$ rpki-client -vvf rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/A77E6C78FF0E11EABBCCCF56C4F9AE02.roa File: A77E6C78FF0E11EABBCCCF56C4F9AE02.roa (raw, json) Hash identifier: QfQMDJEFyFJctWqY3TUBdj1n9VR5xXThgyit189Rglg= Subject key identifier: 2D:94:24:B6:C5:96:E9:40:7A:A8:21:4A:7D:61:BB:C3:43:A7:49:57 Certificate issuer: /CN=A913E415/serialNumber=CE7B3078EA200EF1CFC3458C4D1E908D5F9CB735 Certificate serial: 0795 Authority key identifier: CE:7B:30:78:EA:20:0E:F1:CF:C3:45:8C:4D:1E:90:8D:5F:9C:B7:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znsweOogDvHPw0WMTR6QjV-ctzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/A77E6C78FF0E11EABBCCCF56C4F9AE02.roa Signing time: Tue 02 Jul 2024 22:10:21 +0000 ROA not before: Tue 02 Jul 2024 22:10:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 55714 IP address blocks: 103.150.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/znsweOogDvHPw0WMTR6QjV-ctzU.crl rsync://rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/znsweOogDvHPw0WMTR6QjV-ctzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znsweOogDvHPw0WMTR6QjV-ctzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E415/serialNumber=CE7B3078EA200EF1CFC3458C4D1E908D5F9CB735 Validity Not Before: Jul 2 22:10:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66847acd-5531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:01:05:8e:ef:99:70:90:93:7a:d2:f0:55:01: 70:cd:c0:e8:33:78:89:c6:df:e5:e3:20:0b:85:c0: 84:e4:47:a8:e7:e5:8e:08:77:c5:b3:c6:16:f1:4a: aa:09:bb:cd:33:18:d3:85:d9:b1:e9:8d:25:5c:0c: 99:ad:a1:63:fc:e8:a9:b4:7b:d3:f4:20:ec:0e:fa: 89:19:04:cc:60:e6:1c:20:30:c9:e4:e7:bc:15:9d: 83:1c:93:6c:59:3c:d2:50:3d:93:51:b9:ad:84:6f: 60:48:9c:9e:f0:e0:33:ae:9f:cf:c0:b9:82:a3:29: 01:97:9b:5e:8d:ab:69:a2:0a:a2:44:a0:d9:24:cb: f8:28:53:c5:af:13:bf:57:3c:e4:bd:55:40:21:4d: 11:7d:b6:c0:4e:b4:19:5d:5d:7d:a9:2b:a4:86:53: 34:24:5f:ac:70:64:2f:39:f8:d0:26:11:1b:0d:f5: 7e:6d:8e:15:db:81:61:e3:42:39:ff:11:34:09:67: 70:83:6b:09:16:59:6f:61:06:c7:08:3b:26:c4:30: 34:68:69:80:5b:09:8d:4e:0b:5b:c4:dc:ea:04:f3: 78:84:ab:e7:b2:8d:73:db:37:42:73:a6:76:6f:4f: f8:76:29:1d:82:99:a3:60:a1:5c:63:81:28:08:e9: 6d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:94:24:B6:C5:96:E9:40:7A:A8:21:4A:7D:61:BB:C3:43:A7:49:57 X509v3 Authority Key Identifier: keyid:CE:7B:30:78:EA:20:0E:F1:CF:C3:45:8C:4D:1E:90:8D:5F:9C:B7:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/znsweOogDvHPw0WMTR6QjV-ctzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znsweOogDvHPw0WMTR6QjV-ctzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E415/BC66106EDD9411EA8A2E2D37C4F9AE02/A77E6C78FF0E11EABBCCCF56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.239.0/24 