$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/956B1C7AD81111EB8C3ACC5DC4F9AE02.roa File: 956B1C7AD81111EB8C3ACC5DC4F9AE02.roa (raw, json) Hash identifier: i+5d2nxoXTBSkmi7U0mLeacCYMyYuYpYdzVQzCXwi0M= Subject key identifier: 96:52:B3:95:8E:66:5D:04:E9:61:6D:DC:62:76:38:38:15:0C:D1:02 Certificate issuer: /CN=A91CCE54/serialNumber=1AAD00A61A649040AB526A142B5D7BDEE5A01CBF Certificate serial: 04F4 Authority key identifier: 1A:AD:00:A6:1A:64:90:40:AB:52:6A:14:2B:5D:7B:DE:E5:A0:1C:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/956B1C7AD81111EB8C3ACC5DC4F9AE02.roa Signing time: Wed 03 Jul 2024 01:02:24 +0000 ROA not before: Wed 03 Jul 2024 01:02:24 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133380 IP address blocks: 103.230.13.0/24 maxlen: 24 103.230.14.0/24 maxlen: 24 103.230.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.crl rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1268 (0x4f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCE54/serialNumber=1AAD00A61A649040AB526A142B5D7BDEE5A01CBF Validity Not Before: Jul 3 01:02:24 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6684a320-5678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:c2:c0:ac:35:4f:19:6f:03:fc:3e:3e:c7: 40:41:3d:9c:73:e0:e6:8e:16:85:69:95:b2:e6:4c: fd:35:93:07:d2:5a:82:94:26:d6:dc:d1:43:46:0f: 9d:77:c2:7f:88:c2:6b:d3:e1:e9:fc:5a:e7:49:33: 64:31:a5:80:66:7b:94:d3:fc:a9:3e:92:1c:13:f8: dd:7b:e8:6b:c3:4a:98:80:a3:7e:9f:56:1a:7a:19: ff:6f:d3:24:46:f8:13:d9:64:c4:19:3d:3f:30:0c: d4:21:9e:ef:bf:0d:c9:18:1b:dc:3f:ed:18:6b:e2: a9:0c:17:18:84:ae:0d:5a:1a:6d:1a:fc:07:04:c9: 2f:c9:a4:6a:8f:89:0e:53:2d:9c:9d:6b:32:57:c6: 55:2d:87:c5:79:1f:d6:4e:5c:27:23:5d:0f:c8:cb: 58:ea:77:8b:e9:7e:1b:94:ed:de:e3:81:21:db:f1: 4c:3c:45:7f:f3:5c:bc:c3:bf:8d:34:80:bf:59:8f: b5:59:52:8d:c8:06:2d:2d:80:dd:cb:96:67:c8:ea: 12:64:73:7d:79:58:48:44:11:38:2b:14:76:9f:59: e9:f5:74:76:d7:c3:58:46:fd:55:d0:78:56:42:cf: 28:f1:f9:ae:0b:33:f8:1b:70:2e:e7:23:43:33:50: d7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:52:B3:95:8E:66:5D:04:E9:61:6D:DC:62:76:38:38:15:0C:D1:02 X509v3 Authority Key Identifier: keyid:1A:AD:00:A6:1A:64:90:40:AB:52:6A:14:2B:5D:7B:DE:E5:A0:1C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/956B1C7AD81111EB8C3ACC5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.13.0-103.230.15.255 Signature Algorithm: sha256WithRSAEncryption 