$ rpki-client -vvf rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/949A543291B011EDA9CB747CC4F9AE02.roa File: 949A543291B011EDA9CB747CC4F9AE02.roa (raw, json) Hash identifier: IIMoYfs0K2LP8PknicnuLwo634xq7BuixM17QupODh8= Subject key identifier: 9E:18:44:20:24:C1:79:D3:4F:9B:C0:42:D7:46:C6:D3:FD:D5:AB:7B Certificate issuer: /CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Certificate serial: C1 Authority key identifier: C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/949A543291B011EDA9CB747CC4F9AE02.roa Signing time: Sun 07 Jan 2024 05:06:20 +0000 ROA not before: Sun 07 Jan 2024 05:06:20 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150423 IP address blocks: 103.38.250.0/23 maxlen: 24 2001:df1:88c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Validity Not Before: Jan 7 05:06:20 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659a314c-46b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b5:1b:54:cb:ef:8e:bd:58:ee:34:9e:87:4b: 76:08:39:7c:93:fe:4c:75:f6:80:7a:16:db:1c:1d: 38:5a:54:85:d2:58:44:9f:41:1b:58:54:fb:c1:f7: 67:bd:b5:52:85:e5:d2:d0:4c:46:d0:e0:56:26:1f: 06:fa:4f:7a:74:33:48:84:96:d3:02:93:05:93:27: 53:00:1c:4e:3f:c9:d4:92:ba:5e:51:b4:f5:69:d1: 05:0e:5a:34:aa:48:ef:a2:5b:fb:ec:76:2f:2b:8a: e8:18:d8:ef:6a:bc:dd:c4:b8:71:30:88:6b:fb:7e: 9d:76:06:d6:a7:2c:d0:24:01:f0:31:e2:c9:90:f9: cb:ef:e8:3d:30:64:6f:8e:9c:45:28:23:76:8e:10: e3:19:14:0a:97:47:17:6d:9d:c7:c9:e5:71:0c:cf: 6f:f8:e7:3a:32:e7:7d:36:73:ef:26:c1:13:83:82: 72:a5:82:92:37:f3:9c:fc:a0:33:67:46:36:e5:06: 15:67:3f:80:60:01:ec:4b:f9:5b:76:e2:ad:cd:46: 84:1f:fc:e6:51:ef:d1:a5:cf:de:d0:89:10:39:d9: 03:3b:07:84:c6:04:99:72:d5:2f:c8:1d:79:fa:7e: 8b:eb:fa:d0:46:ef:5b:5d:1f:43:64:b4:b4:eb:95: ae:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:18:44:20:24:C1:79:D3:4F:9B:C0:42:D7:46:C6:D3:FD:D5:AB:7B X509v3 Authority Key Identifier: keyid:C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/949A543291B011EDA9CB747CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.250.0/23 IPv6: 2001:df1:88c0::/48 Signature Algorithm: sha256WithRSAEncryption 64:78:32:4f:a6:b2:d3:de:98:ec:e5:31:65:e2:3f:62:be:47: ee:97:89:0f:3d:01:b4:c8:89:6f:5f:16:b1:b2:0a:2b:c9:fa: 4c:da:42:b3:3f:0e:bf:56:87:81:b6:9e:ec:3c:72:fc:34:9d: e0:c7:40:b0:16:64:b5:cb:f0:3b:6c:72:86:49:ed:67:a4:1f: ec:cf:b4:11:d6:d8:31:8b:d0:1a:72:76:00:70:9e:de:95:3f: 35:b8:2f:54:01:7b:8e:2a:8c:c6:04:22:c5:1d:0f:d9:a8:1f: 2f:6f:7c:a3:d8:bd:a5:92:99:84:c5:b8:4a:e7:44:4c:21:d6: 1f:52:cb:b9:b6:72:bb:d1:56:af:02:3c:61:41:e4:70:1d:24: 83:67:03:6c:fa:d4:37:0a:ec:c0:a7:4f:00:c2:a0:2c:9b:0f: 84:71:fa:8d:5c:9d:ca:f8:f8:06:ca:34:8f:60:06:68:b9:9c: 7f:8c:96:55:fa:58:fe:4b:40:51:d9:2a:72:f2:67:09:3c:be: e2:d4:73:b6:98:5c:41:f5:b0:6d:d3:c4:14:c1:c2:1b:fd:6b: 33:8b:2b:bf:ac:22:c9:24:69:08:a5:99:ec:c3:81:04:22:cc: db:b3:74:91:02:39:50:09:e2:7a:55:3c:67:9d:e9:96:00:c3: ea:c3:6d:34 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFEMzYxMTAvBgNVBAUTKEMwQUVGNjI1QUY5RDUwNEFFODQ3RjY5MjNEQTg5MTA2 OUM5MDAzRjQwHhcNMjQwMTA3MDUwNjIwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlhMzE0Yy00NmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbUbVMvvjr1Y7jSeh0t2CDl8k/5MdfaAehbbHB04WlSF0lhEn0EbWFT7wfdn vbVSheXS0ExG0OBWJh8G+k96dDNIhJbTApMFkydTABxOP8nUkrpeUbT1adEFDlo0 qkjvolv77HYvK4roGNjvarzdxLhxMIhr+36ddgbWpyzQJAHwMeLJkPnL7+g9MGRv jpxFKCN2jhDjGRQKl0cXbZ3HyeVxDM9v+Oc6Mud9NnPvJsETg4JypYKSN/Oc/KAz Z0Y25QYVZz+AYAHsS/lbduKtzUaEH/zmUe/Rpc/e0IkQOdkDOweExgSZctUvyB15 +n6L6/rQRu9bXR9DZLS065WuFwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJ4YRCAk wXnTT5vAQtdGxtP91at7MB8GA1UdIwQYMBaAFMCu9iWvnVBK6Ef2kj2okQackAP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUQzNi9GQzEzQTNFNDkx QUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVFcm9SX2FTUGFpUkJweVFB X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLNzJKYS1kVUVyb1JfYVNQYWlSQnB5UUFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTFEMzYvRkMxM0EzRTQ5MUFBMTFFRDgwQzE3QTVFQzRGOUFFMDIvOTQ5QTU0MzI5 MUIwMTFFREE5Q0I3NDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnJvowDwQCAAIwCQMHACABDfGIwDANBgkqhkiG9w0BAQsF AAOCAQEAZHgyT6ay096Y7OUxZeI/Yr5H7peJDz0BtMiJb18WsbIKK8n6TNpCsz8O v1aHgbae7Dxy/DSd4MdAsBZktcvwO2xyhkntZ6Qf7M+0EdbYMYvQGnJ2AHCe3pU/ NbgvVAF7jiqMxgQixR0P2agfL298o9i9pZKZhMW4SudETCHWH1LLubZyu9FWrwI8 YUHkcB0kg2cDbPrUNwrswKdPAMKgLJsPhHH6jVydyvj4Bso0j2AGaLmcf4yWVfpY /ktAUdkqcvJnCTy+4tRztphcQfWwbdPEFMHCG/1rM4srv6wiySRpCKWZ7MOBBCLM 27N0kQI5UAnielU8Z53plgDD6sNtNA== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:32 2024 by rpki-client on console-ams.rpki-client.org