$ rpki-client -vvf rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/021C59CCD1D011EAA2763743C4F9AE02.roa File: 021C59CCD1D011EAA2763743C4F9AE02.roa (raw, json) Hash identifier: kMnM6tT1AQ+rXlanuefvWJQM92bE9CI8Z0JTFvLVui8= Subject key identifier: 48:62:28:64:20:DA:1B:39:F4:95:E4:1D:72:CE:60:42:B3:E3:23:C8 Certificate issuer: /CN=A91454A8/serialNumber=9BB2B4D1A8FE811DC4953D802D102F5D048D081D Certificate serial: 076E Authority key identifier: 9B:B2:B4:D1:A8:FE:81:1D:C4:95:3D:80:2D:10:2F:5D:04:8D:08:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/021C59CCD1D011EAA2763743C4F9AE02.roa Signing time: Tue 28 May 2024 22:33:42 +0000 ROA not before: Tue 28 May 2024 22:33:42 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132335 IP address blocks: 103.150.187.0/24 maxlen: 24 2001:df3:8880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.crl rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 20:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1902 (0x76e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454A8/serialNumber=9BB2B4D1A8FE811DC4953D802D102F5D048D081D Validity Not Before: May 28 22:33:42 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66565bc6-7b1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f3:f2:b4:49:b0:8e:b6:34:f3:11:02:96:d4: be:87:b1:e1:dd:1c:05:3c:86:f3:9b:af:83:db:81: 82:ae:44:73:33:bf:77:88:8f:69:0f:df:34:df:67: 03:5e:46:a7:b2:04:a3:64:72:1e:0d:64:1b:cc:62: c6:08:cf:db:5c:67:ed:30:d7:e4:b5:0d:ca:52:e6: 1c:ff:85:9d:59:1b:dd:d4:29:c9:17:09:82:51:8d: c2:20:21:16:89:aa:64:1e:27:4f:77:40:35:28:bc: 8a:9a:01:97:1b:48:7e:68:27:71:37:53:a8:25:68: 67:e8:d1:fd:99:26:53:34:21:d1:8a:cf:b0:c7:b0: 5b:82:d5:fa:52:ee:8b:6d:f1:06:63:72:5d:c6:34: ef:d8:91:df:e4:e1:5d:65:00:71:99:f7:7c:24:1f: 40:27:a7:ab:ca:c1:1b:b5:8a:e9:52:c6:29:be:43: 42:8c:d3:c2:45:82:73:5c:65:88:b7:b8:da:10:9b: 74:2b:0e:30:f9:13:60:82:31:8f:84:ed:b8:c1:27: 67:bf:41:5e:e8:65:4a:fa:c3:f9:11:36:24:68:69: a5:f7:11:26:d2:f6:39:0f:bb:a3:84:12:02:e1:9c: 94:86:4a:cd:aa:09:9c:b4:61:df:b7:6e:bf:12:48: 1e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:62:28:64:20:DA:1B:39:F4:95:E4:1D:72:CE:60:42:B3:E3:23:C8 X509v3 Authority Key Identifier: keyid:9B:B2:B4:D1:A8:FE:81:1D:C4:95:3D:80:2D:10:2F:5D:04:8D:08:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/021C59CCD1D011EAA2763743C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.187.0/24 IPv6: 2001:df3:8880::/48 Signature Algorithm: sha256WithRSAEncryption 