$ rpki-client -vvf rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/B775BD7A9EA911EC95EBD87CC4F9AE02.roa File: B775BD7A9EA911EC95EBD87CC4F9AE02.roa (raw, json) Hash identifier: A1a0dPbMqSMo2jhZr8geXRzhFXcgET8jXeb41D5v6i0= Subject key identifier: 2A:56:3F:5D:CF:A2:47:AC:DE:DE:A4:0E:A8:BF:B7:D6:D1:31:FC:E4 Certificate issuer: /CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Certificate serial: 023C Authority key identifier: 9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/B775BD7A9EA911EC95EBD87CC4F9AE02.roa Signing time: Sat 29 Jul 2023 02:23:35 +0000 ROA not before: Sat 29 Jul 2023 02:23:35 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 136803 IP address blocks: 103.95.148.0/22 maxlen: 22 103.95.148.0/24 maxlen: 24 103.95.149.0/24 maxlen: 24 103.95.150.0/24 maxlen: 24 103.95.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Validity Not Before: Jul 29 02:23:35 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c47827-57e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:91:e8:ae:3e:60:d4:0f:50:5b:b2:b0:40:ca: db:20:33:97:59:5a:35:d6:db:c4:39:92:36:ad:ca: e3:98:15:fb:de:85:bc:eb:bc:00:8a:c9:6e:ed:27: 98:d5:cd:19:82:49:f9:a9:c6:2c:03:c0:48:cb:78: 69:8d:58:12:bc:65:ac:37:ca:65:e8:d8:94:de:7e: 2c:b0:6c:1e:a5:d8:69:7c:d2:3f:3c:17:5a:3c:ba: 45:f0:ab:42:73:5a:44:cd:ad:e4:5c:ac:eb:85:ef: 05:8b:58:61:ac:e6:9f:21:46:d2:28:b7:3d:79:2e: 34:17:f5:8d:a9:fa:35:f9:01:80:d6:c6:4d:1f:68: 91:55:53:e5:a3:88:ea:54:b6:4a:bc:0d:fd:06:72: 29:80:e1:f6:89:db:30:48:f7:98:54:22:d7:3d:de: 33:a9:58:a6:df:bb:87:d2:1d:8c:a8:a8:9e:68:59: 80:a7:6e:ce:63:ef:53:c8:e7:06:22:bd:1a:b5:a1: b8:68:10:60:67:01:34:9b:9e:d2:61:cf:84:40:19: 7d:16:33:d9:06:d7:9f:eb:11:c2:bb:e4:2f:11:d0: 08:71:c1:30:a7:20:b3:de:f8:83:fe:34:db:4a:7f: f1:e6:d6:9c:82:e6:af:62:3e:1a:3c:d5:ba:0e:04: eb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:56:3F:5D:CF:A2:47:AC:DE:DE:A4:0E:A8:BF:B7:D6:D1:31:FC:E4 X509v3 Authority Key Identifier: keyid:9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/B775BD7A9EA911EC95EBD87CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.148.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:26:1b:93:12:32:c6:85:1a:59:a1:38:bb:6b:41:03:01:18: c7:67:0c:57:29:ad:7a:c0:ea:3d:b4:9d:39:4f:23:e8:d9:e6: a9:0d:c4:d0:ff:62:91:6a:c9:e7:f4:c4:5b:10:1d:9f:4b:06: 2a:7e:c4:c4:ec:73:49:83:ea:67:89:07:21:8e:5a:1f:b1:cf: 08:db:54:d5:71:20:b5:09:9b:be:ac:ba:5c:88:c6:63:1f:90: 6c:a7:03:e4:fd:c9:3c:aa:3c:de:18:0b:6f:f5:3f:31:6e:3b: 91:35:31:4e:77:2b:fd:94:4e:60:d7:fc:5f:1c:cb:2e:f3:ae: e7:e2:c0:70:44:0b:ab:b7:20:14:48:38:c3:47:b4:55:a3:95: 26:b5:84:24:06:e8:20:5c:60:01:a5:6d:eb:15:11:fd:62:18: fc:ac:02:11:4c:77:89:95:b3:c9:66:c6:96:64:5b:00:20:71: 47:84:94:30:46:21:3a:b7:94:a1:df:7e:3a:60:90:c7:62:09: 52:70:83:63:5b:6f:2d:ed:cd:e0:69:5f:84:40:9c:e6:56:d6: b3:28:be:59:95:e6:1f:17:c0:0d:35:ad:ce:20:a7:97:4d:0b: 44:af:e0:b7:14:cb:7a:72:10:11:75:19:a5:a4:96:58:23:0e: 8e:f4:7d:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMUUxMTAvBgNVBAUTKDlFNTcxN0Y1RjE0QkIyOUY2N0I1N0FEN0Q5RDVGMDc5 MTVBRTlDNDMwHhcNMjMwNzI5MDIyMzM1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM0NzgyNy01N2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZHorj5g1A9QW7KwQMrbIDOXWVo11tvEOZI2rcrjmBX73oW867wAislu7SeY 1c0Zgkn5qcYsA8BIy3hpjVgSvGWsN8pl6NiU3n4ssGwepdhpfNI/PBdaPLpF8KtC c1pEza3kXKzrhe8Fi1hhrOafIUbSKLc9eS40F/WNqfo1+QGA1sZNH2iRVVPlo4jq VLZKvA39BnIpgOH2idswSPeYVCLXPd4zqVim37uH0h2MqKieaFmAp27OY+9TyOcG Ir0ataG4aBBgZwE0m57SYc+EQBl9FjPZBtef6xHCu+QvEdAIccEwpyCz3viD/jTb Sn/x5tacguavYj4aPNW6DgTrtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCpWP13P okes3t6kDqi/t9bRMfzkMB8GA1UdIwQYMBaAFJ5XF/XxS7KfZ7V619nV8HkVrpxD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAxRS9DNUM2RjA1RTlF QTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNwOW50WHJYMmRYd2VSV3Vu RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sY1g5ZkZMc3A5bnRYclgyZFh3ZVJXdW5FTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUwMUUvQzVDNkYwNUU5RUE2MTFFQzhGQjAzNjU0QzRGOUFFMDIvQjc3NUJEN0E5 RUE5MTFFQzk1RUJEODdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnX5QwDQYJKoZIhvcNAQELBQADggEBAJwmG5MSMsaFGlmh OLtrQQMBGMdnDFcprXrA6j20nTlPI+jZ5qkNxND/YpFqyef0xFsQHZ9LBip+xMTs c0mD6meJByGOWh+xzwjbVNVxILUJm76sulyIxmMfkGynA+T9yTyqPN4YC2/1PzFu O5E1MU53K/2UTmDX/F8cyy7zrufiwHBEC6u3IBRIOMNHtFWjlSa1hCQG6CBcYAGl besVEf1iGPysAhFMd4mVs8lmxpZkWwAgcUeElDBGITq3lKHffjpgkMdiCVJwg2Nb by3tzeBpX4RAnOZW1rMovlmV5h8XwA01rc4gp5dNC0Sv4LcUy3pyEBF1GaWkllgj Do70fcA= -----END CERTIFICATE-----Generated at Sat May 25 04:35:07 2024 by rpki-client on console-ams.rpki-client.org