$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/008C0876148311ED856EF438C4F9AE02.roa File: 008C0876148311ED856EF438C4F9AE02.roa (raw, json) Hash identifier: TaT1WGLobUSkn2V8H3yXdWE7g83qq/C9PlZR3+C38jk= Subject key identifier: 9A:4A:53:AB:6A:57:C3:EE:F0:03:73:88:56:11:9E:3E:C0:47:7D:52 Certificate issuer: /CN=A91B9293/serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Certificate serial: 01D5 Authority key identifier: 60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/008C0876148311ED856EF438C4F9AE02.roa Signing time: Wed 07 Aug 2024 03:25:11 +0000 ROA not before: Wed 07 Aug 2024 03:25:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150153 IP address blocks: 103.95.4.0/23 maxlen: 24 2400:9da0::/32 maxlen: 32 2400:9da0::/36 maxlen: 36 2400:9da0:1000::/36 maxlen: 36 2400:9da0:2000::/36 maxlen: 36 2400:9da0:3000::/36 maxlen: 36 2400:9da0:4000::/36 maxlen: 36 2400:9da0:5000::/36 maxlen: 36 2400:9da0:6000::/36 maxlen: 36 2400:9da0:7000::/36 maxlen: 36 2400:9da0:8000::/36 maxlen: 36 2400:9da0:9000::/36 maxlen: 36 2400:9da0:a000::/36 maxlen: 36 2400:9da0:b000::/36 maxlen: 36 2400:9da0:c000::/36 maxlen: 36 2400:9da0:d000::/36 maxlen: 36 2400:9da0:e000::/36 maxlen: 36 2400:9da0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9293/serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Validity Not Before: Aug 7 03:25:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b2e917-f792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6b:f8:24:94:5a:5b:e4:51:a6:10:4d:c9:d7: 2d:d6:93:3d:04:49:b7:e4:18:fd:19:f5:9b:4d:b0: a4:9b:51:41:ef:3b:b0:24:fc:86:77:87:ec:49:3c: aa:5c:d0:18:b1:c6:82:a1:a7:c0:11:38:28:c2:1e: 6e:ed:80:cd:bc:9b:eb:26:b3:dc:b4:0b:6f:43:3c: 29:19:62:4c:a6:4d:d9:9e:d1:f8:b1:e5:65:fa:57: c0:46:76:d0:39:03:53:cc:f6:7d:8d:da:67:e6:d0: 7a:81:04:72:fc:6b:11:0d:3d:1d:a8:1a:61:2f:14: 97:99:03:61:09:69:a1:19:f4:53:60:d4:da:1a:c3: 9c:a1:b1:4b:b8:d2:f1:be:9e:75:b4:1b:81:17:a1: 4a:d8:1e:11:02:45:e5:84:0c:f8:c6:50:c3:ec:02: 68:be:b3:9b:a0:65:3d:51:9d:0b:d1:d4:23:02:ca: 18:84:8b:33:6b:32:77:7c:37:63:4c:8a:83:fa:77: 2f:53:a2:18:42:ce:be:04:3b:0d:1c:d9:ae:5f:4c: d1:28:59:81:ee:a4:28:83:63:03:6c:58:51:d2:de: 66:da:49:01:0a:16:19:37:5f:8c:6a:8c:be:aa:bd: 24:d6:9d:3c:78:6d:dc:e0:49:cd:73:c2:5d:8c:c6: cf:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:4A:53:AB:6A:57:C3:EE:F0:03:73:88:56:11:9E:3E:C0:47:7D:52 X509v3 Authority Key Identifier: keyid:60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/008C0876148311ED856EF438C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.4.0/23 