$ rpki-client -vvf rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa File: 95D9A9461BEC11EC97B39812C4F9AE02.roa (raw, json) Hash identifier: O7MsLUw+gaoXTG9KiMvLQn/bjyCnjO8H09gMJ3FbG7s= Subject key identifier: 63:52:14:A2:DA:F2:85:A2:1D:5C:9B:61:48:15:33:F2:78:92:A9:04 Certificate issuer: /CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Certificate serial: 0469 Authority key identifier: 6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa Signing time: Wed 09 Oct 2024 00:13:57 +0000 ROA not before: Wed 09 Oct 2024 00:13:57 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147050 IP address blocks: 103.173.152.0/23 maxlen: 23 103.173.152.0/24 maxlen: 24 103.173.153.0/24 maxlen: 24 2001:df7:9f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1129 (0x469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Validity Not Before: Oct 9 00:13:57 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6705cac5-7ffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:40:58:76:c0:d3:3a:a4:be:9b:a6:0a:e7:19: a1:7a:1b:31:f9:9b:84:0d:53:42:e5:27:37:97:0b: b8:03:99:7d:e6:ec:ff:56:ee:1d:d0:24:5c:fe:29: 82:80:f3:5a:ea:b3:42:83:89:58:9c:b1:8c:dc:b0: 33:6e:85:c8:46:63:de:a4:b3:3d:db:45:36:7b:69: 9a:a8:b1:f9:3d:3d:1b:03:bd:f6:26:1f:90:d9:45: d8:65:04:f3:27:63:07:fa:a4:52:e9:7c:ea:18:b7: 37:44:66:ab:3d:48:bb:52:65:ea:2a:3f:ee:f3:3a: ca:1a:eb:ec:64:9e:02:de:d2:6f:9d:4b:4c:d9:49: 14:17:23:86:c6:f4:22:21:b1:27:ac:26:95:f8:b7: ee:12:0c:ed:e2:60:69:a4:c1:40:79:2b:4d:90:01: 62:c2:86:46:36:09:b8:27:c9:bf:7e:bc:68:d0:71: 60:44:84:a7:77:0a:49:45:c1:fe:1b:32:07:fb:7b: aa:d3:8c:42:d8:a3:9c:e2:f8:f1:64:30:5f:93:1b: a7:29:db:25:e4:80:0b:db:54:60:4b:a0:3e:f2:39: f8:e9:53:98:fd:f1:2a:c4:d8:89:6f:10:72:44:04: 97:bb:eb:05:43:49:ea:de:b8:d7:39:58:c3:1b:2e: b2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:52:14:A2:DA:F2:85:A2:1D:5C:9B:61:48:15:33:F2:78:92:A9:04 X509v3 Authority Key Identifier: keyid:6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.152.0/23 IPv6: 2001:df7:9f80::/48 Signature Algorithm: sha256WithRSAEncryption 29:a2:db:16:9e:76:20:0c:ea:3d:4e:6b:b6:32:f9:f3:8a:9e: d4:42:82:54:b7:bd:f7:50:f0:e1:16:50:f9:5f:3f:ce:1f:d6: cb:c9:cf:d7:d6:51:e3:b6:1a:ef:2e:da:ab:6e:b1:ad:ba:e9: 6b:83:a6:a9:51:8f:d1:9b:5a:54:3d:b4:7b:80:71:f1:f1:e2: d0:1f:b5:86:3a:9a:29:6b:6b:b5:ea:51:9e:54:b5:91:b7:59: c5:2f:d5:5c:ab:af:36:bf:8d:c9:98:48:f2:1d:a1:8b:30:e5: 12:8d:fd:1a:c5:32:e5:68:fd:a2:07:3a:4c:0a:6e:fe:2d:dd: 89:d3:a8:e1:0d:3b:0d:1f:c9:8b:7b:21:3c:c9:b3:da:cc:2d: ee:10:60:45:e3:32:9d:0a:cc:35:ff:d1:b0:16:9c:d1:95:d8: 7e:a4:89:88:a4:a9:4a:c5:57:4c:3d:fc:3d:75:82:d2:f9:b6: 01:a5:b9:9e:cc:87:16:d0:7b:d0:10:00:23:a8:83:23:8c:c6: d2:53:20:55:16:8d:9f:05:89:5b:c7:d1:c3:87:06:c0:51:dd: 59:ec:c5:d3:e2:ca:68:ce:79:c1:20:9c:66:fd:5d:2a:e8:f0: a4:a8:d3:79:32:87:a5:88:70:13:3b:4a:8a:c8:a1:63:0e:a9: c8:fe:f4:ae -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4MjcxMTAvBgNVBAUTKDZFRUU3NzFCQjNDRTdFOThEQjM5NjBDNEQ4MkY3NDJB MkNGN0U4NDkwHhcNMjQxMDA5MDAxMzU3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1Y2FjNS03ZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkBYdsDTOqS+m6YK5xmhehsx+ZuEDVNC5Sc3lwu4A5l95uz/Vu4d0CRc/imC gPNa6rNCg4lYnLGM3LAzboXIRmPepLM920U2e2maqLH5PT0bA732Jh+Q2UXYZQTz J2MH+qRS6XzqGLc3RGarPUi7UmXqKj/u8zrKGuvsZJ4C3tJvnUtM2UkUFyOGxvQi IbEnrCaV+LfuEgzt4mBppMFAeStNkAFiwoZGNgm4J8m/frxo0HFgRISndwpJRcH+ GzIH+3uq04xC2KOc4vjxZDBfkxunKdsl5IAL21RgS6A+8jn46VOY/fEqxNiJbxBy RASXu+sFQ0nq3rjXOVjDGy6yCwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGNSFKLa 8oWiHVybYUgVM/J4kqkEMB8GA1UdIwQYMBaAFG7udxuzzn6Y2zlgxNgvdCos9+hJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODgyNy8zQzdDQjQ1MDFC RTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2ZwamJPV0RFMkM5MEtpejM2 RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1NTNHN1BPZnBqYk9XREUyQzkwS2l6MzZFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg4MjcvM0M3Q0I0NTAxQkU4MTFFQ0JCQTY1QjUwQzRGOUFFMDIvOTVEOUE5NDYx QkVDMTFFQzk3QjM5ODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrZgwDwQCAAIwCQMHACABDfefgDANBgkqhkiG9w0BAQsF AAOCAQEAKaLbFp52IAzqPU5rtjL584qe1EKCVLe991Dw4RZQ+V8/zh/Wy8nP19ZR 47Ya7y7aq26xrbrpa4OmqVGP0ZtaVD20e4Bx8fHi0B+1hjqaKWtrtepRnlS1kbdZ xS/VXKuvNr+NyZhI8h2hizDlEo39GsUy5Wj9ogc6TApu/i3didOo4Q07DR/Ji3sh PMmz2swt7hBgReMynQrMNf/RsBac0ZXYfqSJiKSpSsVXTD38PXWC0vm2AaW5nsyH FtB70BAAI6iDI4zG0lMgVRaNnwWJW8fRw4cGwFHdWezF0+LKaM55wSCcZv1dKujw pKjTeTKHpYhwEztKisihYw6pyP70rg== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:18 2024 by rpki-client on console-ams.rpki-client.org