$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/79D611D265E711EBB6FD8A0DC4F9AE02.roa File: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (raw, json) Hash identifier: WR1DbVbaQ/9PlcfupDSU3lPtOXXUq5mwwlQCdWOBvqM= Subject key identifier: D8:04:5D:89:C2:BD:A2:F8:62:D9:6F:C7:5C:A2:95:3A:5E:C7:8C:65 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 05AB Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/79D611D265E711EBB6FD8A0DC4F9AE02.roa Signing time: Thu 28 Dec 2023 23:41:46 +0000 ROA not before: Thu 28 Dec 2023 23:41:46 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141416 IP address blocks: 103.158.204.0/23 maxlen: 23 103.158.204.0/24 maxlen: 24 103.158.205.0/24 maxlen: 24 2001:df5:6480::/48 maxlen: 48 2001:df5:6480::/49 maxlen: 49 2001:df5:6480:8000::/49 maxlen: 49 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1451 (0x5ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: Dec 28 23:41:46 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=658e07b9-95be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ea:e8:18:28:34:b6:da:78:2f:c4:d9:eb:43: b0:be:55:da:bc:f2:b5:1e:25:88:b0:3d:f2:5b:76: f9:36:c0:23:56:c5:6b:eb:c9:5e:3b:10:c5:02:6b: 7b:7c:fa:5c:09:eb:69:6a:d0:48:3e:6e:b6:70:76: 86:a8:f4:22:2b:ed:39:10:cc:1c:40:91:60:c4:73: 60:17:a1:c9:3f:24:3c:67:ea:30:81:94:60:2a:7a: f7:04:85:3e:11:d6:2a:e9:20:94:6b:48:d0:d8:9c: da:df:93:fb:af:9b:28:48:74:a4:f5:0f:6d:1b:77: 50:9c:12:6a:56:a0:de:8f:9d:6d:b4:02:12:bf:e4: b4:97:35:aa:f9:15:58:18:b5:36:c7:b1:8f:40:2d: c7:ef:7c:2e:55:78:fa:7c:5b:37:62:ae:05:c5:ba: 53:2a:be:9c:ac:7b:57:eb:60:4f:5f:f3:16:f7:ea: aa:a7:eb:7d:c7:08:42:04:5f:29:6f:15:70:ef:44: 1e:03:88:60:2b:f2:b5:3b:c3:b3:f5:65:a5:1f:71: 7b:33:d9:38:d3:f7:a9:51:1e:b8:83:cc:b1:c3:99: 8f:ae:4a:a2:ce:09:0c:61:61:8c:b1:b7:e5:8d:e3: e1:ad:74:b7:40:40:28:20:41:82:cc:60:43:03:8a: a3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:04:5D:89:C2:BD:A2:F8:62:D9:6F:C7:5C:A2:95:3A:5E:C7:8C:65 X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/79D611D265E711EBB6FD8A0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.204.0/23 IPv6: 2001:df5:6480::/48 Signature Algorithm: sha256WithRSAEncryption 8c:f8:86:03:e0:2e:a7:34:a8:2a:a2:89:cb:6c:a0:5e:f9:dc: 00:bc:50:86:72:27:d9:aa:36:4e:02:b5:a2:b5:a1:d6:b4:80: 30:cd:d7:31:a1:29:b0:b9:4d:a5:bf:d5:e4:03:11:65:28:42: c6:3f:0e:42:e3:05:35:31:97:db:ea:18:c7:23:51:bf:d5:7f: 43:30:46:85:6f:a4:28:6a:db:5d:81:94:88:91:12:05:85:4c: 97:a6:b2:98:e8:c1:86:78:88:93:3d:9f:3c:49:91:cc:22:9e: 5e:32:43:fc:f3:f1:85:1c:16:a9:2e:00:4f:ba:c6:f6:13:a8: 29:74:d0:92:06:33:3b:db:08:76:73:2c:8f:e6:01:0c:b3:a0: f7:92:0c:37:9d:0a:26:c7:c1:48:78:f5:67:9c:a9:15:bc:8f: f1:5d:f2:25:5b:5e:df:46:bb:9e:a3:a6:e0:03:17:5a:4a:9e: 30:fa:10:fa:df:79:07:5f:1e:6f:32:d3:6f:a8:2e:71:a0:51: 33:cc:38:e0:27:5c:1d:e0:c5:89:5a:a8:34:da:27:7d:16:dc: cf:e7:81:7b:2b:5b:38:fa:c2:55:30:69:2f:80:6f:a8:18:c0: ff:00:75:be:d0:57:d9:cb:12:be:c2:fb:84:52:a9:c9:57:d7: c2:8d:fd:b4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjMxMjI4MjM0MTQ2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThlMDdiOS05NWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOroGCg0ttp4L8TZ60OwvlXavPK1HiWIsD3yW3b5NsAjVsVr68leOxDFAmt7 fPpcCetpatBIPm62cHaGqPQiK+05EMwcQJFgxHNgF6HJPyQ8Z+owgZRgKnr3BIU+ EdYq6SCUa0jQ2Jza35P7r5soSHSk9Q9tG3dQnBJqVqDej51ttAISv+S0lzWq+RVY GLU2x7GPQC3H73wuVXj6fFs3Yq4FxbpTKr6crHtX62BPX/MW9+qqp+t9xwhCBF8p bxVw70QeA4hgK/K1O8Oz9WWlH3F7M9k40/epUR64g8yxw5mPrkqizgkMYWGMsbfl jePhrXS3QEAoIEGCzGBDA4qjGQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNgEXYnC vaL4Ytlvx1yilTpex4xlMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFBNUEvQjhCQjU2OEU2NUU1MTFFQkEyNUY5MjBCQzRGOUFFMDIvNzlENjExRDI2 NUU3MTFFQkI2RkQ4QTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnswwDwQCAAIwCQMHACABDfVkgDANBgkqhkiG9w0BAQsF AAOCAQEAjPiGA+AupzSoKqKJy2ygXvncALxQhnIn2ao2TgK1orWh1rSAMM3XMaEp sLlNpb/V5AMRZShCxj8OQuMFNTGX2+oYxyNRv9V/QzBGhW+kKGrbXYGUiJESBYVM l6aymOjBhniIkz2fPEmRzCKeXjJD/PPxhRwWqS4AT7rG9hOoKXTQkgYzO9sIdnMs j+YBDLOg95IMN50KJsfBSHj1Z5ypFbyP8V3yJVte30a7nqOm4AMXWkqeMPoQ+t95 B18ebzLTb6gucaBRM8w44CdcHeDFiVqoNNonfRbcz+eBeytbOPrCVTBpL4BvqBjA /wB1vtBX2csSvsL7hFKpyVfXwo39tA== -----END CERTIFICATE-----Generated at Fri May 17 01:02:49 2024 by rpki-client on console-ams.rpki-client.org