$ rpki-client -vvf rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/9F3D07940A3D11E9A4A5D873C4F9AE02.roa File: 9F3D07940A3D11E9A4A5D873C4F9AE02.roa (raw, json) Hash identifier: gFAOXeGkc2eCk0nFhSOjgbpqiUaf2WF1/qXSm8cRYI4= Subject key identifier: E1:C8:E2:00:C2:65:FE:22:64:4C:23:ED:B9:E8:54:62:0C:AE:A6:0A Certificate issuer: /CN=A9150A44/serialNumber=0D8C6DB480FEF8BBF5C68B1D4396DD85F593C146 Certificate serial: 1079 Authority key identifier: 0D:8C:6D:B4:80:FE:F8:BB:F5:C6:8B:1D:43:96:DD:85:F5:93:C1:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYxttID--Lv1xosdQ5bdhfWTwUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/9F3D07940A3D11E9A4A5D873C4F9AE02.roa Signing time: Fri 26 Apr 2024 18:06:19 +0000 ROA not before: Fri 26 Apr 2024 18:06:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 45455 IP address blocks: 45.112.140.0/22 maxlen: 24 103.51.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/DYxttID--Lv1xosdQ5bdhfWTwUY.crl rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/DYxttID--Lv1xosdQ5bdhfWTwUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYxttID--Lv1xosdQ5bdhfWTwUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4217 (0x1079) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150A44 Validity Not Before: Apr 26 18:06:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=662bed1b-579a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:11:b2:7f:65:63:a2:50:73:92:05:a1:0f:82: 6f:fa:f0:34:bc:7e:e3:d6:b9:2a:31:09:63:b0:f7: 73:df:c9:f3:d6:6d:a2:46:a6:cd:35:cb:3e:7d:22: 8e:56:1a:a5:36:66:9b:84:6b:bc:d5:a7:a6:86:b3: 22:30:25:36:86:6f:11:6f:45:0d:09:a8:d1:ed:d1: f1:a4:3f:96:6d:63:60:89:97:97:21:07:7d:d7:2a: 1a:bd:a1:af:43:ef:2e:77:9d:2e:97:d4:31:db:2d: 8b:81:15:a7:37:a1:3e:f2:07:3d:69:1d:2d:c3:64: aa:3e:df:09:d3:d4:26:c0:b7:10:fd:f6:2d:6d:f3: e2:97:1d:31:22:af:51:cf:b2:a1:23:26:f9:40:82: a6:fe:30:04:5a:f4:61:22:de:11:83:7f:ef:9d:f6: 0e:89:e7:37:dc:70:eb:91:4a:ab:c7:01:6a:be:5b: d5:b7:e3:4b:50:1a:97:b8:34:77:12:82:54:6a:5c: 6b:cb:87:e8:25:a9:75:4b:ca:dd:b1:95:db:66:3a: 9c:92:f0:62:02:b2:85:c8:6c:c4:d8:05:0b:17:25: 5c:5e:c6:21:f0:b7:c5:8b:55:c3:27:2f:93:00:24: d8:ac:45:b7:4e:37:2d:a8:9f:40:87:a3:a7:8a:03: 71:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C8:E2:00:C2:65:FE:22:64:4C:23:ED:B9:E8:54:62:0C:AE:A6:0A X509v3 Authority Key Identifier: keyid:0D:8C:6D:B4:80:FE:F8:BB:F5:C6:8B:1D:43:96:DD:85:F5:93:C1:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/DYxttID--Lv1xosdQ5bdhfWTwUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYxttID--Lv1xosdQ5bdhfWTwUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/9F3D07940A3D11E9A4A5D873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.140.0/22 