$ rpki-client -vvf rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/E04ADD7CB2E511EAA94E5634C4F9AE02.roa File: E04ADD7CB2E511EAA94E5634C4F9AE02.roa (raw, json) Hash identifier: SDDF+daD6uA45d2pVbzA/cw/2JyMm9s9TzTDlHyfXN0= Subject key identifier: E0:6B:08:2C:F8:6B:7B:AC:88:68:15:4D:82:8E:90:2D:39:86:C7:21 Certificate issuer: /CN=A9150A9C/serialNumber=367E1FAF752C631FC43D872098240E80321575C7 Certificate serial: 0874 Authority key identifier: 36:7E:1F:AF:75:2C:63:1F:C4:3D:87:20:98:24:0E:80:32:15:75:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nn4fr3UsYx_EPYcgmCQOgDIVdcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/E04ADD7CB2E511EAA94E5634C4F9AE02.roa Signing time: Wed 18 Sep 2024 20:39:36 +0000 ROA not before: Wed 18 Sep 2024 20:39:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140711 IP address blocks: 103.152.18.0/24 maxlen: 24 103.152.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/Nn4fr3UsYx_EPYcgmCQOgDIVdcc.crl rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/Nn4fr3UsYx_EPYcgmCQOgDIVdcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nn4fr3UsYx_EPYcgmCQOgDIVdcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2164 (0x874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150A9C/serialNumber=367E1FAF752C631FC43D872098240E80321575C7 Validity Not Before: Sep 18 20:39:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66eb3a87-5439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:51:ef:ae:fc:78:af:5c:05:12:98:db:5c:1c: 46:f3:19:fc:48:b4:38:89:2f:c3:2a:ec:23:1f:89: 11:4a:c0:32:1f:6c:27:6f:bf:ff:1c:49:22:12:8d: 0b:61:7d:77:50:8b:b0:a7:54:4b:90:27:27:60:88: 69:b8:10:12:2c:ca:2a:b8:2a:aa:c3:39:c0:01:af: f4:b7:87:2a:b6:09:f5:b8:5b:83:9d:97:c5:cf:dd: 5b:d3:5e:d8:14:32:6b:47:31:61:76:a0:12:81:b3: b9:b8:d6:7a:8f:19:9b:00:28:37:8f:e1:58:09:33: ab:30:59:c5:5e:59:92:81:75:30:66:04:f3:3d:e6: b2:e6:2d:9e:13:41:08:3b:3b:6f:10:d4:e1:59:96: 2a:1c:c9:52:5b:4a:c6:51:d2:16:56:d7:d9:99:da: ec:a7:e0:04:8f:4a:a7:58:51:bc:69:91:1a:7b:4d: f6:56:a4:74:26:33:ea:5b:b9:f8:a6:66:5e:41:1f: 54:96:46:98:b6:97:ea:09:fd:02:30:0f:a4:7e:41: 85:17:b4:69:d3:7a:f7:e9:a0:68:46:37:74:11:26: 3b:c0:d5:eb:2d:96:23:5a:25:b3:01:cb:a9:bb:34: d4:eb:a3:13:e5:a6:7d:81:32:5e:71:3c:34:65:3e: 50:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:6B:08:2C:F8:6B:7B:AC:88:68:15:4D:82:8E:90:2D:39:86:C7:21 X509v3 Authority Key Identifier: keyid:36:7E:1F:AF:75:2C:63:1F:C4:3D:87:20:98:24:0E:80:32:15:75:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/Nn4fr3UsYx_EPYcgmCQOgDIVdcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nn4fr3UsYx_EPYcgmCQOgDIVdcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/E04ADD7CB2E511EAA94E5634C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.18.