$ rpki-client -vvf rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa File: 5C95BDC0C12E11EEA47CBB59C4F9AE02.roa (raw, json) Hash identifier: huZLPtDcXB/3dLJoA65hKvsPgxlLv1XalRW6nvjHrlE= Subject key identifier: 49:4C:6A:F5:C7:BD:21:92:6E:5F:63:8C:7B:A2:A9:4E:3C:F4:DB:12 Certificate issuer: /CN=A912438F/serialNumber=C888D1EEE04BEF3E815F09DDFA19193D699B4F47 Certificate serial: 06D7 Authority key identifier: C8:88:D1:EE:E0:4B:EF:3E:81:5F:09:DD:FA:19:19:3D:69:9B:4F:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa Signing time: Tue 20 Aug 2024 14:52:24 +0000 ROA not before: Tue 20 Aug 2024 14:52:24 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139325 IP address blocks: 103.158.158.0/24 maxlen: 24 103.158.159.0/24 maxlen: 24 2001:df5:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.crl rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 21:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912438F/serialNumber=C888D1EEE04BEF3E815F09DDFA19193D699B4F47 Validity Not Before: Aug 20 14:52:24 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66c4ada8-6a76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:68:6f:f3:1b:66:6c:f6:bb:58:1a:14:d0:23: 9e:2f:6c:bf:6f:3f:48:23:79:9a:7e:bc:c8:19:74: b8:49:ec:ba:97:f8:08:e4:99:29:b0:14:81:9f:8a: 22:f9:5d:e3:7e:78:d3:56:f8:f9:50:22:ae:97:61: 1c:7e:04:ca:c3:ba:8b:9d:4f:c4:40:1b:8c:d3:cf: ef:87:c5:4a:dd:d5:9c:81:f4:4d:ed:6b:5b:81:a2: 5f:f5:c8:20:f7:73:8a:d9:48:98:f9:e4:c7:f4:d2: c2:20:e0:54:52:2e:43:c2:96:1f:b6:62:36:ed:3c: 75:00:4c:b4:48:79:fe:ee:73:a8:12:70:a2:2e:c3: 64:b9:12:a1:e5:49:2e:8e:69:f7:f9:5f:e2:7b:40: 21:63:46:67:d2:12:2d:8c:d8:31:88:b4:50:10:b9: ef:43:40:8a:a1:4e:d1:2d:0f:4a:05:b7:86:25:6b: f0:21:05:9d:b7:ac:8b:26:d5:ca:15:b3:4e:95:b2: 51:88:69:e8:ee:9b:a5:37:3d:ae:66:b4:1c:c6:8e: d7:d6:70:e6:80:96:6d:0e:a9:9f:6c:c1:d0:ed:6f: 1b:68:bb:45:a2:d4:30:f6:fd:cb:0d:b9:fd:e2:1c: e0:ff:df:79:3b:7c:cf:25:8c:ad:55:a5:e2:13:f7: 89:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:4C:6A:F5:C7:BD:21:92:6E:5F:63:8C:7B:A2:A9:4E:3C:F4:DB:12 X509v3 Authority Key Identifier: keyid:C8:88:D1:EE:E0:4B:EF:3E:81:5F:09:DD:FA:19:19:3D:69:9B:4F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.158.0/23 IPv6: 2001:df5:5b80::/48 Signature Algorithm: sha256WithRSAEncryption 3e:c5:6b:87:6f:af:77:4b:3c:15:ac:29:ba:63:1f:cb:46:74: ed:9a:61:18:50:68:37:35:d3:c7:5f:e3:c5:75:43:e8:92:6b: 