$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/177A0A42AF3B11EF8991021DC4F9AE02.roa File: 177A0A42AF3B11EF8991021DC4F9AE02.roa (raw, json) Hash identifier: 2TOmwtJvObASALsZPNE3Aa3x4sJH/wcJUbUtdyN28Kg= Subject key identifier: 04:CB:00:C3:AF:EF:A3:48:66:36:73:D2:21:B4:41:98:F8:7D:B0:78 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0236 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/177A0A42AF3B11EF8991021DC4F9AE02.roa Signing time: Sat 30 Nov 2024 16:49:40 +0000 ROA not before: Sat 30 Nov 2024 16:49:40 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138358 IP address blocks: 103.159.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB Validity Not Before: Nov 30 16:49:40 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=674b4224-c888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a0:5a:e4:ca:08:d8:72:74:c2:d4:57:48:97: f0:d9:f1:10:d1:7f:68:14:ed:e7:5f:19:30:12:eb: bf:bc:76:0f:66:ac:34:89:1a:1a:b6:e1:84:76:55: fe:bd:d4:aa:1c:c4:c1:f8:4b:96:b7:03:6c:27:78: 4c:de:75:aa:b3:81:74:f4:d7:08:90:32:40:98:9c: b8:d7:43:42:7b:a2:fc:73:3e:6a:d5:47:5a:51:b2: 6c:62:90:f1:1c:b6:c0:b7:7c:ef:d1:b8:b8:a4:c2: 76:e9:25:2c:e5:63:fb:ad:39:6a:e5:3c:3e:30:95: 4c:17:c3:e6:1a:2d:06:d6:ec:89:06:79:04:bc:68: da:70:f9:40:da:09:9a:1c:a3:1a:a0:52:59:01:29: c5:56:5e:30:b7:63:d2:26:2e:c8:ab:81:0d:ad:cf: 29:8e:9f:3b:42:a8:d8:32:b8:41:11:43:08:34:51: 06:62:2c:05:9e:95:13:17:17:e7:79:e9:04:4b:22: 1a:da:c0:b9:c2:5a:21:7f:2e:37:34:e0:c6:07:6b: 2a:c5:fc:f7:5b:7c:a6:19:e2:53:4a:8e:b7:81:8f: 38:75:0b:3c:83:8e:f7:93:20:ba:54:12:20:ea:98: 5b:c9:79:40:8f:c6:90:a3:d4:a5:b8:94:f1:05:6a: 35:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:CB:00:C3:AF:EF:A3:48:66:36:73:D2:21:B4:41:98:F8:7D:B0:78 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/177A0A42AF3B11EF8991021DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.36.0/24 Signature Algorithm: sha256WithRSAEncryption 19:ad:3d:43:7f:6e:0f:c5:64:1a:ce:02:a8:c8:45:b9:27:d3: 06:ac:45:f5:17:05:cd:04:d3:2c:ce:1c:bf:49:2b:02:50:0c: 6f:b1:ff:8d:ad:20:22:c2:8a:75:86:f1:e0:92:9f:f0:1f:25: bc:8e:14:45:ab:53:db:8a:ee:4f:ea:63:ac:0d:e4:58:78:47: 14:d0:89:72:70:21:4b:6a:db:73:75:66:10:0d:c2:3b:3f:31: 39:ee:6d:16:63:17:17:26:c2:c8:b1:dc:de:42:d8:66:6d:5f: f2:e8:94:61:34:88:b8:aa:26:95:c3:6d:26:c7:d6:5c:b4:86: 5e:15:7d:e8:03:86:af:b7:56:84:70:84:81:9f:4b:7f:03:89: 5d:44:ac:b3:b6:ea:2d:2e:59:80:ab:0e:a6:3a:42:b0:7d:8b: 2f:30:bf:08:9e:dd:26:34:1c:b5:8c:9b:a5:38:0e:6b:7c:b7: 72:bd:5f:8f:62:4f:03:71:7c:22:c6:92:89:34:4c:ca:f9:67: 76:ae:3a:e5:85:08:b7:21:9d:a0:a9:ae:65:0f:12:07:ce:c3: a9:bc:e6:30:b4:c7:75:ab:9f:24:30:77:aa:5c:23:16:fc:8d: f1:12:e9:8f:76:d0:ac:f3:8b:13:ad:87:e0:a6:f4:fe:fc:f7: 5c:9e:b8:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjQxMTMwMTY0OTQwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiNDIyNC1jODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKBa5MoI2HJ0wtRXSJfw2fEQ0X9oFO3nXxkwEuu/vHYPZqw0iRoatuGEdlX+ vdSqHMTB+EuWtwNsJ3hM3nWqs4F09NcIkDJAmJy410NCe6L8cz5q1UdaUbJsYpDx HLbAt3zv0bi4pMJ26SUs5WP7rTlq5Tw+MJVMF8PmGi0G1uyJBnkEvGjacPlA2gma HKMaoFJZASnFVl4wt2PSJi7Iq4ENrc8pjp87QqjYMrhBEUMINFEGYiwFnpUTFxfn eekESyIa2sC5wlohfy43NODGB2sqxfz3W3ymGeJTSo63gY84dQs8g473kyC6VBIg 6phbyXlAj8aQo9SluJTxBWo1pwIDAQABo4IClTCCApEwHQYDVR0OBBYEFATLAMOv 76NIZjZz0iG0QZj4fbB4MB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI5Q0IvMUY5MDJCMEUwNUFGMTFFREE3MTc2NDJCQzRGOUFFMDIvMTc3QTBBNDJB RjNCMTFFRjg5OTEwMjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnyQwDQYJKoZIhvcNAQELBQADggEBABmtPUN/bg/FZBrO AqjIRbkn0wasRfUXBc0E0yzOHL9JKwJQDG+x/42tICLCinWG8eCSn/AfJbyOFEWr U9uK7k/qY6wN5Fh4RxTQiXJwIUtq23N1ZhANwjs/MTnubRZjFxcmwsix3N5C2GZt X/LolGE0iLiqJpXDbSbH1ly0hl4VfegDhq+3VoRwhIGfS38DiV1ErLO26i0uWYCr DqY6QrB9iy8wvwie3SY0HLWMm6U4Dmt8t3K9X49iTwNxfCLGkok0TMr5Z3auOuWF CLchnaCprmUPEgfOw6m85jC0x3WrnyQwd6pcIxb8jfES6Y920KzzixOth+Cm9P78 91yeuPQ= -----END CERTIFICATE-----Generated at Thu Feb 20 02:40:32 2025 by rpki-client