$ rpki-client -vvf rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/95B0A0606C5811ED882F827DC4F9AE02.roa File: 95B0A0606C5811ED882F827DC4F9AE02.roa (raw, json) Hash identifier: Vy6NYC5JIjZxR2Zo1j1YR7/JfYdq8GexI/1xooXpvMM= Subject key identifier: DB:68:18:C2:3E:2A:C6:36:3D:38:83:39:6F:A8:11:D3:3A:4A:61:44 Certificate issuer: /CN=A914C99C/serialNumber=82818DD2239DE8335D22ADCE3DF190A310B70024 Certificate serial: 04F6 Authority key identifier: 82:81:8D:D2:23:9D:E8:33:5D:22:AD:CE:3D:F1:90:A3:10:B7:00:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goGN0iOd6DNdIq3OPfGQoxC3ACQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/95B0A0606C5811ED882F827DC4F9AE02.roa Signing time: Thu 25 Jul 2024 00:42:42 +0000 ROA not before: Thu 25 Jul 2024 00:42:42 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24565 IP address blocks: 103.88.139.0/24 maxlen: 24 203.16.230.0/23 maxlen: 24 2001:df6:e580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/goGN0iOd6DNdIq3OPfGQoxC3ACQ.crl rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/goGN0iOd6DNdIq3OPfGQoxC3ACQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goGN0iOd6DNdIq3OPfGQoxC3ACQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1270 (0x4f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C99C/serialNumber=82818DD2239DE8335D22ADCE3DF190A310B70024 Validity Not Before: Jul 25 00:42:42 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a19f81-65a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9b:53:35:6f:0c:a7:8d:03:37:28:1f:a6:98: 1e:cf:c6:3a:9f:2f:43:aa:df:c8:86:24:5e:a2:33: e8:fc:5e:ba:e7:0f:95:88:b0:4d:97:a1:9f:fb:66: f5:17:f1:49:db:e0:2b:d1:10:99:88:96:a6:5d:2f: 34:26:60:7a:2a:25:b4:e6:4f:db:47:64:5f:4d:46: f7:16:bd:19:7e:3b:0c:b2:e9:b0:31:c1:ed:d5:ee: 6a:7a:a3:8d:bf:0c:a7:e9:5b:bc:97:ee:6d:53:36: ca:e4:85:8d:de:03:64:95:e5:d6:3c:9b:3a:55:2b: 12:12:72:ff:f8:b1:4c:92:45:2d:48:62:56:77:ca: af:a4:88:b8:f8:e1:0d:26:ef:bc:04:60:c9:5b:fe: 41:74:65:f8:f3:b3:2c:13:e3:9d:c9:98:27:28:81: 28:df:28:ae:89:f8:21:62:e6:33:d3:3d:56:93:a5: 1d:62:4d:e7:25:0b:45:67:a1:a8:a6:7e:ca:88:8f: c2:5f:b4:76:14:cd:f6:83:d5:8a:8b:b2:42:ae:72: 52:6b:a9:b6:8a:9c:8b:1c:e1:75:88:2b:9c:4d:ed: 14:59:8f:8f:24:fa:b0:fa:cc:87:23:2b:c8:e8:2c: 05:26:41:6f:4d:30:bd:14:d9:7f:46:c8:81:7c:b1: 36:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:68:18:C2:3E:2A:C6:36:3D:38:83:39:6F:A8:11:D3:3A:4A:61:44 X509v3 Authority Key Identifier: keyid:82:81:8D:D2:23:9D:E8:33:5D:22:AD:CE:3D:F1:90:A3:10:B7:00:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/goGN0iOd6DNdIq3OPfGQoxC3ACQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goGN0iOd6DNdIq3OPfGQoxC3ACQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C99C/2A1AE9ECD57211EBA60ED057C4F9AE02/95B0A0606C5811ED882F827DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.139.0/24 