$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/008C0876148311ED856EF438C4F9AE02.roa File: 008C0876148311ED856EF438C4F9AE02.roa (raw, json) Hash identifier: 68yn6esfYF7k8DHdcZ+QsW2bvqfBfbyJ0wODOw/P5KY= Subject key identifier: B2:A4:0F:AB:4C:5B:24:99:1F:96:B0:C2:87:9D:E0:D0:01:9F:0C:2F Certificate issuer: /CN=A91B9293/serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Certificate serial: 0112 Authority key identifier: 60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/008C0876148311ED856EF438C4F9AE02.roa Signing time: Thu 03 Aug 2023 03:43:45 +0000 ROA not before: Thu 03 Aug 2023 03:43:45 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 150153 IP address blocks: 103.95.4.0/23 maxlen: 24 2400:9da0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:43:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9293/serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Validity Not Before: Aug 3 03:43:45 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cb2271-4c4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c8:5b:bc:3e:2e:e2:e5:1c:89:1a:dc:10:3b: 03:db:c6:c2:9f:87:97:64:20:8f:28:06:e1:df:e0: 5b:67:f4:b0:8c:d3:7d:04:ff:b6:05:ee:57:0a:71: 5c:88:6b:f5:6e:13:92:51:61:76:e2:ff:6c:cc:c7: 28:03:92:03:76:fe:9f:9c:0c:f9:27:4a:e1:b1:0c: 71:02:5f:10:6d:03:04:e7:1d:28:e7:0a:c5:56:2c: a2:98:b7:b8:c7:2c:d9:65:71:10:4d:f3:be:a2:86: 0a:93:25:16:f8:6c:86:c8:d7:1a:5e:b1:7a:6f:21: 35:11:d7:64:4e:c5:2a:db:5b:c9:04:67:59:41:62: c4:44:d7:91:4d:14:8f:9f:87:2a:c0:b7:fe:89:03: bd:e1:c7:91:7c:cf:0d:36:73:df:51:0d:5f:49:e0: 28:f2:7c:54:04:8e:e9:da:f7:5f:5b:36:f4:fd:fb: b3:a8:23:81:73:57:ba:68:5a:bb:8c:c9:ee:85:0d: b2:50:e6:b2:68:94:78:b3:a9:69:c7:46:bb:26:25: ab:fa:0c:c6:cb:53:c3:3b:b9:3d:9a:ba:6b:3b:88: aa:83:71:d1:a8:a0:28:d5:b8:72:f8:4c:a3:4a:06: 8f:85:f5:81:48:ae:6e:fe:c0:a9:a5:ae:5a:60:49: 5f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:A4:0F:AB:4C:5B:24:99:1F:96:B0:C2:87:9D:E0:D0:01:9F:0C:2F X509v3 Authority Key Identifier: keyid:60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/008C0876148311ED856EF438C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.4.0/23 IPv6: 2400:9da0::/32 Signature Algorithm: sha256WithRSAEncryption 31:63:be:72:9d:8d:a4:2b:e6:7d:a0:4b:fa:53:14:fd:2e:6c: 5e:bb:e2:8e:af:9b:d9:c8:a1:f8:d5:97:23:ad:8b:ba:fc:b6: 1f:af:9e:82:e9:5b:be:f5:d7:e8:15:9e:5d:9b:d5:11:3b:19: da:c5:49:bc:0f:80:c8:7a:3b:d2:50:d8:c8:d2:a6:51:f2:3d: 55:c0:06:b4:8a:12:e7:14:be:3e:86:21:0a:fb:84:7f:dc:d0: bd:35:33:f1:1d:1f:a4:3d:b2:f6:48:0b:17:f3:18:4a:09:8d: 8e:db:db:2b:a1:6e:a4:ed:bb:a7:54:9b:e0:76:04:2f:4b:01: 2d:3f:fd:cc:e9:da:1b:df:4a:ad:ab:ca:4d:5e:82:61:a5:f7: 09:5b:b1:54:f6:23:12:40:7a:a3:ed:2e:43:96:45:6d:20:b5: df:c1:23:22:ac:cd:d8:dc:ac:9c:21:3e:24:2f:16:5a:fc:ca: 07:51:71:24:12:14:4d:2a:e2:aa:6c:2a:c3:3f:e2:b8:e1:44: c9:6a:af:4f:28:39:e8:51:84:2b:66:2c:5c:ac:72:97:88:39: e4:f1:03:77:1d:26:68:d4:dc:1f:83:11:a4:f9:bb:35:8c:5c: eb:49:84:e3:5f:5e:f9:a7:a2:3b:62:0d:9d:09:a3:fe:14:57: ed:ad:d1:1a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOTMxMTAvBgNVBAUTKDYwMkZGNEZBODBBMDAwQUM2MUU2RDRBQjJGNzJGQkQ5 NkE2MUY4ODIwHhcNMjMwODAzMDM0MzQ1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNiMjI3MS00YzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMhbvD4u4uUciRrcEDsD28bCn4eXZCCPKAbh3+BbZ/SwjNN9BP+2Be5XCnFc iGv1bhOSUWF24v9szMcoA5IDdv6fnAz5J0rhsQxxAl8QbQME5x0o5wrFViyimLe4 xyzZZXEQTfO+ooYKkyUW+GyGyNcaXrF6byE1EddkTsUq21vJBGdZQWLERNeRTRSP n4cqwLf+iQO94ceRfM8NNnPfUQ1fSeAo8nxUBI7p2vdfWzb0/fuzqCOBc1e6aFq7 jMnuhQ2yUOayaJR4s6lpx0a7JiWr+gzGy1PDO7k9mrprO4iqg3HRqKAo1bhy+Eyj SgaPhfWBSK5u/sCppa5aYElfHwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLKkD6tM WySZH5awwoed4NABnwwvMB8GA1UdIwQYMBaAFGAv9PqAoACsYebUqy9y+9lqYfiC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5My9BOUEzOEJCRTE0 N0UxMUVEQTAyRkRCMTlDNEY5QUUwMi9ZQ18wLW9DZ0FLeGg1dFNyTDNMNzJXcGgt SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDXzAtb0NnQUt4aDV0U3JMM0w3MldwaC1JSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyOTMvQTlBMzhCQkUxNDdFMTFFREEwMkZEQjE5QzRGOUFFMDIvMDA4QzA4NzYx NDgzMTFFRDg1NkVGNDM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnXwQwDQQCAAIwBwMFACQAnaAwDQYJKoZIhvcNAQELBQAD ggEBADFjvnKdjaQr5n2gS/pTFP0ubF674o6vm9nIofjVlyOti7r8th+vnoLpW771 1+gVnl2b1RE7GdrFSbwPgMh6O9JQ2MjSplHyPVXABrSKEucUvj6GIQr7hH/c0L01 M/EdH6Q9svZICxfzGEoJjY7b2yuhbqTtu6dUm+B2BC9LAS0//czp2hvfSq2ryk1e gmGl9wlbsVT2IxJAeqPtLkOWRW0gtd/BIyKszdjcrJwhPiQvFlr8ygdRcSQSFE0q 4qpsKsM/4rjhRMlqr08oOehRhCtmLFyscpeIOeTxA3cdJmjU3B+DEaT5uzWMXOtJ hONfXvmnojtiDZ0Jo/4UV+2t0Ro= -----END CERTIFICATE-----Generated at Fri May 17 06:46:27 2024 by rpki-client on console-ams.rpki-client.org