$ rpki-client -vvf rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/C01674A86BF011EA87B33D25C4F9AE02.roa File: C01674A86BF011EA87B33D25C4F9AE02.roa (raw, json) Hash identifier: 70ds0/DyF5wXCHSmR464rx4ZYg97rO4f023Z3VGG144= Subject key identifier: 07:C7:D3:69:1B:3B:1B:73:9B:8C:D3:4A:B0:A2:73:B3:B4:1F:89:16 Certificate issuer: /CN=A9110DEC/serialNumber=B8D93506C8A791D1F9FFA5B67C38816DDC03EE6B Certificate serial: 099A Authority key identifier: B8:D9:35:06:C8:A7:91:D1:F9:FF:A5:B6:7C:38:81:6D:DC:03:EE:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/C01674A86BF011EA87B33D25C4F9AE02.roa Signing time: Fri 26 Jul 2024 21:09:20 +0000 ROA not before: Fri 26 Jul 2024 21:09:20 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135590 IP address blocks: 103.95.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.crl rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2458 (0x99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110DEC/serialNumber=B8D93506C8A791D1F9FFA5B67C38816DDC03EE6B Validity Not Before: Jul 26 21:09:20 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a41080-cef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ea:f5:07:f3:54:2b:a1:d5:7e:b1:af:00:0f: 76:dd:6d:1b:8a:26:9d:2e:d3:76:e3:85:82:7b:57: 63:c8:c5:31:b0:5d:0b:26:ce:c9:df:81:8e:d1:8d: c5:d3:33:62:b5:90:aa:14:f2:bb:0e:30:f5:e5:7d: f1:6a:9c:df:08:c4:99:b1:9a:7e:9d:45:9b:94:d5: e9:48:18:e3:c7:95:9f:3d:02:c5:78:77:f6:1a:ef: b7:a3:24:68:0d:ea:50:10:6a:95:ca:54:62:12:64: c8:98:f4:c1:9e:aa:81:80:6d:49:5e:d3:53:87:43: 11:ca:69:d8:6d:3b:24:fe:1c:e0:77:64:e5:af:3d: 16:f8:05:56:18:37:29:a1:d9:2b:23:36:62:7b:3c: 0a:d6:8f:fd:b8:8c:8c:e4:75:60:d1:23:eb:08:a6: 46:7c:3f:05:46:39:26:1a:c0:ea:a7:81:07:05:ab: c9:87:c5:a4:dd:1a:5f:b2:20:2c:e0:ab:4e:72:e7: b1:1f:59:fc:9f:06:e1:1e:ee:e5:ef:6e:5c:8a:31: ac:8a:af:5b:52:dc:d8:61:69:18:9a:e8:f6:0a:fe: a7:3a:fb:fd:47:4a:2f:cd:37:df:78:57:19:0e:cb: 1b:e5:60:45:a2:46:dd:2c:b2:33:3f:e7:58:95:24: d3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C7:D3:69:1B:3B:1B:73:9B:8C:D3:4A:B0:A2:73:B3:B4:1F:89:16 X509v3 Authority Key Identifier: keyid:B8:D9:35:06:C8:A7:91:D1:F9:FF:A5:B6:7C:38:81:6D:DC:03:EE:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/C01674A86BF011EA87B33D25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.208.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:92:94:27:e7:74:47:28:4b:ea:70:24:71:12:ba:a8:4a:ef: ac:89:55:db:1a:58:6a:cb:e0:c6:85:0f:0a:e9:23:ea:21:fd: 57:f3:f6:47:09:9e:c0:29:43:85:2d:9c:5f:99:cf:56:97:b7: 31:98:3c:79:b3:f2:82:3e:42:cc:aa:78:34:1f:79:1a:d1:ba: fd:0b:69:28:14:90:5b:c2:64:4b:b3:bf:6f:1e:cf:c6:87:f7: 6a:2e:e7:66:cc:b0:97:04:6a:46:bd:c2:9a:54:ab:fa:19:c4: e1:6d:ba:d0:59:71:24:93:d2:4a:ff:88:73:a2:b3:b3:4a:15: 9e:c8:98:13:37:fe:0b:97:88:7e:4f:fe:86:52:4a:46:6c:cb: f9:58:2b:ae:e2:8a:6c:c7:bf:0a:33:9d:4b:f8:4c:12:20:bb: 38:b2:87:c8:88:00:6b:70:c6:7e:19:2d:e5:61:12:a4:f7:3d: bb:74:c9:34:c8:d5:10:a9:4f:b2:8b:c2:6f:71:65:56:7b:ab: e4:f0:72:2c:1f:c3:e6:af:a8:03:fd:82:36:93:c0:e3:47:30: 48:c8:3f:84:8e:a7:af:23:79:49:78:8e:8c:3d:da:01:d2:5c: 61:c9:b4:8d:36:38:fb:d7:c0:7e:95:53:3a:8b:68:6e:28:72: e4:65:d8:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBERUMxMTAvBgNVBAUTKEI4RDkzNTA2QzhBNzkxRDFGOUZGQTVCNjdDMzg4MTZE REMwM0VFNkIwHhcNMjQwNzI2MjEwOTIwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE0MTA4MC1jZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOr1B/NUK6HVfrGvAA923W0biiadLtN244WCe1djyMUxsF0LJs7J34GO0Y3F 0zNitZCqFPK7DjD15X3xapzfCMSZsZp+nUWblNXpSBjjx5WfPQLFeHf2Gu+3oyRo DepQEGqVylRiEmTImPTBnqqBgG1JXtNTh0MRymnYbTsk/hzgd2Tlrz0W+AVWGDcp odkrIzZiezwK1o/9uIyM5HVg0SPrCKZGfD8FRjkmGsDqp4EHBavJh8Wk3RpfsiAs 4KtOcuexH1n8nwbhHu7l725cijGsiq9bUtzYYWkYmuj2Cv6nOvv9R0ovzTffeFcZ Dssb5WBFokbdLLIzP+dYlSTTaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAfH02kb Oxtzm4zTSrCic7O0H4kWMB8GA1UdIwQYMBaAFLjZNQbIp5HR+f+ltnw4gW3cA+5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMERFQy8xNzJEMEEyNDZC RUYxMUVBQTI2QTVFMjJDNEY5QUUwMi91TmsxQnNpbmtkSDVfNlcyZkRpQmJkd0Q3 bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOazFCc2lua2RINV82VzJmRGlCYmR3RDdtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBERUMvMTcyRDBBMjQ2QkVGMTFFQUEyNkE1RTIyQzRGOUFFMDIvQzAxNjc0QTg2 QkYwMTFFQTg3QjMzRDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnX9AwDQYJKoZIhvcNAQELBQADggEBAB6SlCfndEcoS+pw JHESuqhK76yJVdsaWGrL4MaFDwrpI+oh/Vfz9kcJnsApQ4UtnF+Zz1aXtzGYPHmz 8oI+QsyqeDQfeRrRuv0LaSgUkFvCZEuzv28ez8aH92ou52bMsJcEaka9wppUq/oZ xOFtutBZcSST0kr/iHOis7NKFZ7ImBM3/guXiH5P/oZSSkZsy/lYK67iimzHvwoz nUv4TBIguziyh8iIAGtwxn4ZLeVhEqT3Pbt0yTTI1RCpT7KLwm9xZVZ7q+Twciwf w+avqAP9gjaTwONHMEjIP4SOp68jeUl4jow92gHSXGHJtI02OPvXwH6VUzqLaG4o cuRl2O8= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:20 2024 by rpki-client on console-ams.rpki-client.org