$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/6A4E9778632F11EE8F22BC2EC4F9AE02.roa File: 6A4E9778632F11EE8F22BC2EC4F9AE02.roa (raw, json) Hash identifier: qlYD7nyaD20cEGlo6vV+I6imXePtGy/Av+l/JmetaZs= Subject key identifier: 4B:19:40:CC:B7:1C:0F:86:CD:6C:C8:61:03:56:EF:EB:46:55:23:52 Certificate issuer: /CN=A9148F9A/serialNumber=9F7DED7D05B81DE66C735BB8547E76048C9C3F5A Certificate serial: 0530 Authority key identifier: 9F:7D:ED:7D:05:B8:1D:E6:6C:73:5B:B8:54:7E:76:04:8C:9C:3F:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n33tfQW4HeZsc1u4VH52BIycP1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/6A4E9778632F11EE8F22BC2EC4F9AE02.roa Signing time: Wed 17 Jul 2024 00:22:17 +0000 ROA not before: Wed 17 Jul 2024 00:22:17 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139628 IP address blocks: 103.152.194.0/24 maxlen: 24 103.152.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.crl rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n33tfQW4HeZsc1u4VH52BIycP1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F9A/serialNumber=9F7DED7D05B81DE66C735BB8547E76048C9C3F5A Validity Not Before: Jul 17 00:22:17 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66970eb9-4477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7a:b7:df:91:68:c6:69:43:b1:7b:b5:b2:4b: 64:e9:cd:33:53:0b:03:97:ca:17:f8:3e:aa:00:75: ab:25:6f:e8:75:1d:3d:04:da:82:71:e2:d2:9d:93: 6b:2d:1d:2e:e5:f7:5d:1f:93:d8:0a:60:3e:3e:90: 36:5c:58:4a:37:8d:67:8a:d5:5a:57:53:34:71:16: 07:56:aa:5f:aa:c4:ef:fe:4a:97:43:ef:b4:76:4f: 29:c8:5a:22:60:b6:86:0a:37:04:f3:70:31:7a:5c: c5:fd:a0:17:30:1d:fb:c0:17:ff:32:c4:81:1c:12: 7c:11:83:97:e7:2a:b7:9f:d4:e9:66:57:86:27:29: 73:e4:4b:48:27:97:92:5c:e4:3c:bf:17:bf:ab:1a: de:2d:09:0a:a3:7f:0c:ac:14:82:b7:19:d8:32:40: 8c:4a:ee:ac:d6:99:26:0e:49:cd:bb:48:5e:19:32: fd:f8:1f:92:5e:e8:ca:3d:34:66:4f:9a:95:44:bc: ed:87:1d:ad:00:3c:f6:14:e6:c6:03:81:f2:30:48: 83:94:9c:e4:bb:24:f8:51:05:13:60:6e:48:97:45: dc:c7:3e:a1:26:62:63:89:26:66:50:ea:83:be:a3: 17:cd:a9:d8:4e:37:2f:bb:26:ed:1e:47:13:19:e4: d1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:19:40:CC:B7:1C:0F:86:CD:6C:C8:61:03:56:EF:EB:46:55:23:52 X509v3 Authority Key Identifier: keyid:9F:7D:ED:7D:05:B8:1D:E6:6C:73:5B:B8:54:7E:76:04:8C:9C:3F:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/n33tfQW4HeZsc1u4VH52BIycP1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n33tfQW4HeZsc1u4VH52BIycP1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F9A/C0EA5798BE4511EBB0C5D084C4F9AE02/6A4E9778632F11EE8F22BC2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.194.