$ rpki-client -vvf rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/3CE37DD8C0F911EBB5625E1CC4F9AE02.roa File: 3CE37DD8C0F911EBB5625E1CC4F9AE02.roa (raw, json) Hash identifier: lIk4sio4TZruyq4pTpC/V2Gh2NyWW6dRTUh+EqYhKOI= Subject key identifier: AF:66:DE:D4:8C:FB:7A:DC:47:48:74:83:27:82:8A:41:1E:B2:25:32 Certificate issuer: /CN=A9159298/serialNumber=64CE06A16CA89123556AA9AFD7248DBEF0E69A86 Certificate serial: 057E Authority key identifier: 64:CE:06:A1:6C:A8:91:23:55:6A:A9:AF:D7:24:8D:BE:F0:E6:9A:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM4GoWyokSNVaqmv1ySNvvDmmoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/3CE37DD8C0F911EBB5625E1CC4F9AE02.roa Signing time: Thu 14 Nov 2024 23:01:56 +0000 ROA not before: Thu 14 Nov 2024 23:01:56 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 63961 IP address blocks: 103.159.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/ZM4GoWyokSNVaqmv1ySNvvDmmoY.crl rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/ZM4GoWyokSNVaqmv1ySNvvDmmoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM4GoWyokSNVaqmv1ySNvvDmmoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1406 (0x57e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159298/serialNumber=64CE06A16CA89123556AA9AFD7248DBEF0E69A86 Validity Not Before: Nov 14 23:01:56 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67368163-ae98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:60:28:37:fb:18:22:21:f5:e6:9a:0c:80:ec: e0:38:c9:da:0d:c6:35:e4:35:c3:b4:ce:4b:9b:fd: 29:0e:a0:30:78:91:c2:09:7d:e5:1c:25:d8:ba:bf: 3f:f9:32:64:a3:b0:2e:e1:5e:90:d4:7a:7f:2c:54: 4b:46:7f:f8:96:d9:7d:16:42:34:7c:b9:f5:94:79: f1:f8:56:be:a3:d4:14:a6:c0:02:37:29:28:76:24: 75:4b:a7:09:87:c1:39:5c:c0:bd:01:d2:e8:1a:f9: 58:08:79:fa:8f:f9:d1:ba:fa:33:53:30:c2:71:00: ab:5b:bb:fb:56:9d:5b:79:74:7f:5c:61:4d:e0:09: f5:02:1e:e6:6a:b3:5d:18:a4:5b:1a:74:5b:09:85: 6a:32:ab:8a:3f:4a:3b:5b:9d:c2:08:a3:4a:c3:8d: 18:11:a5:74:69:1e:6d:65:ad:a1:21:8e:76:c6:c6: 3e:9a:f5:75:da:75:4d:10:54:33:25:18:1b:33:9e: e1:5f:78:86:88:cc:3b:d6:2c:80:b4:fb:6b:ad:5f: 0e:d8:4d:22:86:b1:0e:5e:be:b4:4d:7b:9b:ba:45: 50:d0:7e:6c:aa:1a:3f:df:2e:c6:ce:8b:94:7d:7e: c6:48:27:50:23:2d:05:c0:ca:74:7a:a7:d3:7e:45: 38:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:66:DE:D4:8C:FB:7A:DC:47:48:74:83:27:82:8A:41:1E:B2:25:32 X509v3 Authority Key Identifier: keyid:64:CE:06:A1:6C:A8:91:23:55:6A:A9:AF:D7:24:8D:BE:F0:E6:9A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/ZM4GoWyokSNVaqmv1ySNvvDmmoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM4GoWyokSNVaqmv1ySNvvDmmoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/3CE37DD8C0F911EBB5625E1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.2.