$ rpki-client -vvf rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/93151D5668F911EE9916D146C4F9AE02.roa File: 93151D5668F911EE9916D146C4F9AE02.roa (raw, json) Hash identifier: 0qsmBJg5UUGr6e1w6S/R56pfS95Y3X7V8TkVGk6lD/w= Subject key identifier: 47:94:DD:ED:4F:FA:86:30:6F:72:F5:2A:19:36:8B:B1:6C:BC:DF:85 Certificate issuer: /CN=A91480B2/serialNumber=157DDB323D3653504E30824E69E0DB03753A68CE Certificate serial: 3E Authority key identifier: 15:7D:DB:32:3D:36:53:50:4E:30:82:4E:69:E0:DB:03:75:3A:68:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FX3bMj02U1BOMIJOaeDbA3U6aM4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/93151D5668F911EE9916D146C4F9AE02.roa Signing time: Wed 31 Jan 2024 07:48:29 +0000 ROA not before: Wed 31 Jan 2024 07:48:29 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138625 IP address blocks: 103.134.236.0/24 maxlen: 24 103.134.237.0/24 maxlen: 24 103.134.238.0/24 maxlen: 24 103.134.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/FX3bMj02U1BOMIJOaeDbA3U6aM4.crl rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/FX3bMj02U1BOMIJOaeDbA3U6aM4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FX3bMj02U1BOMIJOaeDbA3U6aM4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91480B2/serialNumber=157DDB323D3653504E30824E69E0DB03753A68CE Validity Not Before: Jan 31 07:48:29 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65b9fb4c-3475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:47:0f:cf:37:43:e6:01:82:62:6b:07:90:62: 14:ee:24:dd:c5:4f:b7:a9:9b:0a:b5:0f:d4:d9:71: 27:5d:ae:8e:bd:aa:dc:4e:4c:25:53:f3:d8:84:f9: f1:56:5f:ae:96:5d:9d:5a:c0:9c:41:5d:ae:d1:0c: c8:3f:33:69:ed:32:0b:fa:ee:5e:80:17:0f:52:35: b9:74:c8:ac:23:14:46:33:e7:a9:77:f4:20:c2:d4: ab:27:10:3d:de:cc:ad:ff:6a:35:dc:81:12:41:54: 6c:af:3a:e5:35:99:4b:53:b5:c4:2a:93:c3:71:e1: 32:04:71:e8:7b:42:1e:28:aa:90:28:77:02:07:d0: 27:1e:e3:f5:79:69:b5:fe:c2:07:38:e2:6b:50:a4: 94:60:59:4d:40:1f:b7:b7:f7:af:86:68:7c:2b:40: 84:6e:15:16:2b:50:9e:a6:c4:73:eb:25:cd:00:4b: 37:bf:e3:68:ed:35:9e:de:17:3c:fd:eb:06:0d:52: 74:97:4d:76:0c:99:eb:b1:d9:5e:48:d7:8c:b2:64: 6a:0e:3c:42:8d:fb:da:cb:86:36:2b:10:0f:47:bc: fc:32:25:c3:93:33:70:e3:e5:ee:60:b9:e8:ba:18: e1:9b:a3:db:41:c0:8c:c8:67:3e:0f:3d:f7:5b:dc: 45:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:94:DD:ED:4F:FA:86:30:6F:72:F5:2A:19:36:8B:B1:6C:BC:DF:85 X509v3 Authority Key Identifier: keyid:15:7D:DB:32:3D:36:53:50:4E:30:82:4E:69:E0:DB:03:75:3A:68:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/FX3bMj02U1BOMIJOaeDbA3U6aM4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FX3bMj02U1BOMIJOaeDbA3U6aM4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/93151D5668F911EE9916D146C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.236.0/22 