$ rpki-client -vvf rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/95B0A0606C5811ED882F827DC4F9AE02.roa File: 95B0A0606C5811ED882F827DC4F9AE02.roa (raw, json) Hash identifier: xL2eKYZ3O5laJu39JEaImdBnLTDPOEEdXQr86L3tJS8= Subject key identifier: 2B:0B:35:A1:D1:DE:8B:13:F4:83:E3:72:47:88:23:D2:BE:CC:51:8E Certificate issuer: /CN=A914C99C/serialNumber=82818DD2239DE8335D22ADCE3DF190A310B70024 Certificate serial: 0435 Authority key identifier: 82:81:8D:D2:23:9D:E8:33:5D:22:AD:CE:3D:F1:90:A3:10:B7:00:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goGN0iOd6DNdIq3OPfGQoxC3ACQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/95B0A0606C5811ED882F827DC4F9AE02.roa Signing time: Wed 19 Jul 2023 00:41:07 +0000 ROA not before: Wed 19 Jul 2023 00:41:07 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 24565 IP address blocks: 103.88.139.0/24 maxlen: 24 203.16.230.0/23 maxlen: 24 2001:df6:e580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/goGN0iOd6DNdIq3OPfGQoxC3ACQ.crl rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/goGN0iOd6DNdIq3OPfGQoxC3ACQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goGN0iOd6DNdIq3OPfGQoxC3ACQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 00:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1077 (0x435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C99C/serialNumber=82818DD2239DE8335D22ADCE3DF190A310B70024 Validity Not Before: Jul 19 00:41:07 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b73123-ce90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:67:a7:69:70:2d:94:45:a1:c2:b3:19:bc:c5: f1:ab:86:fd:a5:6d:f6:ec:e9:a3:69:77:a7:ac:37: 64:e9:d9:40:23:a0:91:4b:d3:85:c6:33:9c:2e:81: ad:5c:60:2e:9e:ef:f3:19:96:18:c6:40:75:0f:fd: 39:3d:de:13:88:16:b6:a7:cc:e9:d4:45:61:01:e5: 6a:2c:1b:b2:e0:f7:52:36:e0:ad:ad:45:2b:8c:28: f1:af:f9:9c:b5:d4:eb:1a:73:40:3b:10:93:c2:85: 3c:99:96:a6:58:84:95:4d:a5:4e:63:d7:5f:47:41: 8f:6d:06:ad:01:7a:2a:de:69:8c:4d:73:b9:c8:63: e2:cb:e3:f8:30:f8:fb:b7:32:d6:39:6a:72:c9:fa: 11:4b:9f:a8:50:3e:b3:23:86:66:c9:b2:aa:91:58: e1:f7:51:28:6e:60:ed:c8:1c:e7:43:51:bb:0b:59: 2e:d8:7d:17:e9:f0:16:6f:a3:30:b8:9f:ea:b0:1d: 3b:2b:a7:c6:4f:04:d4:d5:ae:03:fd:50:ad:85:c6: aa:41:c6:dc:66:bb:ea:3f:b6:ae:c8:98:c3:81:c2: 4e:6e:ce:ee:cc:57:8b:fc:ea:9f:01:8a:01:a2:bc: f7:0e:83:67:90:01:f1:d9:3f:2c:3f:d8:fc:6f:af: e6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:0B:35:A1:D1:DE:8B:13:F4:83:E3:72:47:88:23:D2:BE:CC:51:8E X509v3 Authority Key Identifier: keyid:82:81:8D:D2:23:9D:E8:33:5D:22:AD:CE:3D:F1:90:A3:10:B7:00:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/goGN0iOd6DNdIq3OPfGQoxC3ACQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goGN0iOd6DNdIq3OPfGQoxC3ACQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/95B0A0606C5811ED882F827DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.139.0/24 