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:47:c2:87:b1:17:f8:d1:8b:60:c7:ea:81:62:06:3e:48:41: 34:fc:03:cc:2c:a7:10:79:69:3a:f9:8a:61:b7:6f:e4:c5:79: 1f:ba:17:1c:6e:4e:41:3a:a1:fb:7c:2c:6e:4a:9d:ea:fa:be: ef:3b:fb:6d:cb:e2:54:c5:50:bc:c8:cb:fd:b2:0c:4b:3d:f6: e0:ea:d1:b8:1d:ce:5e:a2:db:4e:27:fe:3a:65:43:fb:03:7b: 19:be:68:3f:ae:f8:dc:91:9b:73:d7:1d:bb:b7:c9:06:db:79: d0:03:71:c5:1e:00:fc:2e:a8:e4:19:39:ff:a7:6a:a2:f1:51: 30:79:3d:18:f9:8f:75:2a:55:39:c4:72:05:53:6c:c9:8b:92: e3:2e:b4:05:e8:ba:e2:f9:78:97:c2:6d:e6:2a:06:35:9b:c6: 74:cf:a6:72:2a:83:8c:f6:84:d8:e7:a7:40:f4:17:d2:15:4f: 5b:7b:3f:80:06:e5:0a:b6:47:b5:7c:57:34:c0:69:a6:2e:83: ac:77:4a:e7:da:9d:0d:a3:41:1b:58:0b:3a:c4:c4:4c:7c:d0: 7e:0e:e3:6a:55:91:56:85:fd:5c:61:1e:2b:bf:cd:ea:4d:29: 37:13:ac:da:9b:2e:04:59:7c:07:3e:ba:25:69:5d:d2:2d:70: 7b:11:25:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyOTgxMTAvBgNVBAUTKDY0Q0UwNkExNkNBODkxMjM1NTZBQTlBRkQ3MjQ4REJF RjBFNjlBODYwHhcNMjQxMTE0MjMwMTU2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2ODE2My1hZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWAoN/sYIiH15poMgOzgOMnaDcY15DXDtM5Lm/0pDqAweJHCCX3lHCXYur8/ +TJko7Au4V6Q1Hp/LFRLRn/4ltl9FkI0fLn1lHnx+Fa+o9QUpsACNykodiR1S6cJ h8E5XMC9AdLoGvlYCHn6j/nRuvozUzDCcQCrW7v7Vp1beXR/XGFN4An1Ah7marNd GKRbGnRbCYVqMquKP0o7W53CCKNKw40YEaV0aR5tZa2hIY52xsY+mvV12nVNEFQz JRgbM57hX3iGiMw71iyAtPtrrV8O2E0ihrEOXr60TXubukVQ0H5sqho/3y7GzouU fX7GSCdQIy0FwMp0eqfTfkU47wIDAQABo4IClTCCApEwHQYDVR0OBBYEFK9m3tSM +3rcR0h0gyeCikEesiUyMB8GA1UdIwQYMBaAFGTOBqFsqJEjVWqpr9ckjb7w5pqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTI5OC82MjIyOUVGMkI2 MUUxMUVCQjBGQzRDNzdDNEY5QUUwMi9aTTRHb1d5b2tTTlZhcW12MXlTTnZ2RG1t b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNNEdvV3lva1NOVmFxbXYxeVNOdnZEbW1vWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkyOTgvNjIyMjlFRjJCNjFFMTFFQkIwRkM0Qzc3QzRGOUFFMDIvM0NFMzdERDhD MEY5MTFFQkI1NjI1RTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnwIwDQYJKoZIhvcNAQELBQADggEBADpHwoexF/jRi2DH 6oFiBj5IQTT8A8wspxB5aTr5imG3b+TFeR+6FxxuTkE6oft8LG5Kner6vu87+23L 4lTFULzIy/2yDEs99uDq0bgdzl6i204n/jplQ/sDexm+aD+u+NyRm3PXHbu3yQbb edADccUeAPwuqOQZOf+naqLxUTB5PRj5j3UqVTnEcgVTbMmLkuMutAXouuL5eJfC beYqBjWbxnTPpnIqg4z2hNjnp0D0F9IVT1t7P4AG5Qq2R7V8VzTAaaYug6x3Sufa nQ2jQRtYCzrExEx80H4O42pVkVaF/VxhHiu/zepNKTcTrNqbLgRZfAc+uiVpXdIt cHsRJZY= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:40 2024 by rpki-client on console-ams.rpki-client.org