$ rpki-client -vvf rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/4B95A58630B111ECAC3FE61DC4F9AE02.roa File: 4B95A58630B111ECAC3FE61DC4F9AE02.roa (raw, json) Hash identifier: TKURtbuyw+rLaFGaGCgTfbbgIniMdN+medlsLVxiAIQ= Subject key identifier: 98:C5:85:44:16:D6:74:82:E5:CD:13:63:A3:91:2C:84:29:CC:C2:06 Certificate issuer: /CN=A91D025A/serialNumber=734090EFC37983FD175BE02F4949668A21437221 Certificate serial: 0360 Authority key identifier: 73:40:90:EF:C3:79:83:FD:17:5B:E0:2F:49:49:66:8A:21:43:72:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/4B95A58630B111ECAC3FE61DC4F9AE02.roa Signing time: Fri 11 Aug 2023 01:22:32 +0000 ROA not before: Fri 11 Aug 2023 01:22:32 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 142575 IP address blocks: 103.174.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.crl rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 864 (0x360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D025A/serialNumber=734090EFC37983FD175BE02F4949668A21437221 Validity Not Before: Aug 11 01:22:32 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d58d58-7d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c8:5a:6c:0d:23:59:11:c6:d9:98:1b:c4:62: ec:b3:4d:d4:46:ba:74:6c:8f:c9:ce:0b:62:fa:0b: b6:c4:01:1f:df:d1:bb:56:61:8f:f2:32:fd:63:3b: c3:8d:33:e8:a9:87:9b:b6:3b:21:50:4a:55:ef:76: 5d:7a:8e:a9:56:8c:ef:4e:4e:bf:33:ec:8c:62:5e: 6c:54:4c:20:e6:63:14:22:ec:d8:cc:2f:27:47:52: 91:91:45:57:54:92:7b:33:a9:ad:91:fe:b1:ad:a9: bd:f0:a0:c7:ba:44:90:cf:c3:76:4d:70:09:f0:db: 7a:46:51:e3:d9:90:82:81:89:ce:d5:d5:c0:dc:91: b0:b6:87:51:d1:ba:2a:62:49:97:be:f9:85:bc:cd: b2:0e:46:a6:55:f6:7b:6d:2e:3e:3a:4c:b7:89:e8: 99:26:a1:d3:51:19:32:f2:27:f1:37:1b:35:ff:c7: 9e:cf:72:11:c6:07:17:e6:15:88:4d:5f:43:6f:86: 0e:b4:fe:72:51:57:ac:b6:4f:b4:e1:52:c2:45:22: e7:dc:22:73:31:12:c3:00:73:cc:ce:ee:8c:cb:e5: 2b:99:a3:6e:c6:1d:8a:9b:be:9c:31:97:4d:a6:de: d3:4a:5f:96:ff:4c:e0:91:84:49:87:0b:17:1b:86: e7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C5:85:44:16:D6:74:82:E5:CD:13:63:A3:91:2C:84:29:CC:C2:06 X509v3 Authority Key Identifier: keyid:73:40:90:EF:C3:79:83:FD:17:5B:E0:2F:49:49:66:8A:21:43:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/4B95A58630B111ECAC3FE61DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.125.0/24 Signature Algorithm: sha256WithRSAEncryption 85:05:bc:dd:92:f8:74:01:9b:ad:ff:dd:67:4f:0f:be:19:8f: 87:40:c4:23:10:97:77:3a:c4:26:91:36:d6:d5:0d:f5:ef:1f: d6:35:5e:b8:6a:58:38:37:0b:ff:b4:17:a2:2a:7b:3d:01:a5: 4d:3d:6d:05:cb:a8:8f:1e:46:d8:6c:b5:45:3a:4f:b8:d4:80: 67:b1:87:63:d9:4a:bc:79:44:12:29:d3:e7:2f:df:fb:d4:68: d5:b9:80:00:93:57:5e:e4:c3:f9:96:8b:41:f2:5a:05:6a:71: ca:2a:22:b3:57:c9:08:2f:76:f3:67:b2:0f:52:37:a2:ac:b2: 76:7f:ba:ed:7d:0a:66:73:ff:48:a0:8c:ab:d3:c2:3c:b7:8a: 03:1b:b6:7b:50:33:be:5f:5c:78:65:3c:18:6b:be:b3:e1:27: 9c:55:26:25:e3:0e:86:0f:72:84:65:80:4e:ee:c3:a3:5e:ac: a3:df:fb:83:c8:9c:16:cb:b4:f4:c2:78:8e:43:f1:88:02:67: 0b:c7:de:d5:3a:39:17:5c:dc:ff:20:6a:09:e8:10:ad:35:e0: 87:6d:93:21:71:46:e3:94:4c:03:84:5b:75:4c:f2:fd:cd:a5: 91:8d:46:ad:77:51:2c:ff:ac:df:a4:57:ab:7d:ff:be:ad:44: 2c:b5:33:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAyNUExMTAvBgNVBAUTKDczNDA5MEVGQzM3OTgzRkQxNzVCRTAyRjQ5NDk2NjhB MjE0MzcyMjEwHhcNMjMwODExMDEyMjMyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ1OGQ1OC03ZDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18habA0jWRHG2ZgbxGLss03URrp0bI/Jzgti+gu2xAEf39G7VmGP8jL9YzvD jTPoqYebtjshUEpV73Zdeo6pVozvTk6/M+yMYl5sVEwg5mMUIuzYzC8nR1KRkUVX VJJ7M6mtkf6xram98KDHukSQz8N2TXAJ8Nt6RlHj2ZCCgYnO1dXA3JGwtodR0boq YkmXvvmFvM2yDkamVfZ7bS4+Oky3ieiZJqHTURky8ifxNxs1/8eez3IRxgcX5hWI TV9Db4YOtP5yUVestk+04VLCRSLn3CJzMRLDAHPMzu6My+UrmaNuxh2Km76cMZdN pt7TSl+W/0zgkYRJhwsXG4bn8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJjFhUQW 1nSC5c0TY6ORLIQpzMIGMB8GA1UdIwQYMBaAFHNAkO/DeYP9F1vgL0lJZoohQ3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDI1QS9ENUVGMUE5MDMw QUQxMUVDOTVCMTVEMThDNEY5QUUwMi9jMENRNzhONWdfMFhXLUF2U1VsbWlpRkRj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2MwQ1E3OE41Z18wWFctQXZTVWxtaWlGRGNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDAyNUEvRDVFRjFBOTAzMEFEMTFFQzk1QjE1RDE4QzRGOUFFMDIvNEI5NUE1ODYz MEIxMTFFQ0FDM0ZFNjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrn0wDQYJKoZIhvcNAQELBQADggEBAIUFvN2S+HQBm63/ 3WdPD74Zj4dAxCMQl3c6xCaRNtbVDfXvH9Y1XrhqWDg3C/+0F6Iqez0BpU09bQXL qI8eRthstUU6T7jUgGexh2PZSrx5RBIp0+cv3/vUaNW5gACTV17kw/mWi0HyWgVq ccoqIrNXyQgvdvNnsg9SN6KssnZ/uu19CmZz/0igjKvTwjy3igMbtntQM75fXHhl PBhrvrPhJ5xVJiXjDoYPcoRlgE7uw6NerKPf+4PInBbLtPTCeI5D8YgCZwvH3tU6 ORdc3P8gagnoEK014IdtkyFxRuOUTAOEW3VM8v3NpZGNRq13USz/rN+kV6t9/76t RCy1M6w= -----END CERTIFICATE-----Generated at Sun May 19 02:59:15 2024 by rpki-client on console-ams.rpki-client.org