Signature Algorithm: sha256WithRSAEncryption 17:bd:db:bd:a4:07:b8:6b:15:a9:14:02:41:e4:a3:c1:c8:1a: 89:1a:2c:75:59:f8:e2:9a:68:b8:4a:e2:fc:5e:20:01:21:29: f5:d7:2c:f0:c1:d4:67:2f:3c:87:46:6a:96:66:5e:5d:12:a8: 85:1b:1d:d8:ab:d6:c7:4b:62:5e:57:0d:6b:5c:4c:ce:5c:86: 46:a3:d8:f1:39:be:71:95:26:1a:d9:dc:5d:0a:5d:9c:2a:4e: b3:48:7f:8d:26:2e:a5:d0:33:5b:44:97:23:06:1c:48:d5:ae: 43:1c:31:ae:66:b0:67:6a:f0:2c:eb:f9:fd:23:c1:48:83:f4: 00:20:7b:56:e3:2b:6a:ec:83:c5:ab:d8:3e:bd:2f:a7:85:b4: 78:c5:30:29:25:c4:65:af:6f:44:11:86:09:95:42:7b:1a:cd: 72:d3:9f:90:e3:3f:53:04:ed:8d:ba:ef:11:fa:7c:10:5e:a5: 47:4b:ce:a4:41:56:d0:ae:90:c9:7a:43:11:dc:13:2c:2f:75: 45:f6:70:fd:ce:46:e6:ba:b8:31:cf:dc:6b:cf:d1:16:5e:af: ff:07:eb:78:bc:b1:70:89:c8:f6:bd:e5:85:36:99:45:b0:77: d7:a7:8c:78:f8:de:3a:0c:b5:44:c8:9b:99:4d:92:a3:02:e9: 5b:aa:0e:41 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 ODBCMjExMC8GA1UEBRMoMTU3RERCMzIzRDM2NTM1MDRFMzA4MjRFNjlFMERCMDM3 NTNBNjhDRTAeFw0yNDAxMzEwNzQ4MjlaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjlmYjRjLTM0NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoRw/PN0PmAYJiaweQYhTuJN3FT7epmwq1D9TZcSddro69qtxOTCVT89iE+fFW X66WXZ1awJxBXa7RDMg/M2ntMgv67l6AFw9SNbl0yKwjFEYz56l39CDC1KsnED3e zK3/ajXcgRJBVGyvOuU1mUtTtcQqk8Nx4TIEceh7Qh4oqpAodwIH0Cce4/V5abX+ wgc44mtQpJRgWU1AH7e396+GaHwrQIRuFRYrUJ6mxHPrJc0ASze/42jtNZ7eFzz9 6wYNUnSXTXYMmeux2V5I14yyZGoOPEKN+9rLhjYrEA9HvPwyJcOTM3Dj5e5guei6 GOGbo9tBwIzIZz4PPfdb3EVLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUR5Td7U/6 hjBvcvUqGTaLsWy834UwHwYDVR0jBBgwFoAUFX3bMj02U1BOMIJOaeDbA3U6aM4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ4MEIyLzQxQ0JCNjRFNjhG OTExRUVBRDZDRjYyRUM0RjlBRTAyL0ZYM2JNajAyVTFCT01JSk9hZURiQTNVNmFN NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlgzYk1qMDJVMUJPTUlKT2FlRGJBM1U2YU00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODBCMi80MUNCQjY0RTY4RjkxMUVFQUQ2Q0Y2MkVDNEY5QUUwMi85MzE1MUQ1NjY4 RjkxMUVFOTkxNkQxNDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmeG7DANBgkqhkiG9w0BAQsFAAOCAQEAF73bvaQHuGsVqRQC QeSjwcgaiRosdVn44ppouEri/F4gASEp9dcs8MHUZy88h0ZqlmZeXRKohRsd2KvW x0tiXlcNa1xMzlyGRqPY8Tm+cZUmGtncXQpdnCpOs0h/jSYupdAzW0SXIwYcSNWu QxwxrmawZ2rwLOv5/SPBSIP0ACB7VuMrauyDxavYPr0vp4W0eMUwKSXEZa9vRBGG CZVCexrNctOfkOM/UwTtjbrvEfp8EF6lR0vOpEFW0K6QyXpDEdwTLC91RfZw/c5G 5rq4Mc/ca8/RFl6v/wfreLyxcInI9r3lhTaZRbB316eMePjeOgy1RMibmU2SowLp W6oOQQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:06 2024 by rpki-client on console-ams.rpki-client.org