$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/09A1853E913611EBBD9B811AC4F9AE02.roa File: 09A1853E913611EBBD9B811AC4F9AE02.roa (raw, json) Hash identifier: in/fb62CrRPbpXlNZPGadntOIOc6xim+BnFsOsMveGo= Subject key identifier: A7:CF:B9:34:57:60:9B:55:5F:D9:00:72:CE:58:0B:50:DF:E8:74:40 Certificate issuer: /CN=A91AEAE7/serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Certificate serial: 054B Authority key identifier: DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/09A1853E913611EBBD9B811AC4F9AE02.roa Signing time: Fri 15 Dec 2023 00:32:24 +0000 ROA not before: Fri 15 Dec 2023 00:32:24 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9723 IP address blocks: 103.95.77.0/24 maxlen: 24 103.95.78.0/23 maxlen: 23 202.176.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEAE7/serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Validity Not Before: Dec 15 00:32:24 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657b9e98-7e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ff:2c:bd:da:f5:24:d7:f5:bc:27:ab:44:d0: c3:60:5b:2a:3f:1b:21:fa:09:f0:16:65:9b:31:04: 6f:80:75:ab:c7:01:41:c6:28:3d:8b:bb:f9:86:81: c8:01:80:c5:96:a2:96:30:2d:f8:18:a6:99:45:d4: f1:b8:66:07:cb:38:80:b6:34:1e:b4:f8:22:3a:ce: fc:bd:05:5a:bb:08:e8:d2:5d:d8:d9:67:50:4e:0f: 11:6c:25:38:ba:08:31:ed:58:29:76:69:a6:e2:a7: 77:7f:1e:4b:26:a2:75:6b:17:f0:72:aa:79:81:b2: da:c3:e3:0e:b8:fc:87:64:8d:70:c8:26:0e:24:1e: 34:5c:20:3a:ec:06:7b:b6:4d:7c:f4:29:ad:f2:83: ab:4c:f6:6d:be:ac:6f:64:e5:aa:a2:22:2c:1a:4b: 08:87:32:12:39:9a:fb:51:2d:bc:ba:f2:b4:17:95: 4b:bb:b5:11:8d:a9:a4:77:29:59:b9:8c:5c:8f:74: 13:bc:2f:e1:bb:f1:32:37:63:72:e7:f2:b8:2b:15: 98:0e:b6:0b:46:6f:3d:24:57:fd:a2:da:20:02:49: 24:52:b4:83:43:ba:c9:1d:e5:6c:5a:be:1b:bb:0d: d4:f3:c7:88:47:09:bf:5d:33:65:5b:76:ef:60:c1: 16:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CF:B9:34:57:60:9B:55:5F:D9:00:72:CE:58:0B:50:DF:E8:74:40 X509v3 Authority Key Identifier: keyid:DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/09A1853E913611EBBD9B811AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.77.0-103.95.79.255 202.176.15.0/24 Signature Algorithm: sha256WithRSAEncryption b2:03:27:1e:9f:75:65:88:ef:08:ca:c1:95:20:23:4e:6a:25: d9:c2:c8:ec:aa:b0:3d:7e:c9:81:6d:88:0b:b1:9a:94:69:27: 39:84:5a:60:ad:cb:e7:16:0c:e8:7e:5f:1f:29:fb:f0:fa:bc: b6:0e:90:ad:f1:e3:b5:99:cb:25:df:db:75:c0:30:18:de:98: 91:bd:99:21:dd:e6:01:e0:cd:db:c2:31:a9:7a:b8:01:2f:6f: 12:83:de:7d:81:d4:4d:a8:8c:ca:86:88:59:f3:c0:f4:90:84: a2:fe:98:5c:64:60:c9:19:8b:d4:6b:92:2e:fb:16:62:0f:b0: f0:44:8e:36:04:a6:fa:3a:87:ee:28:17:fb:c9:91:4c:dc:d1: 16:55:a3:b0:3d:51:ac:6b:02:93:74:41:65:e5:f6:64:4d:3d: 29:14:5d:78:01:5b:ef:43:3b:19:37:72:4d:0f:b9:26:d8:3a: 22:4a:21:a8:a7:b3:c6:72:50:41:54:f7:57:ec:46:36:ef:0c: 2c:12:2f:8d:1d:9b:c6:b9:ea:c7:34:07:57:9a:90:0d:41:25: 81:3f:c3:cf:d6:c2:b3:7a:03:4b:fb:41:33:cc:72:cb:c0:13: 32:ff:f2:a6:08:4c:3f:21:e9:e9:d7:c8:0c:2c:a6:35:11:22: da:e7:5f:9e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBRTcxMTAvBgNVBAUTKERBQkZCM0I1OUY3RDcxNkZENTJENDVBNzQxQUYxNTlB RjdFQUY3QkEwHhcNMjMxMjE1MDAzMjI0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiOWU5OC03ZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv8svdr1JNf1vCerRNDDYFsqPxsh+gnwFmWbMQRvgHWrxwFBxig9i7v5hoHI AYDFlqKWMC34GKaZRdTxuGYHyziAtjQetPgiOs78vQVauwjo0l3Y2WdQTg8RbCU4 uggx7Vgpdmmm4qd3fx5LJqJ1axfwcqp5gbLaw+MOuPyHZI1wyCYOJB40XCA67AZ7 tk189Cmt8oOrTPZtvqxvZOWqoiIsGksIhzISOZr7US28uvK0F5VLu7URjamkdylZ uYxcj3QTvC/hu/EyN2Ny5/K4KxWYDrYLRm89JFf9otogAkkkUrSDQ7rJHeVsWr4b uw3U88eIRwm/XTNlW3bvYMEW+wIDAQABo4ICozCCAp8wHQYDVR0OBBYEFKfPuTRX YJtVX9kAcs5YC1Df6HRAMB8GA1UdIwQYMBaAFNq/s7WffXFv1S1Fp0GvFZr36ve6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUFFNy9FMTgyNTc5Njkw RjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNXX1ZMVVduUWE4Vm12ZnE5 N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyLXp0Wjk5Y1dfVkxVV25RYThWbXZmcTk3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVBRTcvRTE4MjU3OTY5MEYzMTFFQjlEMkUwRTRGQzRGOUFFMDIvMDlBMTg1M0U5 MTM2MTFFQkJEOUI4MTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGdfTQMEBGdfQAMEAMqwDzANBgkqhkiG9w0BAQsFAAOC AQEAsgMnHp91ZYjvCMrBlSAjTmol2cLI7KqwPX7JgW2IC7GalGknOYRaYK3L5xYM 6H5fHyn78Pq8tg6QrfHjtZnLJd/bdcAwGN6Ykb2ZId3mAeDN28IxqXq4AS9vEoPe fYHUTaiMyoaIWfPA9JCEov6YXGRgyRmL1GuSLvsWYg+w8ESONgSm+jqH7igX+8mR TNzRFlWjsD1RrGsCk3RBZeX2ZE09KRRdeAFb70M7GTdyTQ+5Jtg6IkohqKezxnJQ QVT3V+xGNu8MLBIvjR2bxrnqxzQHV5qQDUElgT/Dz9bCs3oDS/tBM8xyy8ATMv/y pghMPyHp6dfIDCymNREi2udfng== -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:47 2024 by rpki-client on console-fra.rpki-client.org