203.16.230.0/23 IPv6: 2001:df6:e580::/48 Signature Algorithm: sha256WithRSAEncryption 47:f7:c8:64:63:19:ad:56:c6:2d:7a:75:fe:95:4c:dc:82:ee: a0:7f:f6:fa:b4:43:3c:88:6e:bd:94:4f:2b:9b:8b:1e:5a:64: da:cf:49:c7:f1:db:8d:e5:68:68:07:90:25:55:5f:12:39:e8: 42:72:00:02:21:c0:69:89:ac:ee:72:4d:6c:e0:ec:78:66:6c: 2e:6f:fa:64:6a:ff:b3:7b:44:a8:4c:6e:7e:45:bc:d2:c8:b8: 46:4c:5c:75:87:be:0d:58:2e:d2:0a:2b:ff:1d:ea:84:9e:a4: f5:2b:37:62:90:cb:44:b2:15:1c:0c:1a:df:1e:2c:44:ca:5d: 44:3c:c7:58:f8:cf:9c:32:d6:46:44:6d:f1:26:4b:8f:7b:ef: 81:01:a2:de:9c:10:73:68:fa:4b:37:60:40:e8:ca:41:b0:0c: fd:c4:f2:84:4a:4d:80:d1:03:cf:50:56:21:d9:be:09:d3:29: 34:7f:d4:54:3a:3c:18:b2:c3:84:a5:47:2b:64:d2:d7:1e:a4: 9f:af:b1:f9:84:44:b4:04:63:42:19:9f:79:e6:15:89:54:be: cb:2f:0c:bf:5a:74:f1:fd:a3:9b:5f:f6:ec:fa:52:4c:e0:3d: c5:e4:69:79:cd:1d:12:7a:86:ff:1d:66:a1:1c:a6:46:0d:a7: 34:73:3a:b3 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM5OUMxMTAvBgNVBAUTKDgyODE4REQyMjM5REU4MzM1RDIyQURDRTNERjE5MEEz MTBCNzAwMjQwHhcNMjMwNzE5MDA0MTA3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI3MzEyMy1jZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmenaXAtlEWhwrMZvMXxq4b9pW327OmjaXenrDdk6dlAI6CRS9OFxjOcLoGt XGAunu/zGZYYxkB1D/05Pd4TiBa2p8zp1EVhAeVqLBuy4PdSNuCtrUUrjCjxr/mc tdTrGnNAOxCTwoU8mZamWISVTaVOY9dfR0GPbQatAXoq3mmMTXO5yGPiy+P4MPj7 tzLWOWpyyfoRS5+oUD6zI4ZmybKqkVjh91EobmDtyBznQ1G7C1ku2H0X6fAWb6Mw uJ/qsB07K6fGTwTU1a4D/VCthcaqQcbcZrvqP7auyJjDgcJObs7uzFeL/OqfAYoB orz3DoNnkAHx2T8sP9j8b6/mbQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFCsLNaHR 3osT9IPjckeII9K+zFGOMB8GA1UdIwQYMBaAFIKBjdIjnegzXSKtzj3xkKMQtwAk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Qzk5Qy8yQTFBRTlFQ0Q1 NzIxMUVCQTYwRUQwNTdDNEY5QUUwMi9nb0dOMGlPZDZETmRJcTNPUGZHUW94QzNB Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dvR04waU9kNkROZElxM09QZkdRb3hDM0FDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM5OUMvMkExQUU5RUNENTcyMTFFQkE2MEVEMDU3QzRGOUFFMDIvOTVCMEEwNjA2 QzU4MTFFRDg4MkY4MjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnWIsDBAHLEOYwDwQCAAIwCQMHACABDfblgDANBgkqhkiG 9w0BAQsFAAOCAQEAR/fIZGMZrVbGLXp1/pVM3ILuoH/2+rRDPIhuvZRPK5uLHlpk 2s9Jx/HbjeVoaAeQJVVfEjnoQnIAAiHAaYms7nJNbODseGZsLm/6ZGr/s3tEqExu fkW80si4RkxcdYe+DVgu0gor/x3qhJ6k9Ss3YpDLRLIVHAwa3x4sRMpdRDzHWPjP nDLWRkRt8SZLj3vvgQGi3pwQc2j6SzdgQOjKQbAM/cTyhEpNgNEDz1BWIdm+CdMp NH/UVDo8GLLDhKVHK2TS1x6kn6+x+YREtARjQhmfeeYViVS+yy8Mv1p08f2jm1/2 7PpSTOA9xeRpec0dEnqG/x1moRymRg2nNHM6sw== -----END CERTIFICATE-----Generated at Thu May 23 02:40:17 2024 by rpki-client on console-ams.rpki-client.org