$ rpki-client -vvf rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa File: B58C9578378011ECA9E26B5AC4F9AE02.roa (raw, json) Hash identifier: ZDchGQlVuJ+QjHKNA7YoG+7MDRY2/kTvBgBCNq57J7M= Subject key identifier: 90:67:C4:EA:40:B5:FE:D3:E9:8B:04:52:FF:6D:AC:12:AF:5E:7A:41 Certificate issuer: /CN=A9159234/serialNumber=C3DEC7FDDD45C9517260864FA9EEBCFE7B8BCF57 Certificate serial: 04CD Authority key identifier: C3:DE:C7:FD:DD:45:C9:51:72:60:86:4F:A9:EE:BC:FE:7B:8B:CF:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa Signing time: Sat 03 Aug 2024 01:13:29 +0000 ROA not before: Sat 03 Aug 2024 01:13:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 142594 IP address blocks: 103.170.154.0/24 maxlen: 24 103.170.155.0/24 maxlen: 24 2001:df7:1d80::/48 maxlen: 48 2001:df7:1d81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.crl rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1229 (0x4cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159234/serialNumber=C3DEC7FDDD45C9517260864FA9EEBCFE7B8BCF57 Validity Not Before: Aug 3 01:13:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad8439-13d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:00:b4:02:1b:a2:aa:d5:9a:75:15:70:6b:69: 93:1b:3a:8f:5c:ce:39:41:de:f1:62:1d:bc:d1:be: f5:ce:d3:f8:ed:14:86:9b:78:aa:fe:03:f9:cf:42: 61:96:82:57:15:fb:31:63:a1:bf:37:b5:59:95:ab: 88:07:2b:82:ac:93:de:62:63:73:85:17:c9:21:25: 0c:95:2d:3d:63:e8:a9:f4:22:b4:22:16:17:ad:63: b8:a9:67:c2:34:24:60:4b:5c:e5:48:2a:63:21:9a: 70:21:9e:75:6c:13:74:86:bd:7e:47:63:36:29:cc: aa:78:55:59:9b:04:29:e2:9b:be:f8:c3:ec:75:dc: 1a:dd:6d:23:34:5e:d7:c4:2b:13:b2:a5:5e:21:d7: bd:96:f9:90:65:c7:e9:df:1d:46:7b:ef:bc:87:4b: 37:25:0f:53:36:23:02:0e:f3:2e:c8:f1:27:0e:71: 31:46:fa:51:41:86:6a:90:b5:19:62:14:bc:bf:cf: bb:41:82:23:e5:41:31:77:ab:96:59:69:b9:9a:4b: b7:cc:50:de:df:28:d2:cf:57:00:a9:22:60:f9:a2: 9d:d3:2a:0e:ca:5e:b7:20:85:a3:52:cd:64:ae:e5: 70:68:6b:07:94:d8:12:85:e1:64:ee:29:23:a9:45: 6c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:67:C4:EA:40:B5:FE:D3:E9:8B:04:52:FF:6D:AC:12:AF:5E:7A:41 X509v3 Authority Key Identifier: keyid:C3:DE:C7:FD:DD:45:C9:51:72:60:86:4F:A9:EE:BC:FE:7B:8B:CF:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.154.0/23 IPv6: 2001:df7:1d80::/47 Signature Algorithm: sha256WithRSAEncryption 5d:32:0d:19:28:a0:d8:3c:85:d3:a2:49:b8:20:09:3a:ef:1d: 