$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B02/95A38EF6BD1411EBB5EEFD5FC4F9AE02/CEEBA382BD1511EB9E873260C4F9AE02.roa File: CEEBA382BD1511EB9E873260C4F9AE02.roa (raw, json) Hash identifier: 47HHXDnt39bkXS2AX3ZMrOCuV1oFM3pi8+pcdA0rJXk= Subject key identifier: F2:CC:26:50:3D:90:45:67:27:C1:BF:C2:3D:46:38:38:E4:E5:00:B3 Certificate issuer: /CN=A9165B02/serialNumber=041D519247C46E73F6A67DDF7C9049BFF279C0B7 Certificate serial: 04C3 Authority key identifier: 04:1D:51:92:47:C4:6E:73:F6:A6:7D:DF:7C:90:49:BF:F2:79:C0:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BB1RkkfEbnP2pn3ffJBJv_J5wLc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B02/95A38EF6BD1411EBB5EEFD5FC4F9AE02/CEEBA382BD1511EB9E873260C4F9AE02.roa Signing time: Thu 21 Dec 2023 00:52:39 +0000 ROA not before: Thu 21 Dec 2023 00:52:39 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 131202 IP address blocks: 103.103.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B02/95A38EF6BD1411EBB5EEFD5FC4F9AE02/BB1RkkfEbnP2pn3ffJBJv_J5wLc.crl rsync://rpki.apnic.net/member_repository/A9165B02/95A38EF6BD1411EBB5EEFD5FC4F9AE02/BB1RkkfEbnP2pn3ffJBJv_J5wLc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BB1RkkfEbnP2pn3ffJBJv_J5wLc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1219 (0x4c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B02/serialNumber=041D519247C46E73F6A67DDF7C9049BFF279C0B7 Validity Not Before: Dec 21 00:52:39 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65838c57-5159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c2:d0:ee:02:29:8c:b9:65:00:58:95:58:10: 89:a2:ec:bb:15:9e:bb:e6:11:a2:e3:47:70:f0:4e: 85:1f:80:13:82:38:70:ad:0e:10:aa:c1:ca:f1:e8: af:cf:11:7d:10:36:aa:f8:fa:94:0f:c9:45:04:9a: a4:2e:f0:34:aa:b1:56:87:13:ee:e7:9d:d6:f7:b3: 02:2f:bd:3b:d0:e8:f1:ea:07:e4:5e:d4:4b:bf:7d: 43:4d:a6:4b:57:af:68:d2:5b:46:b8:fa:2d:cc:74: b4:5b:f2:17:2e:71:8c:8a:92:f1:e2:3d:93:17:c5: 45:fd:c8:e8:03:bc:78:53:b0:cf:2a:b7:9f:87:31: d4:aa:1d:99:91:bc:1b:c0:71:d5:8b:8c:04:f1:1f: 06:b8:85:6d:2c:45:39:1c:e9:be:ed:30:ec:00:25: 56:45:b0:cb:25:88:79:51:70:89:b3:7a:5d:b4:5f: 20:6c:70:0f:9e:b1:56:17:f1:d5:fc:20:e8:4d:02: 81:22:81:9a:e1:98:3a:bd:50:13:19:33:c9:22:4a: a3:e2:e4:41:69:6c:7f:d9:7c:9c:dc:68:b9:c6:02: 39:0e:5c:cb:80:8c:59:b7:06:58:a3:3d:f9:ad:96: 25:c4:6b:37:6d:13:99:ce:b2:80:ab:a0:c0:7f:c6: a7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CC:26:50:3D:90:45:67:27:C1:BF:C2:3D:46:38:38:E4:E5:00:B3 X509v3 Authority Key Identifier: keyid:04:1D:51:92:47:C4:6E:73:F6:A6:7D:DF:7C:90:49:BF:F2:79:C0:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B02/95A38EF6BD1411EBB5EEFD5FC4F9AE02/BB1RkkfEbnP2pn3ffJBJv_J5wLc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BB1RkkfEbnP2pn3ffJBJv_J5wLc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B02/95A38EF6BD1411EBB5EEFD5FC4F9AE02/CEEBA382BD1511EB9E873260C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.218.