$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF6A/65AB41F086BA11ED92204A56C4F9AE02/3A9B909286BE11ED93DB0765C4F9AE02.roa File: 3A9B909286BE11ED93DB0765C4F9AE02.roa (raw, json) Hash identifier: UblbCB2A89erS4rETZOhcCGRnjdCncRR+JL147fVfR8= Subject key identifier: CF:1D:15:35:DC:F3:B5:DD:30:67:8A:67:03:AB:4F:0B:5F:46:CC:33 Certificate issuer: /CN=A919EF6A/serialNumber=2FB07BF13614AD5A19350AFC75AFB054C86BAFAD Certificate serial: 81 Authority key identifier: 2F:B0:7B:F1:36:14:AD:5A:19:35:0A:FC:75:AF:B0:54:C8:6B:AF:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L7B78TYUrVoZNQr8da-wVMhrr60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF6A/65AB41F086BA11ED92204A56C4F9AE02/3A9B909286BE11ED93DB0765C4F9AE02.roa Signing time: Tue 05 Sep 2023 04:14:32 +0000 ROA not before: Tue 05 Sep 2023 04:14:32 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 140985 IP address blocks: 103.154.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF6A/65AB41F086BA11ED92204A56C4F9AE02/L7B78TYUrVoZNQr8da-wVMhrr60.crl rsync://rpki.apnic.net/member_repository/A919EF6A/65AB41F086BA11ED92204A56C4F9AE02/L7B78TYUrVoZNQr8da-wVMhrr60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L7B78TYUrVoZNQr8da-wVMhrr60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF6A/serialNumber=2FB07BF13614AD5A19350AFC75AFB054C86BAFAD Validity Not Before: Sep 5 04:14:32 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f6ab27-5687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9e:f4:b3:02:1a:ea:2f:24:ef:84:df:d8:80: bd:91:0b:c6:5f:03:9b:40:95:e0:a8:b5:0b:4f:c5: 6c:f4:57:7a:7a:0f:c7:99:78:d1:1e:17:ad:9a:f8: be:26:c1:62:1a:27:4a:63:1f:f6:94:1f:ae:1c:4b: 06:e8:b7:eb:d0:d7:17:72:f5:29:99:80:91:f0:4b: c7:44:f1:a5:00:f4:19:86:af:e9:cc:18:f2:0f:d6: 3f:52:cd:86:eb:9e:50:e0:bc:e0:5b:70:11:9b:7d: 08:40:c8:5c:f9:81:f8:b2:b0:6a:89:72:27:5a:d4: 2f:1f:e8:6c:95:4a:51:8c:74:14:d6:05:02:4d:c9: c4:ae:76:80:aa:2c:9d:40:eb:e9:5a:b2:f1:5d:9e: 64:2d:29:ad:0e:71:5c:64:89:af:34:38:d0:c9:cd: 5f:d0:43:d3:5c:2d:14:e9:20:af:1b:a3:ef:e6:0a: 13:b3:1f:f7:e4:fd:ff:55:be:f2:3c:0a:ff:c2:60: 6a:35:e0:a4:34:48:72:77:66:95:85:05:7c:7c:dd: e2:18:7a:73:f2:20:c7:c9:37:94:2a:22:3d:f6:3d: 58:e5:30:b2:7d:34:5b:9f:3e:17:93:c8:f0:fc:d0: a7:e6:00:33:32:fa:c7:23:43:12:b0:3c:d5:9d:5b: 85:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:1D:15:35:DC:F3:B5:DD:30:67:8A:67:03:AB:4F:0B:5F:46:CC:33 X509v3 Authority Key Identifier: keyid:2F:B0:7B:F1:36:14:AD:5A:19:35:0A:FC:75:AF:B0:54:C8:6B:AF:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF6A/65AB41F086BA11ED92204A56C4F9AE02/L7B78TYUrVoZNQr8da-wVMhrr60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L7B78TYUrVoZNQr8da-wVMhrr60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF6A/65AB41F086BA11ED92204A56C4F9AE02/3A9B909286BE11ED93DB0765C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.95.