$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/6063C75CB6E411EE94471D14C4F9AE02.roa File: 6063C75CB6E411EE94471D14C4F9AE02.roa (raw, json) Hash identifier: HDfP4LwrloNXU1nzvfFcUeha0pVa0Ubh8d+qNote20c= Subject key identifier: 78:CC:46:56:A1:A3:5E:6D:EB:06:DB:B6:AA:E3:A1:10:FF:A5:4F:01 Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 95 Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/6063C75CB6E411EE94471D14C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:00:59 +0000 ROA not before: Thu 05 Sep 2024 03:00:59 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151406 IP address blocks: 103.224.93.0/24 maxlen: 24 115.187.22.0/24 maxlen: 24 2001:df2:9540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: Sep 5 03:00:59 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66d91eeb-add8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1c:32:b0:5e:e9:d4:c9:7c:8f:51:9c:1a:83: e8:55:e8:2c:e9:e2:5d:7b:87:f1:35:15:33:f8:51: 84:2e:49:0d:de:48:42:a4:54:13:a4:e1:2f:eb:1a: 52:32:5d:42:de:72:3a:9f:b5:08:a7:11:da:c8:34: 65:54:c3:2b:95:14:45:37:49:29:64:ea:c8:a6:f6: a2:94:b4:eb:a8:06:bf:6d:57:a6:22:80:bc:1c:34: 37:23:0d:fa:d3:fd:a2:f2:0c:17:71:b9:a1:31:c2: a7:fc:a6:2c:ac:51:b6:4f:d3:08:71:90:a8:e3:5e: 4d:ef:e7:eb:c2:0d:d3:ca:07:4b:ce:47:29:eb:ee: c6:ec:31:1d:fd:cd:14:99:d9:53:5e:50:ef:bb:c1: b1:bc:1b:84:3e:23:49:a3:95:ca:71:10:08:8a:b9: 13:53:ea:8d:e6:6a:e7:39:67:70:eb:4f:01:f5:fe: e3:8c:7d:29:62:60:ae:1d:81:70:d7:32:67:fd:97: c4:c2:56:d2:2d:5b:6a:1b:b6:1d:4a:7a:15:96:1a: da:92:53:cd:4a:da:24:c4:7f:10:49:88:82:35:83: 91:1f:a6:ee:eb:74:bb:6d:64:1b:4e:da:ba:4d:01: ad:db:d0:8e:b6:78:09:19:b4:88:34:34:71:6f:69: 30:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CC:46:56:A1:A3:5E:6D:EB:06:DB:B6:AA:E3:A1:10:FF:A5:4F:01 X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/6063C75CB6E411EE94471D14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.93.0/24 115.187.22.0/24 IPv6: 2001:df2:9540::/48 Signature Algorithm: sha256WithRSAEncryption 17:70:2b:3f:20:46:1f:cf:a4:aa:1d:21:2d:e7:c5:a0:99:1d: 25:06:a7:8d:ce:bb:13:21:37:d1:52:bf:70:78:b1:b0:80:2f: 7a:b4:44:95:9b:18:a0:33:3e:f2:0e:db:1b:f6:a2:90:67:31: de:1d:d7:f9:ef:bb:bc:9e:14:2e:48:9f:3d:d5:56:23:dc:ed: 99:bd:32:0b:b6:44:b3:a2:f4:30:a5:30:22:5e:3e:d2:2b:b4: 7b:68:d6:18:2e:d0:16:c1:4e:c9:b9:86:52:89:d6:b0:9f:64: 7f:6f:2c:ec:38:a2:9d:2a:8e:84:03:ce:c2:e0:48:52:d2:16: 84:a8:bd:cf:a7:56:ee:bf:47:27:f8:8f:a0:08:9b:db:40:4f: 69:f4:7d:98:fa:29:e8:a4:53:6a:48:d7:fb:0b:64:1b:b5:54: 74:f2:20:2f:96:48:43:c1:3e:6f:c0:6a:31:99:ed:b0:38:ef: f9:50:e8:f4:77:23:ea:5d:bb:94:b2:f8:c3:e3:1c:c7:8c:8d: a3:9b:ec:54:ce:ad:ae:af:20:bd:88:b6:7f:a8:46:de:99:75: c2:b6:0d:41:34:80:ca:41:f2:0d:13:6b:02:9e:ad:e3:7d:cc: 4c:6e:c0:3d:79:3c:b9:18:5c:75:3a:c4:5e:a8:1e:3d:0b:7b: 65:b0:9f:57 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjQwOTA1MDMwMDU5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MWVlYi1hZGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxwysF7p1Ml8j1GcGoPoVegs6eJde4fxNRUz+FGELkkN3khCpFQTpOEv6xpS Ml1C3nI6n7UIpxHayDRlVMMrlRRFN0kpZOrIpvailLTrqAa/bVemIoC8HDQ3Iw36 0/2i8gwXcbmhMcKn/KYsrFG2T9MIcZCo415N7+frwg3TygdLzkcp6+7G7DEd/c0U mdlTXlDvu8GxvBuEPiNJo5XKcRAIirkTU+qN5mrnOWdw608B9f7jjH0pYmCuHYFw 1zJn/ZfEwlbSLVtqG7YdSnoVlhraklPNStokxH8QSYiCNYORH6bu63S7bWQbTtq6 TQGt29COtngJGbSINDRxb2kwJwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHjMRlah o15t6wbbtqrjoRD/pU8BMB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTc3MjQvRDczOTg3Mjg5NTg3MTFFRUFEM0JCMjYyQzRGOUFFMDIvNjA2M0M3NUNC NkU0MTFFRTk0NDcxRDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABn4F0DBABzuxYwDwQCAAIwCQMHACABDfKVQDANBgkqhkiG 9w0BAQsFAAOCAQEAF3ArPyBGH8+kqh0hLefFoJkdJQanjc67EyE30VK/cHixsIAv erRElZsYoDM+8g7bG/aikGcx3h3X+e+7vJ4ULkifPdVWI9ztmb0yC7ZEs6L0MKUw Il4+0iu0e2jWGC7QFsFOybmGUonWsJ9kf28s7DiinSqOhAPOwuBIUtIWhKi9z6dW 7r9HJ/iPoAib20BPafR9mPop6KRTakjX+wtkG7VUdPIgL5ZIQ8E+b8BqMZntsDjv +VDo9Hcj6l27lLL4w+Mcx4yNo5vsVM6trq8gvYi2f6hG3pl1wrYNQTSAykHyDRNr Ap6t433MTG7APXk8uRhcdTrEXqgePQt7ZbCfVw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:48 2024 by rpki-client on console-fra.rpki-client.org