$ rpki-client -vvf rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/1EDD32B274BE11EA97202132C4F9AE02.roa File: 1EDD32B274BE11EA97202132C4F9AE02.roa (raw, json) Hash identifier: JqF51wPgFYJ7/1JQa4bjka146YP84yRB+gx/lfzcoqw= Subject key identifier: 9C:6C:8A:2C:85:1D:6C:51:9D:A9:4C:B0:45:CE:80:63:49:6B:67:81 Certificate issuer: /CN=A9149063/serialNumber=9797F7852706EE1C42C68A5E450B572F8EE50818 Certificate serial: 0944 Authority key identifier: 97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/1EDD32B274BE11EA97202132C4F9AE02.roa Signing time: Thu 02 May 2024 21:39:48 +0000 ROA not before: Thu 02 May 2024 21:39:48 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140524 IP address blocks: 103.150.20.0/24 maxlen: 24 103.150.21.0/24 maxlen: 24 2001:df3:4e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149063/serialNumber=9797F7852706EE1C42C68A5E450B572F8EE50818 Validity Not Before: May 2 21:39:48 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66340824-7b32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:10:57:e1:24:8c:4e:6d:8a:db:88:a2:e8:ff: 97:bb:41:4f:c9:84:e6:ec:5c:d5:53:07:91:d8:6d: fa:03:ac:3c:35:c2:6d:3d:76:9f:86:35:b2:42:2f: e8:0e:20:b9:0c:9a:a0:c6:19:70:a1:9a:20:dc:e5: 6b:bc:a6:0b:c7:1d:23:c6:7d:ee:1f:e3:e9:23:9b: b4:12:8e:8d:c7:ce:20:ba:70:7c:70:b1:37:f4:ef: 99:6a:26:87:33:1e:a9:56:d6:be:7c:89:0d:89:7d: cc:fc:e9:74:39:f3:34:17:01:2b:41:a7:0e:6d:c2: 4c:7c:c0:44:75:f6:ed:7a:39:96:b2:14:29:5c:a0: de:c6:e0:ea:90:2e:8c:65:37:6c:6a:d9:ff:d5:28: 47:9e:3d:b4:be:f7:0e:a1:9b:ff:5d:38:45:45:f2: 09:51:8c:ea:33:e3:d3:88:ee:69:96:2b:7b:69:97: 6e:13:47:62:47:60:b3:71:be:a8:40:aa:74:91:28: eb:ee:76:cf:63:aa:b3:07:95:d5:a0:cf:08:21:cb: 21:06:2d:b3:e4:eb:0c:9d:64:5d:76:2b:7c:d1:b0: 9a:3e:ef:1e:63:a1:53:26:3b:b2:c0:a2:26:53:03: 9a:c0:70:16:3f:46:84:0e:11:f4:e7:f9:76:28:34: 79:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:6C:8A:2C:85:1D:6C:51:9D:A9:4C:B0:45:CE:80:63:49:6B:67:81 X509v3 Authority Key Identifier: keyid:97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/1EDD32B274BE11EA97202132C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.20.0/23 IPv6: 2001:df3:4e80::/48 Signature Algorithm: sha256WithRSAEncryption 1b:4a:2a:91:f7:7f:af:55:31:7e:56:76:d7:45:5c:66:93:2f: 23:b7:e8:84:e2:91:bb:bb:fa:84:aa:6c:01:64:ac:b5:6e:cf: ed:82:5b:cf:c8:aa:0d:40:4c:92:15:d3:3a:7d:fb:94:fb:e9: c3:e0:bc:61:75:54:25:49:9f:a9:f0:7e:0e:29:8e:c8:e8:2b: 60:69:53:ba:b0:08:d4:5d:6a:a8:fc:f7:e2:c8:ee:b2:d3:b4: d6:c2:1d:3b:3d:7a:56:95:c5:14:dc:8e:0d:67:b5:eb:a4:3b: 45:0f:36:59:ac:f9:05:2b:dd:f7:9c:7b:c1:fe:35:06:8a:53: 40:0d:e2:14:85:84:59:ed:ab:f5:3a:3d:03:27:a8:0a:cb:e5: 94:bc:ff:5b:7e:5d:14:a3:44:af:38:8b:2c:56:2e:d9:b9:cd: 5b:76:b8:e2:ae:f3:30:41:0e:b7:81:06:7f:08:ca:a9:22:21: 39:a6:b1:78:f0:60:80:b7:47:8e:ca:ba:5d:ec:d7:44:40:c6: 92:90:cd:19:dd:87:33:82:28:6a:5f:2b:ac:dd:1b:91:33:03: c8:5b:e0:53:56:31:26:bc:d1:a3:c0:d9:42:4f:5d:57:22:1b: 77:58:95:58:47:cc:8c:5e:85:b1:26:ae:9d:2e:a2:7f:75:ec: 6b:9f:50:d8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkwNjMxMTAvBgNVBAUTKDk3OTdGNzg1MjcwNkVFMUM0MkM2OEE1RTQ1MEI1NzJG OEVFNTA4MTgwHhcNMjQwNTAyMjEzOTQ4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0MDgyNC03YjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBBX4SSMTm2K24ii6P+Xu0FPyYTm7FzVUweR2G36A6w8NcJtPXafhjWyQi/o DiC5DJqgxhlwoZog3OVrvKYLxx0jxn3uH+PpI5u0Eo6Nx84gunB8cLE39O+ZaiaH Mx6pVta+fIkNiX3M/Ol0OfM0FwErQacObcJMfMBEdfbtejmWshQpXKDexuDqkC6M ZTdsatn/1ShHnj20vvcOoZv/XThFRfIJUYzqM+PTiO5plit7aZduE0diR2Czcb6o QKp0kSjr7nbPY6qzB5XVoM8IIcshBi2z5OsMnWRddit80bCaPu8eY6FTJjuywKIm UwOawHAWP0aEDhH05/l2KDR5SQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJxsiiyF HWxRnalMsEXOgGNJa2eBMB8GA1UdIwQYMBaAFJeX94UnBu4cQsaKXkULVy+O5QgY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTA2My82ODg5QURGMjc0 QkMxMUVBOTUwOTlEMkJDNEY5QUUwMi9sNWYzaFNjRzdoeEN4b3BlUlF0WEw0N2xD QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w1ZjNoU2NHN2h4Q3hvcGVSUXRYTDQ3bENCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDkwNjMvNjg4OUFERjI3NEJDMTFFQTk1MDk5RDJCQzRGOUFFMDIvMUVERDMyQjI3 NEJFMTFFQTk3MjAyMTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlhQwDwQCAAIwCQMHACABDfNOgDANBgkqhkiG9w0BAQsF AAOCAQEAG0oqkfd/r1UxflZ210VcZpMvI7fohOKRu7v6hKpsAWSstW7P7YJbz8iq DUBMkhXTOn37lPvpw+C8YXVUJUmfqfB+DimOyOgrYGlTurAI1F1qqPz34sjustO0 1sIdOz16VpXFFNyODWe166Q7RQ82Waz5BSvd95x7wf41BopTQA3iFIWEWe2r9To9 AyeoCsvllLz/W35dFKNErziLLFYu2bnNW3a44q7zMEEOt4EGfwjKqSIhOaaxePBg gLdHjsq6XezXREDGkpDNGd2HM4Ioal8rrN0bkTMDyFvgU1YxJrzRo8DZQk9dVyIb d1iVWEfMjF6FsSaunS6if3Xsa59Q2A== -----END CERTIFICATE-----Generated at Thu May 16 21:45:26 2024 by rpki-client on console-fra.rpki-client.org