$ rpki-client -vvf rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/150C1686283511EDABF49D69C4F9AE02.roa File: 150C1686283511EDABF49D69C4F9AE02.roa (raw, json) Hash identifier: cp/g3c614sxIJhG7+W0sfcuIudQc0T60lgeLxpTEn7E= Subject key identifier: 2D:2B:4B:64:09:04:93:FE:90:B5:87:28:BF:FA:BC:A4:FA:B5:19:EC Certificate issuer: /CN=A91F26F1/serialNumber=76CD12AD9E608CAA2C1997B636F450577BE937BC Certificate serial: 01AF Authority key identifier: 76:CD:12:AD:9E:60:8C:AA:2C:19:97:B6:36:F4:50:57:7B:E9:37:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0SrZ5gjKosGZe2NvRQV3vpN7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/150C1686283511EDABF49D69C4F9AE02.roa Signing time: Sun 01 Sep 2024 03:25:27 +0000 ROA not before: Sun 01 Sep 2024 03:25:27 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150182 IP address blocks: 103.209.108.0/23 maxlen: 23 103.209.108.0/24 maxlen: 24 103.209.109.0/24 maxlen: 24 2001:df1:31c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/ds0SrZ5gjKosGZe2NvRQV3vpN7w.crl rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/ds0SrZ5gjKosGZe2NvRQV3vpN7w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0SrZ5gjKosGZe2NvRQV3vpN7w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F26F1/serialNumber=76CD12AD9E608CAA2C1997B636F450577BE937BC Validity Not Before: Sep 1 03:25:27 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d3dea7-df34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4d:0e:19:19:f4:47:51:6b:be:f5:c4:e7:26: 58:a7:fa:88:ad:4d:62:87:22:fb:20:0f:76:24:75: 09:ee:6f:70:9a:75:ff:e2:7d:74:da:2e:b0:cc:92: 63:8e:6e:ed:64:0d:eb:e0:a8:66:8f:ab:c3:09:30: c5:34:2e:06:57:cf:61:85:7d:f6:e9:1a:81:54:a8: 11:b7:67:bf:d7:cb:86:74:13:07:61:37:4c:3a:a9: 67:c8:3d:58:02:0e:10:a8:0b:00:3c:d3:f8:2d:0e: 30:ba:d4:e2:74:84:e5:10:34:a8:e9:50:22:29:be: 51:33:f6:8a:3e:79:c6:70:d2:75:d7:5d:15:fd:81: 01:bc:1e:c5:85:86:21:86:16:ee:84:a9:54:e6:39: 66:fd:f9:56:3a:9c:a8:3a:cb:a1:dc:b5:23:6f:03: ee:76:6b:8b:f4:ed:83:92:48:76:46:91:5c:17:fb: 34:d3:37:82:27:d9:f4:ce:f5:fb:66:20:9f:49:f2: 67:14:1b:56:b9:b0:ab:26:01:e2:1e:22:12:8c:53: 77:3b:de:83:5c:bc:a6:d0:5c:eb:8b:c4:55:50:d1: dd:4a:3e:5f:9b:cc:63:dc:78:75:b3:67:6d:2b:82: 86:f8:88:6b:c6:bb:de:44:3f:12:6e:95:e4:f4:d3: 37:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:2B:4B:64:09:04:93:FE:90:B5:87:28:BF:FA:BC:A4:FA:B5:19:EC X509v3 Authority Key Identifier: keyid:76:CD:12:AD:9E:60:8C:AA:2C:19:97:B6:36:F4:50:57:7B:E9:37:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/ds0SrZ5gjKosGZe2NvRQV3vpN7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0SrZ5gjKosGZe2NvRQV3vpN7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/150C1686283511EDABF49D69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.108.0/23 