IPv6: 2400:9da0::/32 Signature Algorithm: sha256WithRSAEncryption 90:cf:78:90:26:6d:ac:13:1b:cb:8a:66:b8:60:0e:83:d8:6b: 22:19:89:43:56:cf:e1:a2:d0:01:31:27:67:d6:54:8c:f0:d8: d2:96:1d:cd:0f:d8:29:e1:65:14:23:0c:6a:32:00:98:26:4d: 60:8c:78:16:ec:89:21:27:0e:70:48:16:ce:27:91:f6:02:ab: b9:2e:f3:ea:b4:ca:02:a3:1f:07:55:ce:80:0d:3f:41:93:b2: bc:a0:a8:2a:d6:a4:30:8f:ff:a2:ab:e4:0d:78:c1:1a:67:8f: db:65:d5:49:b0:4f:d5:b8:70:86:1d:a1:1f:79:d0:f6:30:2c: 50:c0:27:ef:a9:83:5c:c9:59:b9:40:28:43:66:c2:b5:d7:ea: 62:a2:df:01:b5:3f:b4:a1:e9:c8:76:b7:72:57:1b:f4:3f:7a: 84:7c:26:68:f5:ba:85:82:c5:53:b2:8c:7a:d3:af:07:5d:d2: 06:ab:64:ea:bf:00:9a:7d:68:75:5a:11:28:91:8a:e7:fa:28: 55:74:20:6c:0b:50:bf:8b:52:57:a2:2e:3e:3d:0e:b0:19:e4: 9a:db:7c:65:8f:e4:02:70:d8:e1:27:34:cf:96:cb:97:99:65: f1:4a:16:e3:e9:95:d7:7e:6d:b9:8f:3d:27:dd:65:da:14:c5: ab:18:ee:1a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOTMxMTAvBgNVBAUTKDYwMkZGNEZBODBBMDAwQUM2MUU2RDRBQjJGNzJGQkQ5 NkE2MUY4ODIwHhcNMjQwODA3MDMyNTExWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyZTkxNy1mNzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWv4JJRaW+RRphBNydct1pM9BEm35Bj9GfWbTbCkm1FB7zuwJPyGd4fsSTyq XNAYscaCoafAETgowh5u7YDNvJvrJrPctAtvQzwpGWJMpk3ZntH4seVl+lfARnbQ OQNTzPZ9jdpn5tB6gQRy/GsRDT0dqBphLxSXmQNhCWmhGfRTYNTaGsOcobFLuNLx vp51tBuBF6FK2B4RAkXlhAz4xlDD7AJovrOboGU9UZ0L0dQjAsoYhIszazJ3fDdj TIqD+ncvU6IYQs6+BDsNHNmuX0zRKFmB7qQog2MDbFhR0t5m2kkBChYZN1+Maoy+ qr0k1p08eG3c4EnNc8JdjMbPPwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJpKU6tq V8Pu8ANziFYRnj7AR31SMB8GA1UdIwQYMBaAFGAv9PqAoACsYebUqy9y+9lqYfiC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5My9BOUEzOEJCRTE0 N0UxMUVEQTAyRkRCMTlDNEY5QUUwMi9ZQ18wLW9DZ0FLeGg1dFNyTDNMNzJXcGgt SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDXzAtb0NnQUt4aDV0U3JMM0w3MldwaC1JSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyOTMvQTlBMzhCQkUxNDdFMTFFREEwMkZEQjE5QzRGOUFFMDIvMDA4QzA4NzYx NDgzMTFFRDg1NkVGNDM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnXwQwDQQCAAIwBwMFACQAnaAwDQYJKoZIhvcNAQELBQAD ggEBAJDPeJAmbawTG8uKZrhgDoPYayIZiUNWz+Gi0AExJ2fWVIzw2NKWHc0P2Cnh ZRQjDGoyAJgmTWCMeBbsiSEnDnBIFs4nkfYCq7ku8+q0ygKjHwdVzoANP0GTsryg qCrWpDCP/6Kr5A14wRpnj9tl1UmwT9W4cIYdoR950PYwLFDAJ++pg1zJWblAKENm wrXX6mKi3wG1P7Sh6ch2t3JXG/Q/eoR8Jmj1uoWCxVOyjHrTrwdd0garZOq/AJp9 aHVaESiRiuf6KFV0IGwLUL+LUleiLj49DrAZ5JrbfGWP5AJw2OEnNM+Wy5eZZfFK FuPpldd+bbmPPSfdZdoUxasY7ho= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:49 2024 by rpki-client on console-ams.rpki-client.org