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:f5:7b:0e:77:ac:46:c5:b0:99:18:f2:e6:88:ab:f6:d1:c5: fb:7d:f4:c5:63:cb:b5:ab:dc:48:d7:4d:07:2b:c7:e7:ff:d1: f8:aa:31:ef:26:41:00:e1:b6:39:ea:d7:23:c2:6c:62:2f:cf: ca:b0:51:2a:79:bf:5f:1e:24:ce:46:00:7a:b6:6a:07:3f:e4: df:e4:26:89:e8:06:da:ff:04:2b:f9:32:cf:dd:ae:fa:d1:2a: fa:b2:2f:83:96:19:4c:ef:d0:a4:6e:bc:bc:25:7e:1a:a7:02: bf:6c:31:19:6c:cf:89:6f:9f:14:03:77:a5:ac:f9:2f:90:16: a0:b6:25:29:c5:18:01:d5:f1:de:1e:52:43:60:ae:b7:02:c7: c3:24:01:2d:1d:25:f0:46:ec:f7:03:4b:2a:8b:81:61:87:71: fa:fe:0b:a3:78:75:3f:2e:fa:9c:f6:87:cb:80:20:c4:30:41: e9:11:04:8a:aa:0a:6c:f6:4c:8f:3c:88:34:a9:00:84:8d:00: f1:00:3a:97:ae:61:26:b7:d3:37:de:85:06:fb:fc:a5:ed:85: 6e:ac:48:f7:2d:e4:00:bb:3d:f4:98:25:c5:37:38:5b:c3:1b: be:bb:91:76:8c:45:64:53:9e:65:3f:db:84:06:35:40:1b:dc: 41:68:c3:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGOUExMTAvBgNVBAUTKDlGN0RFRDdEMDVCODFERTY2QzczNUJCODU0N0U3NjA0 OEM5QzNGNUEwHhcNMjQwNzE3MDAyMjE3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3MGViOS00NDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3q335FoxmlDsXu1sktk6c0zUwsDl8oX+D6qAHWrJW/odR09BNqCceLSnZNr LR0u5fddH5PYCmA+PpA2XFhKN41nitVaV1M0cRYHVqpfqsTv/kqXQ++0dk8pyFoi YLaGCjcE83AxelzF/aAXMB37wBf/MsSBHBJ8EYOX5yq3n9TpZleGJylz5EtIJ5eS XOQ8vxe/qxreLQkKo38MrBSCtxnYMkCMSu6s1pkmDknNu0heGTL9+B+SXujKPTRm T5qVRLzthx2tADz2FObGA4HyMEiDlJzkuyT4UQUTYG5Il0Xcxz6hJmJjiSZmUOqD vqMXzanYTjcvuybtHkcTGeTRcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEsZQMy3 HA+GzWzIYQNW7+tGVSNSMB8GA1UdIwQYMBaAFJ997X0FuB3mbHNbuFR+dgSMnD9a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY5QS9DMEVBNTc5OEJF NDUxMUVCQjBDNUQwODRDNEY5QUUwMi9uMzN0ZlFXNEhlWnNjMXU0Vkg1MkJJeWNQ MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24zM3RmUVc0SGVac2MxdTRWSDUyQkl5Y1Axby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhGOUEvQzBFQTU3OThCRTQ1MTFFQkIwQzVEMDg0QzRGOUFFMDIvNkE0RTk3Nzg2 MzJGMTFFRThGMjJCQzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmMIwDQYJKoZIhvcNAQELBQADggEBAJr1ew53rEbFsJkY 8uaIq/bRxft99MVjy7Wr3EjXTQcrx+f/0fiqMe8mQQDhtjnq1yPCbGIvz8qwUSp5 v18eJM5GAHq2agc/5N/kJonoBtr/BCv5Ms/drvrRKvqyL4OWGUzv0KRuvLwlfhqn Ar9sMRlsz4lvnxQDd6Ws+S+QFqC2JSnFGAHV8d4eUkNgrrcCx8MkAS0dJfBG7PcD SyqLgWGHcfr+C6N4dT8u+pz2h8uAIMQwQekRBIqqCmz2TI88iDSpAISNAPEAOpeu YSa30zfehQb7/KXthW6sSPct5AC7PfSYJcU3OFvDG767kXaMRWRTnmU/24QGNUAb 3EFow3M= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org