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:47:4c:e1:03:54:b0:8a:37:95:6d:f9:d2:4c:03:4a:f3:67: fb:0f:81:7f:cf:4e:f6:5f:80:7c:89:5c:b2:13:74:e9:07:fe: e4:6f:2a:26:f5:55:c2:20:49:ba:16:e5:22:6d:63:48:e4:45: f1:c9:ce:eb:71:bb:4b:65:07:db:31:5c:3b:2f:34:01:b7:12: c3:3c:9d:8c:0c:98:99:a3:52:a2:72:a3:24:27:0f:3e:5a:2e: d3:2e:d4:27:14:6d:67:e8:f8:12:71:68:53:6a:72:ce:15:79: 83:c7:f9:39:c3:3b:56:03:a6:dd:d3:a3:53:03:61:68:89:b9: 31:fa:9b:ad:f9:b5:60:b1:93:c8:a6:e8:b8:65:31:e5:22:0a: 28:2f:db:a2:0c:29:26:5c:34:17:3b:ed:50:ac:44:76:81:a1: ec:10:2d:23:67:d9:85:ab:94:36:ed:cb:de:d7:49:49:44:a4: d2:4d:21:c0:61:1c:74:27:46:63:59:89:52:f0:8e:ab:04:18: 93:0c:8a:20:5e:92:97:fc:c6:0e:0f:38:fe:32:52:5a:fb:01: a2:92:14:82:40:98:ea:fd:9d:0f:0f:d4:68:8e:4d:36:21:60: aa:9c:05:bb:23:6d:cb:49:ed:32:ef:f0:5b:dd:84:17:c8:6b: 25:bb:92:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBBOUMxMTAvBgNVBAUTKDM2N0UxRkFGNzUyQzYzMUZDNDNEODcyMDk4MjQwRTgw MzIxNTc1QzcwHhcNMjQwOTE4MjAzOTM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViM2E4Ny01NDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FHvrvx4r1wFEpjbXBxG8xn8SLQ4iS/DKuwjH4kRSsAyH2wnb7//HEkiEo0L YX13UIuwp1RLkCcnYIhpuBASLMoquCqqwznAAa/0t4cqtgn1uFuDnZfFz91b017Y FDJrRzFhdqASgbO5uNZ6jxmbACg3j+FYCTOrMFnFXlmSgXUwZgTzPeay5i2eE0EI OztvENThWZYqHMlSW0rGUdIWVtfZmdrsp+AEj0qnWFG8aZEae032VqR0JjPqW7n4 pmZeQR9UlkaYtpfqCf0CMA+kfkGFF7Rp03r36aBoRjd0ESY7wNXrLZYjWiWzAcup uzTU66MT5aZ9gTJecTw0ZT5QXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOBrCCz4 a3usiGgVTYKOkC05hschMB8GA1UdIwQYMBaAFDZ+H691LGMfxD2HIJgkDoAyFXXH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEE5Qy8yQTI5NDg0Q0FC QTgxMUVBOTVDRTJDMTZDNEY5QUUwMi9ObjRmcjNVc1l4X0VQWWNnbUNRT2dESVZk Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05uNGZyM1VzWXhfRVBZY2dtQ1FPZ0RJVmRjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBBOUMvMkEyOTQ4NENBQkE4MTFFQTk1Q0UyQzE2QzRGOUFFMDIvRTA0QUREN0NC MkU1MTFFQUE5NEU1NjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmBIwDQYJKoZIhvcNAQELBQADggEBAC5HTOEDVLCKN5Vt +dJMA0rzZ/sPgX/PTvZfgHyJXLITdOkH/uRvKib1VcIgSboW5SJtY0jkRfHJzutx u0tlB9sxXDsvNAG3EsM8nYwMmJmjUqJyoyQnDz5aLtMu1CcUbWfo+BJxaFNqcs4V eYPH+TnDO1YDpt3To1MDYWiJuTH6m635tWCxk8im6LhlMeUiCigv26IMKSZcNBc7 7VCsRHaBoewQLSNn2YWrlDbty97XSUlEpNJNIcBhHHQnRmNZiVLwjqsEGJMMiiBe kpf8xg4POP4yUlr7AaKSFIJAmOr9nQ8P1GiOTTYhYKqcBbsjbctJ7TLv8FvdhBfI ayW7klw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:26 2024 by rpki-client on console-ams.rpki-client.org