$ rpki-client -vvf rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa File: 5C95BDC0C12E11EEA47CBB59C4F9AE02.roa (raw, json) Hash identifier: sQ4xQdkKUpU+0+qXrtQjpiuCOyP0QcObH62lq38LzWU= Subject key identifier: D1:BF:77:16:7A:79:C6:2A:BF:CB:9B:F0:79:F3:BE:A3:9D:09:FE:41 Certificate issuer: /CN=A912438F/serialNumber=C888D1EEE04BEF3E815F09DDFA19193D699B4F47 Certificate serial: 066F Authority key identifier: C8:88:D1:EE:E0:4B:EF:3E:81:5F:09:DD:FA:19:19:3D:69:9B:4F:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa Signing time: Thu 01 Feb 2024 18:18:56 +0000 ROA not before: Thu 01 Feb 2024 18:18:56 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139325 IP address blocks: 103.158.158.0/24 maxlen: 24 2001:df5:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.crl rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912438F/serialNumber=C888D1EEE04BEF3E815F09DDFA19193D699B4F47 Validity Not Before: Feb 1 18:18:56 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65bbe090-92a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:db:c4:d1:da:74:08:7f:be:bd:9b:4f:6b:c4: 3e:2b:af:09:3e:d8:e4:03:2f:d5:63:d4:76:c8:05: 2a:4f:b2:b5:f5:81:ed:48:0f:53:f4:70:f6:f8:ba: 98:a8:6e:97:4b:43:ab:c1:cb:22:90:d3:1e:61:3d: 50:2b:10:c5:71:c7:64:b4:cf:da:09:17:80:9f:fa: a6:bb:40:8d:82:b5:4b:94:c6:2e:86:75:e3:3e:4d: 24:fe:74:4b:1b:82:30:7b:a4:44:0c:4c:f2:e1:1c: 45:eb:bb:bc:69:e0:50:b0:80:51:e1:ab:51:23:7a: ef:0e:0b:5e:9c:09:67:81:ff:cb:06:67:99:b9:81: 33:45:9b:18:fa:3e:f2:80:33:5c:58:3f:c3:06:16: 95:f9:15:3e:7f:2c:5b:be:40:12:0c:67:ff:4f:9b: 6a:3c:5d:3f:0e:5a:ee:b4:a4:04:20:3b:de:34:b7: 45:af:c2:2b:e0:72:83:6d:60:02:de:e0:a4:8b:18: 72:e0:8c:1e:e5:00:c4:f4:f4:ff:42:0a:9f:6c:c5: d0:98:d6:a1:87:95:5b:33:f1:e1:c2:d1:14:95:b6: 1b:fe:f6:94:e2:a6:66:44:2f:d8:c9:f7:e9:b2:6d: c3:0c:56:7d:b7:07:ff:fd:6e:d2:e0:60:23:19:aa: 48:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:BF:77:16:7A:79:C6:2A:BF:CB:9B:F0:79:F3:BE:A3:9D:09:FE:41 X509v3 Authority Key Identifier: keyid:C8:88:D1:EE:E0:4B:EF:3E:81:5F:09:DD:FA:19:19:3D:69:9B:4F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.158.0/24 IPv6: 2001:df5:5b80::/48 Signature Algorithm: sha256WithRSAEncryption 60:79:c7:9b:ac:75:e0:4c:f1:05:8e:e1:c4:5e:d9:85:98:01: 66:f7:22:ea:90:b4:f0:66:a5:e0:58:2f:47:1d:68:31:a5:6b: 