34:81:47:1b:40:84:c2:8b:94:9a:ba:0b:28:3f:65:09:32:33: 36:94:22:35:69:ad:b9:cc:6a:75:b3:14:96:ba:5d:b0:b9:d4: 0f:5e:d1:ec:aa:16:d6:4a:6c:24:45:4d:83:9c:5b:0d:13:a6: dc:c4:14:18:fa:87:ed:f7:dc:44:83:64:2e:e2:bb:8b:4e:81: 11:0f:26:ae:35:9c:44:86:7c:c7:ba:be:15:5e:49:8a:5e:94: 6b:9c:fd:4c:4f:8a:32:9a:4a:b9:32:17:53:dd:6e:74:c2:23: ab:50:80:dd:df:06:de:56:5b:29:14:d3:b7:c0:1b:48:37:b0: 6c:32:87:d9:df:9d:bf:bd:0d:43:ed:49:d2:59:cb:e1:a1:2b: 73:48:37:85:cd:42:8d:f9:fd:54:06:ff:cb:e2:cf:c4:15:a1: 0d:37:66:8d:8b:6f:0e:c8:9a:4f:d1:39:10:74:2b:b0:72:93: 36:3d:63:5e:1d:08:84:b0:52:49:5c:9a:c7:60:41:b5:35:53: 70:a1:b1:de:92:7c:95:b3:c2:1d:6f:7a:08:7c:6e:9b:46:c7: 56:12:ee:aa:d2:b7:d7:db:6e:b8:54:21:5a:4a:d8:9e:76:dc: db:da:e6:35:93:0f:f1:64:ea:f3:74:82:f2:75:c3:91:55:d2: 63:43:16:eb -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NFNTQxMTAvBgNVBAUTKDFBQUQwMEE2MUE2NDkwNDBBQjUyNkExNDJCNUQ3QkRF RTVBMDFDQkYwHhcNMjQwNzAzMDEwMjI0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0YTMyMC01Njc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqizCwKw1TxlvA/w+PsdAQT2cc+DmjhaFaZWy5kz9NZMH0lqClCbW3NFDRg+d d8J/iMJr0+Hp/FrnSTNkMaWAZnuU0/ypPpIcE/jde+hrw0qYgKN+n1Yaehn/b9Mk RvgT2WTEGT0/MAzUIZ7vvw3JGBvcP+0Ya+KpDBcYhK4NWhptGvwHBMkvyaRqj4kO Uy2cnWsyV8ZVLYfFeR/WTlwnI10PyMtY6neL6X4blO3e44Eh2/FMPEV/81y8w7+N NIC/WY+1WVKNyAYtLYDdy5ZnyOoSZHN9eVhIRBE4KxR2n1np9XR218NYRv1V0HhW Qs8o8fmuCzP4G3Au5yNDM1DX1wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFJZSs5WO Zl0E6WFt3GJ2ODgVDNECMB8GA1UdIwQYMBaAFBqtAKYaZJBAq1JqFCtde97loBy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0U1NC9CRjlGQ0FGMEQ3 RUQxMUVCOEI1NkQ3MUFDNEY5QUUwMi9HcTBBcGhwa2tFQ3JVbW9VSzExNzN1V2dI TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dxMEFwaHBra0VDclVtb1VLMTE3M3VXZ0hMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NFNTQvQkY5RkNBRjBEN0VEMTFFQjhCNTZENzFBQzRGOUFFMDIvOTU2QjFDN0FE ODExMTFFQjhDM0FDQzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfmDQMEBGfmADANBgkqhkiG9w0BAQsFAAOCAQEANIFH G0CEwouUmroLKD9lCTIzNpQiNWmtucxqdbMUlrpdsLnUD17R7KoW1kpsJEVNg5xb DROm3MQUGPqH7ffcRINkLuK7i06BEQ8mrjWcRIZ8x7q+FV5Jil6Ua5z9TE+KMppK uTIXU91udMIjq1CA3d8G3lZbKRTTt8AbSDewbDKH2d+dv70NQ+1J0lnL4aErc0g3 hc1Cjfn9VAb/y+LPxBWhDTdmjYtvDsiaT9E5EHQrsHKTNj1jXh0IhLBSSVyax2BB tTVTcKGx3pJ8lbPCHW96CHxum0bHVhLuqtK319tuuFQhWkrYnnbc29rmNZMP8WTq 83SC8nXDkVXSY0MW6w== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org