$ rpki-client -vvf rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/978FBCD82A0E11EB8CC1535DC4F9AE02.roa File: 978FBCD82A0E11EB8CC1535DC4F9AE02.roa (raw, json) Hash identifier: BaQNhmiIXdP7/OtUHimFEFlvVA2memNm5OpAKG6uByM= Subject key identifier: 85:34:E7:9D:F5:73:E3:A9:74:A1:3E:D7:2E:85:DE:1B:1B:B7:55:AB Certificate issuer: /CN=A9137917/serialNumber=F4541FB77965DE14A59F9EF233DE19F9205F5F98 Certificate serial: 0669 Authority key identifier: F4:54:1F:B7:79:65:DE:14:A5:9F:9E:F2:33:DE:19:F9:20:5F:5F:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FQft3ll3hSln57yM94Z-SBfX5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/978FBCD82A0E11EB8CC1535DC4F9AE02.roa Signing time: Wed 20 Dec 2023 23:12:06 +0000 ROA not before: Wed 20 Dec 2023 23:12:06 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139653 IP address blocks: 103.158.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.crl rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FQft3ll3hSln57yM94Z-SBfX5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1641 (0x669) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137917/serialNumber=F4541FB77965DE14A59F9EF233DE19F9205F5F98 Validity Not Before: Dec 20 23:12:06 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658374c6-6d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4e:08:34:3d:5c:e1:d5:cb:df:30:77:2b:f5: de:e4:3f:d7:0a:f9:31:22:1a:fb:d5:2d:41:c9:52: 50:a2:14:31:fb:1a:f2:f2:32:d9:2c:8b:17:ad:09: 3d:28:25:22:3c:92:30:46:42:21:94:91:13:ae:e7: c8:33:a0:0e:f8:d2:d1:d3:b1:37:0e:ff:69:4d:b9: 74:ea:88:e9:69:57:5d:18:0b:8b:5e:01:45:0f:67: 53:09:ca:f5:fb:ee:ed:fa:2b:14:27:2c:cf:bb:a1: 87:ea:f8:84:bb:7b:8c:a3:c9:06:10:13:6d:62:e0: c0:74:9b:cf:49:3f:33:22:48:85:60:1c:22:d5:d9: cd:82:72:73:84:59:f1:08:10:a1:d7:b2:d9:65:ea: a3:40:05:2d:a8:99:c9:cd:55:f4:1d:20:6f:53:23: 54:c0:1b:11:18:2d:a8:41:b6:11:d5:38:ac:44:fb: 7a:f1:42:d4:87:92:4b:71:ed:4b:57:6d:74:fa:6d: 27:4b:d0:cd:76:c9:a3:a8:d7:98:1f:dd:f5:68:e7: 0e:69:7d:c9:dd:c3:14:93:a9:f7:1a:78:0c:69:a3: 04:57:df:a3:fa:57:b8:bf:95:d9:4f:ce:43:25:3e: 16:18:22:ec:d6:77:fc:cd:47:ea:94:21:90:4f:2e: 12:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:34:E7:9D:F5:73:E3:A9:74:A1:3E:D7:2E:85:DE:1B:1B:B7:55:AB X509v3 Authority Key Identifier: keyid:F4:54:1F:B7:79:65:DE:14:A5:9F:9E:F2:33:DE:19:F9:20:5F:5F:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FQft3ll3hSln57yM94Z-SBfX5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/978FBCD82A0E11EB8CC1535DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.222.0/24 