72:63:79:cb:58:b0:3e:db:60:4c:ea:1c:e7:9a:b5:83:77:90: 4e:0b:29:99:41:33:48:3e:8d:cb:68:9a:a6:ea:40:dc:cc:16: 85:29:95:84:4d:ce:58:ca:51:9d:1b:58:01:a1:fc:d0:e3:b0: 80:4f:95:f0:40:a4:04:43:26:ad:44:19:4b:fb:40:2d:1e:4b: 07:0e:51:c7:5c:61:75:d1:0c:d8:61:f0:31:d9:02:dc:26:9d: c9:c4:8e:25:b9:5f:24:f8:de:64:94:3a:87:c9:46:10:69:9c: 38:36:7e:29:4a:53:e1:65:34:51:9a:9d:93:cc:54:da:9f:64: 6e:07:12:bf:51:53:4c:30:73:34:00:02:0b:17:df:e0:b4:f8: 90:a0:ff:a1:aa:60:92:74:27:ef:57:d5:ff:80:c8:e9:35:6b: ca:02:2d:14:f4:05:2b:01:b6:a4:b1:9f:2c:ff:df:78:4b:01: 1c:7e:a5:41:4b:2a:ae:a7:60:f5:11:d2:25:33:37:f5:c9:78: c9:63:cb:eb:a5:ed:14:3a:20:dd:4d:56:f1:f4:13:c4:84:ff: c6:8e:ae:e0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzOEYxMTAvBgNVBAUTKEM4ODhEMUVFRTA0QkVGM0U4MTVGMDlEREZBMTkxOTNE Njk5QjRGNDcwHhcNMjQwMjAxMTgxODU2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiZTA5MC05MmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytvE0dp0CH++vZtPa8Q+K68JPtjkAy/VY9R2yAUqT7K19YHtSA9T9HD2+LqY qG6XS0OrwcsikNMeYT1QKxDFccdktM/aCReAn/qmu0CNgrVLlMYuhnXjPk0k/nRL G4Iwe6REDEzy4RxF67u8aeBQsIBR4atRI3rvDgtenAlngf/LBmeZuYEzRZsY+j7y gDNcWD/DBhaV+RU+fyxbvkASDGf/T5tqPF0/DlrutKQEIDveNLdFr8Ir4HKDbWAC 3uCkixhy4Iwe5QDE9PT/QgqfbMXQmNahh5VbM/HhwtEUlbYb/vaU4qZmRC/Yyffp sm3DDFZ9twf//W7S4GAjGapIeQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNG/dxZ6 ecYqv8ub8HnzvqOdCf5BMB8GA1UdIwQYMBaAFMiI0e7gS+8+gV8J3foZGT1pm09H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDM4Ri9DNzU5MEJENjI1 QUUxMUVCOEVFQzIyMEFDNEY5QUUwMi95SWpSN3VCTDd6NkJYd25kLWhrWlBXbWJU MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJalI3dUJMN3o2Qlh3bmQtaGtaUFdtYlQwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQzOEYvQzc1OTBCRDYyNUFFMTFFQjhFRUMyMjBBQzRGOUFFMDIvNUM5NUJEQzBD MTJFMTFFRUE0N0NCQjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnnp4wDwQCAAIwCQMHACABDfVbgDANBgkqhkiG9w0BAQsF AAOCAQEAYHnHm6x14EzxBY7hxF7ZhZgBZvci6pC08Gal4FgvRx1oMaVrcmN5y1iw PttgTOoc55q1g3eQTgspmUEzSD6Ny2iapupA3MwWhSmVhE3OWMpRnRtYAaH80OOw gE+V8ECkBEMmrUQZS/tALR5LBw5Rx1xhddEM2GHwMdkC3CadycSOJblfJPjeZJQ6 h8lGEGmcODZ+KUpT4WU0UZqdk8xU2p9kbgcSv1FTTDBzNAACCxff4LT4kKD/oapg knQn71fV/4DI6TVrygItFPQFKwG2pLGfLP/feEsBHH6lQUsqrqdg9RHSJTM39cl4 yWPL66XtFDog3U1W8fQTxIT/xo6u4A== -----END CERTIFICATE-----Generated at Fri May 17 00:24:20 2024 by rpki-client on console-fra.rpki-client.org