$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa File: 95DDE9D6909A11EF94AF3B26C4F9AE02.roa (raw, json) Hash identifier: gSL+g9g3YpA7s5XesQRHZm3/7MvyodXEVF116j/i5W8= Subject key identifier: 1D:01:33:1F:4C:7A:23:1E:FC:DF:0F:5E:EC:7A:D3:A3:57:B9:63:8E Certificate issuer: /CN=A91A0D9C/serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Certificate serial: 1472 Authority key identifier: FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa Signing time: Tue 22 Oct 2024 17:25:08 +0000 ROA not before: Tue 22 Oct 2024 17:25:08 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137491 IP address blocks: 103.110.96.0/22 maxlen: 24 2402:8640::/32 maxlen: 32 2402:8640::/48 maxlen: 48 2402:8640:1::/48 maxlen: 48 2402:8640:2::/48 maxlen: 48 2402:8640:3::/48 maxlen: 48 2402:8640:4::/48 maxlen: 48 2402:8640:5::/48 maxlen: 48 2402:8640:6::/48 maxlen: 48 2402:8640:7::/48 maxlen: 48 2402:8640:8::/48 maxlen: 48 2402:8640:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5234 (0x1472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0D9C/serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Validity Not Before: Oct 22 17:25:08 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6717dff4-db09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a9:c4:3d:d9:9b:c5:0a:c0:ee:7f:d8:f4:05: b1:72:13:8d:d5:52:c4:77:51:88:91:40:37:72:77: df:2e:4e:61:6c:dd:35:34:f2:d9:d8:05:5a:53:e9: 5c:25:89:ad:9a:2c:bb:94:52:04:ca:fa:f5:37:00: 52:b8:4f:e5:5a:c7:fc:cf:24:04:d1:0a:18:0b:52: 55:b0:94:9f:09:39:71:de:ae:fd:df:44:78:60:91: 48:32:00:cd:a5:be:95:56:ed:73:e8:b5:b6:14:a1: b7:0e:c8:a6:ef:69:d8:0a:87:00:38:36:49:89:27: f6:1c:f2:c4:bb:a0:88:e6:5a:8b:77:b1:e3:29:a5: 55:12:61:c2:69:15:c7:f0:46:4f:43:35:9a:bc:cd: c0:ce:27:b9:97:cc:64:3f:61:ce:a2:2d:2c:70:6c: 72:ea:42:b5:cd:c6:3c:0c:bb:ad:b8:c5:0b:19:b1: 19:12:04:3d:94:7b:a2:33:dd:55:6f:6c:c3:95:5d: 69:a1:12:c8:14:16:f4:47:91:16:ed:76:02:3e:8f: 0f:fb:c4:29:ef:66:97:cd:60:4e:7d:a0:25:76:b8: de:ea:25:71:98:fa:bd:d9:7d:e9:29:ae:74:02:c0: 5b:3e:7f:b5:0d:fe:66:db:68:4c:30:29:80:05:54: e2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:01:33:1F:4C:7A:23:1E:FC:DF:0F:5E:EC:7A:D3:A3:57:B9:63:8E X509v3 Authority Key Identifier: keyid:FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.96.0/22 IPv6: 2402:8640::/32 Signature Algorithm: sha256WithRSAEncryption 5b:01:93:84:70:c3:bf:32:9c:f6:a9:7d:83:3a:da:59:66:51: e5:e9:d9:3f:b2:db:4e:60:f7:18:42:7d:c0:51:fe:2c:88:6d: f0:9d:48:d9:c6:97:4c:8d:6a:23:4b:05:6c:df:48:eb:c4:ca: d5:cd:b9:c9:d0:b3:9c:07:3d:df:80:28:3b:bb:bb:26:44:7e: 28:be:72:c1:79:00:f9:55:f0:05:57:44:51:fb:03:b5:b6:61: 11:77:c8:9e:3c:f4:d2:10:02:f7:1a:a0:cb:9d:a2:c4:e2:b1: 91:3d:60:f9:5a:b0:26:0f:76:f7:ac:0c:58:43:7b:48:65:77: 61:23:40:e3:f2:c7:c9:45:15:5b:66:07:80:a1:d2:3f:6c:43: 93:eb:5e:74:7b:d5:89:41:e1:9a:08:a3:14:96:a1:c7:26:f9: e3:37:9a:ba:96:bf:85:9a:dd:2e:f5:08:f4:06:6d:c9:be:18: 0d:9a:fe:89:16:54:b3:1f:0b:4f:59:d3:2d:39:6d:da:8d:58: 27:e6:2d:49:e3:bf:a6:af:9d:b9:1a:81:84:ff:5f:c6:58:90: a3:32:d3:7a:32:a4:2d:64:1f:da:f1:f2:a3:49:ab:e2:2c:de: ce:5a:0d:ae:67:ba:86:8c:06:92:61:ee:ab:44:02:ce:dd:00: f0:30:ed:3a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBEOUMxMTAvBgNVBAUTKEZFM0U5OEM0QzFBNzkxMkI1QTkxNkQxNjMzNDc3OEM0 QUI3QTY1MzAwHhcNMjQxMDIyMTcyNTA4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3ZGZmNC1kYjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36nEPdmbxQrA7n/Y9AWxchON1VLEd1GIkUA3cnffLk5hbN01NPLZ2AVaU+lc JYmtmiy7lFIEyvr1NwBSuE/lWsf8zyQE0QoYC1JVsJSfCTlx3q7930R4YJFIMgDN pb6VVu1z6LW2FKG3Dsim72nYCocAODZJiSf2HPLEu6CI5lqLd7HjKaVVEmHCaRXH 8EZPQzWavM3Azie5l8xkP2HOoi0scGxy6kK1zcY8DLutuMULGbEZEgQ9lHuiM91V b2zDlV1poRLIFBb0R5EW7XYCPo8P+8Qp72aXzWBOfaAldrje6iVxmPq92X3pKa50 AsBbPn+1Df5m22hMMCmABVTi3wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFB0BMx9M eiMe/N8PXux606NXuWOOMB8GA1UdIwQYMBaAFP4+mMTBp5ErWpFtFjNHeMSremUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEQ5Qy85RTI4MzAwNjU3 QTgxMUU4QjRBQzA4NzdDNEY5QUUwMi9fajZZeE1HbmtTdGFrVzBXTTBkNHhLdDZa VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qNll4TUdua1N0YWtXMFdNMGQ0eEt0NlpUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBEOUMvOUUyODMwMDY1N0E4MTFFOEI0QUMwODc3QzRGOUFFMDIvOTVEREU5RDY5 MDlBMTFFRjk0QUYzQjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbmAwDQQCAAIwBwMFACQChkAwDQYJKoZIhvcNAQELBQAD ggEBAFsBk4Rww78ynPapfYM62llmUeXp2T+y205g9xhCfcBR/iyIbfCdSNnGl0yN aiNLBWzfSOvEytXNucnQs5wHPd+AKDu7uyZEfii+csF5APlV8AVXRFH7A7W2YRF3 yJ489NIQAvcaoMudosTisZE9YPlasCYPdvesDFhDe0hld2EjQOPyx8lFFVtmB4Ch 0j9sQ5PrXnR71YlB4ZoIoxSWoccm+eM3mrqWv4Wa3S71CPQGbcm+GA2a/okWVLMf C09Z0y05bdqNWCfmLUnjv6avnbkagYT/X8ZYkKMy03oypC1kH9rx8qNJq+Is3s5a Da5nuoaMBpJh7qtEAs7dAPAw7To= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org