Signature Algorithm: sha256WithRSAEncryption 83:70:30:27:be:81:c7:e8:23:e2:bf:a2:1d:a2:4e:f4:52:fc: 10:60:74:fe:47:f5:19:a3:5b:75:b2:cd:e2:ca:fe:e7:3e:ac: db:c7:56:84:f0:88:49:8c:96:d7:35:3d:28:fc:bb:b3:96:0e: 25:f0:72:73:d2:6c:3d:ad:76:e3:07:1f:3e:a1:97:4f:c3:ee: 71:a8:5a:7b:95:04:00:26:4e:7f:9a:2a:52:e3:50:4e:49:4b: b5:fc:ed:f9:e5:33:c2:6e:b3:77:cc:62:5b:c1:7f:23:2f:85: c0:09:80:88:b3:6a:d5:24:a2:b1:83:7d:dd:20:83:be:bd:94: 97:ce:0b:53:a8:8a:02:e3:2d:13:91:2c:24:ca:95:b5:6f:9c: 59:3f:8f:2d:31:0d:55:73:44:63:c0:ca:1e:1d:e1:ee:17:21: d8:ad:a5:c4:b6:49:10:cd:0b:c4:05:5e:b9:c4:90:0b:6c:95: 6c:5f:6e:75:50:26:1c:fb:dc:2e:d5:7f:42:20:c2:2f:09:7a: e2:56:e0:e6:2b:3f:97:ba:59:8a:e5:2e:40:b7:1b:32:59:50: 98:8f:ed:0b:8a:29:3c:9c:23:db:21:07:b5:e9:60:eb:f1:0c: ae:ba:7d:8e:b7:cd:81:e5:7a:b9:8d:1e:0c:c9:15:84:10:7e: 20:7a:d3:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0MTUxMTAvBgNVBAUTKENFN0IzMDc4RUEyMDBFRjFDRkMzNDU4QzREMUU5MDhE NUY5Q0I3MzUwHhcNMjQwNzAyMjIxMDIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0N2FjZC01NTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQEFju+ZcJCTetLwVQFwzcDoM3iJxt/l4yALhcCE5Eeo5+WOCHfFs8YW8Uqq CbvNMxjThdmx6Y0lXAyZraFj/OiptHvT9CDsDvqJGQTMYOYcIDDJ5Oe8FZ2DHJNs WTzSUD2TUbmthG9gSJye8OAzrp/PwLmCoykBl5tejatpogqiRKDZJMv4KFPFrxO/ VzzkvVVAIU0RfbbATrQZXV19qSukhlM0JF+scGQvOfjQJhEbDfV+bY4V24Fh40I5 /xE0CWdwg2sJFllvYQbHCDsmxDA0aGmAWwmNTgtbxNzqBPN4hKvnso1z2zdCc6Z2 b0/4dikdgpmjYKFcY4EoCOltWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC2UJLbF lulAeqghSn1hu8NDp0lXMB8GA1UdIwQYMBaAFM57MHjqIA7xz8NFjE0ekI1fnLc1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTQxNS9CQzY2MTA2RURE OTQxMUVBOEEyRTJEMzdDNEY5QUUwMi96bnN3ZU9vZ0R2SFB3MFdNVFI2UWpWLWN0 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puc3dlT29nRHZIUHcwV01UUjZRalYtY3R6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U0MTUvQkM2NjEwNkVERDk0MTFFQThBMkUyRDM3QzRGOUFFMDIvQTc3RTZDNzhG RjBFMTFFQUJCQ0NDRjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlu8wDQYJKoZIhvcNAQELBQADggEBAINwMCe+gcfoI+K/ oh2iTvRS/BBgdP5H9RmjW3WyzeLK/uc+rNvHVoTwiEmMltc1PSj8u7OWDiXwcnPS bD2tduMHHz6hl0/D7nGoWnuVBAAmTn+aKlLjUE5JS7X87fnlM8Jus3fMYlvBfyMv hcAJgIizatUkorGDfd0gg769lJfOC1OoigLjLRORLCTKlbVvnFk/jy0xDVVzRGPA yh4d4e4XIditpcS2SRDNC8QFXrnEkAtslWxfbnVQJhz73C7Vf0Igwi8JeuJW4OYr P5e6WYrlLkC3GzJZUJiP7QuKKTycI9shB7XpYOvxDK66fY63zYHlermNHgzJFYQQ fiB60w4= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:38 2024 by rpki-client on console-fra.rpki-client.org