$ rpki-client -vvf rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa File: 95D9A9461BEC11EC97B39812C4F9AE02.roa (raw, json) Hash identifier: jcgmKmM573N2nSMJ2UoVS4CfcaD8OBHAEUhIvktJp1E= Subject key identifier: 58:14:2F:8E:BA:83:21:F0:A0:72:A0:E5:C6:10:1D:49:BD:D8:45:2C Certificate issuer: /CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Certificate serial: 03B8 Authority key identifier: 6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa Signing time: Wed 01 Nov 2023 02:14:13 +0000 ROA not before: Wed 01 Nov 2023 02:14:13 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 147050 IP address blocks: 103.173.152.0/23 maxlen: 23 103.173.152.0/24 maxlen: 24 103.173.153.0/24 maxlen: 24 2001:df7:9f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 952 (0x3b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Validity Not Before: Nov 1 02:14:13 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6541b475-c014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0f:1c:d7:e4:5c:4d:8b:5a:8c:82:ba:ab:59: cc:22:62:2d:5e:79:47:02:ec:40:a6:a8:24:a4:05: b0:fe:ca:08:ed:47:e7:d9:03:01:d4:a6:e9:4a:fb: 88:d6:05:12:e4:dc:d8:04:ba:32:63:7e:ac:52:a5: 14:db:1f:aa:44:8d:48:5a:1d:8d:e0:0f:33:67:11: d0:75:26:47:f7:59:69:5b:9b:0b:79:25:ee:aa:eb: 97:72:97:3b:88:3c:9e:96:82:9c:0c:f1:0d:78:ee: ca:d5:f2:61:83:94:73:08:ed:0a:e0:9d:01:36:3f: c2:9b:9b:4d:ed:58:74:ac:8a:af:b1:e9:3e:dd:40: d9:9f:ce:c7:c5:9a:49:82:3a:2b:4d:72:32:07:70: fd:76:5f:01:d0:2a:87:8d:11:cd:80:fd:87:10:b5: b5:cf:94:da:0c:4c:f1:58:e5:ee:18:27:90:82:6f: 31:57:2a:f6:ce:01:f1:6b:45:2e:77:2c:43:b0:7f: 75:69:c7:fd:bf:0c:e1:eb:31:80:03:4d:e2:ca:64: 33:43:1f:6f:35:f7:ff:c7:10:e2:39:d7:01:84:ee: c9:62:aa:fb:47:1d:91:17:fd:67:97:18:fa:d5:92: 6a:2a:68:21:d2:00:af:46:9e:2e:a2:9f:24:a7:87: 0e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:14:2F:8E:BA:83:21:F0:A0:72:A0:E5:C6:10:1D:49:BD:D8:45:2C X509v3 Authority Key Identifier: keyid:6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.152.0/23 IPv6: 2001:df7:9f80::/48 Signature Algorithm: sha256WithRSAEncryption 10:d9:44:40:50:1a:db:5d:af:9b:d5:5e:46:b5:7f:02:88:d1: af:8c:4b:39:66:f7:67:82:a6:10:9d:ce:36:9b:4c:24:fe:b4: 68:24:31:c9:c1:4a:c6:64:30:fd:b6:8b:95:c9:7d:f1:ff:af: be:92:86:cf:49:7e:7e:bd:86:74:5e:a1:a1:37:3d:05:7f:1f: 62:4b:dd:e8:83:ee:4c:a6:17:7c:c3:22:4e:5b:f4:36:7e:00: 58:cd:06:27:4f:e1:91:01:48:5e:24:73:b9:34:84:1d:d4:bd: 6a:93:c9:b4:d2:0e:7b:5e:f9:78:3e:f2:fa:b3:0a:a5:0e:4f: 43:c9:c9:29:4d:73:04:b6:42:5d:5d:e1:be:67:38:76:53:0a: 00:34:8c:c2:69:8f:31:8f:80:74:f8:05:9b:77:3f:57:e1:2a: b3:d4:03:73:19:1a:73:52:ab:d3:63:42:e3:64:c0:9f:34:a7: b6:ba:ed:91:31:4b:33:07:74:6f:3b:1c:3a:83:f0:4e:83:2a: 97:2b:6c:5c:75:c2:c1:9c:15:8c:02:4f:70:90:be:fa:d2:48: 26:bc:8f:55:76:c6:de:8f:50:c2:43:63:31:a8:a2:cc:d5:a7: 3b:93:15:08:61:01:f0:dd:7d:55:d6:f9:75:b9:d5:c5:6e:c4: 83:96:c6:f9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4MjcxMTAvBgNVBAUTKDZFRUU3NzFCQjNDRTdFOThEQjM5NjBDNEQ4MkY3NDJB MkNGN0U4NDkwHhcNMjMxMTAxMDIxNDEzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxYjQ3NS1jMDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQ8c1+RcTYtajIK6q1nMImItXnlHAuxApqgkpAWw/soI7Ufn2QMB1KbpSvuI 1gUS5NzYBLoyY36sUqUU2x+qRI1IWh2N4A8zZxHQdSZH91lpW5sLeSXuquuXcpc7 iDyeloKcDPENeO7K1fJhg5RzCO0K4J0BNj/Cm5tN7Vh0rIqvsek+3UDZn87HxZpJ gjorTXIyB3D9dl8B0CqHjRHNgP2HELW1z5TaDEzxWOXuGCeQgm8xVyr2zgHxa0Uu dyxDsH91acf9vwzh6zGAA03iymQzQx9vNff/xxDiOdcBhO7JYqr7Rx2RF/1nlxj6 1ZJqKmgh0gCvRp4uop8kp4cOdQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFgUL466 gyHwoHKg5cYQHUm92EUsMB8GA1UdIwQYMBaAFG7udxuzzn6Y2zlgxNgvdCos9+hJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODgyNy8zQzdDQjQ1MDFC RTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2ZwamJPV0RFMkM5MEtpejM2 RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1NTNHN1BPZnBqYk9XREUyQzkwS2l6MzZFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg4MjcvM0M3Q0I0NTAxQkU4MTFFQ0JCQTY1QjUwQzRGOUFFMDIvOTVEOUE5NDYx QkVDMTFFQzk3QjM5ODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrZgwDwQCAAIwCQMHACABDfefgDANBgkqhkiG9w0BAQsF AAOCAQEAENlEQFAa212vm9VeRrV/AojRr4xLOWb3Z4KmEJ3ONptMJP60aCQxycFK xmQw/baLlcl98f+vvpKGz0l+fr2GdF6hoTc9BX8fYkvd6IPuTKYXfMMiTlv0Nn4A WM0GJ0/hkQFIXiRzuTSEHdS9apPJtNIOe175eD7y+rMKpQ5PQ8nJKU1zBLZCXV3h vmc4dlMKADSMwmmPMY+AdPgFm3c/V+Eqs9QDcxkac1Kr02NC42TAnzSntrrtkTFL Mwd0bzscOoPwToMqlytsXHXCwZwVjAJPcJC++tJIJryPVXbG3o9QwkNjMaiizNWn O5MVCGEB8N19Vdb5dbnVxW7Eg5bG+Q== -----END CERTIFICATE-----Generated at Tue May 21 03:39:27 2024 by rpki-client on console-ams.rpki-client.org