IPv6: 2001:df1:31c0::/48 Signature Algorithm: sha256WithRSAEncryption b1:3a:46:50:30:f1:22:d6:f1:75:f1:b7:99:d1:24:63:50:32: 17:c7:e1:9a:6e:29:a3:bd:6d:27:01:2c:b0:42:30:8b:85:ce: e4:47:ff:69:77:46:7a:5d:bc:b4:e0:1f:a4:33:85:21:ad:18: b3:0f:64:1a:ec:fa:24:61:e9:80:56:d2:60:c6:16:bf:ac:9c: 16:b7:7b:02:1a:81:4b:c4:d8:f8:19:c6:8a:2d:89:7e:b8:32: 69:56:2c:c7:08:70:bb:ab:aa:78:70:70:54:db:6c:aa:2e:e1: 5c:f3:4f:d2:eb:2c:88:32:92:27:26:3f:7f:65:75:a9:16:76: 4b:31:89:b0:8a:82:46:16:23:af:01:eb:cf:80:5f:8f:73:77: ac:6a:ab:28:7f:13:8b:81:df:4a:f9:a7:1b:cc:c1:26:d0:52: 32:b4:0e:ef:80:0f:cc:d9:7e:2c:ec:38:1f:6a:80:12:61:a2: 10:df:16:b1:72:87:cf:49:90:9c:b1:be:77:11:4e:72:34:f5: 1b:16:32:bd:6d:27:cb:14:ed:36:04:4f:09:be:b6:00:ad:d5: b7:85:56:b2:92:60:f3:a4:cf:d1:ff:fb:3e:ab:61:2f:96:dd: c2:9c:b2:47:77:bb:39:bf:e0:ad:e7:fe:dc:0d:dc:d3:ec:d6: f8:2e:e1:cf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI2RjExMTAvBgNVBAUTKDc2Q0QxMkFEOUU2MDhDQUEyQzE5OTdCNjM2RjQ1MDU3 N0JFOTM3QkMwHhcNMjQwOTAxMDMyNTI3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQzZGVhNy1kZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3U0OGRn0R1FrvvXE5yZYp/qIrU1ihyL7IA92JHUJ7m9wmnX/4n102i6wzJJj jm7tZA3r4Khmj6vDCTDFNC4GV89hhX326RqBVKgRt2e/18uGdBMHYTdMOqlnyD1Y Ag4QqAsAPNP4LQ4wutTidITlEDSo6VAiKb5RM/aKPnnGcNJ1110V/YEBvB7FhYYh hhbuhKlU5jlm/flWOpyoOsuh3LUjbwPudmuL9O2Dkkh2RpFcF/s00zeCJ9n0zvX7 ZiCfSfJnFBtWubCrJgHiHiISjFN3O96DXLym0Fzri8RVUNHdSj5fm8xj3Hh1s2dt K4KG+IhrxrveRD8SbpXk9NM3nwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFC0rS2QJ BJP+kLWHKL/6vKT6tRnsMB8GA1UdIwQYMBaAFHbNEq2eYIyqLBmXtjb0UFd76Te8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjZGMS84OEYxQzc4NDI4 MzExMUVEOTQ5NUQ0MkFDNEY5QUUwMi9kczBTclo1Z2pLb3NHWmUyTnZSUVYzdnBO N3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzMFNyWjVnaktvc0daZTJOdlJRVjN2cE43dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI2RjEvODhGMUM3ODQyODMxMTFFRDk0OTVENDJBQzRGOUFFMDIvMTUwQzE2ODYy ODM1MTFFREFCRjQ5RDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn0WwwDwQCAAIwCQMHACABDfExwDANBgkqhkiG9w0BAQsF AAOCAQEAsTpGUDDxItbxdfG3mdEkY1AyF8fhmm4po71tJwEssEIwi4XO5Ef/aXdG el28tOAfpDOFIa0Ysw9kGuz6JGHpgFbSYMYWv6ycFrd7AhqBS8TY+BnGii2Jfrgy aVYsxwhwu6uqeHBwVNtsqi7hXPNP0ussiDKSJyY/f2V1qRZ2SzGJsIqCRhYjrwHr z4Bfj3N3rGqrKH8Ti4HfSvmnG8zBJtBSMrQO74APzNl+LOw4H2qAEmGiEN8WsXKH z0mQnLG+dxFOcjT1GxYyvW0nyxTtNgRPCb62AK3Vt4VWspJg86TP0f/7PqthL5bd wpyyR3e7Ob/gref+3A3c0+zW+C7hzw== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:58 2024 by rpki-client on console-ams.rpki-client.org