$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa File: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (raw, json) Hash identifier: 9QttLF7HMnJDx+HbQAXC0YtWXOJ+pz+cgouITeRm1GU= Subject key identifier: 63:20:73:6C:C3:8D:DE:ED:44:5D:1E:EA:07:60:CA:28:23:BD:1E:BD Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: D1 Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa Signing time: Sun 03 Nov 2024 03:57:22 +0000 ROA not before: Sun 03 Nov 2024 03:57:22 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151824 IP address blocks: 103.150.71.0/24 maxlen: 24 2001:df2:f540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Nov 3 03:57:22 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726f4a1-5881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:56:48:ba:48:2e:63:0e:eb:44:22:f1:e0:19: 6a:92:90:99:ed:ac:ca:ad:fe:80:14:2a:73:bc:85: e5:bc:62:56:c6:7f:dd:78:3b:53:15:1f:0f:dd:1f: 99:bd:59:0c:ac:42:aa:76:09:83:c0:74:6c:4c:f2: 04:34:a2:81:6e:89:dd:94:59:b4:8a:a0:6d:bd:61: 44:59:52:da:44:0d:23:b6:79:71:c2:08:8e:b4:7f: c4:d7:27:e0:77:54:a4:19:63:3f:26:48:f5:55:61: 7a:b5:cd:36:80:52:01:0c:d5:81:c4:8c:f9:c5:3e: 30:c4:51:b6:30:06:14:22:fc:d1:a8:88:36:9a:3d: 8f:3f:51:8f:66:c5:02:65:03:97:25:aa:1c:7a:f3: f0:49:ed:e3:5b:9b:e3:52:5d:6e:6b:af:10:4a:7c: 19:08:7b:2b:12:dc:fb:d1:06:26:08:ab:03:64:e2: 49:31:98:00:a2:7b:94:44:72:3e:c6:19:76:f6:dc: ab:9a:35:14:2f:2e:7d:2e:56:53:5d:d3:2c:67:67: 61:35:fd:7c:00:bd:f7:eb:58:d1:e9:36:6e:57:ad: f3:38:b2:43:b7:6a:de:85:97:13:c7:cd:bb:91:ce: 05:42:35:52:44:6a:e8:4c:bd:16:ef:c8:2b:ca:75: 56:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:20:73:6C:C3:8D:DE:ED:44:5D:1E:EA:07:60:CA:28:23:BD:1E:BD X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.71.0/24 IPv6: 2001:df2:f540::/48 Signature Algorithm: sha256WithRSAEncryption 72:47:94:f6:cc:77:80:bb:1d:54:0a:01:c3:a8:01:7c:a1:5d: ed:5b:72:c9:9a:3a:a4:d5:d0:a2:bc:c1:79:33:60:8d:86:21: e7:2f:e8:a3:44:ad:af:78:5b:0c:94:05:65:03:23:1b:d7:62: 7c:82:b0:18:4b:0c:29:03:71:f6:db:1b:e1:07:5c:e7:ab:8b: 68:19:d4:6b:8e:66:7f:96:30:dc:33:1d:48:e0:de:ca:37:04: 7a:41:e2:18:93:f4:5c:c6:ef:ef:fe:6b:f0:df:f4:a2:06:d4: 4a:96:82:87:c9:8e:ed:f7:2e:b3:c8:c0:50:d2:27:01:e5:d7: 33:0c:62:9a:7e:c7:45:21:fe:f4:48:42:79:5b:de:2e:ea:5d: e2:fc:88:b3:22:7f:a5:95:57:2c:cf:3b:21:7c:69:5c:8c:66: 73:f2:db:c0:d0:15:4e:ff:74:78:c2:98:c6:15:95:87:1f:ac: a8:6b:57:ff:48:25:60:75:2d:9a:81:ce:76:5c:ee:4f:0a:72: 1c:bc:53:7c:8a:6f:08:ba:e7:5c:0d:6c:9c:1a:7d:7b:bc:0f: 49:60:00:d7:14:b4:04:d5:db:5c:9a:2a:c0:14:01:28:0e:15: 0b:7e:42:39:5e:2d:d9:9b:fe:44:1b:4c:18:52:3d:63:96:08: b1:6c:c9:b3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQUExMTAvBgNVBAUTKDZCNTcwOTMyOTBEMTFGNjVDRkI5MUYxMjEyQzI4Q0Y3 MzNGOUMyQjUwHhcNMjQxMTAzMDM1NzIyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ZjRhMS01ODgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVZIukguYw7rRCLx4BlqkpCZ7azKrf6AFCpzvIXlvGJWxn/deDtTFR8P3R+Z vVkMrEKqdgmDwHRsTPIENKKBbondlFm0iqBtvWFEWVLaRA0jtnlxwgiOtH/E1yfg d1SkGWM/Jkj1VWF6tc02gFIBDNWBxIz5xT4wxFG2MAYUIvzRqIg2mj2PP1GPZsUC ZQOXJaocevPwSe3jW5vjUl1ua68QSnwZCHsrEtz70QYmCKsDZOJJMZgAonuURHI+ xhl29tyrmjUULy59LlZTXdMsZ2dhNf18AL3361jR6TZuV63zOLJDt2rehZcTx827 kc4FQjVSRGroTL0W78grynVWuQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGMgc2zD jd7tRF0e6gdgyigjvR69MB8GA1UdIwQYMBaAFGtXCTKQ0R9lz7kfEhLCjPcz+cK1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFBQS8wQ0E3N0M4MjVD NDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgyWFB1UjhTRXNLTTl6UDV3 clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQUEvMENBNzdDODI1QzQ3MTFFRUFBOUZFOTY2QzRGOUFFMDIvOEEzODlBQzI1 QzQ4MTFFRUJFMUNGMDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnlkcwDwQCAAIwCQMHACABDfL1QDANBgkqhkiG9w0BAQsF AAOCAQEAckeU9sx3gLsdVAoBw6gBfKFd7VtyyZo6pNXQorzBeTNgjYYh5y/oo0St r3hbDJQFZQMjG9difIKwGEsMKQNx9tsb4Qdc56uLaBnUa45mf5Yw3DMdSODeyjcE ekHiGJP0XMbv7/5r8N/0ogbUSpaCh8mO7fcus8jAUNInAeXXMwximn7HRSH+9EhC eVveLupd4vyIsyJ/pZVXLM87IXxpXIxmc/LbwNAVTv90eMKYxhWVhx+sqGtX/0gl YHUtmoHOdlzuTwpyHLxTfIpvCLrnXA1snBp9e7wPSWAA1xS0BNXbXJoqwBQBKA4V C35COV4t2Zv+RBtMGFI9Y5YIsWzJsw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:44 2024 by rpki-client on console-fra.rpki-client.org