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:a4:03:f5:9f:18:a4:49:c9:9b:57:99:3d:81:a4:56:d9:da: 27:d8:70:16:06:c4:aa:d4:ac:ae:bc:b9:9b:03:6b:77:d6:12: 1a:2e:26:9c:0e:c0:31:a7:51:f5:da:67:97:0e:9c:98:e8:ef: 0a:1f:69:ba:79:9a:68:e6:02:69:f2:51:f3:c1:fb:63:02:09: 80:40:ab:3c:d9:d9:aa:94:a4:41:96:05:c9:7c:43:f6:41:c5: 6c:4b:47:3e:eb:f1:71:4e:c9:9b:39:96:5b:ab:61:1a:7a:db: 54:bd:cd:9a:a3:4f:74:a0:dd:b9:5f:ef:51:ba:8a:49:5b:d2: 79:98:a2:d6:03:a4:bc:6d:c7:ca:b2:26:6a:37:e9:d7:dc:c5: ea:f5:e4:ed:2e:99:cf:95:70:94:c4:db:bf:08:76:d7:d9:72: 68:d9:33:67:d1:61:d7:82:2a:64:b4:18:81:8f:0d:13:bd:6d: da:79:f0:71:78:c4:4f:58:9b:45:49:d7:2e:cc:72:42:c0:42: 9b:9c:88:2a:66:7a:64:93:a3:d6:44:34:63:5b:42:6a:50:c1: 6f:fe:d0:8d:a3:c2:5d:8e:d0:98:ea:d9:ca:e6:fa:1c:f2:8c: db:db:9f:e0:db:d0:a8:56:17:72:1d:37:3d:7e:b2:28:72:49: 55:d7:e0:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCMDIxMTAvBgNVBAUTKDA0MUQ1MTkyNDdDNDZFNzNGNkE2N0RERjdDOTA0OUJG RjI3OUMwQjcwHhcNMjMxMjIxMDA1MjM5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzOGM1Ny01MTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sLQ7gIpjLllAFiVWBCJouy7FZ675hGi40dw8E6FH4ATgjhwrQ4QqsHK8eiv zxF9EDaq+PqUD8lFBJqkLvA0qrFWhxPu553W97MCL7070Ojx6gfkXtRLv31DTaZL V69o0ltGuPotzHS0W/IXLnGMipLx4j2TF8VF/cjoA7x4U7DPKrefhzHUqh2Zkbwb wHHVi4wE8R8GuIVtLEU5HOm+7TDsACVWRbDLJYh5UXCJs3pdtF8gbHAPnrFWF/HV /CDoTQKBIoGa4Zg6vVATGTPJIkqj4uRBaWx/2Xyc3Gi5xgI5DlzLgIxZtwZYoz35 rZYlxGs3bROZzrKAq6DAf8annwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPLMJlA9 kEVnJ8G/wj1GODjk5QCzMB8GA1UdIwQYMBaAFAQdUZJHxG5z9qZ933yQSb/yecC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUIwMi85NUEzOEVGNkJE MTQxMUVCQjVFRUZENUZDNEY5QUUwMi9CQjFSa2tmRWJuUDJwbjNmZkpCSnZfSjV3 TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JCMVJra2ZFYm5QMnBuM2ZmSkJKdl9KNXdMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVCMDIvOTVBMzhFRjZCRDE0MTFFQkI1RUVGRDVGQzRGOUFFMDIvQ0VFQkEzODJC RDE1MTFFQjlFODczMjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZ9owDQYJKoZIhvcNAQELBQADggEBAJykA/WfGKRJyZtX mT2BpFbZ2ifYcBYGxKrUrK68uZsDa3fWEhouJpwOwDGnUfXaZ5cOnJjo7wofabp5 mmjmAmnyUfPB+2MCCYBAqzzZ2aqUpEGWBcl8Q/ZBxWxLRz7r8XFOyZs5llurYRp6 21S9zZqjT3Sg3blf71G6iklb0nmYotYDpLxtx8qyJmo36dfcxer15O0umc+VcJTE 278IdtfZcmjZM2fRYdeCKmS0GIGPDRO9bdp58HF4xE9Ym0VJ1y7MckLAQpuciCpm emSTo9ZENGNbQmpQwW/+0I2jwl2O0Jjq2crm+hzyjNvbn+Db0KhWF3IdNz1+sihy SVXX4LE= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:26 2024 by rpki-client on console-fra.rpki-client.org