50:82:4c:94:b5:ba:c8:e5:30:a8:55:c3:42:39:e3:7b:e6:8c: ac:90:c8:5e:50:28:3b:7e:e2:be:a3:b6:1a:ff:fe:11:80:ff: 3c:a9:5a:13:09:c1:de:34:2a:9b:2e:2b:c6:89:87:df:e5:cc: 48:bb:cb:43:0d:a6:9a:66:52:89:40:f0:b0:e3:cd:d9:50:cc: cd:65:48:03:8b:36:63:f1:cd:be:d3:80:7b:2a:40:52:ae:ec: 6c:0b:2a:f0:69:14:85:5c:c9:9f:db:b5:dd:5a:a0:b6:ad:d6: 7e:cc:95:c5:99:13:3e:c6:e9:d8:07:c5:21:fc:e3:4c:c6:a0: 37:b8:aa:6e:b8:7a:e6:f6:51:68:ed:fb:16:ea:47:6c:69:d0: c4:83:7a:50:af:27:44:b3:24:d9:47:21:5d:09:45:93:4c:8e: c3:d9:1c:7f:42:81:96:fc:ca:40:63:b4:13:20:f2:c2:d8:8d: 51:61:32:d0:b8:ec:d4:d2:37:26:3a:06:22:54:ac:77:8c:12: 5e:bc:ba:85:f2:6c:c5:3b:c3:98:32:db:9e:ee:9d:d9:11:cc: 57:d0:0f:78 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzOEYxMTAvBgNVBAUTKEM4ODhEMUVFRTA0QkVGM0U4MTVGMDlEREZBMTkxOTNE Njk5QjRGNDcwHhcNMjQwODIwMTQ1MjI0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YWRhOC02YTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGhv8xtmbPa7WBoU0COeL2y/bz9II3mafrzIGXS4Sey6l/gI5JkpsBSBn4oi +V3jfnjTVvj5UCKul2EcfgTKw7qLnU/EQBuM08/vh8VK3dWcgfRN7WtbgaJf9cgg 93OK2UiY+eTH9NLCIOBUUi5DwpYftmI27Tx1AEy0SHn+7nOoEnCiLsNkuRKh5Uku jmn3+V/ie0AhY0Zn0hItjNgxiLRQELnvQ0CKoU7RLQ9KBbeGJWvwIQWdt6yLJtXK FbNOlbJRiGno7pulNz2uZrQcxo7X1nDmgJZtDqmfbMHQ7W8baLtFotQw9v3LDbn9 4hzg/995O3zPJYytVaXiE/eJKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFElMavXH vSGSbl9jjHuiqU489NsSMB8GA1UdIwQYMBaAFMiI0e7gS+8+gV8J3foZGT1pm09H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDM4Ri9DNzU5MEJENjI1 QUUxMUVCOEVFQzIyMEFDNEY5QUUwMi95SWpSN3VCTDd6NkJYd25kLWhrWlBXbWJU MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJalI3dUJMN3o2Qlh3bmQtaGtaUFdtYlQwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQzOEYvQzc1OTBCRDYyNUFFMTFFQjhFRUMyMjBBQzRGOUFFMDIvNUM5NUJEQzBD MTJFMTFFRUE0N0NCQjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnp4wDwQCAAIwCQMHACABDfVbgDANBgkqhkiG9w0BAQsF AAOCAQEAPsVrh2+vd0s8FawpumMfy0Z07ZphGFBoNzXTx1/jxXVD6JJrUIJMlLW6 yOUwqFXDQjnje+aMrJDIXlAoO37ivqO2Gv/+EYD/PKlaEwnB3jQqmy4rxomH3+XM SLvLQw2mmmZSiUDwsOPN2VDMzWVIA4s2Y/HNvtOAeypAUq7sbAsq8GkUhVzJn9u1 3Vqgtq3WfsyVxZkTPsbp2AfFIfzjTMagN7iqbrh65vZRaO37FupHbGnQxIN6UK8n RLMk2UchXQlFk0yOw9kcf0KBlvzKQGO0EyDywtiNUWEy0Ljs1NI3JjoGIlSsd4wS Xry6hfJsxTvDmDLbnu6d2RHMV9APeA== -----END CERTIFICATE-----Generated at Tue Nov 26 22:44:26 2024 by rpki-client on console-fra.rpki-client.org