203.16.230.0/23 IPv6: 2001:df6:e580::/48 Signature Algorithm: sha256WithRSAEncryption 90:dc:fc:bf:fb:9b:dd:2c:fa:d2:f9:86:8d:97:d6:57:2e:86: 32:63:1c:d0:e4:62:43:24:2f:00:48:21:96:36:e0:ac:bc:8b: 9f:f4:49:a6:bb:3e:02:ea:2f:6f:38:ee:dc:f6:ce:9a:8a:e7: c0:95:d3:04:f5:8c:b3:60:9c:cd:94:8a:45:bc:31:67:46:6a: fb:f9:35:45:87:b7:72:39:19:f5:55:a6:0a:8f:ef:bf:b0:1e: 5d:0f:74:77:bc:d2:4c:8a:af:0c:38:bb:f0:21:39:5c:4c:50: 00:cc:86:17:74:8b:8b:d3:66:ed:fe:33:3e:81:f2:ca:0a:bb: 3f:93:a6:ac:3e:fb:51:16:7e:3b:bd:86:09:65:af:8d:0a:58: de:a6:cb:d6:ac:a7:dd:41:ac:bc:1d:b2:40:f6:36:12:06:7e: af:f7:c1:9c:a3:71:89:b7:be:a1:7b:2b:a3:69:10:ae:ea:09: f4:99:91:d3:96:8a:6f:f5:f3:d4:25:0e:b6:d2:2e:e0:7b:cb: c0:ef:c6:89:76:6f:fa:4e:7e:09:29:fc:ba:86:7a:db:26:66: 1a:b6:5f:0c:9f:d0:fa:6a:be:90:4b:39:b9:a4:45:93:24:80: 10:62:df:6d:d5:6e:96:3c:b5:6c:7d:44:f2:1d:58:58:a6:7c: c1:ed:35:b4 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM5OUMxMTAvBgNVBAUTKDgyODE4REQyMjM5REU4MzM1RDIyQURDRTNERjE5MEEz MTBCNzAwMjQwHhcNMjQwNzI1MDA0MjQyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExOWY4MS02NWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5tTNW8Mp40DNygfppgez8Y6ny9Dqt/IhiReojPo/F665w+ViLBNl6Gf+2b1 F/FJ2+Ar0RCZiJamXS80JmB6KiW05k/bR2RfTUb3Fr0ZfjsMsumwMcHt1e5qeqON vwyn6Vu8l+5tUzbK5IWN3gNkleXWPJs6VSsSEnL/+LFMkkUtSGJWd8qvpIi4+OEN Ju+8BGDJW/5BdGX487MsE+OdyZgnKIEo3yiuifghYuYz0z1Wk6UdYk3nJQtFZ6Go pn7KiI/CX7R2FM32g9WKi7JCrnJSa6m2ipyLHOF1iCucTe0UWY+PJPqw+syHIyvI 6CwFJkFvTTC9FNl/RsiBfLE2TQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNtoGMI+ KsY2PTiDOW+oEdM6SmFEMB8GA1UdIwQYMBaAFIKBjdIjnegzXSKtzj3xkKMQtwAk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Qzk5Qy8yQTFBRTlFQ0Q1 NzIxMUVCQTYwRUQwNTdDNEY5QUUwMi9nb0dOMGlPZDZETmRJcTNPUGZHUW94QzNB Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dvR04waU9kNkROZElxM09QZkdRb3hDM0FDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM5OUMvMkExQUU5RUNENTcyMTFFQkE2MEVEMDU3QzRGOUFFMDIvOTVCMEEwNjA2 QzU4MTFFRDg4MkY4MjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnWIsDBAHLEOYwDwQCAAIwCQMHACABDfblgDANBgkqhkiG 9w0BAQsFAAOCAQEAkNz8v/ub3Sz60vmGjZfWVy6GMmMc0ORiQyQvAEghljbgrLyL n/RJprs+Auovbzju3PbOmornwJXTBPWMs2CczZSKRbwxZ0Zq+/k1RYe3cjkZ9VWm Co/vv7AeXQ90d7zSTIqvDDi78CE5XExQAMyGF3SLi9Nm7f4zPoHyygq7P5OmrD77 URZ+O72GCWWvjQpY3qbL1qyn3UGsvB2yQPY2EgZ+r/fBnKNxibe+oXsro2kQruoJ 9JmR05aKb/Xz1CUOttIu4HvLwO/GiXZv+k5+CSn8uoZ62yZmGrZfDJ/Q+mq+kEs5 uaRFkySAEGLfbdVuljy1bH1E8h1YWKZ8we01tA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org