4b:16:c8:13:09:af:da:e2:cb:52:73:75:a7:4f:3f:36:a8:fb: cf:18:5f:00:a0:a4:d7:23:2b:58:6d:e3:b9:68:63:b5:ba:75: ae:05:b6:03:7a:e2:13:b7:08:6b:78:bf:5c:1a:a4:c5:de:5e: d0:42:02:48:c6:df:49:53:18:8f:79:bb:b1:0b:63:24:e1:3f: 6b:32:c7:06:52:d6:d8:55:98:8f:10:2c:96:64:09:a7:62:21: a3:0c:1c:32:97:63:d1:ba:41:57:e8:5f:d0:da:36:23:7e:6c: 86:e3:08:8b:fa:ba:59:60:47:9c:3e:e1:20:19:fc:35:69:f3: f5:e9:0c:b4:eb:3d:bd:b8:75:06:24:da:ad:9d:d2:4b:98:c1: 19:38:3b:ff:54:94:d2:f5:45:d4:2a:0b:f4:16:a4:1d:0d:3a: c0:d2:83:f7:dd:6a:fa:71:7c:97:a5:d0:6f:52:05:ed:24:b5: 65:ba:4a:b4:30:9a:96:6e:44:fb:14:7d:8f:a0:a0:df:50:1f: 25:8e:b4:e3:cb:69:1e:3b:b3:b8:b9:d2:14:fc:4c:a1:d5:d0: 75:2c:04:50:2c:3b:13:5d:00:ab:ea:ac:c1:91:49:72:49:d0: 1d:e7:7d:e5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyMzQxMTAvBgNVBAUTKEMzREVDN0ZEREQ0NUM5NTE3MjYwODY0RkE5RUVCQ0ZF N0I4QkNGNTcwHhcNMjQwODAzMDExMzI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkODQzOS0xM2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgC0AhuiqtWadRVwa2mTGzqPXM45Qd7xYh280b71ztP47RSGm3iq/gP5z0Jh loJXFfsxY6G/N7VZlauIByuCrJPeYmNzhRfJISUMlS09Y+ip9CK0IhYXrWO4qWfC NCRgS1zlSCpjIZpwIZ51bBN0hr1+R2M2KcyqeFVZmwQp4pu++MPsddwa3W0jNF7X xCsTsqVeIde9lvmQZcfp3x1Ge++8h0s3JQ9TNiMCDvMuyPEnDnExRvpRQYZqkLUZ YhS8v8+7QYIj5UExd6uWWWm5mku3zFDe3yjSz1cAqSJg+aKd0yoOyl63IIWjUs1k ruVwaGsHlNgSheFk7ikjqUVsVwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJBnxOpA tf7T6YsEUv9trBKvXnpBMB8GA1UdIwQYMBaAFMPex/3dRclRcmCGT6nuvP57i89X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTIzNC82QThFMDBFQUVG OEExMUVCQTI5MjE3NjRDNEY5QUUwMi93OTdIX2QxRnlWRnlZSVpQcWU2OF9udUx6 MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c5N0hfZDFGeVZGeVlJWlBxZTY4X251THoxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkyMzQvNkE4RTAwRUFFRjhBMTFFQkEyOTIxNzY0QzRGOUFFMDIvQjU4Qzk1Nzgz NzgwMTFFQ0E5RTI2QjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqpowDwQCAAIwCQMHASABDfcdgDANBgkqhkiG9w0BAQsF AAOCAQEAXTINGSig2DyF06JJuCAJOu8dSxbIEwmv2uLLUnN1p08/Nqj7zxhfAKCk 1yMrWG3juWhjtbp1rgW2A3riE7cIa3i/XBqkxd5e0EICSMbfSVMYj3m7sQtjJOE/ azLHBlLW2FWYjxAslmQJp2IhowwcMpdj0bpBV+hf0No2I35shuMIi/q6WWBHnD7h IBn8NWnz9ekMtOs9vbh1BiTarZ3SS5jBGTg7/1SU0vVF1CoL9BakHQ06wNKD991q +nF8l6XQb1IF7SS1ZbpKtDCalm5E+xR9j6Cg31AfJY6048tpHjuzuLnSFPxModXQ dSwEUCw7E10Aq+qswZFJcknQHed95Q== -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:20 2024 by rpki-client on console-fra.rpki-client.org