$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6F7/51569ED2AD8811EBB9661324C4F9AE02/D5BD4314AD8911EBA9B50F25C4F9AE02.roa File: D5BD4314AD8911EBA9B50F25C4F9AE02.roa (raw, json) Hash identifier: HZu7Zd4ye/E729rV5je69AR8bQqD4aALEqe2U5BTgE8= Subject key identifier: F2:85:06:78:9E:A1:5E:5D:84:77:8E:81:FF:E8:E1:B4:8C:1F:E6:94 Certificate issuer: /CN=A918E6F7/serialNumber=5788B388ADFE0DFBEAF7C2D7F86143B505606E5C Certificate serial: 04E8 Authority key identifier: 57:88:B3:88:AD:FE:0D:FB:EA:F7:C2:D7:F8:61:43:B5:05:60:6E:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4iziK3-Dfvq98LX-GFDtQVgblw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6F7/51569ED2AD8811EBB9661324C4F9AE02/D5BD4314AD8911EBA9B50F25C4F9AE02.roa Signing time: Tue 19 Dec 2023 00:32:31 +0000 ROA not before: Tue 19 Dec 2023 00:32:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134493 IP address blocks: 103.161.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6F7/51569ED2AD8811EBB9661324C4F9AE02/V4iziK3-Dfvq98LX-GFDtQVgblw.crl rsync://rpki.apnic.net/member_repository/A918E6F7/51569ED2AD8811EBB9661324C4F9AE02/V4iziK3-Dfvq98LX-GFDtQVgblw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4iziK3-Dfvq98LX-GFDtQVgblw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1256 (0x4e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6F7/serialNumber=5788B388ADFE0DFBEAF7C2D7F86143B505606E5C Validity Not Before: Dec 19 00:32:31 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6580e49e-775c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:60:06:88:9b:c8:96:a5:01:47:e3:c4:30:32: 26:55:51:b0:af:83:52:9b:92:4a:64:fe:dc:4b:93: 8b:7b:1f:be:90:16:00:aa:91:bd:4d:b8:d7:29:1d: 02:62:6e:1a:cb:d6:02:ec:d6:e0:b3:83:c8:68:a1: e0:bc:ad:70:4d:65:09:1e:d6:01:fc:38:75:de:c4: 2f:e9:24:db:92:5e:58:80:00:31:57:0b:8f:4d:66: 4b:66:23:6d:7f:b2:f1:5c:5b:82:42:5e:99:fa:33: 86:f7:37:9a:55:06:23:e2:6b:7d:58:2b:85:32:b5: fa:ed:fb:39:48:48:fb:10:63:8a:08:2b:16:df:e5: 70:00:00:4c:87:40:51:88:c5:ca:48:98:89:21:f1: de:b5:3a:0a:ce:b6:e1:b0:a3:ed:61:27:fc:20:38: 67:b9:ed:30:88:8e:13:85:5c:f0:fc:0c:1a:17:be: c2:73:68:c3:d9:0f:6e:07:3b:f3:88:50:6b:49:c1: ff:65:ab:85:74:85:bc:df:88:d6:4a:f2:af:8c:2b: 19:a2:77:3b:b5:12:25:33:e9:a2:74:54:10:f5:6d: 79:94:3c:3a:38:cb:8b:97:dc:a2:72:e7:64:8f:3d: a9:6c:2e:a1:c9:ac:e2:e2:12:96:af:8a:98:b8:a1: 98:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:85:06:78:9E:A1:5E:5D:84:77:8E:81:FF:E8:E1:B4:8C:1F:E6:94 X509v3 Authority Key Identifier: