$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/95DEC1BE976E11EF94474159C4F9AE02.roa File: 95DEC1BE976E11EF94474159C4F9AE02.roa (raw, json) Hash identifier: kDtt1Hwh/gf8jarcPIC4cfMmNWkbkfVgRHtHrPEgAsc= Subject key identifier: 00:9B:F4:C6:03:C1:8A:1F:DF:C1:B0:F9:FD:0A:24:E4:08:3B:09:2B Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: 57 Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/95DEC1BE976E11EF94474159C4F9AE02.roa Signing time: Thu 31 Oct 2024 09:57:49 +0000 ROA not before: Thu 31 Oct 2024 09:57:49 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 152565 IP address blocks: 103.108.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Validity Not Before: Oct 31 09:57:49 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6723549d-ed28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3a:a2:ed:6f:76:de:7b:a0:fd:c3:e1:1a:a2: 44:83:90:e2:6a:ed:8b:a5:9f:33:4a:43:6f:d2:b4: e5:55:68:01:07:28:05:c8:7f:c0:59:7f:08:84:3d: 8d:88:36:ae:53:19:f6:47:86:b3:02:bb:d9:24:57: 81:09:31:ea:a8:cc:28:df:3a:b7:6e:6c:fe:e6:95: 5a:49:49:82:2e:ec:f2:77:2f:fc:83:10:fa:76:4d: 71:93:d3:c3:f1:80:fa:3b:a6:f7:9b:87:9d:c2:65: 1c:3a:33:42:10:a4:0b:14:43:4d:3a:83:ea:a6:eb: 2c:e4:40:4f:69:d7:f5:86:76:be:38:1d:19:5e:79: 1d:3c:41:96:57:ee:28:02:6e:56:4e:ab:2d:16:fb: a3:60:89:77:45:2f:56:6f:83:a1:8b:86:27:3e:63: 2e:be:a7:2b:9e:ce:a7:1d:e4:8c:51:47:19:53:39: 11:7d:3f:4d:4d:de:1b:d6:02:76:93:a7:e8:2f:74: 92:3e:4c:ba:f6:b2:99:34:86:69:e2:46:52:b7:f9: 00:64:74:7e:bf:9d:26:20:16:a8:20:dd:f3:c4:a6: bd:68:2d:d7:e2:ca:20:f4:a3:b6:a3:dc:f8:7d:4e: e0:09:1a:48:c3:5a:c2:57:e8:03:dc:fc:db:89:08: fa:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:9B:F4:C6:03:C1:8A:1F:DF:C1:B0:F9:FD:0A:24:E4:08:3B:09:2B X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/95DEC1BE976E11EF94474159C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.174.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:34:12:c4:0b:e7:b7:e6:ab:52:92:2c:a2:5b:d7:88:01:3f: eb:47:5d:f2:c4:3c:0f:83:ff:19:a7:29:9f:d6:27:a2:c4:f7: 5b:cc:f9:c0:53:ad:98:58:b3:7b:53:8a:11:a7:ed:68:7e:81: 02:7b:32:f4:1c:ad:c6:4b:7f:c8:e0:3b:1e:07:ed:d2:2c:45: 43:06:9b:67:ac:1a:70:4c:8b:4c:96:33:0b:aa:d4:69:af:60: 40:d4:33:6a:b6:8d:77:08:38:12:f6:f8:16:06:46:45:95:30: fe:cd:95:37:96:a0:9b:33:86:1f:9e:3c:4a:ef:67:ed:19:46: 6d:bd:e9:83:0a:85:2c:c2:c3:9f:f6:b4:ad:4d:0e:10:d3:93: fa:91:55:73:53:ac:00:60:e7:d3:d5:84:7b:92:b8:af:b0:24: 12:6b:de:ab:4e:ff:86:b3:7a:c0:dd:00:50:56:4a:75:36:48: 4a:cc:32:1a:6d:7d:0c:e4:eb:18:97:23:56:7e:70:90:0f:96: 36:38:c0:c1:92:48:6e:86:8d:55:2b:ab:36:b0:be:d2:78:d7: 23:f2:9d:9c:27:5b:e5:89:cf:08:7c:6e:69:76:e5:aa:c2:09: 30:4d:09:57:34:07:05:d9:bd:4e:81:f4:b3:29:6c:68:87:44: 4f:b6:cd:f4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTU2MDExMC8GA1UEBRMoRTM4RUIzRjVBNTEwN0UzMEYwQ0E3MURERUE3NUIxNzBE MEIwMzI1NjAeFw0yNDEwMzEwOTU3NDlaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjM1NDlkLWVkMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaOqLtb3bee6D9w+EaokSDkOJq7YulnzNKQ2/StOVVaAEHKAXIf8BZfwiEPY2I Nq5TGfZHhrMCu9kkV4EJMeqozCjfOrdubP7mlVpJSYIu7PJ3L/yDEPp2TXGT08Px gPo7pvebh53CZRw6M0IQpAsUQ006g+qm6yzkQE9p1/WGdr44HRleeR08QZZX7igC blZOqy0W+6NgiXdFL1Zvg6GLhic+Yy6+pyuezqcd5IxRRxlTORF9P01N3hvWAnaT p+gvdJI+TLr2spk0hmniRlK3+QBkdH6/nSYgFqgg3fPEpr1oLdfiyiD0o7aj3Ph9 TuAJGkjDWsJX6APc/NuJCPqpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUAJv0xgPB ih/fwbD5/Qok5Ag7CSswHwYDVR0jBBgwFoAU446z9aUQfjDwynHd6nWxcNCwMlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1NTYwLzRDM0Q2QkMwMjE2 RjExRUZBRjQ1RUEyREM0RjlBRTAyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01s WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDQ2ejlhVVFmakR3eW5IZDZuV3hjTkN3TWxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU2MC80QzNENkJDMDIxNkYxMUVGQUY0NUVBMkRDNEY5QUUwMi85NURFQzFCRTk3 NkUxMUVGOTQ0NzQxNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdsrjANBgkqhkiG9w0BAQsFAAOCAQEAbDQSxAvnt+arUpIs olvXiAE/60dd8sQ8D4P/Gacpn9YnosT3W8z5wFOtmFize1OKEaftaH6BAnsy9Byt xkt/yOA7Hgft0ixFQwabZ6wacEyLTJYzC6rUaa9gQNQzaraNdwg4Evb4FgZGRZUw /s2VN5agmzOGH548Su9n7RlGbb3pgwqFLMLDn/a0rU0OENOT+pFVc1OsAGDn09WE e5K4r7AkEmveq07/hrN6wN0AUFZKdTZISswyGm19DOTrGJcjVn5wkA+WNjjAwZJI boaNVSurNrC+0njXI/KdnCdb5YnPCHxuaXblqsIJME0JVzQHBdm9ToH0sylsaIdE T7bN9A== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:37 2024 by rpki-client on console-ams.rpki-client.org