Signature Algorithm: sha256WithRSAEncryption 98:8d:a4:9b:0b:1f:a5:39:24:e0:5b:cc:e4:a7:f9:50:ca:87: d2:63:e3:60:05:f5:c8:84:da:b8:11:3a:99:9c:7d:9e:77:c3: a9:ab:26:95:15:e2:16:55:80:7c:e6:4e:fe:90:6e:02:fb:d8: 33:d3:62:ff:52:6f:58:96:9c:a9:e6:6d:78:f1:a6:70:22:c4: c2:31:27:1c:7b:70:25:4a:30:d2:68:5d:c4:6c:03:cd:22:6b: 92:60:9b:bf:4e:0e:fb:0f:cf:42:a8:a4:9d:50:80:d2:0a:e0: a0:9d:c6:6b:54:1c:44:f9:ff:a8:8c:a4:a0:3a:2d:b3:dd:bc: fb:f3:18:ea:c4:7d:81:73:ac:b4:53:08:6f:a2:f6:fc:44:4d: 82:0c:d4:a2:62:c9:41:50:c6:e8:97:94:1c:74:f3:e4:83:d1: c1:5f:86:e2:90:78:59:5d:d9:95:6b:74:fe:6a:36:27:5e:99: de:ba:9b:5e:13:4a:f6:fb:02:95:9b:af:fb:6b:dc:04:01:1c: c9:f1:19:d4:d6:17:1d:51:8b:f7:0a:a0:99:06:52:8d:f0:02: 98:40:f1:94:4b:91:55:17:ef:ba:c6:4c:a7:54:36:0e:27:4e: 7f:e6:4a:93:fd:4e:24:02:e7:df:4c:c4:87:8a:07:6e:39:0d: af:5a:47:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc5MTcxMTAvBgNVBAUTKEY0NTQxRkI3Nzk2NURFMTRBNTlGOUVGMjMzREUxOUY5 MjA1RjVGOTgwHhcNMjMxMjIwMjMxMjA2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzNzRjNi02ZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmk4IND1c4dXL3zB3K/Xe5D/XCvkxIhr71S1ByVJQohQx+xry8jLZLIsXrQk9 KCUiPJIwRkIhlJETrufIM6AO+NLR07E3Dv9pTbl06ojpaVddGAuLXgFFD2dTCcr1 ++7t+isUJyzPu6GH6viEu3uMo8kGEBNtYuDAdJvPST8zIkiFYBwi1dnNgnJzhFnx CBCh17LZZeqjQAUtqJnJzVX0HSBvUyNUwBsRGC2oQbYR1TisRPt68ULUh5JLce1L V210+m0nS9DNdsmjqNeYH931aOcOaX3J3cMUk6n3GngMaaMEV9+j+le4v5XZT85D JT4WGCLs1nf8zUfqlCGQTy4SyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIU05531 c+OpdKE+1y6F3hsbt1WrMB8GA1UdIwQYMBaAFPRUH7d5Zd4UpZ+e8jPeGfkgX1+Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzkxNy80OTJBQjU5NDJB MDMxMUVCQTY5REREMkRDNEY5QUUwMi85RlFmdDNsbDNoU2xuNTd5TTk0Wi1TQmZY NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGUWZ0M2xsM2hTbG41N3lNOTRaLVNCZlg1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzc5MTcvNDkyQUI1OTQyQTAzMTFFQkE2OURERDJEQzRGOUFFMDIvOTc4RkJDRDgy QTBFMTFFQjhDQzE1MzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnt4wDQYJKoZIhvcNAQELBQADggEBAJiNpJsLH6U5JOBb zOSn+VDKh9Jj42AF9ciE2rgROpmcfZ53w6mrJpUV4hZVgHzmTv6QbgL72DPTYv9S b1iWnKnmbXjxpnAixMIxJxx7cCVKMNJoXcRsA80ia5Jgm79ODvsPz0KopJ1QgNIK 4KCdxmtUHET5/6iMpKA6LbPdvPvzGOrEfYFzrLRTCG+i9vxETYIM1KJiyUFQxuiX lBx08+SD0cFfhuKQeFld2ZVrdP5qNidemd66m14TSvb7ApWbr/tr3AQBHMnxGdTW Fx1Ri/cKoJkGUo3wAphA8ZRLkVUX77rGTKdUNg4nTn/mSpP9TiQC599MxIeKB245 Da9aRzw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org