103.51.224.0/22 Signature Algorithm: sha256WithRSAEncryption 14:ee:ac:61:cf:78:58:75:13:68:40:b7:7f:04:7b:73:66:9f: f3:61:de:a9:57:a2:5b:21:71:90:d4:dd:7d:d6:bb:64:34:72: 3c:9c:67:f2:8a:6e:2d:d4:01:88:d7:ce:9b:68:ee:8b:9d:3b: 77:94:a7:dc:a2:6c:b2:59:c5:3a:c3:41:9e:9f:eb:49:03:cd: 5d:28:2a:db:f0:68:3f:b8:b0:c3:4a:c6:06:01:a0:f3:30:69: a9:2f:a4:01:74:3c:f0:03:b7:04:44:1b:bc:57:eb:7d:37:58: 96:e4:9f:ab:bb:86:b4:98:8c:09:16:31:ff:3d:0d:1c:e0:ee: ce:81:c3:7a:2d:38:12:ba:f1:22:8a:c3:3b:84:9a:7b:78:fa: 8e:f4:6b:95:a2:ca:c0:56:29:de:3e:05:73:10:75:47:3c:9d: 1a:29:df:02:15:a9:30:b8:51:44:3e:19:0a:64:2f:e4:cd:f7: bc:a6:23:03:10:20:bf:af:7b:81:e4:85:5f:12:2a:71:ae:03: 2d:c7:f2:3a:22:b5:61:cf:65:02:ac:26:5a:41:bb:f3:0a:8d: 51:d3:88:90:3f:e7:d2:cd:e9:54:3f:1c:1c:d1:08:28:a3:00: be:06:0d:85:ff:5d:b1:6d:84:0e:18:f9:45:fb:9a:76:58:77: a2:8e:1e:a9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBBNDQxMTAvBgNVBAUTKDBEOEM2REI0ODBGRUY4QkJGNUM2OEIxRDQzOTZERDg1 RjU5M0MxNDYwHhcNMjQwNDI2MTgwNjE5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjJiZWQxYi01NzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRGyf2VjolBzkgWhD4Jv+vA0vH7j1rkqMQljsPdz38nz1m2iRqbNNcs+fSKO VhqlNmabhGu81aemhrMiMCU2hm8Rb0UNCajR7dHxpD+WbWNgiZeXIQd91yoavaGv Q+8ud50ul9Qx2y2LgRWnN6E+8gc9aR0tw2SqPt8J09QmwLcQ/fYtbfPilx0xIq9R z7KhIyb5QIKm/jAEWvRhIt4Rg3/vnfYOiec33HDrkUqrxwFqvlvVt+NLUBqXuDR3 EoJUalxry4foJal1S8rdsZXbZjqckvBiArKFyGzE2AULFyVcXsYh8LfFi1XDJy+T ACTYrEW3TjctqJ9Ah6OnigNxKwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOHI4gDC Zf4iZEwj7bnoVGIMrqYKMB8GA1UdIwQYMBaAFA2MbbSA/vi79caLHUOW3YX1k8FG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEE0NC83Mzk3NzVDRTBB MzQxMUU5OEVFODcxNUVDNEY5QUUwMi9EWXh0dElELS1MdjF4b3NkUTViZGhmV1R3 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZeHR0SUQtLUx2MXhvc2RRNWJkaGZXVHdVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBBNDQvNzM5Nzc1Q0UwQTM0MTFFOThFRTg3MTVFQzRGOUFFMDIvOUYzRDA3OTQw QTNEMTFFOUE0QTVEODczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItcIwDBAJnM+AwDQYJKoZIhvcNAQELBQADggEBABTurGHP eFh1E2hAt38Ee3Nmn/Nh3qlXolshcZDU3X3Wu2Q0cjycZ/KKbi3UAYjXzpto7oud O3eUp9yibLJZxTrDQZ6f60kDzV0oKtvwaD+4sMNKxgYBoPMwaakvpAF0PPADtwRE G7xX6303WJbkn6u7hrSYjAkWMf89DRzg7s6Bw3otOBK68SKKwzuEmnt4+o70a5Wi ysBWKd4+BXMQdUc8nRop3wIVqTC4UUQ+GQpkL+TN97ymIwMQIL+ve4HkhV8SKnGu Ay3H8joitWHPZQKsJlpBu/MKjVHTiJA/59LN6VQ/HBzRCCijAL4GDYX/XbFthA4Y +UX7mnZYd6KOHqk= -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:34 2025 by rpki-client