$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/03B667B2853911EE86CB377CC4F9AE02.roa File: 03B667B2853911EE86CB377CC4F9AE02.roa (raw, json) Hash identifier: Nt7ZeaJxcaF8JBryxsq86WPMWWz1bMn8hJbR3D7+nN8= Subject key identifier: 24:96:84:DB:26:BB:83:09:F5:6D:E3:F4:42:E2:79:7D:28:FD:A4:A1 Certificate issuer: /CN=A9183B95/serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Certificate serial: 0300 Authority key identifier: FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/03B667B2853911EE86CB377CC4F9AE02.roa Signing time: Thu 11 Jan 2024 02:44:24 +0000 ROA not before: Thu 11 Jan 2024 02:44:24 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 212238 IP address blocks: 43.228.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 768 (0x300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183B95/serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Validity Not Before: Jan 11 02:44:24 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659f5608-a62b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:94:d9:57:dc:67:15:c6:ee:e5:be:b7:aa:67: 0d:8f:1a:a9:3c:d0:a8:98:b6:7b:bd:e3:59:56:99: b3:36:f0:b2:e5:32:76:29:55:10:c2:0e:30:8f:4d: 14:c7:e7:94:0b:cd:a0:b9:58:a4:a8:5f:32:eb:22: 95:71:a0:ee:3d:5a:6e:fb:f4:a0:56:dc:8d:4c:f0: 53:49:36:df:a8:bb:e9:9a:46:5f:1d:c4:8e:b7:87: 3b:0a:47:b5:c6:d5:2f:46:e8:b7:38:3d:e9:ec:17: c8:03:d0:64:c5:42:33:cd:17:37:fd:07:7b:6f:60: 95:f4:5b:6d:cb:69:ab:dd:a8:09:ad:f2:c3:e2:19: 9e:8e:a8:93:81:ee:13:72:b8:9c:ff:ce:8d:f4:6b: b3:71:b4:01:bd:90:8e:6b:0a:5a:7e:e3:85:6a:47: ac:68:ac:58:f2:2d:d6:2e:7a:5f:39:97:d8:72:7c: d2:07:62:78:3d:94:dc:3d:1d:7a:1c:cd:4d:43:f8: eb:5a:62:b0:ad:9f:be:82:be:0d:7c:16:ae:63:e8: 45:eb:ad:e3:c4:9f:b6:c1:c0:3b:fb:9d:9b:de:44: 04:32:13:f8:5a:69:ac:9d:53:fb:4b:57:a5:c9:35: e6:87:d2:90:33:f1:9e:5e:ac:94:8b:1b:df:51:96: d8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:96:84:DB:26:BB:83:09:F5:6D:E3:F4:42:E2:79:7D:28:FD:A4:A1 X509v3 Authority Key Identifier: keyid:FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/03B667B2853911EE86CB377CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.158.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:f3:fc:88:d3:33:a3:58:27:a8:0c:5d:ed:3c:a9:08:65:52: 09:80:31:b7:03:e8:20:c7:d3:79:5a:f0:45:41:86:fd:5b:9a: 84:b5:00:e5:b7:b3:8d:db:36:9c:9f:c2:56:60:ae:b4:16:8f: 29:92:2c:1d:dc:a2:93:bf:36:ea:6b:ca:c4:32:4b:d8:be:82: b6:08:aa:c1:62:82:46:09:89:fd:fc:a4:51:79:0c:a3:b4:c6: b8:c0:ec:ee:4f:7c:cf:67:a6:6c:aa:a0:9d:a0:b6:31:06:f2: b7:55:5d:0c:d1:d6:77:65:e0:3d:59:14:b6:ea:bd:a6:08:60: f2:64:c3:85:42:10:f7:09:38:ff:b6:e6:3b:a8:6b:16:5a:3b: 57:4e:ee:5f:1d:ef:4b:3b:2f:42:35:a9:e5:63:d6:ef:3e:0b: 92:23:08:cf:bf:76:a2:1b:83:c1:c0:51:0a:ab:c4:0c:8e:ff: c4:f6:24:d6:30:9d:41:72:db:28:c4:25:e8:11:ea:8d:f6:4e: 23:ec:0a:d4:24:33:3a:ac:3d:85:a4:ed:63:08:99:a1:5e:90: 8c:63:1c:6f:27:d6:7b:c9:b7:f5:11:48:76:29:16:0c:f3:77: 09:d0:8c:06:7f:55:da:1a:2e:34:a9:9a:5c:bb:9b:97:6b:cd: 51:b6:26:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCOTUxMTAvBgNVBAUTKEZBRDdFQ0M5QzA1Q0Q4RUIyMDU2OTA5RDZDNjE0NzE1 RTJDNTEzM0UwHhcNMjQwMTExMDI0NDI0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNTYwOC1hNjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5TZV9xnFcbu5b63qmcNjxqpPNComLZ7veNZVpmzNvCy5TJ2KVUQwg4wj00U x+eUC82guVikqF8y6yKVcaDuPVpu+/SgVtyNTPBTSTbfqLvpmkZfHcSOt4c7Cke1 xtUvRui3OD3p7BfIA9BkxUIzzRc3/Qd7b2CV9Ftty2mr3agJrfLD4hmejqiTge4T cric/86N9GuzcbQBvZCOawpafuOFakesaKxY8i3WLnpfOZfYcnzSB2J4PZTcPR16 HM1NQ/jrWmKwrZ++gr4NfBauY+hF663jxJ+2wcA7+52b3kQEMhP4WmmsnVP7S1el yTXmh9KQM/GeXqyUixvfUZbYswIDAQABo4IClTCCApEwHQYDVR0OBBYEFCSWhNsm u4MJ9W3j9ELieX0o/aShMB8GA1UdIwQYMBaAFPrX7MnAXNjrIFaQnWxhRxXixRM+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0I5NS9CNTRBM0MzNDgw MzUxMUVDOUFEREE1NEZDNEY5QUUwMi8tdGZzeWNCYzJPc2dWcENkYkdGSEZlTEZF ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10ZnN5Y0JjMk9zZ1ZwQ2RiR0ZIRmVMRkV6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODNCOTUvQjU0QTNDMzQ4MDM1MTFFQzlBRERBNTRGQzRGOUFFMDIvMDNCNjY3QjI4 NTM5MTFFRTg2Q0IzNzdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5J4wDQYJKoZIhvcNAQELBQADggEBAIzz/IjTM6NYJ6gM Xe08qQhlUgmAMbcD6CDH03la8EVBhv1bmoS1AOW3s43bNpyfwlZgrrQWjymSLB3c opO/NuprysQyS9i+grYIqsFigkYJif38pFF5DKO0xrjA7O5PfM9npmyqoJ2gtjEG 8rdVXQzR1ndl4D1ZFLbqvaYIYPJkw4VCEPcJOP+25juoaxZaO1dO7l8d70s7L0I1 qeVj1u8+C5IjCM+/dqIbg8HAUQqrxAyO/8T2JNYwnUFy2yjEJegR6o32TiPsCtQk MzqsPYWk7WMImaFekIxjHG8n1nvJt/URSHYpFgzzdwnQjAZ/VdoaLjSpmly7m5dr zVG2JlA= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:56 2024 by rpki-client on console-fra.rpki-client.org