$ rpki-client -vvf rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/01C299E0662611ED94A8DA42C4F9AE02.roa File: 01C299E0662611ED94A8DA42C4F9AE02.roa (raw, json) Hash identifier: Cbvoa7LrgmapG4r7FY0TXw9PoDEC05XNI+g2GTtN22E= Subject key identifier: 17:B6:BF:93:10:09:01:FB:61:1D:01:B9:F8:B1:5D:A6:B9:CA:8E:30 Certificate issuer: /CN=A9131359/serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Certificate serial: 0153 Authority key identifier: E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/01C299E0662611ED94A8DA42C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:53:23 +0000 ROA not before: Thu 05 Sep 2024 03:53:23 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 4764 IP address blocks: 192.150.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131359/serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Validity Not Before: Sep 5 03:53:23 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92b33-0863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:52:1a:89:e4:5e:bd:0f:41:d1:28:ac:02:22: fe:69:92:5d:ff:82:fd:af:6b:90:05:26:ec:c9:15: c0:7f:b9:9b:30:8a:98:29:21:0a:79:ba:96:e2:55: 94:44:b0:9f:6e:f4:ec:e4:de:ce:83:17:31:35:90: 95:4d:9b:e7:01:30:c1:0a:2b:86:4a:c5:9f:e9:42: f9:4f:55:a2:22:d8:22:62:1e:db:e6:cc:56:1f:43: 18:a9:20:b0:51:6f:73:57:10:69:ba:85:00:1b:be: 66:86:e9:56:3f:9f:0e:ef:81:eb:e3:57:c5:96:59: b9:e1:5d:84:00:03:51:9a:0f:c1:83:88:8e:b0:b4: 42:68:a1:fa:e9:0c:89:49:ec:06:29:69:0c:76:d3: 32:02:0c:93:f7:bd:b2:a0:ad:34:f3:8f:72:c0:72: bd:ab:bb:6a:af:31:1a:ed:6c:48:72:93:95:43:72: 16:fd:29:b6:27:7e:bb:09:3b:09:26:75:6c:ee:ed: fb:3e:5d:91:3c:d1:f8:09:56:80:2d:17:e8:28:48: d4:88:e1:6c:ba:85:a1:56:d0:5c:00:d6:40:e9:cb: 51:bf:f6:cf:5c:58:3c:f7:45:5b:09:19:d4:84:33: 50:c4:9f:c6:44:b6:43:5b:30:31:06:cf:44:c6:ae: 61:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B6:BF:93:10:09:01:FB:61:1D:01:B9:F8:B1:5D:A6:B9:CA:8E:30 X509v3 Authority Key Identifier: keyid:E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/01C299E0662611ED94A8DA42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.150.107.0/24 Signature Algorithm: sha256WithRSAEncryption 01:91:2c:eb:37:e0:99:e8:d3:a7:35:b0:b7:27:6a:ef:05:ed: a9:25:f2:84:a8:5d:e6:9f:b0:71:7c:f7:38:a1:a8:50:52:d8: 7f:d7:9b:90:39:a9:52:8e:b0:45:c4:61:5a:58:99:77:ce:29: 6b:e2:d8:ad:db:74:51:8e:3f:5c:81:d0:17:98:33:d8:0d:98: 74:3f:65:67:bf:6a:ae:f0:f5:9b:d0:cb:8b:7b:96:09:64:d0: f2:32:d7:16:fe:97:73:b8:71:c9:55:a1:e8:7d:99:75:7d:91: 8b:ef:21:31:ee:90:02:59:56:f0:5d:f7:35:6d:1c:4a:1f:84: 1c:56:47:98:4b:c3:d0:fe:4a:e6:41:65:df:74:1c:6a:d9:9b: 9c:17:8a:a0:61:ff:af:21:3f:b9:28:74:72:bb:5d:bf:60:52: b8:a8:6a:12:be:c2:30:95:58:a0:41:1c:22:3f:4e:cd:52:5e: 5f:98:e6:a2:cf:61:70:90:d1:25:63:94:80:23:ef:d6:f4:b5: 55:8a:1d:50:6d:2d:d2:5b:af:b6:56:5e:de:2c:7c:70:01:f9: 06:7a:f5:57:7b:50:9c:7b:37:95:68:7a:b7:78:d3:92:c2:e9: 76:9f:0a:5f:e1:94:76:32:27:26:9b:7e:e5:c0:67:0d:a7:53: 95:a7:8f:fc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzEzNTkxMTAvBgNVBAUTKEU5NTc2RDMyQ0RBMTlCQjg2RjNDMTYyRUM5RkQzNkQz RkQyNUI5QzEwHhcNMjQwOTA1MDM1MzIzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MmIzMy0wODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFIaieRevQ9B0SisAiL+aZJd/4L9r2uQBSbsyRXAf7mbMIqYKSEKebqW4lWU RLCfbvTs5N7OgxcxNZCVTZvnATDBCiuGSsWf6UL5T1WiItgiYh7b5sxWH0MYqSCw UW9zVxBpuoUAG75mhulWP58O74Hr41fFllm54V2EAANRmg/Bg4iOsLRCaKH66QyJ SewGKWkMdtMyAgyT972yoK00849ywHK9q7tqrzEa7WxIcpOVQ3IW/Sm2J367CTsJ JnVs7u37Pl2RPNH4CVaALRfoKEjUiOFsuoWhVtBcANZA6ctRv/bPXFg890VbCRnU hDNQxJ/GRLZDWzAxBs9Exq5h0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBe2v5MQ CQH7YR0BufixXaa5yo4wMB8GA1UdIwQYMBaAFOlXbTLNoZu4bzwWLsn9NtP9JbnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTM1OS9DQTlBMzRCNjY2 MjMxMUVEOTE4NTVENDJDNEY5QUUwMi82VmR0TXMyaG03aHZQQll1eWYwMjBfMGx1 Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZWZHRNczJobTdodlBCWXV5ZjAyMF8wbHVjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzEzNTkvQ0E5QTM0QjY2NjIzMTFFRDkxODU1RDQyQzRGOUFFMDIvMDFDMjk5RTA2 NjI2MTFFRDk0QThEQTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAlmswDQYJKoZIhvcNAQELBQADggEBAAGRLOs34Jno06c1 sLcnau8F7akl8oSoXeafsHF89zihqFBS2H/Xm5A5qVKOsEXEYVpYmXfOKWvi2K3b dFGOP1yB0BeYM9gNmHQ/ZWe/aq7w9ZvQy4t7lglk0PIy1xb+l3O4cclVoeh9mXV9 kYvvITHukAJZVvBd9zVtHEofhBxWR5hLw9D+SuZBZd90HGrZm5wXiqBh/68hP7ko dHK7Xb9gUrioahK+wjCVWKBBHCI/Ts1SXl+Y5qLPYXCQ0SVjlIAj79b0tVWKHVBt LdJbr7ZWXt4sfHAB+QZ69Vd7UJx7N5Voerd405LC6XafCl/hlHYyJyabfuXAZw2n U5Wnj/w= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:33 2024 by rpki-client on console-ams.rpki-client.org