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:6b:d8:a5:67:a3:66:ef:ea:f7:7f:53:3b:89:2a:b3:ae:58: 69:b1:f9:6d:25:26:df:5a:b8:b5:de:cf:45:48:59:55:e8:78: 8b:a1:ee:1f:15:7a:b5:92:b8:eb:54:2f:64:fc:58:67:97:96: e9:c8:17:ef:99:40:1d:0f:18:1f:e0:12:3f:82:ce:de:47:84: a5:b0:27:db:b4:7d:eb:74:3c:eb:e1:6d:25:84:15:59:1c:ab: f2:d1:b1:2e:f0:11:9a:34:8b:71:33:1f:ba:40:44:c5:d3:b8: ee:49:b6:c0:72:f4:bc:41:0d:5c:d7:8b:17:e5:03:9c:6f:6b: d9:e0:29:0f:70:4b:70:92:e1:92:41:e1:11:d9:8a:db:20:f7: 44:b2:39:da:eb:f0:ab:08:cd:42:e6:d3:4e:62:77:48:1d:bf: 4f:61:91:c6:ab:5e:26:58:cd:8f:ad:28:fe:07:70:30:b5:bb: 84:c7:d2:ee:ea:6e:d6:b8:14:a1:19:40:a1:c4:64:d7:b5:46: 48:67:0a:57:e3:5b:2a:ce:9e:61:75:92:81:6a:5b:26:f4:68: 48:17:7b:65:f9:e5:71:8e:7f:ec:75:f3:7f:ad:33:00:fb:f7: f6:07:4e:fc:d3:e4:1f:45:24:4c:05:ef:13:73:b7:97:29:c0: 08:45:ea:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNkExMTAvBgNVBAUTKDJGQjA3QkYxMzYxNEFENUExOTM1MEFGQzc1QUZCMDU0 Qzg2QkFGQUQwHhcNMjMwOTA1MDQxNDMyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2YWIyNy01Njg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApp70swIa6i8k74Tf2IC9kQvGXwObQJXgqLULT8Vs9Fd6eg/HmXjRHhetmvi+ JsFiGidKYx/2lB+uHEsG6Lfr0NcXcvUpmYCR8EvHRPGlAPQZhq/pzBjyD9Y/Us2G 655Q4LzgW3ARm30IQMhc+YH4srBqiXInWtQvH+hslUpRjHQU1gUCTcnErnaAqiyd QOvpWrLxXZ5kLSmtDnFcZImvNDjQyc1f0EPTXC0U6SCvG6Pv5goTsx/35P3/Vb7y PAr/wmBqNeCkNEhyd2aVhQV8fN3iGHpz8iDHyTeUKiI99j1Y5TCyfTRbnz4Xk8jw /NCn5gAzMvrHI0MSsDzVnVuFFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM8dFTXc 87XdMGeKZwOrTwtfRswzMB8GA1UdIwQYMBaAFC+we/E2FK1aGTUK/HWvsFTIa6+t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2QS82NUFCNDFGMDg2 QkExMUVEOTIyMDRBNTZDNEY5QUUwMi9MN0I3OFRZVXJWb1pOUXI4ZGEtd1ZNaHJy NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w3Qjc4VFlVclZvWk5RcjhkYS13Vk1ocnI2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGNkEvNjVBQjQxRjA4NkJBMTFFRDkyMjA0QTU2QzRGOUFFMDIvM0E5QjkwOTI4 NkJFMTFFRDkzREIwNzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnml8wDQYJKoZIhvcNAQELBQADggEBAD9r2KVno2bv6vd/ UzuJKrOuWGmx+W0lJt9auLXez0VIWVXoeIuh7h8VerWSuOtUL2T8WGeXlunIF++Z QB0PGB/gEj+Czt5HhKWwJ9u0fet0POvhbSWEFVkcq/LRsS7wEZo0i3EzH7pARMXT uO5JtsBy9LxBDVzXixflA5xva9ngKQ9wS3CS4ZJB4RHZitsg90SyOdrr8KsIzULm 005id0gdv09hkcarXiZYzY+tKP4HcDC1u4TH0u7qbta4FKEZQKHEZNe1RkhnClfj WyrOnmF1koFqWyb0aEgXe2X55XGOf+x183+tMwD79/YHTvzT5B9FJEwF7xNzt5cp wAhF6o8= -----END CERTIFICATE-----Generated at Sat Jun 1 08:16:00 2024 by rpki-client on console-ams.rpki-client.org