$ rpki-client -vvf rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/01C299E0662611ED94A8DA42C4F9AE02.roa File: 01C299E0662611ED94A8DA42C4F9AE02.roa (raw, json) Hash identifier: KA1a5w2LlGRKJLa3QIndB+iFVbArye3x/Kj5tQWmECY= Subject key identifier: 15:FA:C5:9E:34:21:4E:59:43:93:BB:A6:AB:76:EB:DF:FC:5B:E3:11 Certificate issuer: /CN=A9131359/serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Certificate serial: 74 Authority key identifier: E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/01C299E0662611ED94A8DA42C4F9AE02.roa Signing time: Thu 29 Jun 2023 03:51:25 +0000 ROA not before: Thu 29 Jun 2023 03:51:25 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 4764 IP address blocks: 192.150.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131359/serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Validity Not Before: Jun 29 03:51:25 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=649cffbd-4b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b1:41:fc:f8:aa:17:d6:f1:99:55:f6:c5:9e: 35:fd:14:79:40:a2:4f:32:97:17:1f:d4:dd:ff:18: 69:64:73:f7:aa:f0:f9:2a:11:ce:f6:5d:69:ca:22: 6b:a9:25:aa:fe:09:79:cc:46:9f:0c:f1:fc:c1:6a: 16:c5:0c:c0:0b:eb:b3:9b:a1:79:4e:a9:88:a3:01: c6:12:12:57:9f:48:34:17:3d:c9:25:44:d3:ed:18: 0a:e7:b7:27:1a:dc:d7:d8:09:82:6c:c4:17:14:d2: 74:00:3a:e8:8f:89:fc:2f:e0:07:a5:0f:44:1f:e1: d7:4c:3c:d7:4c:d1:8d:00:72:d4:cf:4f:8f:2e:33: 0d:2e:be:46:2f:12:94:74:11:1c:d8:81:14:8d:2a: 2f:a7:1e:67:d6:88:1a:01:58:b4:a8:0f:11:6c:50: 18:c9:9f:c3:38:da:c5:4a:e3:49:e6:cd:aa:0d:ba: f6:f9:58:1e:50:25:79:48:14:34:60:91:ff:37:36: 0a:b7:ef:b3:f6:4f:3e:99:00:c3:a1:ae:0e:f3:73: e2:f3:9a:ca:d1:99:80:90:85:eb:07:60:9c:c8:4a: a1:17:f3:45:e5:d7:fb:40:ec:80:d6:2c:f2:15:84: 3e:14:63:05:4a:2b:c0:de:61:a2:62:8d:0d:48:c9: 9b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:FA:C5:9E:34:21:4E:59:43:93:BB:A6:AB:76:EB:DF:FC:5B:E3:11 X509v3 Authority Key Identifier: keyid:E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/01C299E0662611ED94A8DA42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.150.107.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:2b:9d:58:08:28:99:fc:5f:8a:cb:60:ec:1b:c6:bd:92:0f: de:a5:78:60:48:59:99:12:02:62:4d:3c:fa:f4:8d:0d:59:26: aa:4b:a7:76:ec:a8:e3:b3:34:92:5a:48:68:e1:0a:6d:b5:de: 0f:6d:40:41:60:35:f4:ec:2b:2e:85:f1:4d:19:05:e4:78:63: 43:35:1f:52:8c:9c:ae:da:60:f9:ce:96:20:84:51:6e:9e:36: 52:4c:9b:b4:f9:5f:2c:2b:b6:db:e9:e0:4b:92:f5:ba:38:6b: 36:15:4c:87:82:23:aa:0f:e5:17:39:4f:a3:0f:8a:a5:8c:22: ba:8b:2d:4d:6c:6e:5f:66:4e:e8:83:23:3c:16:36:be:b4:87: e9:49:06:a3:00:5d:51:10:99:ac:11:2b:81:be:42:41:a1:03: ae:0f:d9:28:7c:d5:1c:c4:1e:d8:c5:67:1b:d8:e2:98:60:ea: cc:a9:17:46:9f:20:53:b6:20:47:d2:d4:4e:49:10:74:cb:07: d9:bd:33:85:35:eb:4d:b1:a5:16:a0:0b:4a:6a:59:66:b1:c4: ee:e1:28:b7:66:1f:51:a7:9a:3e:6c:32:e8:b7:82:5d:9b:1e: e1:dd:38:72:c1:02:82:fc:a0:56:42:c6:d2:75:04:0f:4e:c8: 2b:45:5b:03 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTM1OTExMC8GA1UEBRMoRTk1NzZEMzJDREExOUJCODZGM0MxNjJFQzlGRDM2RDNG RDI1QjlDMTAeFw0yMzA2MjkwMzUxMjVaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0OWNmZmJkLTRiMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrsUH8+KoX1vGZVfbFnjX9FHlAok8ylxcf1N3/GGlkc/eq8PkqEc72XWnKImup Jar+CXnMRp8M8fzBahbFDMAL67OboXlOqYijAcYSElefSDQXPcklRNPtGArntyca 3NfYCYJsxBcU0nQAOuiPifwv4AelD0Qf4ddMPNdM0Y0ActTPT48uMw0uvkYvEpR0 ERzYgRSNKi+nHmfWiBoBWLSoDxFsUBjJn8M42sVK40nmzaoNuvb5WB5QJXlIFDRg kf83Ngq377P2Tz6ZAMOhrg7zc+LzmsrRmYCQhesHYJzISqEX80Xl1/tA7IDWLPIV hD4UYwVKK8DeYaJijQ1IyZsVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFfrFnjQh TllDk7umq3br3/xb4xEwHwYDVR0jBBgwFoAU6VdtMs2hm7hvPBYuyf020/0lucEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMzU5L0NBOUEzNEI2NjYy MzExRUQ5MTg1NUQ0MkM0RjlBRTAyLzZWZHRNczJobTdodlBCWXV5ZjAyMF8wbHVj RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNlZkdE1zMmhtN2h2UEJZdXlmMDIwXzBsdWNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTM1OS9DQTlBMzRCNjY2MjMxMUVEOTE4NTVENDJDNEY5QUUwMi8wMUMyOTlFMDY2 MjYxMUVEOTRBOERBNDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMCWazANBgkqhkiG9w0BAQsFAAOCAQEAaiudWAgomfxfistg 7BvGvZIP3qV4YEhZmRICYk08+vSNDVkmqkunduyo47M0klpIaOEKbbXeD21AQWA1 9OwrLoXxTRkF5HhjQzUfUoycrtpg+c6WIIRRbp42UkybtPlfLCu22+ngS5L1ujhr NhVMh4Ijqg/lFzlPow+KpYwiuostTWxuX2ZO6IMjPBY2vrSH6UkGowBdURCZrBEr gb5CQaEDrg/ZKHzVHMQe2MVnG9jimGDqzKkXRp8gU7YgR9LUTkkQdMsH2b0zhTXr TbGlFqALSmpZZrHE7uEot2YfUaeaPmwy6LeCXZse4d04csECgvygVkLG0nUED07I K0VbAw== -----END CERTIFICATE-----Generated at Fri May 17 06:46:21 2024 by rpki-client on console-ams.rpki-client.org