$ rpki-client -vvf rpki.apnic.net/member_repository/A9172154/39A6CF2A809111EAAD134D6BC4F9AE02/95A08652730D11ECAB074439C4F9AE02.roa File: 95A08652730D11ECAB074439C4F9AE02.roa (raw, json) Hash identifier: 6ax7wKX9MnscscRmvzdcH+/wseAfzjTJRwaa04oD2v4= Subject key identifier: D1:E3:0E:CB:66:0C:05:B1:92:D0:65:43:66:F8:96:5F:7C:59:59:23 Certificate issuer: /CN=A9172154/serialNumber=9E994EF75E1133E60F01B9A48A09261952FB1B81 Certificate serial: 08A4 Authority key identifier: 9E:99:4E:F7:5E:11:33:E6:0F:01:B9:A4:8A:09:26:19:52:FB:1B:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nplO914RM-YPAbmkigkmGVL7G4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172154/39A6CF2A809111EAAD134D6BC4F9AE02/95A08652730D11ECAB074439C4F9AE02.roa Signing time: Thu 26 Oct 2023 20:48:40 +0000 ROA not before: Thu 26 Oct 2023 20:48:40 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137041 IP address blocks: 103.102.236.0/22 maxlen: 23 103.102.236.0/24 maxlen: 24 103.102.237.0/24 maxlen: 24 103.102.238.0/24 maxlen: 24 103.102.239.0/24 maxlen: 24 2401:ebc0::/32 maxlen: 32 2401:ebc0:1000::/36 maxlen: 36 2401:ebc0:2000::/36 maxlen: 36 2401:ebc0:3000::/36 maxlen: 36 2401:ebc0:4000::/36 maxlen: 36 2401:ebc0:5000::/36 maxlen: 36 2401:ebc0:6000::/36 maxlen: 36 2401:ebc0:7000::/36 maxlen: 36 2401:ebc0:8000::/36 maxlen: 36 2401:ebc0:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172154/39A6CF2A809111EAAD134D6BC4F9AE02/nplO914RM-YPAbmkigkmGVL7G4E.crl rsync://rpki.apnic.net/member_repository/A9172154/39A6CF2A809111EAAD134D6BC4F9AE02/nplO914RM-YPAbmkigkmGVL7G4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nplO914RM-YPAbmkigkmGVL7G4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2212 (0x8a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172154/serialNumber=9E994EF75E1133E60F01B9A48A09261952FB1B81 Validity Not Before: Oct 26 20:48:40 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=653ad0a8-9f22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:80:0d:fc:8a:fd:b9:47:79:4b:cc:5e:40:db: 6a:8d:e3:88:6b:d6:2c:0f:bd:8f:86:45:cd:b5:5a: d7:cb:81:e2:21:1a:7b:0e:6a:39:6f:fd:1d:40:a7: 0a:e2:f0:42:68:26:ee:d7:a0:73:5b:a3:53:25:23: 08:86:53:94:b4:f2:97:47:26:d3:80:19:70:c3:d2: dc:41:c5:c0:2d:49:e8:15:0f:00:37:28:4d:b8:89: 5a:c9:a6:6a:0b:c4:97:fe:ae:6f:fd:25:dd:06:91: a1:a9:5f:a6:29:b1:55:ab:0e:89:3f:7b:67:5d:b3: 5e:23:d8:1e:55:9c:db:e3:77:8d:5e:d7:03:6c:86: b7:e8:df:40:50:56:22:72:b4:2d:82:4a:5d:17:62: 8e:88:d4:d7:3a:f7:42:5c:c0:e8:12:9d:a1:61:63: d8:d3:9b:50:c5:9e:28:3f:9b:5d:c5:71:41:05:e6: 06:bd:e2:7e:e0:39:c9:73:62:82:e9:f1:5c:a9:31: 3c:da:77:fd:cf:3c:3d:e9:72:06:68:f4:98:9e:a3: 93:2f:a7:52:bf:cf:fd:7e:03:69:57:6b:1f:2f:42: 0d:f7:ef:a6:1d:59:c1:b3:ff:c5:70:ad:22:11:c2: bb:de:cd:ad:03:32:15:90:3f:b2:4a:d1:39:d4:8f: 00:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E3:0E:CB:66:0C:05:B1:92:D0:65:43:66:F8:96:5F:7C:59:59:23 X509v3 Authority Key Identifier: