$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/98152E6C480111EFB2976238C4F9AE02.roa File: 98152E6C480111EFB2976238C4F9AE02.roa (raw, json) Hash identifier: gp0c0TAvNcGzlWuq4DB/NpWsaDumiulUkd34eH+poTQ= Subject key identifier: 95:52:50:3C:36:F7:1E:1E:C1:F0:72:31:95:F7:4C:38:53:93:54:E9 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 011D Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/98152E6C480111EFB2976238C4F9AE02.roa Signing time: Mon 22 Jul 2024 08:24:48 +0000 ROA not before: Mon 22 Jul 2024 08:24:48 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133955 IP address blocks: 103.235.4.0/24 maxlen: 24 103.235.5.0/24 maxlen: 24 103.235.6.0/24 maxlen: 24 103.235.7.0/24 maxlen: 24 150.129.208.0/24 maxlen: 24 150.129.209.0/24 maxlen: 24 150.129.210.0/24 maxlen: 24 150.129.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Jul 22 08:24:48 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669e1750-4c14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:50:d1:27:c6:72:3e:41:58:6f:4f:81:58:7a: 9c:1c:b9:da:62:9b:85:31:09:25:f7:93:fc:41:5f: f2:db:16:01:35:b0:4b:88:cc:bd:6c:c8:5d:98:cb: 7d:99:67:07:dd:fa:d1:b5:ba:b0:20:62:2a:72:cb: 4e:94:95:55:c9:75:03:e5:e8:52:66:91:40:ab:97: 06:7e:c5:b7:c1:d4:2a:22:71:bb:d5:3e:d0:5f:da: de:29:36:46:12:20:4a:91:7a:37:cd:b5:25:34:1a: 05:73:49:9d:51:19:c7:8c:53:b7:8a:91:a4:09:fb: 45:a3:77:8e:27:f4:78:ca:98:fd:88:1d:86:47:33: 4e:88:ff:bb:ef:15:20:5f:84:eb:ff:9c:7b:64:06: 08:bf:2f:d7:50:a4:e8:84:be:d6:79:84:6c:cb:74: 36:c2:0c:4b:01:cc:84:5a:ca:f9:7e:3a:c6:be:c1: 96:50:a3:0a:59:a5:61:3e:2a:f1:16:5c:56:a9:25: 25:f0:07:ba:de:cf:e2:ef:6d:02:73:21:6b:80:5b: 96:ac:63:66:e0:a4:04:ed:b4:df:45:15:fe:39:30: ce:36:d0:fd:d5:4d:6d:d6:2b:a5:92:0a:65:e5:23: c7:0d:12:71:7f:a0:1f:19:71:e6:7a:40:44:97:05: 8e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:52:50:3C:36:F7:1E:1E:C1:F0:72:31:95:F7:4C:38:53:93:54:E9 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/98152E6C480111EFB2976238C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.4.0/22 150.129.208.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:7d:10:69:a2:f4:33:5c:b2:24:10:1c:06:64:e9:66:85:f2: 37:a1:aa:77:16:2e:0c:30:93:71:86:e4:2c:16:7c:4a:6a:c6: b3:ac:9b:a6:d9:7b:7a:92:8e:dc:dc:39:c8:ae:f5:22:43:75: e1:10:2a:d2:a6:48:38:be:f8:84:15:e4:d8:05:2f:96:7e:a0: 6c:62:b5:cd:fd:b8:f8:42:30:4f:2a:62:ff:f6:48:84:38:fb: 0c:7b:05:ab:32:d9:a1:b6:21:e3:03:53:f1:21:de:df:85:e2: a0:ba:9b:d2:52:81:c5:06:3b:45:19:2c:c4:03:66:d3:02:a5: a4:90:68:7d:05:94:80:7e:68:50:b7:b7:56:bd:d7:e3:97:64: 75:f2:d3:04:a1:5f:3b:f3:b6:e1:5f:79:e0:48:5e:be:3a:c9: 94:a3:41:df:2b:51:4b:9a:2c:3a:2f:25:e8:8d:e2:c8:ba:d9: 95:2c:f1:fc:2d:b6:da:12:e5:98:89:47:47:fc:a1:03:8f:a8: 9c:52:7e:65:5b:03:55:d7:fc:12:e0:74:7e:00:41:ba:3d:a9: 57:df:4f:74:b6:cf:3a:c7:bd:b8:39:88:b6:69:de:ed:bb:87: 0a:32:86:1a:2b:51:19:9f:10:bd:78:72:54:62:bd:6f:ba:0c: 85:76:71:8d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjQwNzIyMDgyNDQ4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjllMTc1MC00YzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlDRJ8ZyPkFYb0+BWHqcHLnaYpuFMQkl95P8QV/y2xYBNbBLiMy9bMhdmMt9 mWcH3frRtbqwIGIqcstOlJVVyXUD5ehSZpFAq5cGfsW3wdQqInG71T7QX9reKTZG EiBKkXo3zbUlNBoFc0mdURnHjFO3ipGkCftFo3eOJ/R4ypj9iB2GRzNOiP+77xUg X4Tr/5x7ZAYIvy/XUKTohL7WeYRsy3Q2wgxLAcyEWsr5fjrGvsGWUKMKWaVhPirx FlxWqSUl8Ae63s/i720CcyFrgFuWrGNm4KQE7bTfRRX+OTDONtD91U1t1iulkgpl 5SPHDRJxf6AfGXHmekBElwWOAwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJVSUDw2 9x4ewfByMZX3TDhTk1TpMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTI1QTkvMjYxODg0MEVCMTQzMTFFRDg3RDA3Njc4QzRGOUFFMDIvOTgxNTJFNkM0 ODAxMTFFRkIyOTc2MjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn6wQDBAKWgdAwDQYJKoZIhvcNAQELBQADggEBAJ19EGmi 9DNcsiQQHAZk6WaF8jehqncWLgwwk3GG5CwWfEpqxrOsm6bZe3qSjtzcOciu9SJD deEQKtKmSDi++IQV5NgFL5Z+oGxitc39uPhCME8qYv/2SIQ4+wx7Basy2aG2IeMD U/Eh3t+F4qC6m9JSgcUGO0UZLMQDZtMCpaSQaH0FlIB+aFC3t1a91+OXZHXy0wSh XzvztuFfeeBIXr46yZSjQd8rUUuaLDovJeiN4si62ZUs8fwtttoS5ZiJR0f8oQOP qJxSfmVbA1XX/BLgdH4AQbo9qVffT3S2zzrHvbg5iLZp3u27hwoyhhorURmfEL14 clRivW+6DIV2cY0= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:37 2024 by rpki-client on console-ams.rpki-client.org