$ rpki-client -vvf rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/4F038F1007C511EFB3AD2E14C4F9AE02.roa File: 4F038F1007C511EFB3AD2E14C4F9AE02.roa (raw, json) Hash identifier: YLqUw8RXSjFSw9i6iZFHkMU1fvDuVln4F0j/za3GPYo= Subject key identifier: F3:6D:70:67:3A:F5:93:9D:85:8A:59:C2:68:62:64:EB:C4:92:F5:51 Certificate issuer: /CN=A9165772/serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Certificate serial: 54 Authority key identifier: EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/4F038F1007C511EFB3AD2E14C4F9AE02.roa Signing time: Thu 03 Oct 2024 06:09:37 +0000 ROA not before: Thu 03 Oct 2024 06:09:37 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134185 IP address blocks: 103.157.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165772/serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Validity Not Before: Oct 3 06:09:37 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fe3521-b255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:35:e9:5f:4e:d7:ac:28:dc:3a:19:2a:ab:07: aa:80:d0:44:20:06:8b:a2:e3:a8:85:33:8d:3a:b8: a2:68:5b:5d:56:65:3d:d9:6d:ff:8e:3b:d6:1c:e5: 90:67:0d:91:5e:e0:62:56:98:22:ef:73:c8:52:6b: 6d:b7:32:b6:4d:1c:9f:cf:72:4d:5f:a3:1a:c7:06: b4:0d:9a:1b:55:e4:06:27:59:ae:50:cb:21:c3:17: 84:85:7c:9c:12:2d:a0:a7:b9:49:e2:f9:ab:b2:37: b5:0e:3b:77:6b:2c:91:1f:35:74:15:78:6e:ca:c4: 93:71:74:19:dc:9b:22:51:82:2e:01:20:6c:62:de: 53:11:1c:0e:97:94:4c:75:78:85:5b:1f:2b:61:f7: 39:41:82:db:3b:4d:25:de:9c:d7:6d:6d:c3:a4:ab: 7e:04:cd:c7:08:88:66:fe:35:c9:ba:8b:11:35:f1: 99:9c:10:d4:a6:a8:23:1e:31:33:8b:d5:9f:ec:3f: 93:15:51:4b:8c:5c:8b:10:34:f3:0a:a5:0d:bf:cd: c8:d4:bd:5f:ca:8b:24:a3:f2:a3:74:90:8e:0b:37: ac:a8:6d:24:e5:d9:63:4d:07:43:d2:ba:89:4a:39: 74:d0:36:5d:d0:53:94:9c:8e:d7:ba:30:e9:b8:40: 13:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:6D:70:67:3A:F5:93:9D:85:8A:59:C2:68:62:64:EB:C4:92:F5:51 X509v3 Authority Key Identifier: keyid:EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/4F038F1007C511EFB3AD2E14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.56.0/24 Signature Algorithm: sha256WithRSAEncryption 46:80:70:ed:65:de:2c:17:e2:c5:ab:b3:f5:53:1d:63:ca:90: 31:7a:f1:6a:01:68:cf:f7:8c:a3:c7:2c:a6:24:67:72:39:f8: 86:4c:bb:b0:91:d4:7b:c6:bc:27:93:dd:80:e5:7a:0d:83:50: 33:63:d6:4d:ed:2d:ba:fb:db:e3:2a:62:95:c4:e7:b9:cc:8f: b6:1a:b0:f2:ba:23:6e:30:fc:15:cf:db:54:2a:05:54:3b:f6: 9d:29:c2:a4:29:3b:85:c4:3e:80:de:34:e4:06:94:92:8f:67: cf:11:cb:71:50:aa:a0:7a:07:21:00:4d:f1:84:67:76:ed:4f: 24:5a:43:06:72:39:0d:a9:59:f3:3d:0f:83:db:9a:d0:7c:bc: 24:30:85:3d:43:90:cc:99:39:79:67:87:9c:c6:6d:cb:5e:5e: bd:f9:02:43:51:15:38:4c:f3:d1:8e:21:a0:1a:be:95:48:45: 92:2f:36:45:98:e9:9a:fd:5c:f7:0a:a0:ca:b0:61:95:00:c0: 14:dc:b0:9e:9a:01:54:c8:bc:31:8a:bf:29:c2:64:e6:c1:35: 99:8b:c9:bf:54:f7:86:fe:d3:c3:21:f8:ff:85:47:f2:71:a4: 0c:72:be:66:28:de:c9:69:ea:a8:6d:da:42:8d:25:47:26:8d: 16:04:cc:13 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTc3MjExMC8GA1UEBRMoRUE4QjA0M0U4NjhGNzU1NzNCQ0M0NTQwQUQ0OTU0MTAy REM5MjJCODAeFw0yNDEwMDMwNjA5MzdaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZmUzNTIxLWIyNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7NelfTtesKNw6GSqrB6qA0EQgBoui46iFM406uKJoW11WZT3Zbf+OO9Yc5ZBn DZFe4GJWmCLvc8hSa223MrZNHJ/Pck1foxrHBrQNmhtV5AYnWa5QyyHDF4SFfJwS LaCnuUni+auyN7UOO3drLJEfNXQVeG7KxJNxdBncmyJRgi4BIGxi3lMRHA6XlEx1 eIVbHyth9zlBgts7TSXenNdtbcOkq34EzccIiGb+Ncm6ixE18ZmcENSmqCMeMTOL 1Z/sP5MVUUuMXIsQNPMKpQ2/zcjUvV/KiySj8qN0kI4LN6yobSTl2WNNB0PSuolK OXTQNl3QU5Scjte6MOm4QBPHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU821wZzr1 k52FilnCaGJk68SS9VEwHwYDVR0jBBgwFoAU6osEPoaPdVc7zEVArUlUEC3JIrgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NzcyLzA0QkQxQTZDMDdD NDExRUY4NTJEQ0M3REM0RjlBRTAyLzZvc0VQb2FQZFZjN3pFVkFyVWxVRUMzSkly Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNm9zRVBvYVBkVmM3ekVWQXJVbFVFQzNKSXJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTc3Mi8wNEJEMUE2QzA3QzQxMUVGODUyRENDN0RDNEY5QUUwMi80RjAzOEYxMDA3 QzUxMUVGQjNBRDJFMTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGedODANBgkqhkiG9w0BAQsFAAOCAQEARoBw7WXeLBfixauz 9VMdY8qQMXrxagFoz/eMo8cspiRncjn4hky7sJHUe8a8J5PdgOV6DYNQM2PWTe0t uvvb4ypilcTnucyPthqw8rojbjD8Fc/bVCoFVDv2nSnCpCk7hcQ+gN405AaUko9n zxHLcVCqoHoHIQBN8YRndu1PJFpDBnI5DalZ8z0Pg9ua0Hy8JDCFPUOQzJk5eWeH nMZty15evfkCQ1EVOEzz0Y4hoBq+lUhFki82RZjpmv1c9wqgyrBhlQDAFNywnpoB VMi8MYq/KcJk5sE1mYvJv1T3hv7TwyH4/4VH8nGkDHK+ZijeyWnqqG3aQo0lRyaN FgTMEw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org