$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/5D2B0616A9C011EABAAB4624C4F9AE02.roa File: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (raw, json) Hash identifier: yiUTn34nFtRxV5JAhkPGjI3Dqg4FJfadYSzxX54DxmU= Subject key identifier: 98:BF:B9:D6:13:C5:50:9F:89:BB:45:A5:51:12:D8:0F:22:02:B7:F8 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 0934 Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/5D2B0616A9C011EABAAB4624C4F9AE02.roa Signing time: Tue 16 Apr 2024 21:29:59 +0000 ROA not before: Tue 16 Apr 2024 21:29:59 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.150.46.0/24 maxlen: 24 103.150.47.0/24 maxlen: 24 2001:df3:5580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2356 (0x934) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: Apr 16 21:29:59 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=661eedd7-6877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7f:d5:34:41:66:4b:b0:8c:9a:8f:69:ed:79: 94:b3:03:af:28:54:05:e0:0a:17:fc:61:8c:3e:aa: 83:4e:69:1c:61:56:e1:74:c2:17:77:55:0e:e8:cc: 07:46:11:77:4c:8b:8e:e0:56:f7:28:4f:fb:46:bd: f0:4b:b0:ff:41:78:b0:76:0d:01:9f:6d:a6:fe:59: 93:7f:e2:2d:b8:d7:b4:d7:a6:ea:23:2f:a9:fb:dd: 8b:97:11:a8:16:21:ce:c0:0d:84:b7:97:0d:db:12: 11:1a:ce:0f:a3:7c:05:fd:5e:ea:fa:cd:1b:f4:52: fc:87:3c:a5:e8:44:e9:57:96:9c:17:8e:1b:99:7e: 77:97:08:45:1a:cd:a3:b4:e1:f6:86:9a:dc:ca:6d: 3c:fc:65:53:ef:08:65:7b:f3:a0:5e:2f:11:e3:fd: 0a:6b:07:56:79:0b:7c:ad:ae:eb:f1:da:ec:76:8e: 72:f9:81:c0:3e:2f:d3:2d:82:1e:85:bd:14:3c:93: 38:b9:dd:72:d7:9b:a9:af:15:ca:b9:13:80:ab:f9: cb:d5:63:a5:1d:d3:ed:27:31:de:2e:9c:dd:5e:02: 43:fc:85:ee:54:47:c9:c6:91:d4:23:c7:0c:ee:eb: f9:a7:04:68:2e:8f:a5:b7:57:e5:2f:f9:f8:98:b1: 5f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:BF:B9:D6:13:C5:50:9F:89:BB:45:A5:51:12:D8:0F:22:02:B7:F8 X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/5D2B0616A9C011EABAAB4624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.46.0/23 IPv6: 2001:df3:5580::/48 Signature Algorithm: sha256WithRSAEncryption b8:15:6e:79:50:29:3a:2d:d2:56:10:77:3d:bf:02:de:17:88: 2a:c9:16:5b:51:41:2b:db:9a:4b:cd:d8:98:0a:e4:11:b6:d3: 56:d6:a5:31:4c:c2:43:f9:4e:82:df:52:a0:c8:f9:c7:a2:7c: c8:e4:ad:8c:44:a5:92:fe:c6:fe:f8:48:f0:53:b2:f7:b0:54: f4:35:c4:84:52:6c:ae:08:72:90:7b:3b:eb:25:9b:a5:35:65: 21:44:13:11:3c:ff:b8:bd:71:31:fe:57:a8:a2:5b:f3:cf:0b: f1:ef:50:51:5b:49:07:26:ce:17:a9:30:5d:d9:6f:e1:91:50: 9f:15:f5:e4:5c:3e:49:86:a4:ec:3d:a7:62:ce:d8:2a:63:c8: 38:3f:bf:c7:5b:da:15:53:cc:a3:9e:fa:d1:ef:51:cc:c5:35: 72:c5:82:61:85:dd:dc:f1:ea:91:20:e5:6c:3f:41:96:88:3b: 81:52:39:3e:7d:35:3f:28:b4:41:d0:6c:95:8e:de:91:de:b3: 46:78:71:eb:5d:e4:da:60:ed:ab:e2:da:b5:ee:73:e8:f8:16: fc:14:5e:0a:ad:e7:71:44:8e:83:98:2e:9a:e6:16:ee:3f:eb: c8:da:c0:a8:7f:6e:d7:cf:db:37:98:f8:39:e0:f7:52:ed:a5: b1:b6:e5:73 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjQwNDE2MjEyOTU5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFlZWRkNy02ODc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3/VNEFmS7CMmo9p7XmUswOvKFQF4AoX/GGMPqqDTmkcYVbhdMIXd1UO6MwH RhF3TIuO4Fb3KE/7Rr3wS7D/QXiwdg0Bn22m/lmTf+ItuNe016bqIy+p+92LlxGo FiHOwA2Et5cN2xIRGs4Po3wF/V7q+s0b9FL8hzyl6ETpV5acF44bmX53lwhFGs2j tOH2hprcym08/GVT7whle/OgXi8R4/0KawdWeQt8ra7r8drsdo5y+YHAPi/TLYIe hb0UPJM4ud1y15uprxXKuROAq/nL1WOlHdPtJzHeLpzdXgJD/IXuVEfJxpHUI8cM 7uv5pwRoLo+lt1flL/n4mLFfJQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJi/udYT xVCfibtFpVES2A8iArf4MB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVENEYvNTg1RjREMEU3ODc5MTFFQUFFQkEzQjM4QzRGOUFFMDIvNUQyQjA2MTZB OUMwMTFFQUJBQUI0NjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnli4wDwQCAAIwCQMHACABDfNVgDANBgkqhkiG9w0BAQsF AAOCAQEAuBVueVApOi3SVhB3Pb8C3heIKskWW1FBK9uaS83YmArkEbbTVtalMUzC Q/lOgt9SoMj5x6J8yOStjESlkv7G/vhI8FOy97BU9DXEhFJsrghykHs76yWbpTVl IUQTETz/uL1xMf5XqKJb888L8e9QUVtJBybOF6kwXdlv4ZFQnxX15Fw+SYak7D2n Ys7YKmPIOD+/x1vaFVPMo5760e9RzMU1csWCYYXd3PHqkSDlbD9Blog7gVI5Pn01 Pyi0QdBslY7ekd6zRnhx613k2mDtq+Late5z6PgW/BReCq3ncUSOg5gumuYW7j/r yNrAqH9u18/bN5j4OeD3Uu2lsbblcw== -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:01 2024 by rpki-client on console-fra.rpki-client.org