$ rpki-client -vvf rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/DFCE0CFC387311EBA0AC593EC4F9AE02.roa File: DFCE0CFC387311EBA0AC593EC4F9AE02.roa (raw, json) Hash identifier: OHqpc630iPDrvxa3JYL+djk/kcEwI5eOHtscWctQIpU= Subject key identifier: BC:95:8F:7E:2C:8A:09:1D:01:6F:8F:DE:4A:62:59:F4:3A:F9:D7:BB Certificate issuer: /CN=A91B189B/serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Certificate serial: 06D1 Authority key identifier: FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/DFCE0CFC387311EBA0AC593EC4F9AE02.roa Signing time: Tue 24 Dec 2024 21:39:51 +0000 ROA not before: Tue 24 Dec 2024 21:39:51 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 141447 IP address blocks: 103.159.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1745 (0x6d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B189B, serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Validity Not Before: Dec 24 21:39:51 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676b2a27-ece0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ab:73:c5:9d:b6:85:58:11:45:07:70:21:1a: 1f:88:d1:ca:15:a5:cc:e2:d2:b0:2c:42:9e:2a:c4: 9b:1f:e1:e3:89:d3:ff:11:2d:0c:21:9e:c5:a6:81: a7:03:ae:7a:b0:c9:b2:24:59:a5:d7:05:fc:a1:42: 06:a0:77:b1:68:35:75:c0:38:27:67:3b:fe:ba:b6: 3a:ca:bd:51:ab:ec:4b:7a:0a:4e:97:29:dc:d9:d7: e4:c1:91:ab:62:90:13:a9:95:2a:e1:58:09:46:94: 87:25:be:ef:b9:4b:aa:e6:fb:33:6d:cf:f8:d5:1f: af:19:27:87:e3:5b:37:fe:2c:be:72:f8:8d:4d:9f: ff:66:57:53:3a:4c:71:7c:f6:bb:48:f5:e9:61:ac: f0:5d:e4:2e:ba:95:b5:d7:02:c4:b8:8a:45:de:d9: 82:6f:5d:78:5a:68:98:5d:86:9b:0b:b7:65:76:cb: f2:e8:74:54:7c:d9:22:dd:85:e1:e4:d8:03:f8:a2: df:54:68:75:a0:4d:99:4a:2f:1e:79:7a:87:39:c3: 8d:02:21:8c:a8:81:8b:2b:19:a3:14:16:86:f3:e9: 06:10:da:d0:b4:ba:7c:8f:a7:ca:68:f1:e7:86:08: cc:6e:e4:63:96:69:bb:8a:87:90:f9:25:6a:ef:9e: 30:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:95:8F:7E:2C:8A:09:1D:01:6F:8F:DE:4A:62:59:F4:3A:F9:D7:BB X509v3 Authority Key Identifier: keyid:FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/DFCE0CFC387311EBA0AC593EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.163.0/24 Signature Algorithm: sha256WithRSAEncryption 27:0f:15:82:d9:a3:81:72:ce:55:83:03:8e:b4:e0:4e:a0:79: dc:65:99:f0:2f:6e:f2:95:aa:c5:a5:78:74:01:51:c3:b7:26: 44:9b:74:69:96:c9:f0:2c:37:32:a0:12:75:f9:24:a8:be:8e: 0a:95:02:18:21:b1:50:0d:1b:8e:34:1d:81:c8:a3:75:c9:15: 34:c2:90:35:7d:7a:f8:62:e8:18:fc:c3:80:7f:ab:18:fa:b7: 4c:cf:e1:dc:b1:e9:0c:41:ea:83:aa:c6:21:c3:75:95:d3:4d: ea:62:23:a7:77:f7:38:36:0b:ed:0e:45:ec:6c:2f:59:a2:61: 35:40:80:a2:16:58:1b:e7:13:a7:8f:c7:44:d8:c6:15:97:af: 75:c9:7e:da:c2:9a:5a:a6:e2:f9:0b:c3:ea:98:7e:0e:a3:1c: c0:85:f2:d2:2e:28:ff:16:ee:30:9f:52:11:bd:ad:ca:75:d3: 18:c2:d5:7f:34:0b:95:b7:d1:93:b2:03:36:a0:07:8b:eb:2b: 57:84:1b:fc:c1:b0:81:eb:26:4e:cd:cb:f7:ff:af:45:d8:e7: d9:b0:b1:c6:0c:3b:89:fa:c6:41:87:21:ed:3d:49:93:5f:87: a3:6f:1d:0d:38:ba:6b:08:c5:79:6f:ba:e0:e0:8c:6f:dc:66: 2c:4b:46:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4OUIxMTAvBgNVBAUTKEZEMkE5RDVFRkFCOTExMUIwQTVBMzAxM0YzNEMyQ0JE QUZEMDFGQzIwHhcNMjQxMjI0MjEzOTUxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZiMmEyNy1lY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qtzxZ22hVgRRQdwIRofiNHKFaXM4tKwLEKeKsSbH+HjidP/ES0MIZ7FpoGn A656sMmyJFml1wX8oUIGoHexaDV1wDgnZzv+urY6yr1Rq+xLegpOlync2dfkwZGr YpATqZUq4VgJRpSHJb7vuUuq5vszbc/41R+vGSeH41s3/iy+cviNTZ//ZldTOkxx fPa7SPXpYazwXeQuupW11wLEuIpF3tmCb114WmiYXYabC7dldsvy6HRUfNki3YXh 5NgD+KLfVGh1oE2ZSi8eeXqHOcONAiGMqIGLKxmjFBaG8+kGENrQtLp8j6fKaPHn hgjMbuRjlmm7ioeQ+SVq754w4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLyVj34s igkdAW+P3kpiWfQ6+de7MB8GA1UdIwQYMBaAFP0qnV76uREbClowE/NMLL2v0B/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTg5Qi8zMjhCREQ0MDM4 NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVSc0tXakFUODB3c3ZhX1FI OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TcWRYdnE1RVJzS1dqQVQ4MHdzdmFfUUg4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE4OUIvMzI4QkRENDAzODcyMTFFQjk5N0FBMjNBQzRGOUFFMDIvREZDRTBDRkMz ODczMTFFQkEwQUM1OTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnn6MwDQYJKoZIhvcNAQELBQADggEBACcPFYLZo4FyzlWD A4604E6gedxlmfAvbvKVqsWleHQBUcO3JkSbdGmWyfAsNzKgEnX5JKi+jgqVAhgh sVANG440HYHIo3XJFTTCkDV9evhi6Bj8w4B/qxj6t0zP4dyx6QxB6oOqxiHDdZXT TepiI6d39zg2C+0ORexsL1miYTVAgKIWWBvnE6ePx0TYxhWXr3XJftrCmlqm4vkL w+qYfg6jHMCF8tIuKP8W7jCfUhG9rcp10xjC1X80C5W30ZOyAzagB4vrK1eEG/zB sIHrJk7Ny/f/r0XY59mwscYMO4n6xkGHIe09SZNfh6NvHQ04umsIxXlvuuDgjG/c ZixLRjs= -----END CERTIFICATE-----Generated at Sat Apr 26 14:20:59 2025 by rpki-client