keyid:9E:99:4E:F7:5E:11:33:E6:0F:01:B9:A4:8A:09:26:19:52:FB:1B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172154/39A6CF2A809111EAAD134D6BC4F9AE02/nplO914RM-YPAbmkigkmGVL7G4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nplO914RM-YPAbmkigkmGVL7G4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172154/39A6CF2A809111EAAD134D6BC4F9AE02/95A08652730D11ECAB074439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.236.0/22 IPv6: 2401:ebc0::/32 Signature Algorithm: sha256WithRSAEncryption 03:c3:5d:42:d7:e1:77:8b:0b:8d:f9:2b:85:78:08:bb:6b:af: a7:71:c9:ab:a3:92:47:bb:91:6f:2b:1b:f7:20:49:24:b7:99: b6:2e:5f:76:ac:01:de:c2:a2:59:ba:98:47:63:a1:34:34:d3: f4:7e:d2:79:14:7a:5a:cd:d5:e3:14:b9:7b:99:1d:35:35:b1: bc:bb:55:a6:20:58:17:8f:bc:19:60:90:a3:aa:5e:36:56:b1: 05:75:7e:18:46:e4:cb:6a:e0:bb:c7:66:78:28:e5:34:a0:f7: cb:36:1c:16:54:63:83:95:8f:17:24:29:e6:50:41:9c:47:9f: 07:5e:5d:dd:92:e5:eb:59:30:dc:ae:1b:da:73:f0:9c:7a:df: a7:59:4c:00:77:49:55:14:3e:f8:3d:ed:72:cc:0c:54:de:3f: c6:3b:84:39:61:0d:9a:38:47:7c:86:75:31:08:b3:6a:30:34: 32:97:d4:53:c9:90:5f:51:c4:23:14:b4:22:34:4d:64:ff:bf: 82:dc:a3:0f:84:7f:43:26:c5:57:4a:f7:4c:b3:6f:32:32:f5: 3c:d8:7f:e5:4e:30:8e:32:03:e1:1b:8b:73:2b:51:05:18:9e: 8b:80:13:03:13:fa:12:90:cb:fc:3b:8d:89:35:8f:be:c8:f5: 5c:01:13:73 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIxNTQxMTAvBgNVBAUTKDlFOTk0RUY3NUUxMTMzRTYwRjAxQjlBNDhBMDkyNjE5 NTJGQjFCODEwHhcNMjMxMDI2MjA0ODQwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNhZDBhOC05ZjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4AN/Ir9uUd5S8xeQNtqjeOIa9YsD72PhkXNtVrXy4HiIRp7Dmo5b/0dQKcK 4vBCaCbu16BzW6NTJSMIhlOUtPKXRybTgBlww9LcQcXALUnoFQ8ANyhNuIlayaZq C8SX/q5v/SXdBpGhqV+mKbFVqw6JP3tnXbNeI9geVZzb43eNXtcDbIa36N9AUFYi crQtgkpdF2KOiNTXOvdCXMDoEp2hYWPY05tQxZ4oP5tdxXFBBeYGveJ+4DnJc2KC 6fFcqTE82nf9zzw96XIGaPSYnqOTL6dSv8/9fgNpV2sfL0IN9++mHVnBs//FcK0i EcK73s2tAzIVkD+yStE51I8AfwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNHjDstm DAWxktBlQ2b4ll98WVkjMB8GA1UdIwQYMBaAFJ6ZTvdeETPmDwG5pIoJJhlS+xuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjE1NC8zOUE2Q0YyQTgw OTExMUVBQUQxMzRENkJDNEY5QUUwMi9ucGxPOTE0Uk0tWVBBYm1raWdrbUdWTDdH NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25wbE85MTRSTS1ZUEFibWtpZ2ttR1ZMN0c0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzIxNTQvMzlBNkNGMkE4MDkxMTFFQUFEMTM0RDZCQzRGOUFFMDIvOTVBMDg2NTI3 MzBEMTFFQ0FCMDc0NDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZuwwDQQCAAIwBwMFACQB68AwDQYJKoZIhvcNAQELBQAD ggEBAAPDXULX4XeLC435K4V4CLtrr6dxyaujkke7kW8rG/cgSSS3mbYuX3asAd7C olm6mEdjoTQ00/R+0nkUelrN1eMUuXuZHTU1sby7VaYgWBePvBlgkKOqXjZWsQV1 fhhG5Mtq4LvHZngo5TSg98s2HBZUY4OVjxckKeZQQZxHnwdeXd2S5etZMNyuG9pz 8Jx636dZTAB3SVUUPvg97XLMDFTeP8Y7hDlhDZo4R3yGdTEIs2owNDKX1FPJkF9R xCMUtCI0TWT/v4Lcow+Ef0MmxVdK90yzbzIy9TzYf+VOMI4yA+Ebi3MrUQUYnouA EwMT+hKQy/w7jYk1j77I9VwBE3M= -----END CERTIFICATE-----Generated at Mon May 6 22:40:56 2024 by rpki-client on console-ams.rpki-client.org