$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/48005BEC3DEA11EBBCCD2322C4F9AE02.roa File: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (raw, json) Hash identifier: wTOucgnQdcWSg4zNn+r7FfCOl0y4GnQzP32e9h9ng3E= Subject key identifier: 1A:25:D6:BF:F3:1C:86:7A:2B:F6:79:6B:CC:B6:79:96:69:BC:29:6E Certificate issuer: /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Certificate serial: 0617 Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/48005BEC3DEA11EBBCCD2322C4F9AE02.roa Signing time: Thu 18 Jan 2024 23:41:32 +0000 ROA not before: Thu 18 Jan 2024 23:41:32 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 63526 IP address blocks: 103.159.128.0/23 maxlen: 23 103.159.128.0/24 maxlen: 24 103.159.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1559 (0x617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Validity Not Before: Jan 18 23:41:32 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a9b72c-3f36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0f:a7:22:01:1b:f0:b4:bd:dd:49:fb:bd:56: 24:e7:8a:fc:b8:85:b8:d1:b1:f9:ba:40:f2:68:84: 51:f1:51:3e:f7:7d:58:8c:fa:d6:69:d0:90:c2:b2: 05:10:93:73:7f:43:ad:89:39:55:91:0b:c6:4a:99: 7e:6f:e5:cc:8a:ee:de:e4:a4:77:2c:ad:87:0c:ee: 82:51:71:45:03:39:74:f6:78:6b:c0:0a:fe:4f:63: 21:05:99:0d:bb:96:ee:57:f1:21:14:e6:30:4d:ba: 2b:06:4a:44:82:a9:97:74:ae:5c:28:ef:ee:9a:42: 63:24:fd:cb:80:4c:8a:4d:4e:b4:c2:77:ba:68:02: 82:e9:33:40:05:6e:a0:88:43:48:3c:6a:1e:4a:52: 81:b6:c4:8e:2f:fc:e1:5a:6d:fb:a8:34:47:10:8d: c3:89:d7:5c:40:26:82:2e:1a:ad:66:7a:fe:15:ac: 99:8a:9f:cd:85:47:7b:8c:aa:2d:be:c6:47:2b:04: 22:da:66:7e:45:b2:48:16:4f:5e:68:61:8f:21:6e: d4:86:69:93:33:93:7f:68:8d:5a:e8:3e:8a:8a:82: 32:52:44:10:d4:fe:ed:e0:73:4a:97:4d:2b:54:da: 0b:cb:53:f3:bd:9d:9a:f8:c7:6c:86:b1:4e:e7:72: 65:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:25:D6:BF:F3:1C:86:7A:2B:F6:79:6B:CC:B6:79:96:69:BC:29:6E X509v3 Authority Key Identifier: keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/48005BEC3DEA11EBBCCD2322C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.128.0/23 Signature Algorithm: sha256WithRSAEncryption 35:fb:8d:89:71:fc:72:30:41:82:34:c3:95:90:ed:5c:d6:b9: 3f:fc:36:ac:f3:57:39:1d:c3:39:1c:e9:1d:78:8a:1c:ca:10: c2:a8:a2:7f:33:93:b5:c4:8e:b1:93:80:76:a7:84:84:c1:98: 80:fa:b9:95:17:f0:93:3b:31:2e:e8:4e:bb:88:f9:0d:bc:22: 41:1a:8c:e3:da:3a:ba:44:d0:6c:89:d6:e2:94:f5:c7:07:d8: e9:15:2c:c9:dc:06:ca:b7:bf:a5:d7:ef:dd:66:05:ae:9a:84: 96:42:67:3b:13:7e:d6:83:18:50:05:2b:9d:cc:4f:6d:03:23: 6e:4f:66:b4:f9:05:26:6b:8a:2d:39:69:a8:f8:0c:f6:a2:98: ac:bc:0b:48:00:03:fb:ae:1a:70:d2:58:9c:f2:85:fc:ea:9d: ad:3a:e7:8b:9d:46:df:3d:c5:c5:66:bb:34:0c:c8:df:ab:f6: 6c:24:6c:ba:ef:a4:ee:99:8f:51:72:60:8c:7d:a1:b3:2f:e6: f0:dd:31:d7:7e:2c:9e:02:42:fe:1d:52:7e:37:92:e8:6c:f5: ea:60:59:a8:d9:42:2e:ea:e8:8b:62:1e:45:f5:25:6e:52:3c: 16:91:07:3d:08:8a:b5:50:6d:93:ff:89:ba:d8:0d:ac:99:6a: 93:95:c2:76 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDODIxMTAvBgNVBAUTKEEyOTdBMkIwOTMzODJFNDUwODZDQTA3Q0VFNkM5N0Iz NkJFNEMyQ0QwHhcNMjQwMTE4MjM0MTMyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE5YjcyYy0zZjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw+nIgEb8LS93Un7vVYk54r8uIW40bH5ukDyaIRR8VE+931YjPrWadCQwrIF EJNzf0OtiTlVkQvGSpl+b+XMiu7e5KR3LK2HDO6CUXFFAzl09nhrwAr+T2MhBZkN u5buV/EhFOYwTborBkpEgqmXdK5cKO/umkJjJP3LgEyKTU60wne6aAKC6TNABW6g iENIPGoeSlKBtsSOL/zhWm37qDRHEI3DiddcQCaCLhqtZnr+FayZip/NhUd7jKot vsZHKwQi2mZ+RbJIFk9eaGGPIW7UhmmTM5N/aI1a6D6KioIyUkQQ1P7t4HNKl00r VNoLy1PzvZ2a+MdshrFO53JlxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBol1r/z HIZ6K/Z5a8y2eZZpvCluMB8GA1UdIwQYMBaAFKKXorCTOC5FCGygfO5sl7Nr5MLN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM4Mi8xOEREQkZEMjNE RTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExrVUliS0I4N215WHMydmt3 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZWlzSk00TGtVSWJLQjg3bXlYczJ2a3dzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFDODIvMThEREJGRDIzREU4MTFFQkEzNUQ1MDFGQzRGOUFFMDIvNDgwMDVCRUMz REVBMTFFQkJDQ0QyMzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnn4AwDQYJKoZIhvcNAQELBQADggEBADX7jYlx/HIwQYI0 w5WQ7VzWuT/8NqzzVzkdwzkc6R14ihzKEMKoon8zk7XEjrGTgHanhITBmID6uZUX 8JM7MS7oTruI+Q28IkEajOPaOrpE0GyJ1uKU9ccH2OkVLMncBsq3v6XX791mBa6a hJZCZzsTftaDGFAFK53MT20DI25PZrT5BSZrii05aaj4DPaimKy8C0gAA/uuGnDS WJzyhfzqna0654udRt89xcVmuzQMyN+r9mwkbLrvpO6Zj1FyYIx9obMv5vDdMdd+ LJ4CQv4dUn43kuhs9epgWajZQi7q6ItiHkX1JW5SPBaRBz0IirVQbZP/ibrYDayZ apOVwnY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org