$ rpki-client -vvf rpki.apnic.net/member_repository/A9112327/6DD2C034905D11EAA7BF7725C4F9AE02/03643212905F11EA94823C28C4F9AE02.roa File: 03643212905F11EA94823C28C4F9AE02.roa (raw, json) Hash identifier: 32+oXxBFhxUG2PWTRaAsdjIfsPq4UsynI3l5ImWQiRY= Subject key identifier: 23:B4:0D:1D:30:00:F4:79:56:4B:F8:5C:D2:92:AF:51:24:2B:DE:27 Certificate issuer: /CN=A9112327/serialNumber=E87BD05EF75D505965AF50967D428BB5FFFE1CC1 Certificate serial: 0900 Authority key identifier: E8:7B:D0:5E:F7:5D:50:59:65:AF:50:96:7D:42:8B:B5:FF:FE:1C:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HvQXvddUFllr1CWfUKLtf_-HME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112327/6DD2C034905D11EAA7BF7725C4F9AE02/03643212905F11EA94823C28C4F9AE02.roa Signing time: Sun 29 Sep 2024 07:43:28 +0000 ROA not before: Sun 29 Sep 2024 07:43:28 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140586 IP address blocks: 103.150.188.0/24 maxlen: 24 103.150.189.0/24 maxlen: 24 2001:df7:8580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112327/6DD2C034905D11EAA7BF7725C4F9AE02/6HvQXvddUFllr1CWfUKLtf_-HME.crl rsync://rpki.apnic.net/member_repository/A9112327/6DD2C034905D11EAA7BF7725C4F9AE02/6HvQXvddUFllr1CWfUKLtf_-HME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HvQXvddUFllr1CWfUKLtf_-HME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2304 (0x900) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112327/serialNumber=E87BD05EF75D505965AF50967D428BB5FFFE1CC1 Validity Not Before: Sep 29 07:43:28 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66f90520-46c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:77:06:16:49:3e:76:94:0b:d9:a8:02:c6:69: 8f:8e:99:1d:cf:7b:2c:96:db:0b:96:72:e5:22:eb: e4:c8:79:82:ff:2c:fa:70:3c:8b:13:7e:1f:a2:d4: a1:27:e1:eb:63:94:7e:bc:30:fc:6c:ec:df:3d:9a: 9c:f5:6b:ad:09:5c:f5:72:49:39:55:77:44:db:36: 8f:e3:eb:90:c5:8a:c8:38:bc:dd:28:9e:04:9d:08: 2f:62:b0:23:1f:27:e4:77:77:45:c4:48:78:b2:9f: af:66:da:7e:a6:3c:b5:b9:20:1f:be:32:a3:c0:9d: 7c:14:67:88:18:cc:55:a7:2f:c5:bb:38:d1:a0:79: 56:f4:e6:79:ef:4b:17:6a:2d:f6:cb:30:20:51:8d: dd:24:44:e9:43:46:72:a8:78:8c:03:f4:ca:80:23: c0:84:fe:fd:4f:44:24:86:73:b5:c0:fc:33:a8:86: 26:7b:c5:02:c2:e6:fe:1d:c6:9e:ad:3d:20:b6:fa: 88:df:af:15:e1:04:7d:49:c5:fd:cd:42:1e:ca:18: 33:46:44:6e:a8:34:34:3d:b4:8b:3b:d4:76:54:a8: bc:13:ae:6a:63:f2:1b:06:8f:86:f0:8a:9d:30:15: 05:53:52:cd:65:28:50:16:9d:2f:6f:5c:09:5d:08: 7b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B4:0D:1D:30:00:F4:79:56:4B:F8:5C:D2:92:AF:51:24:2B:DE:27 X509v3 Authority Key Identifier: keyid:E8:7B:D0:5E:F7:5D:50:59:65:AF:50:96:7D:42:8B:B5:FF:FE:1C:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112327/6DD2C034905D11EAA7BF7725C4F9AE02/6HvQXvddUFllr1CWfUKLtf_-HME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HvQXvddUFllr1CWfUKLtf_-HME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112327/6DD2C034905D11EAA7BF7725C4F9AE02/03643212905F11EA94823C28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.188.0/23 IPv6: 2001:df7:8580::/48 Signature Algorithm: sha256WithRSAEncryption 30:6f:da:c1:28:0b:7e:68:f4:c1:0d:4b:d6:8d:f7:42:c3:ca: d9:bb:55:e3:21:08:a5:4a:fd:00:1e:57:5a:2d:2c:a8:96:cd: c1:e3:46:fc:40:01:55:b0:c2:48:6b:c1:e2:da:5c:96:43:a6: 92:49:64:c7:9b:d8:71:a5:a2:cc:fc:f3:82:af:a8:b1:9d:e2: ea:c7:6d:ba:4a:4b:44:34:73:a5:16:ef:7e:86:06:58:3a:00: 84:6d:79:7f:e4:89:ae:15:45:5d:fe:22:4c:20:05:70:c7:dc: 83:bc:74:98:34:57:ec:56:d9:d0:bd:e2:1d:ee:62:9e:3d:01: 6c:79:ee:6d:67:17:9c:68:69:59:05:87:d8:eb:88:4f:a5:cd: d6:3f:9d:4d:ac:e1:90:46:27:63:1d:70:02:d7:05:1c:26:b3: b8:2a:d5:4c:18:40:80:5b:76:7d:e1:43:70:28:a1:d6:9e:a7: 3d:1f:c5:00:21:e1:0d:af:87:d6:c4:a9:e5:9b:c7:27:08:9a: 6a:2a:25:0b:d6:11:b4:54:e0:f1:5b:b6:69:c5:92:f9:58:b6: 47:66:f1:b2:78:86:c4:2b:d0:c9:3b:fe:d3:d7:89:5a:8a:22: c6:e9:38:89:ad:35:e0:e8:49:52:ec:aa:69:38:44:1f:36:cd: 94:3b:67:00 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjcxMTAvBgNVBAUTKEU4N0JEMDVFRjc1RDUwNTk2NUFGNTA5NjdENDI4QkI1 RkZGRTFDQzEwHhcNMjQwOTI5MDc0MzI4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY5MDUyMC00NmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXcGFkk+dpQL2agCxmmPjpkdz3ssltsLlnLlIuvkyHmC/yz6cDyLE34fotSh J+HrY5R+vDD8bOzfPZqc9WutCVz1ckk5VXdE2zaP4+uQxYrIOLzdKJ4EnQgvYrAj Hyfkd3dFxEh4sp+vZtp+pjy1uSAfvjKjwJ18FGeIGMxVpy/FuzjRoHlW9OZ570sX ai32yzAgUY3dJETpQ0ZyqHiMA/TKgCPAhP79T0QkhnO1wPwzqIYme8UCwub+Hcae rT0gtvqI368V4QR9ScX9zUIeyhgzRkRuqDQ0PbSLO9R2VKi8E65qY/IbBo+G8Iqd MBUFU1LNZShQFp0vb1wJXQh7IwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCO0DR0w APR5Vkv4XNKSr1EkK94nMB8GA1UdIwQYMBaAFOh70F73XVBZZa9Qln1Ci7X//hzB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyNy82REQyQzAzNDkw NUQxMUVBQTdCRjc3MjVDNEY5QUUwMi82SHZRWHZkZFVGbGxyMUNXZlVLTHRmXy1I TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZIdlFYdmRkVUZsbHIxQ1dmVUtMdGZfLUhNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTIzMjcvNkREMkMwMzQ5MDVEMTFFQUE3QkY3NzI1QzRGOUFFMDIvMDM2NDMyMTI5 MDVGMTFFQTk0ODIzQzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlrwwDwQCAAIwCQMHACABDfeFgDANBgkqhkiG9w0BAQsF AAOCAQEAMG/awSgLfmj0wQ1L1o33QsPK2btV4yEIpUr9AB5XWi0sqJbNweNG/EAB VbDCSGvB4tpclkOmkklkx5vYcaWizPzzgq+osZ3i6sdtukpLRDRzpRbvfoYGWDoA hG15f+SJrhVFXf4iTCAFcMfcg7x0mDRX7FbZ0L3iHe5inj0BbHnubWcXnGhpWQWH 2OuIT6XN1j+dTazhkEYnYx1wAtcFHCazuCrVTBhAgFt2feFDcCih1p6nPR/FACHh Da+H1sSp5ZvHJwiaaiolC9YRtFTg8Vu2acWS+Vi2R2bxsniGxCvQyTv+09eJWooi xuk4ia014OhJUuyqaThEHzbNlDtnAA== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org