$ rpki-client -vvf rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/765EF4EC2FB411EB9720723EC4F9AE02.roa File: 765EF4EC2FB411EB9720723EC4F9AE02.roa (raw, json) Hash identifier: oa3l32ZpDHfSSJrhkDdT2fWfIq3w4o01a+Ike5oehX8= Subject key identifier: 2D:9A:C6:CA:31:F8:88:84:64:09:3C:62:E4:53:C0:F8:3E:BA:82:DE Certificate issuer: /CN=A916E501/serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Certificate serial: 06DB Authority key identifier: 43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/765EF4EC2FB411EB9720723EC4F9AE02.roa Signing time: Thu 28 Nov 2024 21:41:49 +0000 ROA not before: Thu 28 Nov 2024 21:41:49 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 141423 IP address blocks: 103.159.0.0/23 maxlen: 23 103.159.0.0/24 maxlen: 24 103.159.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1755 (0x6db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E501, serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Validity Not Before: Nov 28 21:41:49 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6748e39c-099c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3c:6d:7c:81:98:ed:26:1d:ae:92:29:18:76: f6:75:e1:16:8c:97:cd:c3:b0:0c:ab:67:ed:e9:1d: bd:50:3c:3b:71:ab:1c:8d:7a:fc:ff:da:d8:23:99: 2e:e0:78:e8:84:44:9b:d1:58:21:53:3f:e2:a5:e6: ff:64:74:26:07:ad:4f:a9:32:04:7a:b2:75:db:e4: 56:56:09:4f:80:21:c4:32:70:e7:ac:b7:7d:c8:8f: 17:f0:57:71:d3:ea:bb:e7:bd:6b:01:53:00:98:10: f4:26:5c:47:92:85:8a:20:52:59:fd:22:1b:cc:b1: 18:80:98:1e:cb:7e:4c:ed:4c:e0:ac:b2:ac:7a:95: 45:5d:5a:d1:97:d1:e9:27:af:9d:b4:b3:3c:32:b9: ef:c1:cf:db:c5:fe:5e:6a:68:32:53:1f:01:d3:9d: 2b:90:90:92:4c:99:9d:66:a7:9f:a3:95:49:9f:b7: 18:b5:bf:14:cc:46:02:ab:4c:b6:93:d7:46:d4:7c: ec:e0:15:50:20:eb:3a:81:55:d1:8e:71:2b:40:89: 95:b6:d3:9e:7d:cd:4f:fb:c3:37:8f:a8:f8:8c:0d: 9a:43:cc:98:a0:a2:b3:fe:70:9b:d2:f0:1d:e0:a7: e9:b7:21:4a:df:57:42:56:8e:ec:3f:76:0b:b3:08: 3d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:9A:C6:CA:31:F8:88:84:64:09:3C:62:E4:53:C0:F8:3E:BA:82:DE X509v3 Authority Key Identifier: keyid:43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/765EF4EC2FB411EB9720723EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.0.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:74:9c:e5:76:4f:67:7e:15:23:29:9f:c0:90:6e:02:5e:96: d1:b3:12:3c:d7:6f:d2:7d:52:b8:8d:b8:d1:b0:69:02:1a:2e: 8a:31:1f:02:6b:7f:b5:44:dc:ee:08:d4:0f:66:ee:87:10:1d: 53:d0:ee:12:4c:e6:42:46:74:63:ba:a2:93:d5:e2:f9:f9:a2: a6:ec:5d:26:71:72:b1:7f:48:9d:28:2e:1a:1f:45:17:57:7c: 48:5e:66:40:f9:18:99:23:f9:8e:b9:33:1b:d0:5e:84:7c:ad: 78:c3:65:f9:81:e0:95:e2:d6:46:88:e1:d6:00:fd:d1:3a:9a: 07:04:24:2a:79:99:68:ad:12:f8:cc:cb:6e:d4:97:fe:ec:ee: 8a:e7:2d:e8:f3:b3:53:5e:63:32:e3:40:22:d9:a7:9e:b0:7f: 78:57:ca:53:ed:97:b0:89:d1:45:47:49:bc:2e:21:36:f0:1a: 40:70:65:57:6e:2f:97:06:68:4d:49:b3:cb:d7:11:4e:ba:16: d6:38:8d:29:d3:a6:3c:99:f1:84:e9:b3:13:0e:40:2e:45:27: 88:dc:28:d5:68:4f:c3:34:eb:91:8c:cd:31:64:1e:cd:77:ba: 14:3c:40:8a:15:a3:93:8c:2f:57:66:f9:80:75:11:92:ed:72: 11:f7:c8:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1MDExMTAvBgNVBAUTKDQzQjM5QzhGQTMzNDZENjMxOUVBNDlCQzVBMDY3RUVG RTBEMzQ0NkQwHhcNMjQxMTI4MjE0MTQ5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4ZTM5Yy0wOTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzxtfIGY7SYdrpIpGHb2deEWjJfNw7AMq2ft6R29UDw7cascjXr8/9rYI5ku 4HjohESb0VghUz/ipeb/ZHQmB61PqTIEerJ12+RWVglPgCHEMnDnrLd9yI8X8Fdx 0+q7571rAVMAmBD0JlxHkoWKIFJZ/SIbzLEYgJgey35M7UzgrLKsepVFXVrRl9Hp J6+dtLM8Mrnvwc/bxf5eamgyUx8B050rkJCSTJmdZqefo5VJn7cYtb8UzEYCq0y2 k9dG1Hzs4BVQIOs6gVXRjnErQImVttOefc1P+8M3j6j4jA2aQ8yYoKKz/nCb0vAd 4KfptyFK31dCVo7sP3YLswg9gwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC2axsox +IiEZAk8YuRTwPg+uoLeMB8GA1UdIwQYMBaAFEOznI+jNG1jGepJvFoGfu/g00Rt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTUwMS8yQjJEODgwNDJG QjMxMUVCQjU4QTQ2M0RDNEY5QUUwMi9RN09jajZNMGJXTVo2a204V2daLTctRFRS RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E3T2NqNk0wYldNWjZrbThXZ1otNy1EVFJHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkU1MDEvMkIyRDg4MDQyRkIzMTFFQkI1OEE0NjNEQzRGOUFFMDIvNzY1RUY0RUMy RkI0MTFFQjk3MjA3MjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnwAwDQYJKoZIhvcNAQELBQADggEBACt0nOV2T2d+FSMp n8CQbgJeltGzEjzXb9J9UriNuNGwaQIaLooxHwJrf7VE3O4I1A9m7ocQHVPQ7hJM 5kJGdGO6opPV4vn5oqbsXSZxcrF/SJ0oLhofRRdXfEheZkD5GJkj+Y65MxvQXoR8 rXjDZfmB4JXi1kaI4dYA/dE6mgcEJCp5mWitEvjMy27Ul/7s7ornLejzs1NeYzLj QCLZp56wf3hXylPtl7CJ0UVHSbwuITbwGkBwZVduL5cGaE1Js8vXEU66FtY4jSnT pjyZ8YTpsxMOQC5FJ4jcKNVoT8M065GMzTFkHs13uhQ8QIoVo5OML1dm+YB1EZLt chH3yJ8= -----END CERTIFICATE-----Generated at Sat Apr 26 09:06:03 2025 by rpki-client