$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/DED376FAC0B211EEBAD8C90CC4F9AE02.roa File: DED376FAC0B211EEBAD8C90CC4F9AE02.roa (raw, json) Hash identifier: 55JHX4ew0160t2EeeFzUdAANCqPk1wqNfiUZNAUhc9g= Subject key identifier: F9:D2:AC:F8:78:B1:F5:52:43:FB:56:51:ED:AF:53:FF:07:D3:D6:88 Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 02AA Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/DED376FAC0B211EEBAD8C90CC4F9AE02.roa Signing time: Thu 29 Feb 2024 03:25:56 +0000 ROA not before: Thu 29 Feb 2024 03:25:56 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 23750 IP address blocks: 103.159.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Feb 29 03:25:56 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65dff943-ae7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9e:c1:f9:c4:36:7c:f1:6d:57:98:b8:cc:be: 8c:ba:f0:c6:05:a9:3b:4c:bc:f6:9c:d4:b1:1d:88: 1a:6b:b1:e7:6e:66:d3:f2:c2:cb:c2:56:20:5f:12: 66:d3:f3:cb:04:41:99:de:6f:60:28:58:cd:32:67: b1:d7:62:b9:50:a1:ff:0f:44:42:fc:1a:4f:a8:ad: 1d:66:78:d5:c5:9a:8a:82:05:39:1c:64:9b:54:9d: eb:57:94:3e:19:f9:0c:2b:60:e8:8c:de:77:84:f7: 31:d1:31:e3:1f:44:c5:8b:e3:6a:ba:e2:d8:0d:81: fd:73:e8:6f:4d:92:4a:e3:66:a4:ee:05:a7:30:c3: e1:87:65:7a:01:83:bf:da:37:80:3e:e9:c6:af:b3: 28:4e:be:83:1d:35:8d:bf:03:9f:2d:82:de:be:f4: d4:d2:28:68:93:52:7e:5c:12:6d:f9:aa:1f:67:24: d6:d0:e8:0f:50:85:0f:15:d1:21:82:da:3f:1e:42: 97:a2:19:44:b3:b2:24:4b:7d:63:00:50:4d:1f:03: 9c:6c:81:25:2b:39:12:4d:40:f8:fa:be:e0:11:1b: d7:8d:9a:e7:5e:a4:4c:fb:b0:8e:82:95:bf:69:70: 35:1d:0f:1b:10:79:71:f6:88:b3:18:cd:19:c3:76: 0a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D2:AC:F8:78:B1:F5:52:43:FB:56:51:ED:AF:53:FF:07:D3:D6:88 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/DED376FAC0B211EEBAD8C90CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.79.0/24 Signature Algorithm: sha256WithRSAEncryption 25:e8:0e:54:f5:7c:7a:23:57:c8:00:02:50:01:fd:4c:a1:d6: da:ef:c5:64:0e:f7:6a:71:54:57:3f:ec:9e:46:81:e8:48:4f: 96:71:f7:4e:ee:a2:4e:5e:f5:01:55:44:4f:31:58:c4:4c:13: 57:d8:cb:52:94:26:6c:10:82:e6:71:2d:df:17:40:be:f8:6e: eb:f0:4f:46:34:74:32:35:d6:04:ca:6c:bd:8e:ff:0b:22:b9: 7c:8e:3a:15:70:51:59:2d:f3:d6:5d:eb:92:35:de:c0:09:3c: 85:fe:8f:3c:23:35:18:65:7c:8f:f6:4b:0a:9b:05:26:ea:21: 8b:0f:d5:60:f3:c5:b1:2e:e2:e9:df:ad:12:d0:65:aa:90:37: b9:ca:2f:74:95:71:f0:f3:0c:75:99:0e:e2:ca:e8:dc:ff:dc: 0c:a9:63:53:b6:fc:38:71:e9:43:e0:9d:d7:d5:c2:81:b7:b9: 62:a4:1c:d3:57:de:94:ee:57:54:a7:ec:7c:f7:b4:95:af:cd: 1c:0d:5d:9e:c6:74:fc:ae:d4:14:9f:33:d6:0c:27:d8:46:83: 26:be:55:80:f1:ec:57:bc:2f:7c:fe:35:02:bc:01:49:5e:d9: 1f:56:7b:19:44:ef:b2:fc:3d:77:77:a5:3c:44:4e:9f:76:b8: dd:3e:6d:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjQwMjI5MDMyNTU2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmZjk0My1hZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy57B+cQ2fPFtV5i4zL6MuvDGBak7TLz2nNSxHYgaa7HnbmbT8sLLwlYgXxJm 0/PLBEGZ3m9gKFjNMmex12K5UKH/D0RC/BpPqK0dZnjVxZqKggU5HGSbVJ3rV5Q+ GfkMK2DojN53hPcx0THjH0TFi+NquuLYDYH9c+hvTZJK42ak7gWnMMPhh2V6AYO/ 2jeAPunGr7MoTr6DHTWNvwOfLYLevvTU0ihok1J+XBJt+aofZyTW0OgPUIUPFdEh gto/HkKXohlEs7IkS31jAFBNHwOcbIElKzkSTUD4+r7gERvXjZrnXqRM+7COgpW/ aXA1HQ8bEHlx9oizGM0Zw3YK5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPnSrPh4 sfVSQ/tWUe2vU/8H09aIMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThFOEUvMDRGQkI4RjBBRTBGMTFFQ0EwMjA1NjY2QzRGOUFFMDIvREVEMzc2RkFD MEIyMTFFRUJBRDhDOTBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnn08wDQYJKoZIhvcNAQELBQADggEBACXoDlT1fHojV8gA AlAB/Uyh1trvxWQO92pxVFc/7J5GgehIT5Zx907uok5e9QFVRE8xWMRME1fYy1KU JmwQguZxLd8XQL74buvwT0Y0dDI11gTKbL2O/wsiuXyOOhVwUVkt89Zd65I13sAJ PIX+jzwjNRhlfI/2SwqbBSbqIYsP1WDzxbEu4unfrRLQZaqQN7nKL3SVcfDzDHWZ DuLK6Nz/3AypY1O2/Dhx6UPgndfVwoG3uWKkHNNX3pTuV1Sn7Hz3tJWvzRwNXZ7G dPyu1BSfM9YMJ9hGgya+VYDx7Fe8L3z+NQK8AUle2R9WexlE77L8PXd3pTxETp92 uN0+bVo= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:37 2024 by rpki-client on console-fra.rpki-client.org