD4/RUjQzMKUzr7OhD7Q05jQak4xuI6DsJcx JKnGJGFsYWb0AC0gsOby9LUFTuPH5O4t7lnXIuib85ct3U7WffXQkm+2/fk7FBRl rEzbzfM= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org