$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa File: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (raw, json) Hash identifier: o55KXlNWDYgYilXArl5bImR1LdWp/l3E7h7ZfHpF6KY= Subject key identifier: 0F:BF:C3:1A:CF:DA:6A:92:D8:C0:8F:8E:47:04:7C:93:5A:FF:B5:B4 Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: 02 Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa Signing time: Tue 26 Sep 2023 08:41:52 +0000 ROA not before: Tue 26 Sep 2023 08:41:52 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151824 IP address blocks: 103.150.71.0/24 maxlen: 24 2001:df2:f540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Sep 26 08:41:52 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65129950-e0fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:89:3c:0e:68:2c:2a:21:73:f8:e5:55:cf:03: 19:54:12:ee:02:d9:c0:c8:bd:1d:81:30:f8:f2:82: 58:17:1c:8a:71:e0:30:9d:7d:e4:ac:94:97:72:48: 58:c7:2a:a4:a8:bd:c1:55:8e:ba:18:06:b0:73:5e: bd:98:a3:09:1f:d3:a2:f6:2f:73:52:0d:28:39:49: c7:b6:6f:2c:18:ff:e1:a3:c2:d7:ce:1b:63:81:c8: e1:26:c7:c6:a0:cb:91:26:1e:6a:db:37:6d:75:83: 89:19:8b:99:95:15:6e:d9:94:20:be:76:18:e7:00: 41:a7:ad:e4:66:5d:58:ce:61:9f:ac:df:d5:e8:83: 5f:fe:ec:ce:fd:e1:be:f0:65:ff:51:0a:c1:78:86: b5:79:52:05:87:45:e2:b4:aa:ae:27:3b:fa:db:32: d8:f2:e9:32:b1:9c:ed:a3:3f:0e:f5:e2:c7:c0:c7: e9:e6:30:60:7a:c3:22:f8:d0:40:fa:e2:eb:eb:b2: 9d:aa:2f:2a:de:6c:92:66:c8:f3:69:23:e8:8c:b6: 01:a3:f5:02:4c:10:69:fa:7e:41:02:8b:04:71:f4: c8:f9:cd:c8:d9:59:21:a9:59:37:53:07:71:33:9f: d6:bd:90:a4:e5:08:7c:d8:95:b2:83:ed:52:26:f9: 9e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BF:C3:1A:CF:DA:6A:92:D8:C0:8F:8E:47:04:7C:93:5A:FF:B5:B4 X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.71.0/24 IPv6: 2001:df2:f540::/48 Signature Algorithm: sha256WithRSAEncryption 95:84:33:e8:46:c1:ea:5f:b6:4e:da:3f:b3:33:1c:c3:c2:a8: f2:cd:58:50:e2:2f:6e:8b:45:a2:2a:49:83:5b:0b:7f:9c:13: 0a:02:da:a4:13:5d:56:3c:d4:05:09:61:6c:1c:d2:97:6c:c8: cb:f8:18:1b:36:66:d8:07:3e:8b:23:92:c2:a4:a4:ac:ea:bb: 22:13:cb:7d:89:56:c4:15:46:a3:c2:d2:5d:24:d8:8f:d4:96: 51:44:53:b5:04:85:bc:08:49:ed:a5:73:49:fe:fb:3e:1a:8b: 81:13:39:64:b0:ef:f4:2e:0a:6b:2d:d2:21:16:fa:75:14:da: 98:bc:d9:49:28:21:5a:5e:8e:0a:46:3d:dc:b5:db:29:67:85: ef:d0:f0:8c:41:6c:c9:c9:de:d9:65:e9:f9:12:4e:a5:a1:d6: 3b:dd:54:61:37:9e:52:88:96:db:a1:9d:47:2f:2f:ed:7b:33: 38:e8:7a:cf:07:5b:f9:ab:2f:37:92:70:e8:cb:77:fa:25:c4: 34:05:db:ff:69:1b:96:8b:9e:fb:ac:f2:0b:ea:eb:71:a5:ea: 41:4b:e1:97:85:ce:5d:7e:5e:ed:38:d3:fa:12:1a:54:62:5c: 7a:bd:10:a1:76:69:cb:e2:b1:39:f1:2c:6a:43:f0:ad:32:36: c4:89:e7:c7 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MEFBQTExMC8GA1UEBRMoNkI1NzA5MzI5MEQxMUY2NUNGQjkxRjEyMTJDMjhDRjcz M0Y5QzJCNTAeFw0yMzA5MjYwODQxNTJaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MTI5OTUwLWUwZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpiTwOaCwqIXP45VXPAxlUEu4C2cDIvR2BMPjyglgXHIpx4DCdfeSslJdySFjH KqSovcFVjroYBrBzXr2Yowkf06L2L3NSDSg5Sce2bywY/+GjwtfOG2OByOEmx8ag y5EmHmrbN211g4kZi5mVFW7ZlCC+dhjnAEGnreRmXVjOYZ+s39Xog1/+7M794b7w Zf9RCsF4hrV5UgWHReK0qq4nO/rbMtjy6TKxnO2jPw714sfAx+nmMGB6wyL40ED6 4uvrsp2qLyrebJJmyPNpI+iMtgGj9QJMEGn6fkECiwRx9Mj5zcjZWSGpWTdTB3Ez n9a9kKTlCHzYlbKD7VIm+Z7DAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUD7/DGs/a apLYwI+ORwR8k1r/tbQwHwYDVR0jBBgwFoAUa1cJMpDRH2XPuR8SEsKM9zP5wrUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwQUFBLzBDQTc3QzgyNUM0 NzExRUVBQTlGRTk2NkM0RjlBRTAyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdy VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYTFjSk1wRFJIMlhQdVI4U0VzS005elA1d3JVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFBQS8wQ0E3N0M4MjVDNDcxMUVFQUE5RkU5NjZDNEY5QUUwMi84QTM4OUFDMjVD NDgxMUVFQkUxQ0YwNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeWRzAPBAIAAjAJAwcAIAEN8vVAMA0GCSqGSIb3DQEBCwUA A4IBAQCVhDPoRsHqX7ZO2j+zMxzDwqjyzVhQ4i9ui0WiKkmDWwt/nBMKAtqkE11W PNQFCWFsHNKXbMjL+BgbNmbYBz6LI5LCpKSs6rsiE8t9iVbEFUajwtJdJNiP1JZR RFO1BIW8CEntpXNJ/vs+GouBEzlksO/0LgprLdIhFvp1FNqYvNlJKCFaXo4KRj3c tdspZ4Xv0PCMQWzJyd7ZZen5Ek6lodY73VRhN55SiJbboZ1HLy/tezM46HrPB1v5 qy83knDoy3f6JcQ0Bdv/aRuWi577rPIL6utxpepBS+GXhc5dfl7tONP6EhpUYlx6 vRChdmnL4rE58SxqQ/CtMjbEiefH -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:28 2024 by rpki-client on console-fra.rpki-client.org