keyid:57:88:B3:88:AD:FE:0D:FB:EA:F7:C2:D7:F8:61:43:B5:05:60:6E:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6F7/51569ED2AD8811EBB9661324C4F9AE02/V4iziK3-Dfvq98LX-GFDtQVgblw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4iziK3-Dfvq98LX-GFDtQVgblw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6F7/51569ED2AD8811EBB9661324C4F9AE02/D5BD4314AD8911EBA9B50F25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.44.0/23 Signature Algorithm: sha256WithRSAEncryption 89:b5:1d:41:3f:a2:e4:3c:c2:53:5c:10:3e:43:46:ca:c0:6b: d7:bc:1b:5e:6b:20:63:25:d2:85:1c:19:6e:ed:6e:cf:04:fd: 23:68:a3:43:7f:31:c3:d9:c0:0c:84:ee:f8:dc:32:b4:e7:9c: fc:8c:09:dd:5a:1c:1d:f2:cb:58:3f:17:51:1c:d9:96:77:b8: 07:68:76:90:0f:6d:ee:f9:29:11:80:9c:b0:0b:fa:c1:23:3f: e1:af:9a:62:da:3f:ab:d5:33:71:8c:2c:93:14:18:40:77:ea: 40:14:54:87:be:e9:fa:6c:c7:47:2f:82:21:1b:1c:64:4f:c5: dd:a4:22:9e:21:6f:16:36:ae:7a:d6:09:a2:0f:5d:b1:ca:07: 65:94:7f:b3:b4:b5:3e:0d:19:83:93:a9:b3:f6:6d:ae:25:16: 5a:b3:dd:61:9f:ac:2a:ac:f7:f2:1a:16:fd:55:72:58:e2:6a: 1a:e1:d5:7e:4f:3e:02:35:5d:87:db:86:96:4a:4e:22:e6:30: 45:eb:82:32:46:72:f3:37:6d:31:ca:69:c7:b9:7b:ef:e3:ef: 2d:78:f1:3f:78:46:a2:ee:f4:01:f5:80:03:7b:ce:1f:5a:6b: fd:c3:a4:01:f8:e6:9a:d3:a3:e8:3c:1e:d9:c4:f2:f2:fe:b1: d1:8e:f1:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2RjcxMTAvBgNVBAUTKDU3ODhCMzg4QURGRTBERkJFQUY3QzJEN0Y4NjE0M0I1 MDU2MDZFNUMwHhcNMjMxMjE5MDAzMjMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgwZTQ5ZS03NzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GAGiJvIlqUBR+PEMDImVVGwr4NSm5JKZP7cS5OLex++kBYAqpG9TbjXKR0C Ym4ay9YC7Nbgs4PIaKHgvK1wTWUJHtYB/Dh13sQv6STbkl5YgAAxVwuPTWZLZiNt f7LxXFuCQl6Z+jOG9zeaVQYj4mt9WCuFMrX67fs5SEj7EGOKCCsW3+VwAABMh0BR iMXKSJiJIfHetToKzrbhsKPtYSf8IDhnue0wiI4ThVzw/AwaF77Cc2jD2Q9uBzvz iFBrScH/ZauFdIW834jWSvKvjCsZonc7tRIlM+midFQQ9W15lDw6OMuLl9yicudk jz2pbC6hyazi4hKWr4qYuKGYNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPKFBnie oV5dhHeOgf/o4bSMH+aUMB8GA1UdIwQYMBaAFFeIs4it/g376vfC1/hhQ7UFYG5c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZGNy81MTU2OUVEMkFE ODgxMUVCQjk2NjEzMjRDNEY5QUUwMi9WNGl6aUszLURmdnE5OExYLUdGRHRRVmdi bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0aXppSzMtRGZ2cTk4TFgtR0ZEdFFWZ2Jsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU2RjcvNTE1NjlFRDJBRDg4MTFFQkI5NjYxMzI0QzRGOUFFMDIvRDVCRDQzMTRB RDg5MTFFQkE5QjUwRjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoSwwDQYJKoZIhvcNAQELBQADggEBAIm1HUE/ouQ8wlNc ED5DRsrAa9e8G15rIGMl0oUcGW7tbs8E/SNoo0N/McPZwAyE7vjcMrTnnPyMCd1a HB3yy1g/F1Ec2ZZ3uAdodpAPbe75KRGAnLAL+sEjP+GvmmLaP6vVM3GMLJMUGEB3 6kAUVIe+6fpsx0cvgiEbHGRPxd2kIp4hbxY2rnrWCaIPXbHKB2WUf7O0tT4NGYOT qbP2ba4lFlqz3WGfrCqs9/IaFv1Vcljiahrh1X5PPgI1XYfbhpZKTiLmMEXrgjJG cvM3bTHKace5e+/j7y148T94RqLu9AH1gAN7zh9aa/3DpAH45prTo+g8HtnE8vL+ sdGO8Zc= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:45 2024 by rpki-client on console-ams.rpki-client.org