15:99:4a:3b:86:60:a4:dc:26:96:06:02:66:75:58:40:cb:1b: 73:2b:1b:a1:65:32:c7:c2:cd:e2:8c:4d:a2:17:59:2d:44:b9: 6a:fd:05:62:96:8d:0e:7c:bd:e8:5c:85:4c:32:f3:ad:02:a7: bc:30:3b:d6:12:f7:01:0d:83:bc:27:a5:10:c9:bc:ba:6b:e5: a7:2e:23:2e:59:7e:4c:e8:d6:9e:ac:dc:f1:c2:c5:d5:c2:47: d3:77:f2:19:75:49:bf:76:d5:d9:a7:cd:e9:18:fc:4f:59:47: 3c:de:67:c5:23:ae:63:44:44:29:e9:57:84:42:04:e5:5f:42: 53:94:ff:28:08:c0:94:f1:e9:cf:2b:db:8e:dc:3d:c1:33:6d: 6c:f6:27:c8:4e:5d:64:70:a8:dd:2e:c7:19:8d:c1:f2:ef:c9: d6:8a:11:62:93:16:b7:d4:43:d0:4a:88:72:85:3c:d9:21:1b: dd:0a:4a:4b:23:ae:16:11:af:ea:31:7d:ef:86:f1:ae:72:42: 07:e6:b1:2d:05:3b:1a:c1:ce:4a:b9:4e:4b:29:a2:c1:81:2a: da:3e:e1:4d:6d:27:71:78:23:1f:35:af:00:90:c0:8f:d4:1e: da:ed:0f:f9:1f:26:60:41:2d:ab:d5:43:92:e3:77:c5:11:30: 55:02:78:ed -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QTgxMTAvBgNVBAUTKDlCQjJCNEQxQThGRTgxMURDNDk1M0Q4MDJEMTAyRjVE MDQ4RDA4MUQwHhcNMjQwNTI4MjIzMzQyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2NWJjNi03YjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfPytEmwjrY08xECltS+h7Hh3RwFPIbzm6+D24GCrkRzM793iI9pD98032cD XkansgSjZHIeDWQbzGLGCM/bXGftMNfktQ3KUuYc/4WdWRvd1CnJFwmCUY3CICEW iapkHidPd0A1KLyKmgGXG0h+aCdxN1OoJWhn6NH9mSZTNCHRis+wx7BbgtX6Uu6L bfEGY3JdxjTv2JHf5OFdZQBxmfd8JB9AJ6erysEbtYrpUsYpvkNCjNPCRYJzXGWI t7jaEJt0Kw4w+RNggjGPhO24wSdnv0Fe6GVK+sP5ETYkaGml9xEm0vY5D7ujhBIC 4ZyUhkrNqgmctGHft26/EkgevwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEhiKGQg 2hs59JXkHXLOYEKz4yPIMB8GA1UdIwQYMBaAFJuytNGo/oEdxJU9gC0QL10EjQgd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRBOC9FMjk1MjBCOEQx Q0QxMUVBQkE0QTM0NDBDNEY5QUUwMi9tN0swMGFqLWdSM0VsVDJBTFJBdlhRU05D QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL203SzAwYWotZ1IzRWxUMkFMUkF2WFFTTkNCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0QTgvRTI5NTIwQjhEMUNEMTFFQUJBNEEzNDQwQzRGOUFFMDIvMDIxQzU5Q0NE MUQwMTFFQUEyNzYzNzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnlrswDwQCAAIwCQMHACABDfOIgDANBgkqhkiG9w0BAQsF AAOCAQEAFZlKO4ZgpNwmlgYCZnVYQMsbcysboWUyx8LN4oxNohdZLUS5av0FYpaN Dny96FyFTDLzrQKnvDA71hL3AQ2DvCelEMm8umvlpy4jLll+TOjWnqzc8cLF1cJH 03fyGXVJv3bV2afN6Rj8T1lHPN5nxSOuY0REKelXhEIE5V9CU5T/KAjAlPHpzyvb jtw9wTNtbPYnyE5dZHCo3S7HGY3B8u/J1ooRYpMWt9RD0EqIcoU82SEb3QpKSyOu FhGv6jF974bxrnJCB+axLQU7GsHOSrlOSymiwYEq2j7hTW0ncXgjHzWvAJDAj9Qe 2u0P+R8mYEEtq9VDkuN3xREwVQJ47Q== -----END CERTIFICATE-----Generated at Sun Jun 16 23:33:52 2024 by rpki-client on console-fra.rpki-client.org