$ rpki-client -vvf rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/DFCE0CFC387311EBA0AC593EC4F9AE02.roa File: DFCE0CFC387311EBA0AC593EC4F9AE02.roa (raw, json) Hash identifier: N6swnawsG9vPr5IItgnhXAsZKdg/FgOWCUjDUxmTcGc= Subject key identifier: 8F:DF:64:EA:D3:EB:E8:32:A5:F7:39:45:04:68:9D:63:A0:04:26:63 Certificate issuer: /CN=A91B189B/serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Certificate serial: 060F Authority key identifier: FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/DFCE0CFC387311EBA0AC593EC4F9AE02.roa Signing time: Thu 14 Dec 2023 23:31:41 +0000 ROA not before: Thu 14 Dec 2023 23:31:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141447 IP address blocks: 103.159.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1551 (0x60f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B189B/serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Validity Not Before: Dec 14 23:31:41 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657b905d-2f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:de:fd:b7:db:b8:df:3e:15:f1:51:d4:57:c0: 89:e4:26:47:c3:f6:1d:79:f0:16:f3:ba:ce:a5:30: d0:cf:ad:00:08:a4:7e:19:f8:03:df:d0:c8:d7:69: e7:85:05:a7:e8:a4:84:31:0c:ee:82:f6:1a:84:b4: c7:93:99:c9:fc:bb:73:ea:27:88:fe:fc:1a:2e:cd: f9:74:cd:cf:3d:d1:e3:09:2a:dc:7b:b7:c7:ca:c9: d7:bc:38:49:30:1d:18:94:83:0d:4c:3e:b2:db:8e: dc:68:1e:02:1f:96:2f:c4:a3:14:6d:81:44:83:1c: 6f:78:27:73:4e:d5:ea:ce:ae:be:10:98:35:f1:08: 86:30:52:80:49:96:ff:fc:21:7a:3d:81:85:b4:0b: 6f:eb:3e:fb:d5:6c:1d:9b:30:d4:91:b5:0b:80:bd: 3b:6d:71:dd:74:d7:ef:67:b5:41:56:e7:c8:5c:71: 34:7c:59:a7:14:d4:7c:3c:52:21:62:cf:78:73:f4: 38:2f:78:17:1c:53:10:44:da:87:a6:b9:e5:ff:7b: c5:de:3c:d5:68:5b:c1:fe:eb:c6:41:7e:6d:a6:22: 8e:5b:25:28:7f:ab:94:10:2f:d3:ed:6d:46:d7:f4: 02:5a:c4:7b:23:ce:04:63:c4:9c:23:8d:ab:14:85: 32:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DF:64:EA:D3:EB:E8:32:A5:F7:39:45:04:68:9D:63:A0:04:26:63 X509v3 Authority Key Identifier: keyid:FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/DFCE0CFC387311EBA0AC593EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.163.0/24 Signature Algorithm: sha256WithRSAEncryption 77:cd:aa:2f:95:42:e1:e9:28:51:f2:50:e7:85:67:41:63:fc: fe:33:ca:bc:3b:61:7f:27:3e:a6:34:37:b0:b5:28:c0:4a:3e: 80:97:87:53:fc:a3:a4:19:f5:f5:70:7b:8f:4a:f0:07:09:3f: ee:12:e8:4d:a8:c5:f9:81:47:95:00:41:b1:54:90:13:7f:73: 80:26:cb:7f:91:82:a6:fa:c7:51:15:87:b3:73:55:51:d0:ed: 82:c2:01:89:c2:4c:63:6e:74:85:ea:2a:9c:f5:bc:20:08:fa: bd:3f:a6:c4:5e:b8:c7:35:cb:bc:5e:02:60:ac:fb:ce:ad:48: 70:fb:e7:f5:35:ae:38:89:6f:64:fe:b3:ec:a0:a9:10:26:bd: 37:1c:40:38:83:c5:ba:4f:36:bc:5a:53:77:11:42:75:af:d6: dc:8a:83:d8:d7:39:61:73:94:48:c4:b8:2c:8a:e3:b9:e4:36: e9:4b:dd:39:4c:44:cb:bc:13:a1:fa:d2:39:82:a2:5b:d9:dc: 60:47:2f:c5:74:86:62:07:a5:70:3c:cb:2c:16:b5:67:21:70: b6:f3:ca:53:37:e0:e8:54:45:d1:61:3a:00:4d:cd:47:0c:dc: 48:9e:a0:7f:c5:98:88:1a:e3:3e:f5:a9:21:21:31:80:34:4a: 21:d7:9a:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4OUIxMTAvBgNVBAUTKEZEMkE5RDVFRkFCOTExMUIwQTVBMzAxM0YzNEMyQ0JE QUZEMDFGQzIwHhcNMjMxMjE0MjMzMTQxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiOTA1ZC0yZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0d79t9u43z4V8VHUV8CJ5CZHw/YdefAW87rOpTDQz60ACKR+GfgD39DI12nn hQWn6KSEMQzugvYahLTHk5nJ/Ltz6ieI/vwaLs35dM3PPdHjCSrce7fHysnXvDhJ MB0YlIMNTD6y247caB4CH5YvxKMUbYFEgxxveCdzTtXqzq6+EJg18QiGMFKASZb/ /CF6PYGFtAtv6z771WwdmzDUkbULgL07bXHddNfvZ7VBVufIXHE0fFmnFNR8PFIh Ys94c/Q4L3gXHFMQRNqHprnl/3vF3jzVaFvB/uvGQX5tpiKOWyUof6uUEC/T7W1G 1/QCWsR7I84EY8ScI42rFIUyvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI/fZOrT 6+gypfc5RQRonWOgBCZjMB8GA1UdIwQYMBaAFP0qnV76uREbClowE/NMLL2v0B/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTg5Qi8zMjhCREQ0MDM4 NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVSc0tXakFUODB3c3ZhX1FI OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TcWRYdnE1RVJzS1dqQVQ4MHdzdmFfUUg4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE4OUIvMzI4QkRENDAzODcyMTFFQjk5N0FBMjNBQzRGOUFFMDIvREZDRTBDRkMz ODczMTFFQkEwQUM1OTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnn6MwDQYJKoZIhvcNAQELBQADggEBAHfNqi+VQuHpKFHy UOeFZ0Fj/P4zyrw7YX8nPqY0N7C1KMBKPoCXh1P8o6QZ9fVwe49K8AcJP+4S6E2o xfmBR5UAQbFUkBN/c4Amy3+Rgqb6x1EVh7NzVVHQ7YLCAYnCTGNudIXqKpz1vCAI +r0/psReuMc1y7xeAmCs+86tSHD75/U1rjiJb2T+s+ygqRAmvTccQDiDxbpPNrxa U3cRQnWv1tyKg9jXOWFzlEjEuCyK47nkNulL3TlMRMu8E6H60jmColvZ3GBHL8V0 hmIHpXA8yywWtWchcLbzylM34OhURdFhOgBNzUcM3EieoH/FmIga4z71qSEhMYA0 SiHXmvU= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org